"Recent posts
#21
German - Deutsch / Re: LDAP gegen eDir
Last post by Ullrich - Today at 09:02:04 AMMoin Patrick,
danke für die Rückmeldung.
Genau das ist ja das Problem. Die Mitarbeiterkonten sind in mehreren anderen OU's. In der OU Gruppen sind eben nur Gruppen mit den Mitarbeitern aber nicht die eigentlichen Mitarbeiter Objekte.
Gruß
Ullrich
danke für die Rückmeldung.
Genau das ist ja das Problem. Die Mitarbeiterkonten sind in mehreren anderen OU's. In der OU Gruppen sind eben nur Gruppen mit den Mitarbeitern aber nicht die eigentlichen Mitarbeiter Objekte.
Gruß
Ullrich
#22
German - Deutsch / Re: Eigener DNS bei einer IPv6...
Last post by s.meier68 - Today at 08:59:01 AMQuote from: n3 on January 10, 2026, 11:59:33 PM1. AdGuard im ADMIN Netzwerk zur IPv4 auch eine IPv6 vergeben
Meine Annahme ist, dass ich dem Server manuell eine IPv6 konfiguriere, entsprechende Regeln in der FW konfigurieren muss und dann sollte es gehen. Werde mich dem mal morgen annehmen.
Hängt davon ab wie die IPv6 Adresse des Admin Netz Interfaces der Opnsense vergeben wurde... Manuell oder per Track Interface... eine feste IP kannst Du bei adguard aber nur über das darunter liegende System vergeben
#23
General Discussion / Re: Plugin developement questi...
Last post by Monviech (Cedrik) - Today at 07:56:09 AMIf you are concerned about changes in code, if you run the "Development" version (System - Firmware... change it there), you will always be pretty close to master. The "Community" version lags behind a bit and sometimes features or changes are withheld until the next major version. Major releases are all 6 months and can be seen here: https://opnsense.org/roadmap/
To get a plugin into the plugin list create a PR here: https://github.com/opnsense/plugins
To get it in,
- it should be generally useful (meaning if its something purpose built for just your own personal usecase it might not make it). Though please offer it, who knows if its not generally useful without seeing it
- It should be based on an existing FreeBSD port (no "business" logic inside the plugin, only glue code)
If you need a current example that shows all of this:
https://github.com/opnsense/plugins/tree/master/net/ndp-proxy-go
To get a plugin into the plugin list create a PR here: https://github.com/opnsense/plugins
To get it in,
- it should be generally useful (meaning if its something purpose built for just your own personal usecase it might not make it). Though please offer it, who knows if its not generally useful without seeing it
- It should be based on an existing FreeBSD port (no "business" logic inside the plugin, only glue code)
If you need a current example that shows all of this:
https://github.com/opnsense/plugins/tree/master/net/ndp-proxy-go
#24
Development and Code Review / Where to PR a small NVMe tunab...
Last post by Jwidess - Today at 04:29:55 AMThis is stemming from my post here for context: Install problem on NVMe (nvme0: async event occurred)
I currently have some small changes on a branch I made of stable/25.7 just so I could get my changes compiled and installed ASAP. However, now I'd like to PR these changes into either OPNsense src or FreeBSD src, but I'm unsure which repo and branch to PR.
I've checked FreeBSD releng/14.3 and the 3 files I've modified are identical to stable/25.7, so I was thinking of PRing them there, but as it's a release branch, that doesn't seem appropriate... If anyone has some advice on how I should go about this, it would be much appreciated! I have reviewed 25.7/CONTRIBUTING.md, articles/contributing, etc. but have not found a suitable answer.
I currently have some small changes on a branch I made of stable/25.7 just so I could get my changes compiled and installed ASAP. However, now I'd like to PR these changes into either OPNsense src or FreeBSD src, but I'm unsure which repo and branch to PR.
I've checked FreeBSD releng/14.3 and the 3 files I've modified are identical to stable/25.7, so I was thinking of PRing them there, but as it's a release branch, that doesn't seem appropriate... If anyone has some advice on how I should go about this, it would be much appreciated! I have reviewed 25.7/CONTRIBUTING.md, articles/contributing, etc. but have not found a suitable answer.
#25
25.7, 25.10 Series / Re: Dnsmasq stops occasionaly
Last post by ligand - Today at 02:59:47 AMOne difference is that I'm still using Unbound for DNS and using dnsmasq only for DHCP and DHCPv6
#26
25.7, 25.10 Series / Re: Dnsmasq stops occasionaly
Last post by ligand - Today at 02:54:36 AMSure thing. I'm running this:
sh -c 'while true; do ps -o pid,rss,command -p 45263; date; sleep 3600; done >> dns_mem_usage.out' &
and will post it in a few days
Let me know if you want the mem usage captured differently.
sh -c 'while true; do ps -o pid,rss,command -p 45263; date; sleep 3600; done >> dns_mem_usage.out' &
and will post it in a few days
Let me know if you want the mem usage captured differently.
#27
Virtual private networks / Re: Tailscale - Site-to-Site S...
Last post by nsmith17044 - Today at 01:29:27 AMI spent the last few hours trying to setup a new ZeroTier net and it seems they have taken a few steps backwards in sub-net routing with FreeBSD/OPNSense. The new portal doesn't even expose the options for subnet routing with FreeBSD nodes. CoPilot had me hacking the ZeroTier local.conf to advertise the subnets / routes but I couldn't get any of that to allow packets across the OPNSense instances. The new portal doesn't seem to allow you to get an API token for the ZeroTier config panel so I couldn't use that. I did notice that on the public side I wasn't playing the IP address lottery so ZeroTier's keep awake signalling must have improved somewhere along the way.
Feels like TailScale with a standalone Linux VM doing subnet routing as the only option left that seems viable.
Feels like TailScale with a standalone Linux VM doing subnet routing as the only option left that seems viable.
#28
General Discussion / Re: Plugin developement questi...
Last post by 300cpilot - Today at 01:21:09 AMUpgrades, how far in advance are beta updates to the production version released by Opnsense, ? If I under take this, I would like to maintain it as well in a timely manor. I'm one guy so if this is to short, it may kill my idea.
Future questions:
Is there documentation on the official process for getting them put in the Plugin list? I have never been involved with an open source project before so I'm testing new waters. https://docs.opnsense.org/manual/software_included.html#plugins Does not give a lot of details on the process.
What the project is:
I would like to line it all out, but someone more familiar would push this out a lot faster than myself, so I am going to keep it to myself for a while yet.I'm sure I will let the cat out of the bag soon enough.
Many Thanks!
Future questions:
Is there documentation on the official process for getting them put in the Plugin list? I have never been involved with an open source project before so I'm testing new waters. https://docs.opnsense.org/manual/software_included.html#plugins Does not give a lot of details on the process.
What the project is:
I would like to line it all out, but someone more familiar would push this out a lot faster than myself, so I am going to keep it to myself for a while yet.I'm sure I will let the cat out of the bag soon enough.
Many Thanks!
#29
German - Deutsch / Re: Eigener DNS bei einer IPv6...
Last post by n3 - January 10, 2026, 11:59:33 PMDanke für den Hinweis. Habe die Einstellung gefunden. Der DNS Server ist in einem anderen Netz/Interface, wo auch meine anderen Server über IPv4 zu erreichen sind. Beim RA muss ich natürlich eine IPv6 Adresse angeben. Jetzt muss ich schauen, was die beste Lösung ist. Aktuell fallen mir drei Optionen ein:
1. AdGuard im ADMIN Netzwerk zur IPv4 auch eine IPv6 vergeben
2. AdGuard ins LAN Netzwerk verschieben
3. ADMIN Netzwerk auf IPv6 umstellen
Die Liste ist priorisiert und ich muss mal schauen, wie ich AdGuard im IPv4 ADMIN Netz eine zusätzliche IPv6 Adresse geben, damit ich diese dann im RA eintragen kann. Meine Annahme ist, dass ich dem Server manuell eine IPv6 konfiguriere, entsprechende Regeln in der FW konfigurieren muss und dann sollte es gehen. Werde mich dem mal morgen annehmen.
1. AdGuard im ADMIN Netzwerk zur IPv4 auch eine IPv6 vergeben
2. AdGuard ins LAN Netzwerk verschieben
3. ADMIN Netzwerk auf IPv6 umstellen
Die Liste ist priorisiert und ich muss mal schauen, wie ich AdGuard im IPv4 ADMIN Netz eine zusätzliche IPv6 Adresse geben, damit ich diese dann im RA eintragen kann. Meine Annahme ist, dass ich dem Server manuell eine IPv6 konfiguriere, entsprechende Regeln in der FW konfigurieren muss und dann sollte es gehen. Werde mich dem mal morgen annehmen.
#30
General Discussion / Re: Cannot Setup
Last post by OPNenthu - January 10, 2026, 11:33:30 PMHello,
If you want to boot on a PC then you need to make a bootable USB, yes, such as with Rufus.
If you want to boot on a VM then you need only the uncompressed .img file (no USB drive). You can mount the .img as a virtual CD-ROM within the VM settings and boot from it.
That should be it.
P.S.: I don't want honorific titles, man :) I'm just another user trying to help out.
Quote from: DigitalSquirrel01 on January 10, 2026, 09:23:27 PMSo is it possible that I can make like a bootable drive USB using YUMI || RUFUS and then boot from the Oracle VirtualBox?
If you want to boot on a PC then you need to make a bootable USB, yes, such as with Rufus.
If you want to boot on a VM then you need only the uncompressed .img file (no USB drive). You can mount the .img as a virtual CD-ROM within the VM settings and boot from it.
That should be it.
P.S.: I don't want honorific titles, man :) I'm just another user trying to help out.
