Messages

136

18.1 Legacy Series / Re: Traffic shaping (divide 10Mb evenly for 5 users)

« on: February 09, 2018, 10:49:52 am »

I only don't bother specifying IPs/ networks in rules for WAN upload/ download, I hit "Advanced" and set interface direction only.

It works both ways, but I find it less fussing...

137

18.1 Legacy Series / Re: Traffic shaping (divide 10Mb evenly for 5 users)

« on: February 09, 2018, 09:57:07 am »

Very weird!

I have the same setup, and works up to the limit you define in the pipes: when our ISP increased the service bandwidth from 100 Mbps to 1 Gbps I have forgotten for about 15 - 30 minutes to change the value in the pipe, so nobody could pass the 100 Mbps limit even if alone in the entire network.

138

18.1 Legacy Series / Re: Traffic shaping (divide 10Mb evenly for 5 users)

« on: February 09, 2018, 09:37:18 am »

Hello!

Yes, and also in the doc: https://docs.opnsense.org/manual/how-tos/shaper.html#share-bandwidth-evenly

Hope it helps!

PS. The only exception, I have set my upload pipe with "source" as mask (not "destination"): "upload" + "destination" means destination is outside/ public servers, and I want the shaper to share the upload bandwidth between internal clients (source).

139

Tutorials and FAQs / Re: Setting timezone

« on: February 07, 2018, 01:02:01 pm »

[System: Settings: General]: 3rd option

140

Hardware and Performance / Re: qotom i5-5250U

« on: February 02, 2018, 11:08:13 am »

Even if Intel Core i5-5250U is a one increment newer generation one, I would go with Intel Core i7-4500U: 4 MB SmartCache for i7, 3 MB for i5 && also very important is the CPU speed difference, clearly an advantage for i7 since OpenVPN is (still) single threaded, so the speedier the CPU, and the more cache, the better, and it's all that matters for that fact (as long as they both have AES-NI instruction set available, and they both do).

Comparing the two on ark.intel.com couldn't find any supported HW implemented instruction set difference that would clearly steer the decision toward generation advantage, and from speed and cache size advantage.

What do you think? Did I miss something?

141

Hardware and Performance / Re: QOTOM -- confused

« on: February 02, 2018, 09:00:38 am »

Not very sure about that, but I presume that if their configs/ optional adds offer only mSATA, this means the case wouldn't accommodate a 2.5 HDD/ SSD. Otherwise, I have found that if you dig deep enough on their descriptions, you would find what you need, and quite more than you had hoped. (See attachment).

Unfortunately, they didn't "copy-paste" all applicable info from one model to another, but a bit of correlation between same cases/ sizes would do the trick.

142

17.7 Legacy Series / Re: how to move anti-lockout rules to a bridge interface

« on: February 01, 2018, 05:49:16 pm »

Thoughts:

I have the "Management" subnet on a distinct physical interface than my LAN ("CorpLAN"). I speak, and OPNsense listens for HTTP(S), SSH etc only on that particular interface/ IP. I would like to be able to choose one (and maybe only one) interface to be the one the default anti lock-out rule is applied onto. Of course, if for any reason the assignment of given logical interface is made to a special interface, like LAGG, it should be OK - since many times LAGG is made even for a fail-over config sake; I might be locked-out because default lock-out rule does not apply to LAGG, nor interface groups etc., && because the only physical non-LAGG/ non group interface the default A. L-O. rule is applied onto is not physically reachable any more...

I guess this way is much less prone to risks, regarding changing the interface for default lock-out rule: if I care about changing that interface it should be considered that is my responsibility, that I know the implications of changing that "trusted" interface.

Thank you!

143

17.7 Legacy Series / Re: Captive Portal with Let's encrypt and external Landing Page

« on: February 01, 2018, 11:58:51 am »

Yes, please, for the How-To!

Many thanks in advance.

144

18.1 Legacy Series / Re: 18.1 Network Performance (17.7.11-12 was fine)?

« on: February 01, 2018, 11:57:23 am »

Same situation here, HP DL380 G6, ESXi 5.5, no more than 450 Mb/s symmetrical out of 1000 Mbps symmetrical.

I'm out of clues.

145

17.7 Legacy Series / Re: Multi-WAN and 1:1 NAT

« on: February 01, 2018, 11:53:30 am »

Change Outbound NAT rules generation from automatic to hybrid, and manually add NO NAT rules for the intended IP address pool(s).

Firewall: NAT: Outbound

Hope it helps...

146

18.1 Legacy Series / Re: Traffic Graph oddity

« on: February 01, 2018, 11:47:13 am »

Same here.

Nothing new, I hopped for a change too, giving FreeBSD upgrade 11.0 -> 11.1 and also update of multiple driver packs.

Will see...

147

17.7 Legacy Series / Re: how to move anti-lockout rules to a bridge interface

« on: February 01, 2018, 11:44:06 am »

+1

148

Hardware and Performance / Re: QOTOM -- confused

« on: February 01, 2018, 11:20:21 am »

My only complaint is the O/S doesn't see the NICs in the numbered order.

I encourage you to use the auto-detect function, so you'll have them accordingly.

149

18.1 Legacy Series / Re: USB interface errors under ESXi 5.0.0 VM during OS load

« on: January 30, 2018, 12:21:00 pm »

5.0 has been end of life for a while.

It's the only ver. that runs on G6 (mostly) without problems (upper, and get into a plethora of **%#$**). 

Which usb device are you using? I've installed from ISO.

None: web interface upgrade.

But after the upgrade, during boot time, didn't like the virtual USB interface (not storage, since non existent in the USB port) any more, the same virtual USB interface that 17.1.X and 17.7.X had no problems with. Saying again, I have removed the virtual USB interface/ component from virtual appliance settings, and not an USB storage device of any kind.

Thanks, and cheers!

150

18.1 Legacy Series / USB interface errors under ESXi 5.0.0 VM during OS load

« on: January 29, 2018, 12:51:29 pm »

Hello everyone!

Take care for virtual USB interface under ESXi 5.0.0, multiple console errors regarding USB during OS load, removing the interface from the VM settings solved the problem.
If you have such a virtualization platform (maybe just this version), be aware, and better remove USB before applying the upgrade.

Thanks!

PS Franco, should a bug report be opened on github?