Quote from: ureyni on June 25, 2026, 02:17:54 PMHi,Run the commands but nothing changed. Still on 2.5.1 and after checking for update shows packages are up to date.
Could you try following command please:
root@OPNsense:~ # pkg clean
Nothing to do.
root@OPNsense:~ # pkg autoremove
Checking integrity... done (0 conflicting)
Nothing to do.
root@OPNsense:~ # pkg -d update -f -r SunnyValley
Updating SunnyValley repository catalogue...
DBG(1)[39444]> PkgRepo: verifying update for SunnyValley
DBG(1)[39444]> Pkgrepo, begin update of '/var/db/pkg/repos/SunnyValley/db'
DBG(1)[39444]> (fetch) Request to fetch https://updates.zenarmor.net/opnsense/FreeBSD:14:amd64/26.1/6d16b468-1a2c-4e63-aa90-803de1816773/meta.conf
DBG(1)[39444]> (fetch) Fetch: fetcher used: https
Fetching meta.conf: 100% 179 B 0.2kB/s 00:01
DBG(1)[39444]> (fetch) Request to fetch https://updates.zenarmor.net/opnsense/FreeBSD:14:amd64/26.1/6d16b468-1a2c-4e63-aa90-803de1816773/data.pkg
DBG(1)[39444]> (fetch) Fetch: fetcher used: https
Fetching data.pkg: 100% 21 KiB 21.1kB/s 00:01
DBG(1)[39444]> PkgRepo: extracting data of repo SunnyValley
DBG(1)[39766]> PkgRepo: extracting signature of repo in a sandbox
DBG(1)[39444]> Pkgrepo, reading new metadata
Processing entries: 100%
SunnyValley repository update completed. 14 packages processed.
SunnyValley is up to date.
root@OPNsense:~ #
Quote from: newsense on June 25, 2026, 08:26:06 PM>>> Avoid Server Certificate Lifetimes > 397 DaysSo is this not going counter to the 397 days advice above? Asking because last time i was on this, the amount of effort I put into in vain was high.
Or simply use your own certificate that can be issued from OPNSense, and enjoy 730 days of certificate validity. This is the hard limit from Apple for private/enterprise CAs
As long as you're controlling everything else on your VPN/devices importing your own CA everywhere is a no brainer.