Messages

1981

16.1 Legacy Series / Re: Install on serial-only device

« on: June 13, 2016, 06:17:33 pm »

Hy!

You could copy the nano image to a USB stick and run from there or you can install to a SATA device with a full image copied to a USB stick. Choose your weapon! :-D

In both cases you can use the serial console to control the machine...

1982

German - Deutsch / Re: ZBOX CI323 nano / APC USV

« on: June 11, 2016, 02:42:58 pm »

Hi!

Standard "n" bei wifi ist nach meinen Erfahrungen keinen gute Sache mit BSD. Ein älterer Stick mit "b/g" wäre eine bessere Wette!

Verfolge mal in der Konsole den Bootvorgang, da sollte dann irgendwas von "run0" auftauchen und ein Treiber geladen werden, falls nicht, ist wohl keine Unterstützung für das Chipset derzeit bei BSD...

Ich hatte schonmal die Liste der kompatiblen Hardware (incl wifi sticks) gepostet, der hier ist für 10.3 (16.1.16 ist auf Basis von 10.2)

https://www.freebsd.org/releases/10.3R/hardware.html#wlan

1983

17.1 Legacy Series / Re: recommended ARM Hardware

« on: June 11, 2016, 01:52:24 pm »

... I would sponsor a Raspi 3 (bare metal :-) ), if someone starts working on that.

With the built-in wifi and the better CPU I guess the hardware is more appropriate the the reeeeeaaalllllyyyy slow Raspi 1.

 

1984

16.1 Legacy Series / Re: 16.1.16 i386 no. of States exploding - 100% CPU

« on: June 11, 2016, 01:49:34 pm »

I removed duckduckgo from the search bar of Firefox, since then only the usual suspects:

incoming.telemetry.mozilla.org
self.repair.mozilla.org
conncheck.opensuse.org
safebrowsing-cache.google.com
clients1.google.com

in the DNS requests, no. of states below 20, for the time beeing...

tbc...

1985

16.1 Legacy Series / Re: 16.1.16 i386 no. of States exploding - 100% CPU

« on: June 10, 2016, 10:42:42 pm »

Hi!

I will send you the capture, believe it or not: It's all MS telemetry DNS requests. Although I'm running an openSUSE Tumbleweed (OK, it's a dual boot machine with a Win 7 pro partition, but the system actually running is the Linux).

And the firewall has a laaaaarge alias and blocks MS telemetry.

I can't believe it...

PS:

Reminds me of this here:

https://forum.pfsense.org/index.php?topic=98087.msg577844#msg577844

1986

16.1 Legacy Series / Re: [SOLVED] LibreSSL flavour chosen - but dashboard shows openSSL status

« on: June 10, 2016, 07:55:38 pm »

nope, an Openvox IPC110 with i386 full from one of these notorious dealers ;-)

1987

16.1 Legacy Series / Re: 16.1.16 i386 no. of States exploding - 100% CPU

« on: June 10, 2016, 06:58:15 pm »

..started a capture for WAN with port 53 10 min ago, for the moment everything is calm...

How to get this through to you? Is there a download option in the GUI for the file? :-)

1988

16.1 Legacy Series / Re: [SOLVED] LibreSSL flavour chosen - but dashboard shows openSSL status

« on: June 10, 2016, 06:56:00 pm »

Peer-to-peer, UDP, tun

AES-256-CBC

SHA512

More info needed? :-)

No, never tried LibreSSL before...

1989

16.1 Legacy Series / Re: 16.1.16 i386 no. of States exploding - 100% CPU

« on: June 10, 2016, 06:37:00 pm »

...2 h after the last restart I had more than 1000 states, most from the the WAN IP to the DNS servers configured in Settings on port 53.

What's going on here?

1990

16.1 Legacy Series / 16.1.16 i386 no. of States exploding - 100% CPU

« on: June 10, 2016, 04:42:15 pm »

Hy!

On my infamous installation with a wifi stick as WAN interface (stable otherwise) in the last 2-3 days I had two occasions with slow response of GUI. In the Dashboard I saw incredibly high numbers of states (only one client attached, normally 70-120 states) in the rang of 60,000 to 80,000 (no joke, see attached) and 100% cpu.

I tried to have a look at the states in the GUI, but gave up after some minutes, as the statistics never came up (100% cpu?). A reboot resolved the storm.

Any idea what's going on here? :-)

1991

16.1 Legacy Series / Re: [SOLVED] LibreSSL flavour chosen - but dashboard shows openSSL status

« on: June 08, 2016, 05:58:39 pm »

...with libreSSL (even after another reboot) my openVPN tunnel to a pfsense 2.3.1_1 server (pre-shared key) did not come back. Switched back to openSSL for the while, tunnel back to normal.

Coincidence or might it be related to libreSSL and openSSL not playing nice together?

1992

16.1 Legacy Series / Re: 16.1.16 kernel HBSD ASLR message in log

« on: June 08, 2016, 04:12:29 pm »

Yepp, 32, bit! Thanks a lot! :-D

1993

16.1 Legacy Series / [SOLVED] LibreSSL flavour chosen - but dashboard shows openSSL status

« on: June 08, 2016, 11:53:57 am »

Hi!

On 16.1.16 i386 nano I changed from openSSL to libreSSL "flavour" in the general settings, did a reboot, but afterward in the Dasboard I still see the openSSL version, not libreSSL. How to verify which SSL I'm currently using?

Update:
OOpppps, sorry, I pressed the UPDATE button and saw that libreSSL was not already installed, so doing my homework now ;-)

1994

16.1 Legacy Series / [SOLVED] 16.1.16 kernel HBSD ASLR message in log

« on: June 08, 2016, 09:47:58 am »

Hi again!

After updating to 16.1.16 I yesterday had a strange message in the log

kernel: HBSD ASLR pax_aslr_init_vmspace ccheck your /boot/loader.conf
pid: 26557 ppid: 61786 p_pax: 0x40<ASLR>

Safe to ignore? :-)

1995

16.1 Legacy Series / Re: [Solved] OpenVPN Widget on 16.1.16

« on: June 07, 2016, 08:55:22 am »

Hi!

Two questions (for beginners)

1. is there a console in the GUI?

2. I have two openvpn tunnels (clients), but I can't find a place to enter the NAME for these tunnels, they both have "Client UDP" in the openvpn overview given as the name...