"Recent posts
#21
25.7 Series / odroid H4+ with net card v2 (i...
Last post by 0n3man - Today at 02:52:04 PMI have an odroid H4+ with the net card v2 giving a total of 6 intel i226-v interfaces. This is a clean install as I was looking to replace my current FW. I initially had issues with the hard drive, which I got past. I then noticed the WAN interface seemed to be dropping out every couple of days. I found the post that provided steps to update the nic firmware. So I'm running the latest version of the intel nic firmware (FXVL_125C_V_2MB_2.32.bin). This did not fix the issue. I found a post where it was recommended to disable Energy-Efficient-Ethernet by setting the sysctl value for each nic to 1. Turns out 1 is the default value after the install. There was another post that indicated fc (flow-control) on the NIC could be a problem. The default value here was 3, which means flow control is on. I set it to 0 for each NIC. Still no help. I also turned off ASPM with sysctrl and also via the bios.
Once I noticed the WAN interface was dropping I decided to see how things faired while streaming video. This causes the communications to drop out usually under an hour. It's strange how things happen. First normal traffic like DNS will stop being sent out over the WAN port. However the video will keep streaming for a while. Anyway I'm looking for any other suggestions on how I might fix this. I'm considering loading some form of VM host as I did that initially when I put my previous hardware in place. Any thoughts on how to get pass this issue are appreciated.
Once I noticed the WAN interface was dropping I decided to see how things faired while streaming video. This causes the communications to drop out usually under an hour. It's strange how things happen. First normal traffic like DNS will stop being sent out over the WAN port. However the video will keep streaming for a while. Anyway I'm looking for any other suggestions on how I might fix this. I'm considering loading some form of VM host as I did that initially when I put my previous hardware in place. Any thoughts on how to get pass this issue are appreciated.
#22
German - Deutsch / Re: LAN-Port der DEC42xx geht ...
Last post by Patrick M. Hausen - Today at 02:09:31 PMKabel? Was kommt als Ausgabe von "dmesg"?
#23
German - Deutsch / LAN-Port der DEC42xx geht stän...
Last post by dsn-bt - Today at 01:58:52 PMGuten Tag,
nach der Ersteinrichtung (IP-Adresse des LAN-Ports, Deaktivierung des DHCP) einer DEC42xx über eine direkte Verbindung soll die Firewall über das bestehende LAN weiter konfiguriert werden.
Sobald die Firewall aber mit dem LAN-Port am bestehenden LAN angeschlossen ist, geht dieser alle ca. sieben Sekunden DOWN.
Ist jemanden dieses Verhalten zufällig bekannt? Woran könnte es liegen?
Vielen Dank und Gruß
nach der Ersteinrichtung (IP-Adresse des LAN-Ports, Deaktivierung des DHCP) einer DEC42xx über eine direkte Verbindung soll die Firewall über das bestehende LAN weiter konfiguriert werden.
Sobald die Firewall aber mit dem LAN-Port am bestehenden LAN angeschlossen ist, geht dieser alle ca. sieben Sekunden DOWN.
Ist jemanden dieses Verhalten zufällig bekannt? Woran könnte es liegen?
Vielen Dank und Gruß
#24
German - Deutsch / Re: SNMP? Bin ich blind?
Last post by knebb - Today at 01:36:56 PMOh man! Ja, danke, gefunden...
#25
German - Deutsch / Re: extrem langsame DNS-Auflös...
Last post by Monviech (Cedrik) - Today at 01:36:21 PMDNS mit dnsmasq als erstes hab ich extra hier in den docs beschrieben:
https://docs.opnsense.org/manual/dnsmasq.html#dnsmasq-as-primary-dns-resolver
https://docs.opnsense.org/manual/dnsmasq.html#dnsmasq-as-primary-dns-resolver
#26
German - Deutsch / Re: SNMP? Bin ich blind?
Last post by Patrick M. Hausen - Today at 01:32:11 PMGuckst du hier:
#27
German - Deutsch / SNMP? Bin ich blind?
Last post by knebb - Today at 01:12:02 PMMoin,
mal wieder eine Frage zum "Stups-mich-mit-der-Nase-drauf"...
Ich möchte gerne SNMP bei meinen OPNSense aktivieren.
Sämtliche Suchmaschinenlinks sagen: "Plugin os-net-snmp installieren". Aber das gibt es in meienr aktuellen OPNSense nicht. Es gibt nur ein Paket net-snmp, was aber augenscheinlich bereits installiert ist.
Nur: Wo konfiguriere ich das Ganze??? Irgendwie finde ich das nicht...
Danke!
/KNEBB
mal wieder eine Frage zum "Stups-mich-mit-der-Nase-drauf"...
Ich möchte gerne SNMP bei meinen OPNSense aktivieren.
Sämtliche Suchmaschinenlinks sagen: "Plugin os-net-snmp installieren". Aber das gibt es in meienr aktuellen OPNSense nicht. Es gibt nur ein Paket net-snmp, was aber augenscheinlich bereits installiert ist.
Nur: Wo konfiguriere ich das Ganze??? Irgendwie finde ich das nicht...
Danke!
/KNEBB
#28
General Discussion / Re: Visibility of aliases
Last post by franco - Today at 12:59:50 PMI see. Virtual IPs have tried to fill this gap, but it wasn't overly successful and straightforward. The biggest caveat of virtual IPs is that the primary interface IP addresses are not visible to virtual IPs so you cannot select them in some services, which work around this by also offering an interface selection or alias/CARP address. Historically we also scrapped most virtual IP selectors in code and bind to all primary and virtual IP addresses of a selected interface which offers a more robust user experience although it has its limit when micromanaging addresses is required.
If the interface code were all MVC (especially model-based) we could try to structure this better but that's likely 3-5 years away from being usable out of the box if we committed to this now. It's probably going to happen, but I also think the interface code is the last bit to be moved to MVC (and we're 80% done with that conversion after 10 years of work).
Cheers,
Franco
If the interface code were all MVC (especially model-based) we could try to structure this better but that's likely 3-5 years away from being usable out of the box if we committed to this now. It's probably going to happen, but I also think the interface code is the last bit to be moved to MVC (and we're 80% done with that conversion after 10 years of work).
Cheers,
Franco
#29
Virtual private networks / Re: OpenVPN clients can't reso...
Last post by Pete5 - Today at 12:31:19 PMNetwork interfaces is set to "all", unbound should resolve addresses for the ovpn clients like for the LAN clients, right?
#30
Zenarmor (Sensei) / Re: Zenarmor, NextDNS & Apple ...
Last post by sy - Today at 12:20:37 PMHi,
Please contact to the sales team for further details via Help section in the following link
https://www.zenarmor.com/plans
Please contact to the sales team for further details via Help section in the following link
https://www.zenarmor.com/plans
