"Recent posts
#1
General Discussion / Average CPU temperature got 20...
Last post by nsantiago2719 - Today at 06:26:57 AMHello,
I just want to ask for guidance and looking on what I missed in my setup.
I have been using OPNsense for awhile and my normal average temperature is around 40 degrees Celsius but now suddenly my average temp for the the past few days is at 51 - 65. It is still ok but I dont know why the sudden change. I have already changed the thermal paste and check the fan. I also checked via ssh the temp some times there is 10-5 degrees discrepancy. My settings are all the same(even tunables) so I am wondering what could be the cause. To add, sometimes the web gui sometimes not loading.
OPNsense version: OPNsense 26.1
CPU Usage is less than 5%
top
extracted temp(got the top and bottom)
I do not have IDS/IPS enabled and no zenarmor. I only have quite few that I installed like nextDNS, cloudflared, and pulse(which is not active anymore but still installed). I already have this even before and I didnt got any spike or stable 60 degrees on my cpu temp.
Thanks!
PS. I noticed that I got the high temp after my last update on OPNsense. Coincidence? I do not know just giving an fyi.
I just want to ask for guidance and looking on what I missed in my setup.
I have been using OPNsense for awhile and my normal average temperature is around 40 degrees Celsius but now suddenly my average temp for the the past few days is at 51 - 65. It is still ok but I dont know why the sudden change. I have already changed the thermal paste and check the fan. I also checked via ssh the temp some times there is 10-5 degrees discrepancy. My settings are all the same(even tunables) so I am wondering what could be the cause. To add, sometimes the web gui sometimes not loading.
OPNsense version: OPNsense 26.1
CPU Usage is less than 5%
Code Select
sysctl dev.cpu | grep temperature ; sysctl dev.cpu.0.cx_usage
dev.cpu.3.temperature: 55.0C
dev.cpu.2.temperature: 55.0C
dev.cpu.1.temperature: 55.0C
dev.cpu.0.temperature: 55.0C
dev.cpu.0.cx_usage: 100.00% 0.00% 0.00% last 190us
top
Code Select
last pid: 81027; load averages: 0.06, 0.10, 0.13 up 0+03:53:00 12:18:47
84 processes: 1 running, 83 sleeping
CPU: 0.2% user, 0.0% nice, 0.5% system, 0.0% interrupt, 99.3% idle
Mem: 150M Active, 1304M Inact, 734M Wired, 371M Buf, 5626M Free
Swap: 8192M Total, 8192M Free
PID USERNAME THR PRI NICE SIZE RES STATE C TIME WCPU COMMAND
50736 root 1 20 0 229M 117M nanslp 3 2:10 0.99% php
81027 root 1 20 0 15M 3540K CPU2 2 0:00 0.14% top
71531 root 1 20 0 28M 14M select 0 0:03 0.02% python3.13
95720 hostd 7 20 0 56M 15M uwait 3 0:06 0.02% hostwatch
33067 user 1 20 0 20M 8732K select 1 0:00 0.02% sshd-sessio
extracted temp(got the top and bottom)
Code Select
iso_time;cpu0temp
2026-03-08T01:00:00+08:00;39.501831968
2026-03-08T02:00:00+08:00;39.632517783
2026-03-08T03:00:00+08:00;39.166017288
2026-03-08T04:00:00+08:00;38.967615742
2026-03-08T05:00:00+08:00;39.098862608
2026-03-08T06:00:00+08:00;39.600298389
2026-03-08T07:00:00+08:00;39.801383368
2026-03-08T08:00:00+08:00;38.831919298
2026-03-08T09:00:00+08:00;39.25017225
2026-03-08T10:00:00+08:00;38.667843168
2026-03-08T11:00:00+08:00;39.165399496
2026-03-08T12:00:00+08:00;39.117431381
2026-03-08T13:00:00+08:00;38.650136232
2026-03-08T14:00:00+08:00;39.188695424
2026-03-08T15:00:00+08:00;38.983293154
2026-03-08T16:00:00+08:00;38.517028703
2026-03-08T17:00:00+08:00;38.349007411
2026-03-08T18:00:00+08:00;38.450720532
2026-03-08T19:00:00+08:00;38.333313919
2026-03-08T20:00:00+08:00;38.980787502
2026-03-08T21:00:00+08:00;38.56863079
2026-03-08T22:00:00+08:00;39.734388609
2026-03-08T23:00:00+08:00;40.564977385
2026-03-09T00:00:00+08:00;41.183512719
2026-03-09T01:00:00+08:00;40.950760141
2026-03-09T02:00:00+08:00;40.316041329
2026-03-09T03:00:00+08:00;40.166292092
2026-03-09T04:00:00+08:00;40.651377407
2026-03-09T05:00:00+08:00;40.615763181
2026-03-09T06:00:00+08:00;40.93347439
2026-03-09T07:00:00+08:00;41.550030088
2026-03-09T08:00:00+08:00;40.74892118
2026-03-09T09:00:00+08:00;39.666935675
2026-03-09T10:00:00+08:00;39.635318375
2026-03-09T11:00:00+08:00;39.749096642
2026-03-09T12:00:00+08:00;38.617916761
2026-03-09T13:00:00+08:00;39.066469403
2026-03-09T14:00:00+08:00;39.249073857
2026-03-09T15:00:00+08:00;38.635149875
2026-03-09T16:00:00+08:00;38.48258566
2026-03-09T17:00:00+08:00;38.267198096
2026-03-09T18:00:00+08:00;38.648346187
2026-03-09T19:00:00+08:00;38.417642969
2026-03-09T20:00:00+08:00;37.933184581
2026-03-09T21:00:00+08:00;38.383318703
2026-03-09T22:00:00+08:00;38.113181373
2026-03-09T23:00:00+08:00;38.735557624
2026-03-10T00:00:00+08:00;38.684067941
2026-03-10T01:00:00+08:00;38.565811831
2026-03-10T02:00:00+08:00;39.449996671
2026-03-10T03:00:00+08:00;39.798923518
2026-03-10T04:00:00+08:00;39.900916038
2026-03-10T05:00:00+08:00;40.051748882
2026-03-10T06:00:00+08:00;40.514801055
2026-03-10T07:00:00+08:00;40.265346605
2026-03-10T08:00:00+08:00;40.316730659
2026-03-10T09:00:00+08:00;40.850418056
2026-03-10T10:00:00+08:00;39.165973099
2026-03-10T11:00:00+08:00;38.55239663
2026-03-10T12:00:00+08:00;39.898803159
2026-03-10T13:00:00+08:00;40.201035849
2026-03-10T14:00:00+08:00;39.182010883
2026-03-10T15:00:00+08:00;38.716697613
2026-03-10T16:00:00+08:00;38.800787778
2026-03-10T17:00:00+08:00;38.499046184
2026-03-10T18:00:00+08:00;39.099617701
2026-03-10T19:00:00+08:00;38.965565248
2026-03-10T20:00:00+08:00;38.967365582
2026-03-10T21:00:00+08:00;38.6011765
2026-03-10T22:00:00+08:00;38.132986859
2026-03-10T23:00:00+08:00;38.401107925
2026-03-11T00:00:00+08:00;39.049420284
2026-03-11T01:00:00+08:00;39.882488699
2026-03-11T02:00:00+08:00;40.466088342
2026-03-11T03:00:00+08:00;40.632167783
2026-03-11T04:00:00+08:00;40.167200097
2026-03-11T05:00:00+08:00;40.667662571
2026-03-11T06:00:00+08:00;41.150791513
2026-03-11T07:00:00+08:00;41.699114013
2026-03-11T08:00:00+08:00;41.400905941
2026-03-11T09:00:00+08:00;40.966196631
2026-03-11T10:00:00+08:00;40.382884157
2026-03-11T11:00:00+08:00;41.031940614
2026-03-11T12:00:00+08:00;40.633327907
2026-03-11T13:00:00+08:00;40.834354453
2026-03-11T14:00:00+08:00;40.866131308
2026-03-11T15:00:00+08:00;41.568075895
2026-03-11T16:00:00+08:00;40.733257889
2026-03-11T17:00:00+08:00;39.600464931
2026-03-11T18:00:00+08:00;40.317128126
2026-03-11T19:00:00+08:00;39.798319359
2026-03-11T20:00:00+08:00;40.60170597
2026-03-11T21:00:00+08:00;40.28072274
2026-03-11T22:00:00+08:00;41.135622925
2026-03-11T23:00:00+08:00;40.331477441
2026-03-12T00:00:00+08:00;40.668529865
2026-03-12T01:00:00+08:00;41.383586477
2026-03-12T02:00:00+08:00;41.11448766
2026-03-12T03:00:00+08:00;41.648717798
2026-03-12T04:00:00+08:00;41.251932708
2026-03-12T05:00:00+08:00;42.283515842
2026-03-12T06:00:00+08:00;42.698921495
2026-03-12T07:00:00+08:00;42.715892267
2026-03-12T08:00:00+08:00;41.785796067
2026-03-12T09:00:00+08:00;42.149893635
2026-03-12T10:00:00+08:00;41.067741891
2026-03-12T11:00:00+08:00;41.182277391
2026-03-12T12:00:00+08:00;40.967727688
2026-03-12T13:00:00+08:00;41.364376388
2026-03-12T14:00:00+08:00;40.884314546
2026-03-12T15:00:00+08:00;40.349697049
2026-03-12T16:00:00+08:00;39.55129771
2026-03-12T17:00:00+08:00;39.682032953
2026-03-12T18:00:00+08:00;40.833531996
2026-03-12T19:00:00+08:00;40.564592853
2026-03-12T20:00:00+08:00;40.002586542
2026-03-12T21:00:00+08:00;40.332190381
......
2026-05-22T10:00:00+08:00;50.676778197
2026-05-22T11:00:00+08:00;55.29985955
2026-05-22T12:00:00+08:00;54.287139367
2026-05-22T13:00:00+08:00;40.867773944
2026-05-22T14:00:00+08:00;46.861393767
2026-05-22T15:00:00+08:00;51.438546709
2026-05-22T16:00:00+08:00;46.261296794
2026-05-22T17:00:00+08:00;51.52239542
2026-05-22T18:00:00+08:00;47.561388065
2026-05-22T19:00:00+08:00;44.537142484
2026-05-22T20:00:00+08:00;52.74474388
2026-05-22T21:00:00+08:00;49.007733391
2026-05-22T22:00:00+08:00;38.699059173
2026-05-22T23:00:00+08:00;41.877585445
2026-05-23T00:00:00+08:00;48.855727756
2026-05-23T01:00:00+08:00;40.78053298
2026-05-23T02:00:00+08:00;53.647166221
2026-05-23T03:00:00+08:00;45.989126212
2026-05-23T04:00:00+08:00;38.949812911
2026-05-23T05:00:00+08:00;49.310633062
2026-05-23T06:00:00+08:00;42.272814264
2026-05-23T07:00:00+08:00;48.510562677
2026-05-23T08:00:00+08:00;49.338929147
2026-05-23T09:00:00+08:00;43.815740608
2026-05-23T10:00:00+08:00;50.676554026
2026-05-23T11:00:00+08:00;64.815060946
2026-05-23T12:00:00+08:00;46.142022147
2026-05-23T13:00:00+08:00;44.949435371
2026-05-23T14:00:00+08:00;45.682182862
2026-05-23T15:00:00+08:00;47.465806768
2026-05-23T16:00:00+08:00;52.380337754
2026-05-23T17:00:00+08:00;58.931925589
2026-05-23T18:00:00+08:00;52.069109062
2026-05-23T19:00:00+08:00;44.901908827
2026-05-23T20:00:00+08:00;57.8128964
2026-05-23T21:00:00+08:00;61.165839144
2026-05-23T22:00:00+08:00;50.873811184
2026-05-23T23:00:00+08:00;41.11744837
2026-05-24T00:00:00+08:00;48.844654173
2026-05-24T01:00:00+08:00;56.715124254
2026-05-24T02:00:00+08:00;59.83360374
2026-05-24T03:00:00+08:00;60.432050829
2026-05-24T04:00:00+08:00;60.915504022
2026-05-24T05:00:00+08:00;60.868803796
2026-05-24T06:00:00+08:00;60.865501467
2026-05-24T07:00:00+08:00;61.083244347
2026-05-24T08:00:00+08:00;60.733174199
2026-05-24T09:00:00+08:00;52.830382431
2026-05-24T10:00:00+08:00;60.73294908
2026-05-24T11:00:00+08:00;61.715489559
2026-05-24T12:00:00+08:00;62.666266518
I do not have IDS/IPS enabled and no zenarmor. I only have quite few that I installed like nextDNS, cloudflared, and pulse(which is not active anymore but still installed). I already have this even before and I didnt got any spike or stable 60 degrees on my cpu temp.
Thanks!
PS. I noticed that I got the high temp after my last update on OPNsense. Coincidence? I do not know just giving an fyi.
#2
26.1, 26,4 Series / Re: issue with update with pkg...
Last post by newsense - Today at 06:23:56 AMNothing applies to this user!
Somehow they've got a new a new level of hell where while being oblivious (?) to any changes they manage to get the incompatible pkg from the FreeBSD repo and then cemented their choice by locking pkg to make sure the breakage is consistent and nonfixable by the available tools.
Pkg now needs to be unlocked, downgraded to the OPN version then future upgrades can proceed.
Somehow they've got a new a new level of hell where while being oblivious (?) to any changes they manage to get the incompatible pkg from the FreeBSD repo and then cemented their choice by locking pkg to make sure the breakage is consistent and nonfixable by the available tools.
Pkg now needs to be unlocked, downgraded to the OPN version then future upgrades can proceed.
#3
26.1, 26,4 Series / ClassLink returns 403 due to s...
Last post by Maxwell - Today at 05:18:51 AMI'm experiencing state tracking issues after upgrading from 25.x to 26.1.x that make ClassLink (educational portal) completely unusable, returning 403 Forbidden errors.
Environment:
Hardware: Protectli fanless router
OPNsense versions tested: 26.1.7_3 and 26.1.8_5 (both exhibit same issue)
Last working version: 25.x series
Network: Single WAN, 3 VLANs (LAN, VLAN10, VLAN20)
Firewall optimization: Tested both Normal and Conservative
Problem: After upgrading to any 26.1.x version, ClassLink (login.classlink.com, launchpad.classlink.com) returns 403 Forbidden errors. Firewall logs show state violation blocks for ClassLink traffic on both IPv4 and IPv6.
Example log entries:
VLAN10_LAN In TCP 192.168.10.50:53925 → 23.219.1.21:443
block - Default deny / state violation rule
VLAN10_LAN In IPv6 [fdb9:5629:...]:50583 → [2600:1402:...]:443
block - Default deny / state violation rule
What I've tried (all unsuccessful):
Conservative firewall optimization + reboot
Resetting state table
Disabling IPv6 on affected VLANs
Adding IPv6 allow rules
Creating sloppy state / no state rules for ClassLink
Disabling NAT reflection
Disabling Hostwatch automatic discovery
Downgrading from 26.1.8_5 to 26.1.7_3 (same issue)
What works:
All other internet access functions normally
Accessing ClassLink via cellular hotspot (bypassing OPNsense) works
ClassLink worked perfectly on 25.x
Firewall rules verified:
Default allow rules present for all VLANs
Source port set to "*"
No conflicting deny rules
This appears to be related to the 26.1.x unified firewall system changes. Has anyone else experienced ClassLink issues on 26.1.x?
Environment:
Hardware: Protectli fanless router
OPNsense versions tested: 26.1.7_3 and 26.1.8_5 (both exhibit same issue)
Last working version: 25.x series
Network: Single WAN, 3 VLANs (LAN, VLAN10, VLAN20)
Firewall optimization: Tested both Normal and Conservative
Problem: After upgrading to any 26.1.x version, ClassLink (login.classlink.com, launchpad.classlink.com) returns 403 Forbidden errors. Firewall logs show state violation blocks for ClassLink traffic on both IPv4 and IPv6.
Example log entries:
VLAN10_LAN In TCP 192.168.10.50:53925 → 23.219.1.21:443
block - Default deny / state violation rule
VLAN10_LAN In IPv6 [fdb9:5629:...]:50583 → [2600:1402:...]:443
block - Default deny / state violation rule
What I've tried (all unsuccessful):
Conservative firewall optimization + reboot
Resetting state table
Disabling IPv6 on affected VLANs
Adding IPv6 allow rules
Creating sloppy state / no state rules for ClassLink
Disabling NAT reflection
Disabling Hostwatch automatic discovery
Downgrading from 26.1.8_5 to 26.1.7_3 (same issue)
What works:
All other internet access functions normally
Accessing ClassLink via cellular hotspot (bypassing OPNsense) works
ClassLink worked perfectly on 25.x
Firewall rules verified:
Default allow rules present for all VLANs
Source port set to "*"
No conflicting deny rules
This appears to be related to the 26.1.x unified firewall system changes. Has anyone else experienced ClassLink issues on 26.1.x?
#4
26.1, 26,4 Series / Previously working os-apcupsd ...
Last post by mrzaz - Today at 05:12:04 AMHello,
I have a APC UPS SMT750IC but uses "APC PowerShute Serial Shutdown" in my server
to handle shutdown of the server (as my old standalone SNMP card was to old for the new UPS)
but also act as a NIS for other devices like Synology DS920+ and OpnSense via the "os-apcupsd"
plugin and it has been working fine for a couple of years.
Both from Synology but also from OpnSense.
I have relied on that it was working good for a very long time so i forgot to check it in more
details in OpnSense but tonight I realised that it was broken. No info in the dashboard widget,
no info in the apcupsd plugin status screen. Found one problem that was related to NIS port 3551
being used but changed to 3552 to test but still not resolved.
I use "Ether, snmp, 192.168.x.x:161:APC:private" as config which has been working for years but now stopped working.
Log shows
2026-05-24T03:11:37 Notice apcupsd apcupsd 3.14.14 (31 May 2016) freebsd startup succeeded
I have traced the port 161 signalling out of OpnSense on LAN going out OK.
I then traced the port 161 signalling in to server with "PowerShute Serial Shutdown" application and it is comming in.
But still nothing.
I then checked Synology UPS settings and it is working fine, both on SNMP v2c (using private) and also v3 with username/psw.
I tried to start it manually to get startup log entries but nothing found really apart from
Selected community: "private"
Selected MIB: "APC"
But there are NO successful SNMP reads afterward.
Have no clue why this started happening, especially as it works totally fine from Synology NAS and also from OpnSense for a long time.
Does anyone else use "os-apsupsd" plugin that also experience the same issue ?
I am running on latest version of OpnSense/Apsupsd.
BR,
Dan Lundqvist
Stockholm, Sweden
I have a APC UPS SMT750IC but uses "APC PowerShute Serial Shutdown" in my server
to handle shutdown of the server (as my old standalone SNMP card was to old for the new UPS)
but also act as a NIS for other devices like Synology DS920+ and OpnSense via the "os-apcupsd"
plugin and it has been working fine for a couple of years.
Both from Synology but also from OpnSense.
I have relied on that it was working good for a very long time so i forgot to check it in more
details in OpnSense but tonight I realised that it was broken. No info in the dashboard widget,
no info in the apcupsd plugin status screen. Found one problem that was related to NIS port 3551
being used but changed to 3552 to test but still not resolved.
I use "Ether, snmp, 192.168.x.x:161:APC:private" as config which has been working for years but now stopped working.
Log shows
2026-05-24T03:11:37 Notice apcupsd apcupsd 3.14.14 (31 May 2016) freebsd startup succeeded
I have traced the port 161 signalling out of OpnSense on LAN going out OK.
I then traced the port 161 signalling in to server with "PowerShute Serial Shutdown" application and it is comming in.
But still nothing.
I then checked Synology UPS settings and it is working fine, both on SNMP v2c (using private) and also v3 with username/psw.
I tried to start it manually to get startup log entries but nothing found really apart from
Selected community: "private"
Selected MIB: "APC"
But there are NO successful SNMP reads afterward.
Have no clue why this started happening, especially as it works totally fine from Synology NAS and also from OpnSense for a long time.
Does anyone else use "os-apsupsd" plugin that also experience the same issue ?
I am running on latest version of OpnSense/Apsupsd.
BR,
Dan Lundqvist
Stockholm, Sweden
#5
Hardware and Performance / CPU Recommendations?
Last post by XrayDoc88 - Today at 01:57:17 AMI've been running pfSense for many years on mini PCs. I'm thinking about upgrading my two home networks to at least 2.5G, and probably 10G. I think I'm also going to switch to OPNsense. Both home networks are currently connected with an IPsec site-to-site VPN. When I upgrade, I plan on switching to wireguard. Each home network has multiple APs, a NAS and several PCs. Both homes have 1G fiberoptic WAN connections. I also plan on creating VLANs on both networks, which I currently do not have. I'd like to stay with mini PCs if possible.
What would you consider the minimum CPU to get? Is the Alder Lake-N150 adequate? Should I get better? Thanks!
P.S. I wouldn't mind mini PC suggestions either. I've looked at the "official" OPNsense options. I currently have Qotom, but want 10G connections.
What would you consider the minimum CPU to get? Is the Alder Lake-N150 adequate? Should I get better? Thanks!
P.S. I wouldn't mind mini PC suggestions either. I've looked at the "official" OPNsense options. I currently have Qotom, but want 10G connections.
#6
Hardware and Performance / Re: DEC750 NVMe thermal pad?
Last post by pfry - Today at 01:49:26 AMQuote from: BrandyWine on Today at 01:22:47 AM[...]I have a device in a remote office that heat cycles with the schedule of HVAC.[...]
Do you see significant temperature swings in your equipment? I figure load would swing the temperature far more than (typical) HVAC schedules (up to 25C vs. ~5C, measured internally). (Seasonally the effect of ambient temperature is greater, but that's a pretty slow cycle.)
#7
Hardware and Performance / Re: DEC750 NVMe thermal pad?
Last post by BrandyWine - Today at 01:22:47 AMIn some ways temps are relative metrics.
Can you explain some about the environmentals. HVAC, ambient temp, small tight room? etc.
Running warm is ok. We want to stay away from max, and, stay away from heat cycling. I have a device in a remote office that heat cycles with the schedule of HVAC. Temps are ok, but heat cycles will reduce overall lifespan.
Can you explain some about the environmentals. HVAC, ambient temp, small tight room? etc.
Running warm is ok. We want to stay away from max, and, stay away from heat cycling. I have a device in a remote office that heat cycles with the schedule of HVAC. Temps are ok, but heat cycles will reduce overall lifespan.
#8
26.1, 26,4 Series / Re: Unbound TCP drops every 7....
Last post by nero355 - Today at 12:32:39 AMQuote from: Decaffinated_Duck on May 23, 2026, 08:35:32 PMI'm with IINet, and not using PiHole (Using AdGuard Home on the OPNSense router).You could try the same with AdGuard Home :
- Move AdGuard Home to a seperate system or leave it on OPNsense.
- But in both cases let it talk to Unbound on a seperate system for which you could use the above mentioned guide :)
#9
26.1, 26,4 Series / Re: issue with update with pkg...
Last post by nero355 - Today at 12:26:44 AMQuote from: edomatic4576 on May 23, 2026, 05:09:27 PMI am running opnsense 26.1.8_5 but have this issue when i do upgrade check that the package manager does this:There are multiple topics and posts about the whole PKG weirdness that occurs for some people so grab the Forum Search and see what applies to you in those olders topics and posts :)
"Upgrading package manager from version '2.5.1' to '2.3.1_1'"
#10
Hardware and Performance / Re: DEC750 NVMe thermal pad?
Last post by nero355 - Today at 12:19:03 AMQuote from: foxxx0 on May 23, 2026, 12:24:19 PMHere are some graphs for the last 4 days and 14 days respectively.Not sure why, but your images are perfectly viewable this way instead of between IMG tags :)
Mind you, the weather has gotten warmer over the last couple of days and I don't have a room temperature sensor (yet).
Last 4d:
https://foxxx0.de/img/dec750_temps_4d.jpg
Last 14d:
https://foxxx0.de/img/dec750_temps_14d.jpg
