Recent posts

#1
General Discussion / Wrong username or password
Last post by Conte1605 - Today at 12:10:39 AM
Good evening everyone.
And sorry in advance for my bad English.
Yesterday I set up my Opnsense for the first time on my PC with a dual internet interface. I simply logged in to the GUI, changed the root password, and enabled https for the GUI. The problem is that since yesterday, whenever I don't connect to the GUI for a few hours, and I try to log in again from either the GUI or the console, I always get this error: "Wrong username or password," or I have to reset the password from the console every time. I should point out that the date and time are correct, and that I'm not entering the password incorrectly, because I've also tried simple passwords, but I still have the same problem after a short time. I'm wondering if there's a permanent solution to this problem because I can't log in to the console every time to reset the password. Thanks in advance to anyone who can help.
#2
25.7, 25.10 Series / Re: Erratic behaviour of bundl...
Last post by nero355 - January 11, 2026, 11:51:52 PM
Quote from: poplin on January 11, 2026, 02:54:23 PM(sorry for the long delay getting back and thanks again for your help)
No worries :)

I think one of the developers needs to take a look at this, because if the things you have tested so far are _always_ the case then it's definitely related to DNSmasqd used by OPNsense sadly...
#3
25.7, 25.10 Series / Re: MacOS and .localdomain aft...
Last post by nero355 - January 11, 2026, 11:47:50 PM
Quote from: bamf on January 11, 2026, 09:34:13 PMYou should not use any domains starting with local as DNS name in your network. Use home.arpa instead which is reserved for exactly that purpose.
We had a nice discussion about that not too long ago in this topic : https://forum.opnsense.org/index.php?topic=50301.msg256202#msg256202

Worth the read IMHO :)
#4
Hardware and Performance / Re: Internet speeds reduced se...
Last post by manki_09 - January 11, 2026, 11:01:56 PM
Quote from: passeri on January 11, 2026, 10:28:30 PMYou are shaping the WAN-side speed? What was the preceding position, when using auto-negotiation?

I currently have shaping turned off. I tried shaping as a troubleshooting step to limit the speed to 1gb but nothing changed.

The intel x550 NICs will not auto negotiate to 2.5gbps. Which is programmed into the firmware. Manual selection is required. This is why I have a 2.5gb usb nic order so I can test if the NIC is at fault.
#5
Hardware and Performance / Re: Internet speeds reduced se...
Last post by passeri - January 11, 2026, 10:28:30 PM
You are shaping the WAN-side speed? What was the preceding position, when using auto-negotiation?
#6
Hardware and Performance / Re: Internet speeds reduced se...
Last post by manki_09 - January 11, 2026, 09:40:07 PM
Quote from: meyergru on January 11, 2026, 09:30:42 AMDid you try RSS?

I thought I had already done that. Some of the tunable items were complete except net.inet.rss.enabled = 1. I did change that and rebooted. However, my results have not changed.

I do have a USB 3 2.5gb adapter coming today I'm going to tryout incase the NIC is causing something. I use 1gb versions of these adapters for work all the time so no harm buying another one.
#7
25.7, 25.10 Series / Re: MacOS and .localdomain aft...
Last post by bamf - January 11, 2026, 09:34:13 PM
As far as I know, MacOS handles .localdomain the same way as .local. This is reserved for mDNS and is answered via Multicast, not via a central DNS service.

You should not use any domains starting with local as DNS name in your network. Use home.arpa instead which is reserved for exactly that purpose.
#8
25.7, 25.10 Series / MacOS and .localdomain after m...
Last post by blacksteel1288 - January 11, 2026, 09:09:44 PM
Hi all,

Looking for guidance on the migration from ISC to dnsmasq, on 25.7.10, in particular with the handling of the .localdomain for MacOS clients.

I followed the steps in the guide at https://docs.opnsense.org/manual/dnsmasq.html#dhcp-service to setup the new DHCP service on dnsmasq.

However, after disabling ISC and enabling dnsmasq, my MacOS clients were unable to connect/ping any host with the .localdomain suffix.  I could 'nslookup' the host correctly from MacOS, but ping or ssh could not find it.  This worked fine previously with ISC.

This is what I get with dnsmasq --

myuser@Mac ~ % ping myserver.localdomain
ping: cannot resolve myserver.localdomain: Unknown host
myuser@Mac ~ % nslookup myserver.localdomain
Server: 192.168.1.1
Address: 192.168.1.1#53

Non-authoritative answer:
Name: myserver.localdomain
Address: 192.168.1.130

Is there any easy way to have dnsmasq work the same way as ISC did for these local hosts, to put them on .localdomain, and have MacOS clients be able to find them?

I'd hoped that the section "ISC / KEA DHCP (legacy)" on the dnsmasq "General" page would help here, but I've tried all of those settings without any luck. 

I have several services internally pointing to the .localdomain suffix on some hosts, so ideally I want to keep that as the domain.


#9
German - Deutsch / Re: Eigener DNS bei einer IPv6...
Last post by n3 - January 11, 2026, 09:08:33 PM
Quote from: Maurice on January 11, 2026, 07:43:08 PMFalls Du die Möglichkeit hast ein statisches IPv6-Präfix zu bekommen, dann solltest Du das auf jeden Fall tun. Das erspart auch an vielen anderen Stellen Kopfschmerzen.
Im betrieblichen Kontext verstehe ich das, aber im privaten Kontext verlieren ich dann viel an Privatsphäre.
#10
General Discussion / Re: Cannot Setup
Last post by DigitalSquirrel01 - January 11, 2026, 08:54:15 PM
Quote from: OPNenthu on January 10, 2026, 11:33:30 PMP.S.: I don't want honorific titles, man :)  I'm just another user trying to help out.

LOL! I am sorry! I was brought up to Sir and Ma'am everyone, and then when I worked in the military, it just reinforced everything I learned when I was a child.

My Mom, being from a Russian background,  was very strict on loyalty, respect, and education, and my step- dad was a Marine and very strict on respect and discipline, so it was not an option growing up, so now as an adult, it's just second nature to me and I dont even notice until someone brings it to my attention.
Plus, ideologically, I find that respect is the playground everyone can play on, and it is lacking in the world. A lot of the world's problems stem from a lack of fundamental respect and care/love for one another. So I humbly apologise if I have offended you. I want to show people my gratitude by respecting them because, honestly, you don't have to help me, and there is no other way to repay you for the help that you are giving me.

However, since I now know that you don't want me to say "Sir"  to you, I will try my hardest to honor your wishes. :-) (Please do not be angry with me if I forget and one slips through.)

On your technical instructions, I will investigate further, find out what the issue could be, and follow your instructions.

Till next time!

Thank you again! :-)