Messages

I had a DHCP problem a few weeks ago that sounds a bit like what you're describing.  I use opnsense's DHCP service exclusively.  As lame as this sounds, I think that rebooting multiple times is what cleared it up. 

If you're allowing Ubiquity to serve the DHCP, I don't know how to diagnose.  If you're using opnsense DHCP:  In the Windows machines networking config, make sure that they're receiving an ip from the DHCP.  If they're not, either a rule (or lack of) is preventing DHCP access, or the DHCP service is acting up.  If there's anything else possible, that's beyond my feeble efforts.

Best wishes!  Let us know how it goes.

rsyslogd for the durable logs.  No idea on how to report it.  I'd be interested in whatever you discover if you have time to post back.  Good luck!

That was the correct solution, thank you very much.

I installed rclone on a laptop, executed 'rclone authorize "dropbox' , copied the output to the opnsense box's config.  Tested, it works.

the-mk,

Thank you, I'll try that. 

Hello,

I'm interested in syncing a complete system backup to dropbox using rclone.  I've installed it, it runs.  I'm trying to configure it to use dropbox.  For a dropbox authorization code, mid-way through the config script, it requests that the user access url http://127.0.0.1:53682/auth   ...  when I open that webpage, I get a 'Failed to Connect'.

I put in a floating rule for intranet traffic to have access to 127.0.0.1/53682  .... no luck.  Searched for rclone info, nothing found that works.

Any suggestions?

Thanks!

Aug 31 09:28:37    /update_tables.py: error fetching alias url 81.22.45.80

Disclaimer:  To call myself an amateur with security is an insult to the amateurs. 

I'm curious about this log entry.  I googled update_tables.py, the responses were effectively in sanskrit to me.  I know that it's probably a python script, that's it.

Why would opnsense try to fetch an alias for that ip address?  Is this an attack?  Should I do something?

Thank you for your time and consideration.

Hi,
here is my list for freshclam :

(...)

Thank you very much for sharing this information!

Thanks!

I like how you threw in your own .conf's, didn't know you could do that.  If you have a parameter in the subordinate .conf which conflicts with the unbound.conf, how does it interact/function?

However, I believe I read that the Custom dialogue will be removed in forthcoming versions of OpnSense, possible 20.1.x .  That's why I'm trying to figure out the CLI editing.

Here's the command:

/usr/local/sbin/pluginctl -s unbound start

you can change the 'start' to stop or restart.

I'm attaching a screenshot of my Monit config for Unbound.

The alternative to the GUI "custom box" is not to edit the config.xml, but to configure unbound directly from CLI (i.e via serial console) iiuc. ;-)

Exactly what I thought, however:

Just now I ssh'd onto the server and nano'd /var/unbound/unbound.conf to the parameters I wanted.  I saved successfully, then restarted unbound using plgincontrol.  Then, I checked the unbound.conf, my changes were removed and the original values were restored.

Just made my 2nd donation of $25.00 USD.  Thank you very much for your hard work, I appreciate it!

Hello,

I have a Ring doorbell on an untrusted subnet.  I'm trying to allow our cellphones (on a trusted subnet) to have permission to view Live Video from the Ring doorbell.  No matter what combination I try, it doesn't work.  I'm suspicious that the untrusted subnet, hosted on an older router, is the problem.  But just in case:

Does anybody have a working configuration which has the Ring on one subnet, and the clients (cellphones) on another?

Alternatively, any advice appreciated.

Thanks!

Hello mimugmail.  I had been using the gui custom box for most of 19.1.x without issue.  I'm now on 19.7.2.  Yesterday, my unbound dns died without warning (at least no warning that I recognized).  Monit reported Unbound not running.  Logs indicated Unbound would not restart.  I checked /var/unbound/unbound.conf.  I found both the default values at the beginning of the config file as well as my custom entries (for my desired configuration changes, also listed below) which were listed further down the config.

I deleted the custom box configs, saved, and then unbound restarted successfully.  Therefore, I believe that this is linked.  Additionally, I read somewhere that the custom box is scheduled for deprecation, so I thought I'd learn how to do things differently.

That's why I'm trying to manual edit the unbound.config .

Regards!

What is the correct path to manually edit unbound.conf?

I edited /var/unbound/unbound.conf, and today when I was intending to futz around with some other stuff, I noticed my edits had reverted to default.  I checked /usr/local/etc/unbound/unbound.conf, it's completely commented out.

Can unbound.conf be manually edited and remain compatible with the GUI?

Thanks!

Went from 19.1.10 to 19.7.2.  Upgrade went smoothly without error.  19.7.2 corrected a memory hog issue of unknown origin that started around 19.1.8.  GUI seems quicker, more responsive than before. 

Well done.

David