Topics

1

Zenarmor (Sensei) / No data in reports or dashboard, policies are working though

« on: July 11, 2023, 02:21:13 am »

I've been running Zenarmor on a Protectli 4B for about 7 months or so without issues (Home license). Due to the low amount of resources, I use a remote Elasticsearch DB. Within the last month I have hit a strange issue. Suddenly there is no data in my reporting database. Zenarmor is working. Blocks are being applied based on policies. I can confirm this by disabling or modifying policies and seeing that things work or don't. I believe everything was working fine on OPNSense 23.1.9. I haven't made any changes in a long time, other than updates. I ended up skipping 23.1.10 because it came out just before I went away on vacation and by the time i came back and was settled 23.1.11 was out. Somewhere in there a Zenarmor update occurred too.

Things I have tried:

1) Zenamor -> Configuration -> Reporting and Data -> Perform Index Check, result = "Everything looks good"
2) Try "Reset Reporting", result = "You cannot hard reset for remote database"
3) Try "Erase Reporting Data", result same as above
4) Create a brand new Elasticsearch DB, point Zenarmor at that, result = I see the Zenarmor indices created in the DB, and performing an index check still results in "Everything looks good", but no data shows up in reports
5) Factory reset Zenarmor, result = odd errors, packet engine won't start
6) Full uninstall/reinstall of Zenarmor, result = Zenarmor working again, but reporting issue persists
7) Reboot FW as a sanity check, result = no change, issue persists

I'm completely at a loss, so... any ideas? I did send logs to support but other than them asking if I tried "Reset Reporting" I haven't heard back.

2

22.1 Legacy Series / Unable to make changes after upgrade to 22.1

« on: January 30, 2022, 05:50:59 am »

So I upgraded from 21.7.8 to 22.1 tonight. After the upgrade I wanted to log in to the CLI via SSH, but I keep SSH disabled and only enable it as needed. When I go to the System -> Settings -> Administration page, the "Save" button at the bottom is grayed out. No matter what I do on that page, I cannot save. I tried both with "root" and with my secondary admin account. I also have the same issue on the System -> Settings -> General page, so I cannot change my theme, DNS, or hostname (not that I'm looking to, but its not available if I need to). I can enable and disable firewall rules, but I tried adding a new one and I have the same issue on the new firewall rule configuration page, the "Save" button at the bottom is grayed out and not responding to clicks.

Is there anything I can do to fix this so that I can make changes again? Or am I going to have to roll back?

(FYI - Luckily I keep Serial enabled, so I was able to access the CLI that way and take care of things. My issue is the inability to save changes in the GUI)