Recent posts

#1
General Discussion / Re: AI integration for OPNsens...
Last post by chemlud - Today at 10:27:41 AM
Sociopathy is some kind of blindness, a total lack of understanding how society works or even negation that it exists at all ("There is no such thing as society..." you remember?).

So: Yes, these people literally don't understand what sociologists think and do. And fight them as their enemies.
#2
26.1, 26,4 Series / Re: IPv6 weirdness
Last post by meyergru - Today at 09:14:41 AM
Take a look at the Tutorial section - there is a HowTo for IPv6.
#3
General Discussion / Re: Flashing OPNSense .img.bz2
Last post by Ze_Mind - Today at 07:43:17 AM
I did the vga variant.
#4
General Discussion / Re: Flashing OPNSense .img.bz2
Last post by patient0 - Today at 07:38:39 AM
Quote from: Ze_Mind on Today at 12:58:14 AMUpdate: I finally got it flashed. Weird how this happens.

I asked a good friend of mine to download it and try to extract the img.bz2. He couldn't either. Says it was done, but got corrupted.
What file did you download, DVD, VGA, serial or the nano image? On the download page https://opnsense.org/download after you selected the image you want, the SHA256 checksum is shown of the *img.bz2 file.

Downloading OPNsense-26.1.2-dvd-amd64.iso.bz2 worked for me, the SHA256 was identical to what was shown on the webpage. And 'bzip2 -d ...` did work as expected.
#5
26.1, 26,4 Series / Crash and brick during update
Last post by phill - Today at 07:35:13 AM
I was updating my "firmware" and I got some kind of fatal error that bricked OPNsense.  It told me to check the log file but the Web UI died while trying to navigate to it.  After rebooting, it could not see the password file to allow me to login.  I assume that was the same problem that prevented it from doing its routing duties.  I downloaded the latest ISO and ran the install using a configuration it looks like it recovered, somehow.  I then ran another update and it crashed again.  But this time after rebooting, all the updates appear to be completed and everything seems to me working fine.  I ran the health audit.  As far as I know, that manually checked all the installed packages.  The logs do not show anything but packages being installed and uninstalled and only goes back to when I reinstalled today.  I did not see whatever the critical error was.

I've been working with Proxmox + OPNsense for about 3 years now.  I'm really happy with them on this 10 gigabit home router + firewall + VPN client + nas I built from an old computer.  I've never had anything like this happen.  I don't know what went wrong and that has left me unsure if I properly fixed it.  Does anyone have any insight about what went wrong or things I can do to make sure everything is OK?
#6
General Discussion / Re: Ubiquity Cloud Fiber Gatew...
Last post by Netlearn - Today at 05:28:54 AM
I'm not sure if this debate is going about the UX on the platform or more deriving towards the capability of getting the right information. With the overloaded interfaces that (per mention) Reddit, Discourse, etc. have implemented, attentions goes easily where the owners want (ads, etc.) while the information passes to a second focus. There are so many distractions that keeping the attention is simply much harder.

Quote from: JamesFrisch on April 18, 2026, 07:46:08 AMthink about the 16y old teenager that gets newly drawn into a topic.

Teenagers have to learn to think. Those mentioned platforms make it just more difficult, starting from the distractions and sometimes confusing interfaces.

Teenagers have to learn to ask the right question. Not only that, but also in the right place an in the right way.

Teenagers have to learn to find information. Overwhelming sites, with useless links, ads, too many (almost always unrelated) images...

Teenagers have to learn to filter information. What is true, useful, and applicable to my current search?

Teenagers have to learn to sort information. Disperse contents are one of the worst realities on those kind of sites. Other are "content creators" publishing everywhere, pontificating their truth without the proper knowledge, incomplete, unverified, or just wrong.

There are so many things that teenagers have to learn, and so many wrong ways to go for... Nowadays, only a few get to the level of thinking that any old-school graduate had at the end of the studies. And the way information is displayed on the web has something to do with this.

Please, let's try to minimize that narrow-minding process.

Quote from: JamesFrisch on April 18, 2026, 07:46:08 AMForums itself are a dying breed.

Maybe or maybe not. While the Big Players are trying to keep their (very profitable) model, what I see is the more people trying to get rid of those distractions, filtering ads and trackers, getting tired of sites that offer less-information/more-profitable-content pages, etc. How would the Reddit website if you remove all the useless content from every single page?

Quote from: JamesFrisch on April 18, 2026, 07:46:08 AMearly 2000 style forum is another fritction point.

Absolutely not for me. There is no friction at all about having a clean interface without any non-related content to my reading or search.
Try making a simple search at https://www.scopus.com and see how tons of information can be displayed in a clean and orderly manner. It's just an example.

In my experience, most of the times, the more cluttered is a site, the lower quantity and quality information it has. That must be for a reason. And consequently, is always harder to find.

Going back to the OP original question: you better ask in Ubiquity sites and read Ubiquity docs. Keep in mind that the approach and features of OPNsense and Ubiquity are very different.
#7
26.1, 26,4 Series / IPv6 weirdness
Last post by jcdick1 - Today at 03:15:50 AM
I am running OPNsense in an XCP-NG VM, and I am seeing some genuine weirdness going on.

I have four interfaces labelled WAN, LAN, Management and Storage. 

Some VMs in my environment have only a single interface on the LAN network, others have some combination of the three. Physical devices (PCs, streaming devices, etc) are all on the LAN network.

The Management and Storage networks have firewall rules to keep them isolated - for all intents and purposes, unrouted.

KEA is configured to only have its DHCPv6 server active on the LAN network (only interface with a checkbox in the dropdown).  But its "Leases DHCPv6" page is showing active leases on the "Management" interface.  And on the hosts, those corresponding IPv6 addresses are showing on their LAN-associated interface.  At the same time, some devices on the LAN network cannot get IPv6 addresses.

Even after the latest upgrade, I still have ISC doing the IPv4, as I am fairly dependent on the Unbound relationship for DHCP lease DNS resolution.

This IPv6 stuff is genuinely a headache for me.  But since Matter devices require IPv6, I have to figure this all out.

I'd like to put IPv6 on all my interfaces and then it probably wouldn't matter since there'd be addresses available all over, but I can only get a single /64 from my ISP (AT&T).

Any insight or assistance is appreciated.  Thank you!

#8
General Discussion / Re: second LAN port
Last post by pfry - Today at 02:19:11 AM
Quote from: Hollywood on Today at 01:28:25 AM[...]My question is, could I  also assign igc0 as another LAN port and plug in my VOIP adapter?

You can set up as many ports as you like, and apply whatever rules you like. If you want to share a subnet and ruleset, though, you'd need to create a bridge, assign the subnet and rules and add ports to it.

Quote[...]And speaking of emergency use, I have a nice managed switch and access point, but if they are not on battery backup, could the OPNsense PC broadcast an SSID for temporary use?[...]

Broadcast an SSID via...? Do you have a wi-fi adapter attached to the firewall? I'm not following your intent.
#9
General Discussion / second LAN port
Last post by Hollywood - Today at 01:28:25 AM
I had my LAN connected to igc0, an RJ45 port. Now I use ixl0, an SFP+ port. Works great and fast.

My question is, could I  also assign igc0 as another LAN port and plug in my VOIP adapter? My thought is that if I just have the OPNsense miniPC and the VOIP adapter plugged into the battery backup, with just 2 items, the UPS would have a longer running time if/when needed.

And speaking of emergency use, I have a nice managed switch and access point, but if they are not on battery backup, could the OPNsense PC broadcast an SSID for temporary use?

Thanks.

#10
General Discussion / Re: Flashing OPNSense .img.bz2
Last post by Ze_Mind - Today at 12:58:14 AM
Update: I finally got it flashed. Weird how this happens.

I asked a good friend of mine to download it and try to extract the img.bz2. He couldn't either. Says it was done, but got corrupted.