"Recent posts
#1
26.1, 26,4 Series / Re: Hostnames not resolving
Last post by wincent - Today at 04:26:02 AMIf you are using the default Unbound DNS service, set it here "Services -> Unbound DNS -> Overrides"
#2
26.1, 26,4 Series / Re: Does OPNsense boot with ve...
Last post by wincent - Today at 04:15:51 AMYes, it works!
You need to use UEFI mode, as LEGACY mode does not work.
You need to use UEFI mode, as LEGACY mode does not work.
#3
26.1, 26,4 Series / Hostnames not resolving
Last post by jssmithdev81 - Today at 04:11:28 AMHi there
Just installed OPNSense and must say I love this!
But having terrible problems say if I made a host with myhostname.mydomain.net and it has an ip address of 192.168.1.2 for arguments sake, but how would I get that resolving so if I were to run a web server for example it'd resolve to that IP address when typing that into the address of a browser?
I was formerly running on PFsense but using the old legacy DHCP Kea thing think its called.
I'd love to know how to get this working as I'm really not sure what I'm doing wrong, think have all the registering hostnames checked in the configs but it wont do that if I use the dig command or nslookup in windows.
Can someone help me please?
Thanks ever so much.
Just installed OPNSense and must say I love this!
But having terrible problems say if I made a host with myhostname.mydomain.net and it has an ip address of 192.168.1.2 for arguments sake, but how would I get that resolving so if I were to run a web server for example it'd resolve to that IP address when typing that into the address of a browser?
I was formerly running on PFsense but using the old legacy DHCP Kea thing think its called.
I'd love to know how to get this working as I'm really not sure what I'm doing wrong, think have all the registering hostnames checked in the configs but it wont do that if I use the dig command or nslookup in windows.
Can someone help me please?
Thanks ever so much.
#4
26.1, 26,4 Series / Re: Problem with Firewall Live...
Last post by wincent - Today at 03:59:25 AMIs it possible that you have set up another rule without a label to log records?
#5
26.1, 26,4 Series / Re: Issues with Reboot / Power...
Last post by wincent - Today at 03:47:07 AMThis command "/usr/local/etc/rc.d/suricata onestop" will check the status of Suricata and delete the stale PID file, you previously used `kill` to shut down Suricata abnormally, a PID file may be left behind.
Now try to shut down or reboot OPNsense directly using the webGUI.
Now try to shut down or reboot OPNsense directly using the webGUI.
#6
Hardware and Performance / Re: Inseego MiFi Pro M4 as WAN...
Last post by Greg_E - Today at 03:09:15 AMSpeeds are interesting, getting 3 bars of 5g and between 150-200mbps down, but only 5-6mbps up. Considering my lab use case, I hope the up gets a little higher, would like to see it least 10mbps, 5-6 with netbird on an RDP or even http remote is a bit tough. Have to try it at the lab tomorrow to see what I can see.
#7
German - Deutsch / Re: Fester Telekom Mobilfunk I...
Last post by Patrick M. Hausen - Today at 12:19:16 AMWenn es ein festes Prefix ist, weshalb konfigurierst du nicht ein /64 daraus statisch auf dein LAN? Hab ich hier auf allen 9 VLANs.
#8
Zenarmor (Sensei) / Re: updating to 2.6 checking f...
Last post by wbennett - Today at 12:05:55 AMQuote from: ureyni on June 25, 2026, 02:17:54 PMHi,Run the commands but nothing changed. Still on 2.5.1 and after checking for update shows packages are up to date.
Could you try following command please:
root@OPNsense:~ # pkg clean
Nothing to do.
root@OPNsense:~ # pkg autoremove
Checking integrity... done (0 conflicting)
Nothing to do.
root@OPNsense:~ # pkg -d update -f -r SunnyValley
Updating SunnyValley repository catalogue...
DBG(1)[39444]> PkgRepo: verifying update for SunnyValley
DBG(1)[39444]> Pkgrepo, begin update of '/var/db/pkg/repos/SunnyValley/db'
DBG(1)[39444]> (fetch) Request to fetch https://updates.zenarmor.net/opnsense/FreeBSD:14:amd64/26.1/6d16b468-1a2c-4e63-aa90-803de1816773/meta.conf
DBG(1)[39444]> (fetch) Fetch: fetcher used: https
Fetching meta.conf: 100% 179 B 0.2kB/s 00:01
DBG(1)[39444]> (fetch) Request to fetch https://updates.zenarmor.net/opnsense/FreeBSD:14:amd64/26.1/6d16b468-1a2c-4e63-aa90-803de1816773/data.pkg
DBG(1)[39444]> (fetch) Fetch: fetcher used: https
Fetching data.pkg: 100% 21 KiB 21.1kB/s 00:01
DBG(1)[39444]> PkgRepo: extracting data of repo SunnyValley
DBG(1)[39766]> PkgRepo: extracting signature of repo in a sandbox
DBG(1)[39444]> Pkgrepo, reading new metadata
Processing entries: 100%
SunnyValley repository update completed. 14 packages processed.
SunnyValley is up to date.
root@OPNsense:~ #
#9
Tutorials and FAQs / Re: What to do and what to avo...
Last post by cookiemonster - June 25, 2026, 11:28:58 PMQuote from: newsense on June 25, 2026, 08:26:06 PM>>> Avoid Server Certificate Lifetimes > 397 DaysSo is this not going counter to the 397 days advice above? Asking because last time i was on this, the amount of effort I put into in vain was high.
Or simply use your own certificate that can be issued from OPNSense, and enjoy 730 days of certificate validity. This is the hard limit from Apple for private/enterprise CAs
As long as you're controlling everything else on your VPN/devices importing your own CA everywhere is a no brainer.
#10
German - Deutsch / Fester Telekom Mobilfunk IPv6 ...
Last post by SirNibo - June 25, 2026, 10:51:43 PMHallo,
ich bekomme von der Telekom einen festen IPv6 über das Mobilfunknetz.
Ich kriege das Prefix aber nicht auf das LAN interface. Es ist immer nur auf dem WAN Interface drauf.
Das LTE Modem ist im Bridge Modus, leitet das direkt weiter an die OPNsense.
Ich habe folgendes probiert.
Config 1:
WAN: DHCPv6
LAN: Track Interface
WAN: DHCPv6, request prefix only
LAN: Track Interface
WAN: DHCPv6, request prefix only, Send prefix hint.
LAN: Track Interface
Kann es daran liegen das nur größere Prefixe als /64 getrackt werden können?
Das LTE Modem kriegt es j auch hin im Router Modus das der prefix auf dem LAN Interface landet.
Brauche ich dafür ein Bridge Interface?
ich bekomme von der Telekom einen festen IPv6 über das Mobilfunknetz.
Ich kriege das Prefix aber nicht auf das LAN interface. Es ist immer nur auf dem WAN Interface drauf.
Das LTE Modem ist im Bridge Modus, leitet das direkt weiter an die OPNsense.
Ich habe folgendes probiert.
Config 1:
WAN: DHCPv6
LAN: Track Interface
WAN: DHCPv6, request prefix only
LAN: Track Interface
WAN: DHCPv6, request prefix only, Send prefix hint.
LAN: Track Interface
Kann es daran liegen das nur größere Prefixe als /64 getrackt werden können?
Das LTE Modem kriegt es j auch hin im Router Modus das der prefix auf dem LAN Interface landet.
Brauche ich dafür ein Bridge Interface?
