"Quote from: iam on December 07, 2020, 06:25:48 PMI'm wondering the same...
What's APU[5-6]?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#31
Hardware and Performance / Re: PCENGINES APU[1-6] Coreboot SeaBIOS Open Source Firmware
December 10, 2020, 10:58:57 AM #32
20.7 Legacy Series / plugins: os-mail-backup not available due to unaddressed security concerns
December 10, 2020, 10:57:34 AM
Hi,
Just read this in the 20.7.6 release notes:
plugins: os-mail-backup not available due to unaddressed security concerns
I'm using this plugin, where can I get more info about these security concerns?
I can't seem to find any open issues on GitHub mentioning mail-backup plugin.
Just read this in the 20.7.6 release notes:
plugins: os-mail-backup not available due to unaddressed security concerns
I'm using this plugin, where can I get more info about these security concerns?
I can't seem to find any open issues on GitHub mentioning mail-backup plugin.
#33
Hardware and Performance / Re: PCENGINES APU[1-6] Coreboot SeaBIOS Open Source Firmware
December 02, 2020, 03:35:12 PM
New version is available!
v4.13.0.1
Release date: 2020-11-27
Fixed/added:
rebased with official coreboot repository commit 9b7dc76
Known issues:
apuled driver doesn't work in FreeBSD. Check the GPIOs document for workaround.
some PCIe cards are not detected on certain OSes and/or in certain mPCIe slots. Check the mPCIe modules document for solution/workaround.
booting with 2 USB 3.x sticks plugged in apu4 sometimes results in detecting only 1 stick
certain USB 3.x sticks happen to not appear in boot menu
booting Xen is unstable
I'm trying to install it via OPNsense shell on a running device, but it says it can't find the flashrom command, do I need to install anything before I can use this? I've read that it should be included...
// edit
fixed it by running "pkg install flashrom"
Did not read that anywhere on the posts I found
v4.13.0.1
Release date: 2020-11-27
Fixed/added:
rebased with official coreboot repository commit 9b7dc76
Known issues:
apuled driver doesn't work in FreeBSD. Check the GPIOs document for workaround.
some PCIe cards are not detected on certain OSes and/or in certain mPCIe slots. Check the mPCIe modules document for solution/workaround.
booting with 2 USB 3.x sticks plugged in apu4 sometimes results in detecting only 1 stick
certain USB 3.x sticks happen to not appear in boot menu
booting Xen is unstable
I'm trying to install it via OPNsense shell on a running device, but it says it can't find the flashrom command, do I need to install anything before I can use this? I've read that it should be included...
// edit
fixed it by running "pkg install flashrom"
Did not read that anywhere on the posts I found
#34
20.7 Legacy Series / Re: [SOLVED] apu 2c4 : live boot from usb stick for fresh install crash
November 27, 2020, 04:05:57 PM
I have the same on an apu4d4 with a 16 GB mSATA card.
weird thing is the first time I installed it it worked fine, but due to another problem ( ) I had to start over and got this error.
Aborting the boot procedure in the menu and typing set kern.cam.boot_delay=10000 and then boot fixed it.
My Apu4d4 has the latest BIOS as of writing this.
weird thing is the first time I installed it it worked fine, but due to another problem ( ) I had to start over and got this error.
Aborting the boot procedure in the menu and typing set kern.cam.boot_delay=10000 and then boot fixed it.
My Apu4d4 has the latest BIOS as of writing this.
#35
20.7 Legacy Series / Re: OPNsense not booting anymore (during basic config setup) memory allocation
November 27, 2020, 11:34:04 AM
Hi,
I edited this file: vi /usr/local/opnsense/service/templates/OPNsense/WebGui/php.ini
To increase the memory, first to 1024 MB, but I got the same error, only the value was twice as high, I then edited it again to 2048 MB. Now it fails with the message: Configuring firewall.... killed.
So something in the firewall (config, which is almost default) is causing this.
I edited this file: vi /usr/local/opnsense/service/templates/OPNsense/WebGui/php.ini
To increase the memory, first to 1024 MB, but I got the same error, only the value was twice as high, I then edited it again to 2048 MB. Now it fails with the message: Configuring firewall.... killed.
So something in the firewall (config, which is almost default) is causing this.
#36
20.7 Legacy Series / OPNsense not booting anymore (during basic config setup) memory allocation
November 19, 2020, 11:59:24 AM
Hi,
I'm setting up a new OPNsense firewall based on a PC Engines APU4D4.
I started yesterday and this morning when I tried to login it was dead.
I restarted the device via power cable unplug and it never came back so I connected the serial console and it was empty, rebooted again via power cable and I noticed it booting.
It eventually hangs on:
Creating wireless clone interfaces...done.
Configuring LAN interface...done.
Configuring WAN interface...done.
Creating IPsec VTI instances...done.
Generating /etc/resolv.conf...done.
Configuring firewall...
Fatal error: Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes) in /usr/local/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BaseField.php on line 305
Enter full pathname of shell or RETURN for /bin/sh:
I tried multiple reboots, it always hangs on this.
Haven't done anything special yet (I think). It's not even in production (lucky me).
Any thoughts on this?
I'm setting up a new OPNsense firewall based on a PC Engines APU4D4.
I started yesterday and this morning when I tried to login it was dead.
I restarted the device via power cable unplug and it never came back so I connected the serial console and it was empty, rebooted again via power cable and I noticed it booting.
It eventually hangs on:
Creating wireless clone interfaces...done.
Configuring LAN interface...done.
Configuring WAN interface...done.
Creating IPsec VTI instances...done.
Generating /etc/resolv.conf...done.
Configuring firewall...
Fatal error: Allowed memory size of 536870912 bytes exhausted (tried to allocate 20480 bytes) in /usr/local/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BaseField.php on line 305
Enter full pathname of shell or RETURN for /bin/sh:
I tried multiple reboots, it always hangs on this.
Haven't done anything special yet (I think). It's not even in production (lucky me).
Any thoughts on this?
#37
20.1 Legacy Series / Virtual OPNsense no ping VLAN, do get DHCP
September 21, 2020, 10:43:13 AM
Hi,
I'm trying to set up a virtual OPNsense router on Xen(XCP-ng) Hypervisor.
I'm running: 20.1.9_1-amd64
I have set up multiple networks on the Xen host in different VLAN's.
My phone VLAN (VLAN2) does not allow any traffic from a host to the router and beyond.
A computer in VLAN2 (fixed VLAN2 port at the switch) does receive a DHCP lease from the OPNsense router, but can't ping the router itself or the Internet.
I tried to add allow rules everywhere just to get it to ping. I even disabled the firewall, no dice.
I also have a VLAN5 for guests and that is working fine as is the normal VLAN1, all going to the same OPNsense router.
I tried setting everything the same as VLAN5 except the IP range and the VLAN's of course, but still no ping even to the IP that is handing out the IP addresses.
Any thoughts on this?
I'm trying to set up a virtual OPNsense router on Xen(XCP-ng) Hypervisor.
I'm running: 20.1.9_1-amd64
I have set up multiple networks on the Xen host in different VLAN's.
My phone VLAN (VLAN2) does not allow any traffic from a host to the router and beyond.
A computer in VLAN2 (fixed VLAN2 port at the switch) does receive a DHCP lease from the OPNsense router, but can't ping the router itself or the Internet.
I tried to add allow rules everywhere just to get it to ping. I even disabled the firewall, no dice.
I also have a VLAN5 for guests and that is working fine as is the normal VLAN1, all going to the same OPNsense router.
I tried setting everything the same as VLAN5 except the IP range and the VLAN's of course, but still no ping even to the IP that is handing out the IP addresses.
Any thoughts on this?
#38
20.7 Legacy Series / Re: PPPOE question
August 05, 2020, 05:27:20 PM
I assume they ditched the plugins, not the basic functionality to make a Internet connection.
Again... I assume.
Again... I assume.
#39
20.1 Legacy Series / Re: NGINX URL rewrite with Lets Encrypt
June 03, 2020, 05:03:04 PM
Hi,
Sorry for the late reply.
This was my thought also, but I have no experience with regex.
I Googled before I posted for a solution, but the code I found breaks the NGINX service in OPNsense when I paste it in the input field.
Could you or anyone tell me what I should enter exactly to allow .well-known to pass trough and not be redirected?
PS. I should have posted this in my first post...
Sorry for the late reply.
This was my thought also, but I have no experience with regex.
I Googled before I posted for a solution, but the code I found breaks the NGINX service in OPNsense when I paste it in the input field.
Could you or anyone tell me what I should enter exactly to allow .well-known to pass trough and not be redirected?
PS. I should have posted this in my first post...
#40
20.1 Legacy Series / NGINX URL rewrite with Lets Encrypt
June 02, 2020, 10:41:53 AM
Hi,
I'm using OPNsense with the NGINX plugin to host a website (just some files) and redirect another domein to a Facebook page.
Both 'sites' have HTTPS working via Lets Encrypt.
One works fine, the URL redirect version does not renew. I created a certificate once when It was a normal site with a meta redirect in a HTML file, I changed it to a URL rewrite but now It also rewrites the challenge for Lets Encrypt.
My current rewrite rule is: ^/(.*)$
Any suggestions in how I can fix this?
I'm using OPNsense with the NGINX plugin to host a website (just some files) and redirect another domein to a Facebook page.
Both 'sites' have HTTPS working via Lets Encrypt.
One works fine, the URL redirect version does not renew. I created a certificate once when It was a normal site with a meta redirect in a HTML file, I changed it to a URL rewrite but now It also rewrites the challenge for Lets Encrypt.
My current rewrite rule is: ^/(.*)$
Any suggestions in how I can fix this?
#41
20.1 Legacy Series / Multi WAN route WireGuard via non default
May 01, 2020, 03:29:22 PM
Hi,
I am trying to setup an OPNsense 20.1.6 with multiple WAN links.
- one is directly connected to the APU 4D4 with fixed IP and manually created gateway
- second is a manually created gateway accessible via the LAN (this will eventually change to a direct connection to the fiber switch on a separate port on the APU 4D4)
I have WireGuard (road warrior) working if I use connection one as the default, but I want to use the second as the default and only use the first one for WireGuard traffic.
Can anyone help me how I can / should configure this, because I'm a bit lost...
I am trying to setup an OPNsense 20.1.6 with multiple WAN links.
- one is directly connected to the APU 4D4 with fixed IP and manually created gateway
- second is a manually created gateway accessible via the LAN (this will eventually change to a direct connection to the fiber switch on a separate port on the APU 4D4)
I have WireGuard (road warrior) working if I use connection one as the default, but I want to use the second as the default and only use the first one for WireGuard traffic.
Can anyone help me how I can / should configure this, because I'm a bit lost...
#43
20.1 Legacy Series / Re: Guest LAN block
April 23, 2020, 01:11:30 PM
No... will try that tonight!
