Messages

Hello all,

for me the problem remains, i have opnsense in a vm in proxmox with proxmox MTU 9000 on the HW interface and i use VIRTIO for opnsense.

I have a "WANRAW" parent interface set to 1512 MTU, the WAN interface with 1508 MTU and since version 23.7 when mtu started to be 1492, although now i have updated to 23.7.3, after reboot the MTU is 1492.

If i change any setting on the wan interface and press "save", then the MTU goes to 1500.

Hello all

i have a pppoe connection that supports jumbo frames for 1500 MTU. I had inserted on my WAN interface the MTU to 1508 and in the INTERFACES overview, the MTU was correctly 1500.

I have noticed that after the latest update, although the MTU of the interface is set to 1508, the MTU in the interview section is 1492.

If i just press "SAVE" on the WAN interface, it sets again the MTU to 1500 of the pppoe, but if i reboot the firewall, it returns to 1492.

Same thing if i set the MTU to 1508 on the "point-to-point->devices->pppoe" section. At first the MTU is 1500 but after a reboot, it goes to 1492.

Thank you.

Hello all,

i have changed from ddclient backend to opnsense backend for dynamic dns update because of the many problems and many errors ddclient started to give after the latest updates.

Now dynamic dns with dyndns is working better.
The problem is that i also have namecheap that i can no longer update.

Is there a possibility to add, even a curl way update so i can update namecheap with the opnsense backend?

Thank you

-Update-

I think i temporarily resolved, by inserting to the wireguard interface i had routing problems, instead of "NONE" to "STATIC" IPV4 the ip of the tunnel  (Local) and as gateway the wireguard gateway i had created and at the firewall rules, of the opnsense networks that want to reach the wireguard internal network choose instead of "default" the gateway i have created for wireguard.

Now seems to work. Before the update all of this wasn't needed, routings where working with just a static route for the wireguard internal network (also from the OPNsense guides).

What i don't understand is why if i set a static route for the tunnel internal network using the manual wireguard gateway , routing does not work and i have to change the gateway at the firewall rules too from default to the manual wireguard gateway. :/

Installed the patch, runned the commands and got empty reply.

Hi Franco, thanks for the reply.

I installed the patch, nothing at the gateway logs. The strange thing is that out of 4 wireguard tunnels routing is not working for the two of the tunnels, after the upgrade without any configuration change.

In the system-> routes->status , if i type wg i see only the 2 of the 4 wireguard tunnels.
All tunes have the same initial configuration and NAT/firewall rules (different providers).
Everything worked perfect before update.

wg0,wg2 are working and wg1 and wg3 routing is not working.

The strange thing, is that even for the wg tunnels that routing is not working, the gateway monitor is working okay.

---

The only "warning" i have in the gateway logs, is

"Warning   dpinger   WAN_DHCP xx.xx.xx.xx: duplicate echo reply received"

this both for my wan_pppoe connection (used to be dhcp), and for the two tunnels wg1 and wg3 that routing is not working.
This "warning" is not present for the other tunnels or WANS i have in my multiwan setup.
Don't know if relevant.

Hello, after upgrade to 23.1.7 (and also _3 update) my wireguard routings that used to work with wireguard gateways setup stopped working without any change to my settings.

[23.1.6]

Don't know if this is related, but in my multiwan setup, in all my vlan interfaces the clients since 23.1.6 are no more getting as DHCP DNS the gateway ip address i.e. 192.168.1.1 (blank in the settings of dhcpv4 of the interface) , but the DNS list of the servers configured in the system-> general per gateway i.e. 1.1.1.1, 8.8.8.8, although the option "Do not use the local DNS service as a nameserver for this system" is Unchecked.
It's like the interfaces are bypassing the local DNS/DHCP service.

Hello all,

after upgrade to 23.1.1 i am getting continuous crashes:

Code Select Expand

PHP Errors:

[17-Feb-2023 19:05:37 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:06:58 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:08:19 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:09:40 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:11:01 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:12:22 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:13:43 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:15:03 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:16:24 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24
[17-Feb-2023 19:17:45 Europe/Athens] PHP Fatal error:  Uncaught Error: Call to undefined function exec_command() in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code:24
Stack trace:
#0 /usr/local/etc/inc/xmlrpc/hass.inc(12): eval()
#1 /usr/local/opnsense/contrib/IXR/IXR_Library.php(446): exec_php_xmlrpc('\nini_set('displ...')
#2 /usr/local/opnsense/contrib/IXR/IXR_Library.php(384): IXR_Server->call('opnsense.exec_p...', '\nini_set('displ...')
#3 /usr/local/opnsense/contrib/IXR/IXR_Library.php(357): IXR_Server->serve('__construct(Array)
#5 /usr/local/www/xmlrpc.php(104): XMLRPCServer->start()
#6 {main}
  thrown in /usr/local/etc/inc/xmlrpc/hass.inc(12) : eval()'d code on line 24

Hi franco, thank you for the reply.

I have IPV6 disabled, don't use IPV6 for now.

I have a pppoe dynamic ip (though vdsl modem) as the main WAN connection, a WWAN connection through usb stick and a second slow wan connection through ethernet cable with static ip.
I have different priorities on every gateway (WAN 200, WWAN 201, WAN2 202) (for the default gateway to choose in case a gateway fails) and three gateway groups (with gateway down option for failover).

The pbx, has as gateway W1failoverW2, which means WAN ->WWAN-> WAN2.

until now, when a gateway disconnected or failed, after some seconds the voip started again to work (of course as you said, this option does break multi-WAN cases since after a gateway failed, some voip providers took longer to connect and mainly all the wan connections for every gateway and local network device i have, disconnected for some seconds, even the ones that had as gateway a different one from tha main.)

The important  thing is that the voip continued to work after a while.
Also i think i have noticed that whatever gateway used to fail, apart dynamic ip or not, i always lose connectivity for a while once a gateway goes down.

Today with the new version, i had to manually reset the states of the pbx in order to recover telephony, even after hours of the disconnection of the main wan.

the firewall states are set to normal, not to conservative since i neved had any kind of problems.

(in the past, before the "reset states" option i used to have a script to the firewall that checked the external ip and if changed reloaded asterisk, but as solution it used to create me some problems and many times the pbx hanged,)

Couldn't this option be enabled for specific IPs only? like on ip change flush states of a specific client/IP
thank you

Hello all,

i have recently updated to 23.1.r2 and i noticed that the option  "Dynamic state reset" is no more available.

I have multiwan setup and the primary wan is a pppoe dynamic ip connection and a pbx with multiple voip providers.
Today i had a disconnection of the pppoe connection and the voip stopped working. (Previous versions with dynamic state reset after disconnect everything worked correctly).
Is there any similar option i need to enable?

Thank you

Hi Franco,
this is the output of the command:

root@OPNsense:~ # sh -x /usr/local/opnsense/scripts/system/temperature.sh
+ CMD=''
+ SYSCTLS='
dev.cpu.0.temperature
hw.acpi.thermal.tz0.temperature
hw.temperature.CPU
'
+ [ '' '=' rrd ]
+ sort
+ grep temperature
+ sysctl -aN
+ sysctl -e
usage: sysctl [-bdehiNnoqTtWx] [ -B <bufsize> ] [-f filename] name[=value] ...
       sysctl [-bdehNnoqTtWx] [ -B <bufsize> ] -a

[Reading system temperature values]

Hi and thank you for the reply.

The sequence goes like:

2022-06-09T17:36:17   Notice   configd.py   [0cbdc1c6-7569-4ac9-b795-f0fd9615e69d] Show log   
2022-06-09T17:36:16   Notice   configd.py   [9b2ca3dc-95d7-420c-b6cc-7f050ae1d1d1] Show log   
2022-06-09T17:36:13   Notice   configd.py   [1fa1e63d-24f0-4532-ab4a-95a2e6f2b554] Show log   
2022-06-09T17:36:12   Notice   configd.py   [28e6c685-9fac-4c13-9d57-eb72d7ae4b93] Show log   
2022-06-09T17:36:10   Notice   configd.py   [a3f48405-f0a4-4ab7-bcf6-a9c96b74b759] Show log   
2022-06-09T17:36:08   Error   configd.py   [691da86e-45bf-4b11-80d4-2d438998e15e] Script action stderr returned "b'usage: sysctl [-bdehiNnoqTtWx] [ -B <bufsize> ] [-f filename] name[=value] ...\n sysctl [-bdehNnoqTtWx] [ -B <bufsize> ] -a'"   
2022-06-09T17:36:08   Notice   configd.py   [691da86e-45bf-4b11-80d4-2d438998e15e] Reading system temperature values   
2022-06-09T17:36:08   Notice   configd.py   [91758997-c804-476b-8543-c97111455f96] Retrieve firmware product info   
2022-06-09T17:35:37   Error   configd.py   [c18021b4-048a-4d2d-9919-d6ad989352f0] Script action stderr returned "b'usage: sysctl [-bdehiNnoqTtWx] [ -B <bufsize> ] [-f filename] name[=value] ...\n sysctl [-bdehNnoqTtWx] [ -B <bufsize> ] -a'"   
2022-06-09T17:35:37   Notice   configd.py   [c18021b4-048a-4d2d-9919-d6ad989352f0] Reading system temperature values   
2022-06-09T17:35:37   Notice   configd.py   [054c1cb5-645d-48e5-b6e3-67c00a5f7d13] Retrieve firmware product info

could it be something of the bolded lines?

Thermal Sensors in miscellaneous settings is set to "None/ACPI" anyway

[configd.py]

Hello,

i recently noticed in my logs a lot of

[3d448a43-1f6a-4745-9184-ee2022cc73f5] Script action stderr returned "b'usage: sysctl [-bdehiNnoqTtWx] [ -B <bufsize> ] [-f filename] name[=value] ...\n sysctl [-bdehNnoqTtWx] [ -B <bufsize> ] -a'"

these error lines for process configd.py.

What could this be?


Also i would like to ask for another strange thing (different problem), that i have installed the adguardhome plugin and every 2-3 days, all of sudden without reason it stops (the service appears red in the dhasboard) and i have to manually start because internet stops working.

Thank you

Correct. I noticed that using the same dns ( for multiwan setup in settings-general) ip for gateway as well as monitor ip, when i "saved" the general-settings the monitoring stopped working. So i changed the dns to different ip's than the monitor ones. But i still have dns problems with unbound upon startup. I will try setting to "none"