"Recent posts
#1
Virtual private networks / Re: Anyone tried NetBird 1.0 P...
Last post by patient0 - Today at 07:10:21 AMJust gave it a go and ran into the same issue. The source of the issue is that the NetBird service is not started after installation.
I was able to start NetBird by running 'service netbird onestart' from the OPNsense command line first. Then 'Connect' and so on. It works for me even after rebooting the OPNsense VM.
The other option is to enable the plugin after installation and reboot.
I'd say that is a bug in the plugin.
Also: I don't think recommend the default WireGuard port 51820 in the plugin is a good idea. It will be confusing for users that want to use pure WireGuard, which will be again using the same port
I was able to start NetBird by running 'service netbird onestart' from the OPNsense command line first. Then 'Connect' and so on. It works for me even after rebooting the OPNsense VM.
The other option is to enable the plugin after installation and reboot.
I'd say that is a bug in the plugin.
Also: I don't think recommend the default WireGuard port 51820 in the plugin is a good idea. It will be confusing for users that want to use pure WireGuard, which will be again using the same port
#2
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by BrandyWine - Today at 06:03:44 AMQuote from: bbin on Today at 12:53:06 AMHas anyone tested this yet with a protectli device?Makes no difference where the i226-V is installed, nic nvm is nic nvm, hardware level code.
"protectli" is just an integrated name with lots of other devices in it.
Perhaps a better question to ask is, where's the documentation on Protectli site that describes how to update the nic firmware?
#3
25.7 Series / Can't Access Static IP dnsmasq...
Last post by ButlerofThanos - Today at 03:25:34 AMI recently reinstalled OPNsense and am getting a new introduction to how dnsmasq works.
So far I'm having problems trying to create staticly assigned IPs.
After my initial install, dnsmasq was assigning DHCP IPs just fine (on range 10.10.1.41 thru 10.10.1.245) without issue.
I wanted to create static IP assignments for servers and devices on my network that are permanent for the most part (network printer, NAS, etc...)
I at first created a second DHCP range (10.10.0.41 thru 10.10.0.245) created Host assignments based on MAC address, and set the host name, domain (home.arpa), checked ignore DHCP, hit apply. But the devices weren't accessible at these static IPs, and they were still getting renewed DHCP assignments on the 10.10.1.X DHCP range. Even after a full restart of all devices.
I then deleted the secondary DHCP range and assigned hosts, and widened the original DHCP range to 10.10.0.10 thru 10.10.1.245, and recreated the host reservations with static IPs, made sure FDQN was checked, but the devices weren't accessible (on http or https.)
How do I create static IP assignments that are accessible on a web browser?
Am I missing some a firewall rule?
So far I'm having problems trying to create staticly assigned IPs.
After my initial install, dnsmasq was assigning DHCP IPs just fine (on range 10.10.1.41 thru 10.10.1.245) without issue.
I wanted to create static IP assignments for servers and devices on my network that are permanent for the most part (network printer, NAS, etc...)
I at first created a second DHCP range (10.10.0.41 thru 10.10.0.245) created Host assignments based on MAC address, and set the host name, domain (home.arpa), checked ignore DHCP, hit apply. But the devices weren't accessible at these static IPs, and they were still getting renewed DHCP assignments on the 10.10.1.X DHCP range. Even after a full restart of all devices.
I then deleted the secondary DHCP range and assigned hosts, and widened the original DHCP range to 10.10.0.10 thru 10.10.1.245, and recreated the host reservations with static IPs, made sure FDQN was checked, but the devices weren't accessible (on http or https.)
How do I create static IP assignments that are accessible on a web browser?
Am I missing some a firewall rule?
#4
25.7 Series / Re: taiscale interface statist...
Last post by spraysn - Today at 02:04:06 AMI figured it out.
working scenraio:
A records are definded in domain dns (HETZNER in my case). IPs coming from tailscale are detected as such.
not working scenario:
using OPNsense as global dns in tailscale. Remote ips are always the ip of caddy resp. OPNsense.
working scenraio:
A records are definded in domain dns (HETZNER in my case). IPs coming from tailscale are detected as such.
not working scenario:
using OPNsense as global dns in tailscale. Remote ips are always the ip of caddy resp. OPNsense.
#5
25.7 Series / Re: Problem upgrading to 25.7....
Last post by ldanna1945 - Today at 01:32:05 AMmore update:
on console i tried a show panic
got mountroot unable to (re-) mount root.
Where to go from here
on console i tried a show panic
got mountroot unable to (re-) mount root.
Where to go from here
#6
25.7 Series / Re: Problem upgrading to 25.7....
Last post by ldanna1945 - Today at 01:12:53 AMUpdate:
Tried to do update again. Looked good so far lots of stuff upgraded no problem at this point . then checked for updates system may have missed . only Base and kernal both came up. I told it to update then system again rebooted in middle but this time system is corrupted and will not boot up into operating system anymore
Pulling out hair at this point
LArry
Tried to do update again. Looked good so far lots of stuff upgraded no problem at this point . then checked for updates system may have missed . only Base and kernal both came up. I told it to update then system again rebooted in middle but this time system is corrupted and will not boot up into operating system anymore
Pulling out hair at this point
LArry
#7
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by bbin - Today at 12:53:06 AMHas anyone tested this yet with a protectli device?
#8
25.7 Series / Re: Problem upgrading to 25.7....
Last post by ldanna1945 - Today at 12:47:05 AMJust tried a fresh install. Install went fine. Then I went to update the system. obviously it found many to update.
on the first update when working on extracting first file it crashed and rebooted. tried again same result. Note: same behavior when I tried to update first installation to 27.7.3
Any Ideas??
on the first update when working on extracting first file it crashed and rebooted. tried again same result. Note: same behavior when I tried to update first installation to 27.7.3
Any Ideas??
#9
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by Patrick M. Hausen - Today at 12:36:45 AMI226...
#10
25.7 Series / Add external if (tap0) to Inte...
Last post by dionhoustonsr - Today at 12:11:45 AMHello everyone,
After some effort, I am trying to get SoftEther working on OPNsense (please hear me out though!). SoftEther itself is communicating very furiously between my Pi and the OPNsense server. The only piece remaining is to get the traffic out tap0.
At this point, I believe the issue is that the firewall is blocking TCP traffic from tap0 to bridge0 (LAN). Where this behavior has happened before is when there were no firewall rules on the interface to allow passing traffic.
So, like a good OPNsense citizen, I went to Interfaces->Assignments to add it, but tap0 is not on the devices pull down. Itis in Interfaces->Overview. I can't really blame OPNsense since tap0 was created outside the UI, but I'd really like to manage everything inside the web intereface.
Can someone shed light on how OPNsense determines the pull-down? I see a couple of other interfaces (enc0 and pflog0) that also don't appear there. Thanks in advance.
I searched the forums for keywords but I didn't find anything specific enough. I also searched for softether, but this wasn't specifically to addressed.
After some effort, I am trying to get SoftEther working on OPNsense (please hear me out though!). SoftEther itself is communicating very furiously between my Pi and the OPNsense server. The only piece remaining is to get the traffic out tap0.
At this point, I believe the issue is that the firewall is blocking TCP traffic from tap0 to bridge0 (LAN). Where this behavior has happened before is when there were no firewall rules on the interface to allow passing traffic.
So, like a good OPNsense citizen, I went to Interfaces->Assignments to add it, but tap0 is not on the devices pull down. Itis in Interfaces->Overview. I can't really blame OPNsense since tap0 was created outside the UI, but I'd really like to manage everything inside the web intereface.
Can someone shed light on how OPNsense determines the pull-down? I see a couple of other interfaces (enc0 and pflog0) that also don't appear there. Thanks in advance.
I searched the forums for keywords but I didn't find anything specific enough. I also searched for softether, but this wasn't specifically to addressed.
