Recent Posts

1

20.1 Production Series / Re: unknown Python 3.7 causing spikes on CPU

« Last post by marinbernard-pep06 on Today at 08:54:01 am »

Try to monitor system process with top:

• Launch top
• Press "s", then "1", then ENTER to set the refresh interval to 1 second
• Press "a" to show full command strings
• Press "i" to hide idle processes

Then just wait for some spike to happen, and note the python command invocation string.

If the console width is too narrow, either use an ssh / tty connection with a maximized window (run resizewin on tty to have the terminal fit the dimensions of the window).

2

20.1 Production Series / Re: Since update to 20.1.7 reoccuring high latency situations

« Last post by marinbernard-pep06 on Today at 08:46:48 am »

On my boxes, periodic pf table updates spawn a python3 process every minute. While the cron job is not new, chances are that the CPU overhead caused by the script (update_tables.py) or the python interpreter itself is more important than in previous releases, because it used to remain unnoticed (at least by me) for months until somewhere in the 20.1 branch.

In virtualized environments, these regular CPU spikes put a lot of stress on our hypervisors, which indeed results in latency issues and lost packets (see this post).

3

20.1 Production Series / Re: OpenVPN Client Export: does not generate any client config for download

« Last post by sja1440 on Today at 08:31:57 am »

To work around this problem, I construct by hand my ovpn client configuration files or sometimes manually configure the client.

I would guess that there is a GUI bug somewhere - I have tried pinning it down, but with no success

4

German - Deutsch / Re: opnsense solution // zotac minipc

« Last post by lenny on Today at 08:08:18 am »

Was für eine Karte ist es denn?
Hoffentlich keine AC...

5

20.1 Production Series / Re: Since update to 20.1.7 reoccuring high latency situations

« Last post by mimugmail on Today at 06:02:50 am »

Whats in the log at 4? Maybe some alias refresh or broken pattern updates

6

20.1 Production Series / Re: unknown Python 3.7 causing spikes on CPU

« Last post by mimugmail on Today at 05:59:42 am »

It might be insight traffic aggregation. Can you try to stop local netflow and see if it stops?

7

20.1 Production Series / unknown Python 3.7 causing spikes on CPU

« Last post by andrema2 on July 06, 2020, 10:59:23 pm »

Hi

On the 20.1.8_1 version, I'm seeing spikes that takes 100% of CPU caused by a Python 3.7.

I don't know how I can find out what is this Python program. Any suggestion is welcome

8

Web Proxy Filtering and Caching / SQUID ACL category filtering logging

« Last post by Azerty728 on July 06, 2020, 10:36:28 pm »

Hello there,

Is there someone able to explain me how to enhance SQUID logs  to add the category that was filtered in the logs ?
I'm using ACLs from Lille University and filtering some categories. But when a connection is dropped/blocked by SQUID, I'm only getting TCP_DENIED. I want to know which category was blocked. Is this only possible ? And if yes, how ?
I receive my logs by syslog to my Splunk.
Thank you.

9

20.1 Production Series / VOIP phone registration error solved

« Last post by typoman on July 06, 2020, 10:26:45 pm »

I have a softphone app on my smartphone that connects to a cloud based PBX.  The PBX is a common Broadsoft platform.  If I open the app at home, behind my OPSense firewall, I get errors that it cannot register to the PBX.  If I turn off wifi or get on any other wifi network, it registers fine.  I've been hunting the solution off and on for weeks.  I was looking in the wrong direction since I assumed it had to do with some network topology nonsense on my end.  The solution turned out to be super simple.  I found it in the very last sentence of this article.

"If you are using a Dynamic DNS address, make sure you go to System: Settings: Administration and put that dynamic DNS address in the “Alternate Hostnames” field."

That's all I did.  I added my DynDNS hostname to that field and it was fixed. 

10

20.1 Production Series / Re: Installation problems

« Last post by Groyk on July 06, 2020, 10:10:29 pm »

Seems like wrong boot order. Sorry for the post.