"This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#16
21.1 Legacy Series / Re: os-dyndns plugin shows as misconfigured
April 10, 2021, 07:42:50 AM #17
21.1 Legacy Series / os-dyndns plugin shows as misconfigured
April 07, 2021, 04:59:21 PM
Is there a log or error message I can view to see why os-dyndns plugin is showing as misconfigured when I check the Plugins status page?
This plugin has so few settings so I'm unsure how it can be misconfigured. It's seems to be working and all my DDNS properly resolve.
This plugin has so few settings so I'm unsure how it can be misconfigured. It's seems to be working and all my DDNS properly resolve.
#18
20.7 Legacy Series / Re: Unbound service routinely stopping/crashing following 20.7.7 update
January 04, 2021, 03:25:24 AMQuote from: PeterZaitsev on January 04, 2021, 12:13:37 AM
Unbound crashes for me too. Have not tried downgrading at this point.
One surprising thing was to see it does not restart itself - I would imagine for key system services there would be some auto restart process. Is there not such a thing in opnsense or is it disabled for unbound ?
On my system it does restart but after 5 crashes it triggers the HBSD SEGVGUARD which suspends processes for 600s after 5 crashes.
#19
20.7 Legacy Series / Re: Unbound service routinely stopping/crashing following 20.7.7 update
December 30, 2020, 01:10:54 AM
Thanks for the advice everyone, the opnsense-revert command worked for me. No reboot needed.
I was going crazying trying to trace why my network kept dying till I discovered the DNS service shutting down over and over again. I originally thought it was due to my provider since they had a recent bad outage.
Code Select
opnsense-revert -r 20.7.6 unboundI was going crazying trying to trace why my network kept dying till I discovered the DNS service shutting down over and over again. I originally thought it was due to my provider since they had a recent bad outage.
#20
20.7 Legacy Series / Re: Current list of bugs/issues I've encountered in 20.7
August 18, 2020, 04:36:56 AMQuote from: FullyBorked on August 07, 2020, 07:31:57 PM
This isn't comprehensive by any means, but outlines what I am experiencing. I've not found any workarounds for these issues. I consider 1 and 2 more serious than the others. I'll try and keep this up to date as issues are resolved or more are encountered.
1. WAN throughput is very slow IPS on or off doesn't matter, I'm only getting about 15% of my actual WAN bandwidth. A reboot fixes the issue temporarily but at some point it will drop back to being slow. >:(
Edit: Messing with my power settings https://forum.opnsense.org/index.php?topic=18450.0 seemed to "fix" this somehow. Very confused, maybe it was stuck in a low power mode? No idea but my speed is fine now, maybe try cycling your power settings.
2. GEO IP Alias simply doesn't work, the zip file is being downloaded from maxmind.com but the alias won't populate, so any rules containing the alias fail to correctly function.
3. Dashboard traffic graphs don't show data with IPS enabled. I'm on an Intel NIC, some have suggested it's driver related. Worked ok in 20.1.9 though maybe there is a bug in the latest driver? No workaround has resolved the issue as of yet.
4.Syslog-NG service doesn't start on it's own after reboot. Starting it manually does seem to work, but is inconvenient after reboot.This appears to be fixed with 20.7.1.
4. Restarting suricata service sometimes stops the ntpd service for some reason. It can be manually started.
5. Bogons alias is inexplicably empty at times. Firewall > Diagnostics > pftables > bogons > "update bogons" does populate the list.
6. Seeing log spam just like https://forum.opnsense.org/index.php?topic=18480.msg84175#msg84175 constantly in the log. Not sure if this is cause of issue #1 or not.Code Select
kernel: pflog0: promiscuous mode enabled
kernel: pflog0: promiscuous mode disabled
I have observed many of the same issues. #3,4,5,6 are the ones that seem to also affect my installation.
No observed issue with bandwidth slowdowns (#1), even with IPS and traffic shaping turned on. Power Saving settings have "Use PowerD" enabled and Hiadaptive set for all drop downs.
I'm not sure if I have seen a problem with GeoIPs (#2). I checked pfTables and see GeoIPs being filled in for all the Alias. Also "Firewall: Aliases > GeoIP settings tab" claims last update was 2020-08-14T20:38:26. Maybe the install I am looking at is OK, not sure how to test it.
#21
20.7 Legacy Series / Re: VnStat and Traffic Graphs stopped working with 20.7
August 17, 2020, 10:33:38 PMQuote from: mimugmail on August 17, 2020, 07:24:23 AM
Known error when Sensei or IPS is running in same interface. Needs some time to fix.
Understood, Thanks for update.
#22
20.7 Legacy Series / Re: VnStat stopped working with 20.7
August 17, 2020, 06:59:21 AM
I just noticed this affects the "Reporting: Traffic" graph too. WAN traffic graph shows flat line zero bandwidth.
Figure 4 - "Reporting: Traffic" graph and widget also no longer report proper bandwidth.
Figure 4 - "Reporting: Traffic" graph and widget also no longer report proper bandwidth.
#23
20.7 Legacy Series / VnStat and Traffic Graphs stopped working with 20.7
August 17, 2020, 06:52:42 AM
Hello,
After upgrade to 20.7, VnStat is no longer displaying bandwidth information. I have tried to resolve this via restarting the plugin and also removing the interface and re-adding it. Seems I am also not the only user with this issue as I have found a post on reddit with same issue: https://www.reddit.com/r/OPNsenseFirewall/comments/i747py/has_anyones_vnstat_stop_working_after_207_update/
Screenshot of settings and issue below:
Figure 1 - Settings in VnStat
Figure 2 - No hourly bandwidth data being captured or displayed
Figure 3 - No bandwidth data being captured or displayed. Issue started after 20.7, was able to fix it on the 8/15/2020 but issue returned.
After upgrade to 20.7, VnStat is no longer displaying bandwidth information. I have tried to resolve this via restarting the plugin and also removing the interface and re-adding it. Seems I am also not the only user with this issue as I have found a post on reddit with same issue: https://www.reddit.com/r/OPNsenseFirewall/comments/i747py/has_anyones_vnstat_stop_working_after_207_update/
Screenshot of settings and issue below:
Figure 1 - Settings in VnStat
Figure 2 - No hourly bandwidth data being captured or displayed
Figure 3 - No bandwidth data being captured or displayed. Issue started after 20.7, was able to fix it on the 8/15/2020 but issue returned.
#24
20.7 Legacy Series / Re: BGP Dead after upgrade to 20.7
August 11, 2020, 07:11:06 PMQuote from: mimugmail on August 11, 2020, 09:25:36 AM
Nothing, it will upgrade from 7.3 to 7.4 and disable requirement for ebgp policies
Thanks!
#25
20.7 Legacy Series / Re: BGP Dead after upgrade to 20.7
August 10, 2020, 10:19:15 PM
Before next release (say 20.7.1), do we need un-revert for the system to upgrade?
Basically what should be done once the official fix is in place and one had used the opnsense-revert command?
Basically what should be done once the official fix is in place and one had used the opnsense-revert command?
#26
19.7 Legacy Series / Re: High CPU Usage since upgrade from 19.1.10 to 19.7
July 19, 2019, 06:26:39 AM
That seems much more normal now. Probably monitor it a few more times and see if it spikes again.
#27
19.7 Legacy Series / Re: High CPU Usage since upgrade from 19.1.10 to 19.7
July 18, 2019, 05:37:28 AM
netflow is using way more CPU cycles than what I would consider normal. In last release it was using python 2.7, I wonder if new python 3.0 usage is causing issue.
For example here is my System Diagnostic Activity while still on 19.1.10:
As workaround to reduce CPU usage you could try to turn off NetFlow. I think you turn off netflow by going to Reporting: Netflow and clear all fields and uncheck capture local.
Or
Maybe try to "Reset Netflow Data" or "repair Netflow Data" at Reporting: Settings.
For example here is my System Diagnostic Activity while still on 19.1.10:
Code Select
11 root 155 ki31 0 64K CPU0 0 835.0H 92.19% [idle{idle: cpu0}]
88347 root 25 0 1919M 325M select 1 135:00 8.89% /usr/local/bin/suricata -D --netmap --pidfile /var/run/suricata.pid -c /usr/local/etc/suricata/suricata.yaml{W#01-igb1}
27807 root 25 0 39M 32M select 1 73:28 6.49% /usr/local/bin/python2.7 /usr/local/opnsense/scripts/netflow/flowd_aggregate.py
18 root -16 - 0 16K - 3 107:38 2.10% [rand_harvestq]As workaround to reduce CPU usage you could try to turn off NetFlow. I think you turn off netflow by going to Reporting: Netflow and clear all fields and uncheck capture local.
Or
Maybe try to "Reset Netflow Data" or "repair Netflow Data" at Reporting: Settings.
#28
19.7 Legacy Series / Re: High CPU Usage since upgrade from 19.1.10 to 19.7
July 18, 2019, 02:00:24 AM
What does System: Diagnostics: Activity or top command say are highest CPU usage processes?
#29
General Discussion / Re: ZFS
June 03, 2019, 11:19:11 AM
Any plans for ZFS aware installer for 20.1? :D
#30
Hardware and Performance / Re: PC Engines APU2 OpenVPN performance
May 17, 2019, 07:56:34 AM
Is your Power Savings set to mode Maximum for highest performance? I found that helped sometimes on APU2.
System>Settings>Miscellaneous>Power Savings
Use PowerD: checked on
Modes set to: Maximum
May need reboot, maybe not. I can't remember I no longer user my APU2.
System>Settings>Miscellaneous>Power Savings
Use PowerD: checked on
Modes set to: Maximum
May need reboot, maybe not. I can't remember I no longer user my APU2.
