"Recent posts
#1
Hardware and Performance / Re: DEC2752 console settings
Last post by patient0 - Today at 11:16:35 PMQuote from: dmurphy on Today at 10:04:04 PMCounter-intuitive since the console IS a USB port, but happy with the win. :)How do you come to that conclusion? Are mixing up UART with USB? Or because the connector is USB? If the second, there are quite a few USB (Mini, Micro, C) and even a RJ45 (Cisco-style) serial connector. They are only the physical connector, probalby because they take up a lot less space then the original serial connector.
#2
Hardware and Performance / Re: Starting homelab network -...
Last post by dmurphy - Today at 10:09:32 PMIf you have the funding, I can't say enough great things about the Deciso hardware. It's rock solid reliable, and supports OPNsense development.
I have the rack mount version of the DEC750 (I have the DEC2752) --> it's been nothing but a workhorse. Only issues I've ever had have been my own misconfigurations!
I have the rack mount version of the DEC750 (I have the DEC2752) --> it's been nothing but a workhorse. Only issues I've ever had have been my own misconfigurations!
#3
Hardware and Performance / Re: DEC2752 console settings
Last post by dmurphy - Today at 10:04:04 PMQuote from: Monviech (Cedrik) on Today at 09:42:11 PMI think this is wrong, remove that checkbox:
USB-based serial: "Use USB-based serial ports" - Yes
You're the best!! That took care of it. Working like a champ now. Counter-intuitive since the console IS a USB port, but happy with the win. :)
So next up ... any performance tuning suggestions for the 10gb ax0/ax1 ports? I made some tuning adjustments in /boot/loader.conf.local, but iperf3 throughput to another network node on the same LAN switch (US-XG-16) still tops out around 4gb/sec or so.
(I can move to a new thread if that's more appropriate. Thanks!)
Code Select
kern.ipc.maxsockbuf=16777216
machdep.hyperthreading_intr_allowed=1
net.inet.rss.bits=3
net.inet.rss.enabled=1
net.inet.tcp.recvbuf_max=4194304
net.inet.tcp.sendbuf_inc=65536
net.inet.tcp.sendbuf_max=4194304
net.inet.tcp.soreceive_stream=1
net.isr.bindthreads=1
net.isr.defaultqlimit=2048
net.isr.dispatch=deferred
net.isr.maxthreads=-1 #4
Hardware and Performance / Re: Starting homelab network -...
Last post by Patrick M. Hausen - Today at 09:59:47 PMYes, 10 inch racks seem to all the rage right now. The Mikrotik CRS310-8G+2S+IN would fit into one. Only 8 1G ports compared to 24, though.
Multiport PoE+ injectors exist:
https://www.amazon.com/dp/B085Z6BYNV/
Multiport PoE+ injectors exist:
https://www.amazon.com/dp/B085Z6BYNV/
#5
Hardware and Performance / Re: Starting homelab network -...
Last post by hacktheplanet - Today at 09:57:16 PMQuote from: meyergru on Today at 01:06:27 PMI would not recommend N1x0 boxes with only two ports:
a. those often tend use Realtek chips, unlike their 4 or more port equivalents, which mostly use Intel I226V. Also, they often are actively cooled.
b. If you want to set up VLANs, you will want to have inter-VLAN traffic at full 2.5 Gbps speed, for which you need multiple physical 2.5 Gbps (V)LAN ports. Thus, two ports will not suffice.
Great tips, thanks! Yes, I am hoping to get at least 4 ports, or a mini PC with a full PCIe slot that would let me add a 4+ port Intel NIC. I'm leaning towards the latter currently, as it offers me some ability to update components as time goes on.
#6
Hardware and Performance / Re: Starting homelab network -...
Last post by hacktheplanet - Today at 09:54:01 PMQuote from: Patrick M. Hausen on Today at 12:30:47 PMKeep in mind that active PoE in a switch means
- way more expensive than without
- most units are deep 19" devices
- passive cooling is very rare
Depending on how "home" your home lab is going to be (do you have an extra room for a rack?) a switch like the mentioned CSR326, available in either rack or desktop format and passive cooling might be preferable to a loud rack mount only unit intended for data centres.
P.S. The CSR326 does not support 2.5 G Ethernet.
Thanks for sharing that model and your experiences with it. I'm not sure about a rack yet, space is at a bit of a premium so I am considering a mini-rack of the type that seem to be quite popular currently. I will set up a patch panel, so a rack probably makes sense.
I mainly would need PoE for some cameras (2 initally) and possibly later some single board computers and such.
#7
Hardware and Performance / Re: DEC2752 console settings
Last post by Monviech (Cedrik) - Today at 09:42:11 PMI think this is wrong, remove that checkbox:
USB-based serial: "Use USB-based serial ports" - Yes
USB-based serial: "Use USB-based serial ports" - Yes
#8
Hardware and Performance / DEC2752 console settings
Last post by dmurphy - Today at 09:37:49 PMHi all - I'm sure I'm missing a very simple console setting, but I just did a reload, and now I'm having serial console trouble.
Step 1) Install 25.7 via amd64/vga image
Step 2) Install default dec2752 settings from https://docs.opnsense.org/hardware/defaults.html
Step 3) Patch up to 25.7.10
Step 4) Restore my prior configuration (minus tunables - that is what I'm trying to get "clean" ...)
What is occurring:
Console works fine from BIOS to boot loader to console output. But once boot finishes and I should be getting the login details, it stops providing output or accepting input right here:
Now if I do something that kicks out a kernel message (i.e. reboot) - I WILL see that output here.
So what setting am I missing? In System -> Settings -> Administration, the Console settings are as such:
EDIT: Forgot to mention, I did make sure "UART 0 Legacy" is disabled in the BIOS.
Step 1) Install 25.7 via amd64/vga image
Step 2) Install default dec2752 settings from https://docs.opnsense.org/hardware/defaults.html
Step 3) Patch up to 25.7.10
Step 4) Restore my prior configuration (minus tunables - that is what I'm trying to get "clean" ...)
What is occurring:
Console works fine from BIOS to boot loader to console output. But once boot finishes and I should be getting the login details, it stops providing output or accepting input right here:
Code Select
>>> Invoking start script 'openvpn'
>>> Invoking start script 'sysctl'
Service `sysctl' has been restarted.
>>> Invoking start script 'beep'
Root file system: zroot/ROOT/default
Tue Jan 13 15:21:37 EST 2026
*** dmurphy-gw.home: OPNsense 25.7.10 (amd64) ***
DMZ (vlan0.77) -> v4: 10.77.0.1/24
FIOS (igc0) -> v4/DHCP4: 1.2.3.4/24
v6/DHCP6: fe80::ffff:aaaa:bbbb:cccc%igc0/64
GUEST (vlan0.99) -> v4: 172.16.100.1/24
LAN (ax0) -> v4: 172.16.0.1/22
Tailscale (tailscale0) ->
WINTENDO (vlan0.91) -> v4: 172.16.91.1/24
HTTPS: SHA256 83 AA EC BB 3D CC DD 0C EE 27 FF 0D AA 7A BB 6F
CC DD EE FF AA BB BCC1 EF E0 60 05 0A AA BB CC DD
SSH: SHA256 PfdajklfdljkfgakvjczkzckHadfjkfdajfasjdcxxQ (ECDSA)
SSH: SHA256 PfdajklfdljkfgakvjczkzckHadfjkfdajfasjdcxxQ (ED25519)
SSH: SHA256 PfdajklfdljkfgakvjczkzckHadfjkfdajfasjdcxxQ (RSA)
Now if I do something that kicks out a kernel message (i.e. reboot) - I WILL see that output here.
So what setting am I missing? In System -> Settings -> Administration, the Console settings are as such:
Code Select
Console driver: "Use the virtual terminal driver (vt)" - Yes
Primary Console: Serial Console
Secondary Console: None
Serial Speed: 115200
USB-based serial: "Use USB-based serial ports" - Yes
Console menu: Password protect the console menu
EDIT: Forgot to mention, I did make sure "UART 0 Legacy" is disabled in the BIOS.
Code Select
Setup Utility –> AMD CBS –> FCH Common Options –> UART Configuration Options –> UART 0 Legacy Options #9
25.7, 25.10 Series / Re: Dnsmasq stops occasionaly
Last post by Monviech (Cedrik) - Today at 09:35:19 PMYou are indeed not doing anything strange (other than having some custom config files but that can be found out).
Can you try some of these things:
- 1. comment these out, one by one, see if anything changes. If we know the exact folder/file that would be great:
(Go to /usr/local/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf and just put a "#" before these lines one by one. Then restart dnsmasq via Apply in the GUI each time and monitor for a while)
# addn-hosts=/var/etc/dnsmasq-hosts
# addn-hosts=/var/etc/dnsmasq-leases
# conf-dir=/usr/local/etc/dnsmasq.conf.d,*.conf
- 2. Random guess, can you try to disable Router Advertisements/DHCPv6 in the GUI and see if that changes anything?
Try these one by one and see if it changes anything.
PS: Just make sure to mask your dhcp-host entries in that prior dnsmasq.conf file attached to your post, so not everyone knows your network.
Can you try some of these things:
- 1. comment these out, one by one, see if anything changes. If we know the exact folder/file that would be great:
(Go to /usr/local/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf and just put a "#" before these lines one by one. Then restart dnsmasq via Apply in the GUI each time and monitor for a while)
# addn-hosts=/var/etc/dnsmasq-hosts
# addn-hosts=/var/etc/dnsmasq-leases
# conf-dir=/usr/local/etc/dnsmasq.conf.d,*.conf
- 2. Random guess, can you try to disable Router Advertisements/DHCPv6 in the GUI and see if that changes anything?
Try these one by one and see if it changes anything.
PS: Just make sure to mask your dhcp-host entries in that prior dnsmasq.conf file attached to your post, so not everyone knows your network.
#10
25.7, 25.10 Series / Re: Dnsmasq stops occasionaly
Last post by ligand - Today at 09:13:19 PMHi. I don't see a lot of churn on the files referenced in the conf file
root@OPNsense:/usr/local/etc/dnsmasq.conf.d # ls -l
total 16
-rw-r--r-- 1 root wheel 85 Dec 18 08:13 README
-rw-r--r-- 1 root wheel 41 Sep 15 15:21 jdownloader.conf
-rw-r--r-- 1 root wheel 211 Sep 14 21:26 lucid.conf
-rw-r--r-- 1 root wheel 31 Sep 14 19:41 plex.conf
I'm attaching my dnsmasq.conf. I don't think I'm doing anything special with my installation.
My WAN connection is stable. I don't see instability in it but if you tell me what to look for then I can validate the logs to be certain.
root@OPNsense:/usr/local/etc/dnsmasq.conf.d # ls -l
total 16
-rw-r--r-- 1 root wheel 85 Dec 18 08:13 README
-rw-r--r-- 1 root wheel 41 Sep 15 15:21 jdownloader.conf
-rw-r--r-- 1 root wheel 211 Sep 14 21:26 lucid.conf
-rw-r--r-- 1 root wheel 31 Sep 14 19:41 plex.conf
I'm attaching my dnsmasq.conf. I don't think I'm doing anything special with my installation.
My WAN connection is stable. I don't see instability in it but if you tell me what to look for then I can validate the logs to be certain.
