Messages

Same issue here, I switched to Passive mode (reporting only).

Hi,

Same problem here, can not access the Zenarmor menus, it doesn't matter if i use FQDN or IP address. the OPNsense Web GUI is running on an different port, not 443, I'm using 4444 instead. Nginx is running on port 443, maybe that's the problem?

Thats what I see in the Chrome development tools:
Access to fetch at 'https://XXX.XX.XXX.X/api/zenarmor/status' from origin 'https://XXX.XX.XXX.X:4444' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.
GET https://XXX.XX.XXX.X/api/zenarmor/status net::ERR_FAILED

Best Regards

Firmware health check reports missing dependency:
os-sensei is missing a required shared library: libpython3.8.so.1.0

opnsense-patch 30a9195 worked for me. :)

The link in PM worked.  :)

This doesn't work, I got an HTML page downloaded then. -> see attached "webfilter.sh"

Hi Julio

I tried to download, but it doesn't work -> "2019-08-05_cloudfence.png"

Best Regards,
Stefan

Hi Franco

Thank you for the patch.
The output in the web GUI seems to be fine now.  :)

Regards,
Stefan

No problem, thank you.  :)

Best Regards,
Stefan

The output from the GUI is in my first post.

Ah ok. So I made a Firmware Flavour change and here is the output  ;)

# pkg upgrade -n
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Checking for upgrades (34 candidates): 100%
Processing candidates (34 candidates): 100%
The following 25 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
        openssl: 1.0.2r,1 [OPNsense]

Installed packages to be REINSTALLED:
        wpa_supplicant-2.7 [OPNsense] (direct dependency changed: openssl)
        unbound-1.9.0_1 [OPNsense] (direct dependency changed: openssl)
        strongswan-5.7.2_2 [OPNsense] (direct dependency changed: openssl)
        squid3-3.5.28_1 [OPNsense] (direct dependency changed: openssl)
        python27-2.7.15 [OPNsense] (direct dependency changed: openssl)
        py27-cryptography-2.3 [OPNsense] (direct dependency changed: openssl)
        php71-openssl-7.1.27 [OPNsense] (direct dependency changed: openssl)
        opnsense-update-19.1.4 [OPNsense] (direct dependency changed: openssl)
        openvpn-2.4.7 [OPNsense] (direct dependency changed: openssl)
        openssh-portable-7.9.p1_1,1 [OPNsense] (direct dependency changed: openssl)
        openldap-sasl-client-2.4.47 [OPNsense] (direct dependency changed: openssl)
        ntp-4.2.8p13 [OPNsense] (direct dependency changed: openssl)
        mpd5-5.8_10 [OPNsense] (direct dependency changed: openssl)
        monit-5.25.3 [OPNsense] (direct dependency changed: openssl)
        lighttpd-1.4.53 [OPNsense] (direct dependency changed: openssl)
        libevent-2.1.8_2 [OPNsense] (direct dependency changed: openssl)
        ldns-1.7.0_1 [OPNsense] (direct dependency changed: openssl)
        krb5-1.17_1 [OPNsense] (direct dependency changed: openssl)
        isc-dhcp44-server-4.4.1_3 [OPNsense] (direct dependency changed: openssl)
        hostapd-2.7_1 [OPNsense] (direct dependency changed: openssl)
        cyrus-sasl-2.1.27 [OPNsense] (direct dependency changed: openssl)
        curl-7.64.0_1 [OPNsense] (direct dependency changed: openssl)
        clamav-0.101.1,1 [OPNsense] (direct dependency changed: openssl)
        bind912-9.12.4 [OPNsense] (direct dependency changed: openssl)

Number of packages to be installed: 1
Number of packages to be reinstalled: 24

The process will require 12 MiB more space.
35 MiB to be downloaded.
#

Yes, sensei is installed here aswell.  :)

here's the output:
# pkg upgrade -n
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Checking for upgrades (10 candidates): 100%
Processing candidates (10 candidates): 100%
Checking integrity... done (0 conflicting)
Your packages are up to date.
#

Regards,
Stefan

No, not at all. I tried it with different browser, but it's always the same behaviour.

Hi,

When I try to upgrade in the web GUI, I only see a few packages in de update list. I don't know exactly since which release this problem exists.

Regards,
Stefan

Hi

I see a lot of these messages in the squid cache.log file:
kid1| BUG: Unexpected state while connecting to a cache_peer or origin server

I've tried to fix it by deleting the directory /var/squid/ssl_crtd/ and rebuild the directory (sudo -u squid /usr/local/libexec/squid/ssl_crtd -c -s /var/squid/ssl_crtd/), but no success.

Regards,
Stefan