Recent posts

#1

Japanese - 日本語 / OPNsenseで単なるRoutingを行いたいのですが、固...

Last post by syuhei - Today at 03:23:47 AM

環境はこんな感じです。


WANはauのHGWでDHCPが動作しており、LAN8、LAN7共にOPNsenseでDHCPが動作しています。
インターフェース(LAN8 192.178.8.254)このIPを、対向のOPNsenseからDHCPで取得した場合
192.168.7.100のPCは、すべてのLANと通信可能であり、インターネットアクセスも問題ありません。

インターフェース(LAN8 192.178.8.254)このIPを静的に割り当て、[システム]-[ゲートウェイ]の項目に
上流GWとして、192.168.8.1を登録し、[ルート]-[ステータス]にもRouting Tableが登録されている状況。

192.168.7.100のPCから、192.168.8.100、192.168.0.8までPingが通るが192.168.0.100及び192.168.0.1にPingが通らず
インターネットにもアクセス出来ません。

これはどこでブロックされているのでしょうか？

#2

General Discussion / Re: Yet another Shaper questio...

Last post by stanps - Today at 03:04:36 AM

You did not show the download rule. Maybe it is catching your upload traffic. Also, enable advanced mode and check "direction".

Yep!  You hit the nail on the head.  I can see my High Priority Download pipe still kicking when the upload test is happening.

I've added source and destination network and masks, but no difference.  I've included screenshots of the Download rule handling it, and the upload rule I'm expecting to handle it.

#3

26.1 Series / Re: Upgrading via OPNsense-imp...

Last post by nero355 - Today at 03:01:36 AM

I'm note sure why it hangs

Pressing CTRL+ALT+F1 or so doesn't show any additional details in this case ?

Some installers show what is going on that way :)

#4

26.1 Series / Something in 2.61 breaks Offic...

Last post by allenlook - Today at 02:58:00 AM

Installed 26.1 and all seemed fine.  Yesterday I was having a lot of trouble with M365, specifically PowerPoint and Excel files that would save locally but generated a lot of "Upload Failed" messages, and intermittent "SSL library load failed" messages in Excel.

I reverted to 25.x and everything was working OK again.  I tried disabling Maltrail and its blocklists, turning off the Unbound DNS blocklist, and looking for rules that might be causing trouble.

Using the M365 Connectivity Test website everything was working OK under 25.x, but it would generate a lot of errors to domains like microsoft.com, and .microsoft using 26.1.

Are there any other reports of this, or does anything stick out as being a possible culprit?

#5

26.1 Series / Re: Noob Questions

Last post by nero355 - Today at 02:56:52 AM

1.  Does this forum have a dark mode?

I don't think so ?!

2.  Is there a way to change your forum avatar?

Click/Hover on your username on top of the forum and you will eventually find this :
https://forum.opnsense.org/index.php?action=profile;area=forumprofile;u=46370

There you can find some Avatar and Signature related settings amongst others :)

3.  Fresh install of OPS has unbound running in forwarding mode.  I don't see a simple toggle between forwarding and resolving.  How do I configure unbound to resolve instead of forward?

Unbound and DNSmasqd in OPNsense can work together in various ways so that's something to read about in the documentation ;)

#6

Documentation and Translation / Chinese (TW) translation

Last post by opnwall - Today at 02:33:04 AM

I am a translation contributor for the Chinese (zh-CN) language, and I have applied to join the translation team for the Chinese (TW) language.  My application was submitted some time ago, but it is still in a "pending" state.

#7

Zenarmor (Sensei) / HA and Zenarmour home paid

Last post by viper359 - Today at 02:14:36 AM

Hello
I am looking to do a HA setup. I am a paid sub of the zenarmor home plan. What is the best way to deploy in this situation, since HA is only available in the business edition, which is way too much money for home use.

#8

26.1 Series / Re: Need to select "Prefer to ...

Last post by Maurice - Today at 01:46:26 AM

It's a brave new world since https://github.com/opnsense/dhcp6c/commit/369b4dcf ;)

Indeed, optional prefix ID / interface ID for WAN interfaces has proven to be very useful for some uses cases.

#9

German - Deutsch / Re: NVM subsystem reliability ...

Last post by cottec - Today at 12:52:29 AM

Das sind 106TB geschrieben in 3 Jahren. (Das Rating der Platte ist 150TB)
Das ist verdammt viel?!
Ich vermute du hast irgendwo ein Log Spamming Sondergleichen und wirst dir auch deine neue Festplatte killen...

#10

German - Deutsch / Re: Bootreihenfolge geändert n...

Last post by cottec - Today at 12:50:35 AM

Mach mal ntopng aus - das erzeugt ja noch mehr Last auf dem schon kaputten Datenträger.

Guten Abend :)

Kannst du mir nen Tipp geben wie ich meine Unbound/Adguard Kombi temporär umgehen kann?
Dadurch, dass Adguard nicht installiert ist, scheint das WebUI keinen Internetzugriff zu haben.
So kann ich natürlich kein Adguard nachinstallieren...

Nur Unbound deaktivieren und DNS Server einzutragen funktioniert nicht...

pings auf google.de oder so gehen aber trotzdem
oder muss ich dann noch unbound von Port 53053 zurück auf 53 stellen?