"Recent posts
#1
Hardware and Performance / Re: Marvell/Aquantia AQ1 & AQ2...
Last post by Nullman - Today at 09:00:55 PMQuote from: Seimus on Today at 08:30:26 PMSolid and pretty stable at least that is my experience with the AQC113C.
As mentioned I didn't had any problems since I put it into PROD so since 24th Feb.
The AQC113C and as well the Driver is working on OPNsense/FBSD seamlessly, honestly its hard to believe at first. But after months running these and not hitting any problems its just amazing.
Also this potentially unlocks 2nd option for NICs as to the Intel ones. AQC113C for me performs way better than any realtek NIC on OPNsense/FBSD.
Regards,
S.
This is very good to hear. There are some very nice mini pcs out there that have combination of 2.5G Intel 226 NICs along with Aquantia 10G NICs. I was hesitant to buy them because i had terrible experience with everything not Intel. Thank you very much for sharing this information. I appreciate first hand experience.
#2
General Discussion / Re: smart TV causes memory usa...
Last post by Seimus - Today at 08:49:59 PMQuote from: DEC740airp414user on Today at 10:50:25 AMwhat are your thought that would cause memory to increase by X2 by just turning on a "smart" device? it pretty much stays that high even up to 30 minutes after the tv is turned off?
Considering, the TV only reaches to internet. The only thing how it can impact memory is as mentioned above by opening a lot of sessions.
Each session takes a slice of memory. If you run ZA or IPS the memory impact can be multiplied.
Quoteeach state table entry requires about 1 kB (kilobytes) of RAM
Considering the above, the TV would have to open a lot of sessions. But SmartTVs are basically just IoT devices with the perk they like to flood and spam which is as well multiplied by various applications you run on the TV.
Regards,
S.
#3
Hardware and Performance / Re: Marvell/Aquantia AQ1 & AQ2...
Last post by Seimus - Today at 08:30:26 PMSolid and pretty stable at least that is my experience with the AQC113C.
As mentioned I didn't had any problems since I put it into PROD so since 24th Feb.
The AQC113C and as well the Driver is working on OPNsense/FBSD seamlessly, honestly its hard to believe at first. But after months running these and not hitting any problems its just amazing.
Also this potentially unlocks 2nd option for NICs as to the Intel ones. AQC113C for me performs way better than any realtek NIC on OPNsense/FBSD.
Regards,
S.
As mentioned I didn't had any problems since I put it into PROD so since 24th Feb.
The AQC113C and as well the Driver is working on OPNsense/FBSD seamlessly, honestly its hard to believe at first. But after months running these and not hitting any problems its just amazing.
Also this potentially unlocks 2nd option for NICs as to the Intel ones. AQC113C for me performs way better than any realtek NIC on OPNsense/FBSD.
Regards,
S.
#4
General Discussion / Re: smart TV causes memory usa...
Last post by dogshome - Today at 07:39:52 PMMy Hisense telly likes to call its friends around the world. No updates, adfest on TV channels. Are you running Unbound and is it simply caching all the websites your telly also likes to invite?
#5
General Discussion / Re: 1 year after
Last post by dogshome - Today at 07:36:57 PMQuote from: reefer123 on April 30, 2026, 07:49:52 PMi been running opnsense in "basic/noob" mode for a year now
NEWB to NEWB. That's good to know.
#6
Virtual private networks / Re: Generating OpenVPN Client ...
Last post by cybermailer84 - Today at 07:32:12 PMOkay - some research done - i now use openvpn3 client on linux and it now works.
Before i used on my kubuntu 2.6.x this is not able to work with.
Before i used on my kubuntu 2.6.x this is not able to work with.
#7
Hardware and Performance / Re: Controller Reg Maps
Last post by pOpY2k25 - Today at 06:14:32 PMJust i someone finds this thread with the same issues i had.
Here, on post #210 is the solution: https://forum.opnsense.org/index.php?topic=48695.210
Here, on post #210 is the solution: https://forum.opnsense.org/index.php?topic=48695.210
#8
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by pOpY2k25 - Today at 06:12:41 PMQuote from: stef on February 26, 2026, 02:19:25 PMQuote from: RobertoZ on February 24, 2026, 01:55:33 PMI have been using a "Fenvi" branded AliExpress 2 port i226v card since December without any issues. Updated the card using the 2mb file. Can sustain 2Gbps throughput. I have officially 1.5Gbps cable internet that is over provisioned.Same model as mine.
You can have a look in the BIOS. Most BIOS have a setting to turn off ASPM or pci power management.
I got to flash it correctly with the 2MB file too, but the goal was to fix the ASPM compatibilities to avoid having to disable it. (having it disabled is a 10w increase in power consumption)
The way I got it stable is forcing ASPM in bios, forcing it in the kernel cmdline and forcing the "performance" power profile, that disables ASPM for all devices. If it's disabled in BIOS, the card crashed on boot or crashes as soon as a cable is connected.
The OPNsense VM was behaving perfectly when the card was passed through because ASPM was automatically disabled for the device.Quote from: BrandyWine on February 25, 2026, 07:16:30 PMIf after doing the NVM update and the iface still experiences something odd that seems related to ASPM, then I suspect an issue not related to NVM.Yes there's a pcie switch on the card (the card is a pcie x1). ASPM issues are probably related to the switch chip, at this point.
For a Aliexpress 226 pcie card, I might suspect there's a pcie issue between card and host mobo and/or OS. I would start looking there (log messages, etc).
Hi,
i am had similar performance issues on unraid (see my post #110) in this thread.
Also hoping to fix it with an update of the nvm firmware, sadly not.
BUT Finally!!!!!!!!!!!!!!!!!!!!!!!!!!!!
The i226-v driver bug i am reffering to in #110 posts (performance loss when ASPM is on) is fixed in unraid 7.3.0-rc1 (kernel 6.18.23).
Here is the commit which fixed the issue: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0325143b59c6c6d79987afc57d2456e7a20d13b7
Basically disabling aspm L1.2, preventing the performance issue with minimal higher power consumption.
So with this commit, i can recommend the Intel i226-v for low power opnsense/unraid builds WITH full ASPM support and no performance loss.
The c-states rabbit hole has become smaller for me 😁
Hope this helps somebody to escape the c-states rabbit hole.
#9
General Discussion / ISC DHCP → Dnsmasq migration h...
Last post by grisey - Today at 06:12:22 PMHi,
I wrote a small migration helper for ISC DHCP to Dnsmasq on OPNsense.
The main goal is reviewability: inspect the current state, generate a migration profile, show a plan, and only then apply changes after confirmation.
Only the core DHCPv4 migration path has been tested by me. Everything else should be considered untested or experimental.
I am sharing this as-is. I cannot guarantee support, fixes, further development, or additional testing. I also cannot run further tests myself.
Functions are explained in
Hope this could be helpful though.
Cheers grisey
I wrote a small migration helper for ISC DHCP to Dnsmasq on OPNsense.
The main goal is reviewability: inspect the current state, generate a migration profile, show a plan, and only then apply changes after confirmation.
Only the core DHCPv4 migration path has been tested by me. Everything else should be considered untested or experimental.
I am sharing this as-is. I cannot guarantee support, fixes, further development, or additional testing. I also cannot run further tests myself.
Functions are explained in
Code Select
sh opnsense_dhcp-migration-isc-to-dnsmasq.sh --helpHope this could be helpful though.
Cheers grisey
#10
26.1, 26,4 Series / Re: Issues with Unbound overri...
Last post by lmoore - Today at 05:56:17 PMI've been reading more about Unbound on OPNsense.
Just to rule out your client computer querying another DNS server, is only one DNS server listed from ipconfig /all?
Are you configuring the wildcard in a Blocklist or in Overrides.
I have added a DNSBL to the Blocklists and added the wildcard domain teamviewer.com.
I am able to resolve teamviewer.com but when querying www.teamviewer.com, the query returns the IP address of 0.0.0.0.
I did go into Services -> Unbound DNS -> General and enabled Flush DNS Cache during reload and the restarted the service.
I don't know if this will help you - see the attached log file.
Just to rule out your client computer querying another DNS server, is only one DNS server listed from ipconfig /all?
Are you configuring the wildcard in a Blocklist or in Overrides.
I have added a DNSBL to the Blocklists and added the wildcard domain teamviewer.com.
I am able to resolve teamviewer.com but when querying www.teamviewer.com, the query returns the IP address of 0.0.0.0.
I did go into Services -> Unbound DNS -> General and enabled Flush DNS Cache during reload and the restarted the service.
I don't know if this will help you - see the attached log file.
