"Recent posts
#21
Intrusion Detection and Prevention / Re: Performance tuning for IPS...
Last post by spetrillo - February 02, 2026, 07:07:51 PMIs this information still relevant for Suricata 8.03?
#22
25.7, 25.10 Series / Re: Utility for checking healt...
Last post by BigFreddy - February 02, 2026, 07:04:09 PMQuote from: Patrick M. Hausen on February 02, 2026, 06:58:24 PM1. Schedule regular ZFS pool scrubs.
2. Follow this procedure of mine to get SMART data into a tool named Scrutiny:
https://forum.opnsense.org/index.php?topic=48101.msg242617#msg242617
HTH,
Patrick
Thanks Patrick, I will look into this as it's well needed.
#23
25.7, 25.10 Series / Microsoft Entra ID and OIDC Gr...
Last post by opnsense_ci - February 02, 2026, 07:00:59 PMPlease could someone assist, I have searched everywhere.
I recently purchased a business licence explicitly to try out OIDC WebGui logins. Whatever I do I cannot seem to get the group attribute to be used when logging in. All of the info I could find says to enable debug logging in the OIDC settings which I have done however nothing about groups is shown in the logs.
I'm on 25.10 with the latest updates applied as of the time of this post.
Any help would be much appreciated
I recently purchased a business licence explicitly to try out OIDC WebGui logins. Whatever I do I cannot seem to get the group attribute to be used when logging in. All of the info I could find says to enable debug logging in the OIDC settings which I have done however nothing about groups is shown in the logs.
I'm on 25.10 with the latest updates applied as of the time of this post.
Any help would be much appreciated
#24
General Discussion / Certificate Removal
Last post by spetrillo - February 02, 2026, 06:59:46 PMHello all,
I had used Let's Encrypt to protect a web server that is proxied by Caddy. I would like to revoke the certs in OPNsense but its not doing as it shows it should work. What is the right process?
Thanks,
Steve
I had used Let's Encrypt to protect a web server that is proxied by Caddy. I would like to revoke the certs in OPNsense but its not doing as it shows it should work. What is the right process?
Thanks,
Steve
#25
26.1 Series / Re: Rules migration wizard see...
Last post by Headless1919 - February 02, 2026, 06:59:14 PMThat seems to have done it, thanks Cedric. Changes made in Notepad, imported without an issue. Saved me a lot of work!
#26
26.1 Series / Re: New Rules "Edit/Clone Rule...
Last post by retatefw - February 02, 2026, 06:58:39 PMI have also had the "Nothing selected" happening frequently on rules edit. My sequence of events was upgrade install and a day later migrated about 50 rules to the new interface with no problems. I then did a clean install with the existing configuration to migrate from UFS to ZFS file system. At this point I started editing rules and noticed the "Nothing selected" problem. I believe I encountered the problem even with no interface change involved.
From a speed perspective everything is over provisioned. The client system has an Intel Ultra 9 285K processor, Intel X710-TL 10 Gb ethernet connection, Samsung 9100 SSD & Windows 11 with Edge as the browser. The OPNSense hardware has an Intel i7-13700K processor, Samsung 990 Pro SSD, and Intel X710-TL configured as a dual (wan/lan) 10 Gb ethernet.
From a speed perspective everything is over provisioned. The client system has an Intel Ultra 9 285K processor, Intel X710-TL 10 Gb ethernet connection, Samsung 9100 SSD & Windows 11 with Edge as the browser. The OPNSense hardware has an Intel i7-13700K processor, Samsung 990 Pro SSD, and Intel X710-TL configured as a dual (wan/lan) 10 Gb ethernet.
#27
25.7, 25.10 Series / Re: Utility for checking healt...
Last post by Patrick M. Hausen - February 02, 2026, 06:58:24 PM1. Schedule regular ZFS pool scrubs.
2. Follow this procedure of mine to get SMART data into a tool named Scrutiny:
https://forum.opnsense.org/index.php?topic=48101.msg242617#msg242617
HTH,
Patrick
2. Follow this procedure of mine to get SMART data into a tool named Scrutiny:
https://forum.opnsense.org/index.php?topic=48101.msg242617#msg242617
HTH,
Patrick
#28
26.1 Series / Re: hostwatch db grows rapidly
Last post by dinguz - February 02, 2026, 06:42:04 PMIt's currently 150 MB on my home router, mostly caused by IPv6 addresses which appear to change frequently over time. I also see log entries going back to the initial activation. Is there any expiry or cleanup mechanism in place for HostWatch data (database and/or logs)?
#29
26.1 Series / Re: Destination NAT: Configura...
Last post by miketubby - February 02, 2026, 06:37:30 PMHere's the result of:
System > Firmware > Status > Run Audit > Health
***GOT REQUEST TO AUDIT HEALTH***
Currently running OPNsense 26.1_4 (amd64) at Mon Feb 2 17:34:21 GMT 2026
>>> Root file system: /dev/gpt/rootfs
>>> Check installed kernel version
Version 26.1 is correct.
>>> Check for missing or altered kernel files
No problems detected.
>>> Check installed base version
Version 26.1 is correct.
>>> Check for missing or altered base files
No problems detected.
>>> Check installed repositories
OPNsense (Priority: 11)
>>> Check installed plugins
No plugins found.
>>> Check locked packages
No locks found.
>>> Check for missing package dependencies
Checking all packages: .......... done
>>> Check for missing or altered package files
Checking all packages: .......... done
>>> Check for core packages consistency
Core package "opnsense" at 26.1_4 has 67 dependencies to check.
Checking packages: .................................................................... done
***DONE***
Regards
Mike
System > Firmware > Status > Run Audit > Health
***GOT REQUEST TO AUDIT HEALTH***
Currently running OPNsense 26.1_4 (amd64) at Mon Feb 2 17:34:21 GMT 2026
>>> Root file system: /dev/gpt/rootfs
>>> Check installed kernel version
Version 26.1 is correct.
>>> Check for missing or altered kernel files
No problems detected.
>>> Check installed base version
Version 26.1 is correct.
>>> Check for missing or altered base files
No problems detected.
>>> Check installed repositories
OPNsense (Priority: 11)
>>> Check installed plugins
No plugins found.
>>> Check locked packages
No locks found.
>>> Check for missing package dependencies
Checking all packages: .......... done
>>> Check for missing or altered package files
Checking all packages: .......... done
>>> Check for core packages consistency
Core package "opnsense" at 26.1_4 has 67 dependencies to check.
Checking packages: .................................................................... done
***DONE***
Regards
Mike
#30
25.7, 25.10 Series / Utility for checking health of...
Last post by BigFreddy - February 02, 2026, 06:28:53 PMHi,
Does anyone know if there is a plugin\built in utility that would continuously check SSDs\Hard Drives used in the firewall for S.M.A.R.T status or bad sectors, so once a malfunction is detected it would notify you in the web panel about it ? I'm asking because it would be hard to just power off the firewall just to check with a 3rd party tools to see if the drive\ssd is faulty or healthy.
Thanks
Does anyone know if there is a plugin\built in utility that would continuously check SSDs\Hard Drives used in the firewall for S.M.A.R.T status or bad sectors, so once a malfunction is detected it would notify you in the web panel about it ? I'm asking because it would be hard to just power off the firewall just to check with a 3rd party tools to see if the drive\ssd is faulty or healthy.
Thanks
