"Recent posts
#21
General Discussion / Re: OPNsense DNS over TLS forw...
Last post by meyergru - November 25, 2025, 11:03:01 PMI already wondered how this was possible - for me, DoT works as expected as verified by a tcpdump. So it is only the column in the grid that display the wrong value, mainly a cosmetic problem.
#22
General Discussion / Re: OPNsense DNS over TLS forw...
Last post by cookiemonster - November 25, 2025, 10:55:57 PMQuote from: chemlud on November 25, 2025, 10:22:29 PMRelated:very well spotted. It seems the likely explanation.
https://github.com/opnsense/core/issues/8386
?
#23
General Discussion / Re: OPNsense DNS over TLS forw...
Last post by chemlud - November 25, 2025, 10:22:29 PM #24
Hardware and Performance / Re: N150 / N355 good fits?
Last post by meyergru - November 25, 2025, 09:36:02 PMForget those TDP numbers.
First off, for the Intel N series, these are most often "TDP down" values which no manufacturer uses for sake of higher performance ratings. Even the N100 is often configured at 25 Watts TDP and for some BIOSes, you need special tricks to bring these down, which you will need when you have a passively cooled system.
Second, with normal load on the system, the numbers are often lower - take the Minisforum. 100W TDP is only for the CPU, but at max load. In reality, the CPU will likely use 8-10 Watts and the rest of the system ~15W, so the real power draw will likely be more like 35 Watts.
An N1x0 will be more like 20-25 Watts, the N355 (estimated) ~30-35 Watts.
First off, for the Intel N series, these are most often "TDP down" values which no manufacturer uses for sake of higher performance ratings. Even the N100 is often configured at 25 Watts TDP and for some BIOSes, you need special tricks to bring these down, which you will need when you have a passively cooled system.
Second, with normal load on the system, the numbers are often lower - take the Minisforum. 100W TDP is only for the CPU, but at max load. In reality, the CPU will likely use 8-10 Watts and the rest of the system ~15W, so the real power draw will likely be more like 35 Watts.
An N1x0 will be more like 20-25 Watts, the N355 (estimated) ~30-35 Watts.
#25
25.7, 25.10 Series / Re: KEA IPv6 Leases
Last post by meyergru - November 25, 2025, 09:26:01 PMMany IoT devices only support SLAAC, if they support IPv6 at all.
Other than that, you have to select the correct RA mode to instruct devices to use DHCPv6 for all interfaces where you want it.
To me, it does not make much sense to use DHCPv6, even if you want to identify devices, because with IPv6 privacy extensions and randomized MACs these days, you cannot effectively do that anyway. Therefore, I prefer to use SLAAC only: https://forum.opnsense.org/index.php?topic=45822.0
Other than that, you have to select the correct RA mode to instruct devices to use DHCPv6 for all interfaces where you want it.
To me, it does not make much sense to use DHCPv6, even if you want to identify devices, because with IPv6 privacy extensions and randomized MACs these days, you cannot effectively do that anyway. Therefore, I prefer to use SLAAC only: https://forum.opnsense.org/index.php?topic=45822.0
#26
25.7, 25.10 Series / Re: KEA IPv6 Leases
Last post by Leo999 - November 25, 2025, 09:16:27 PMMake sure that your device supports DHCPv6. For example, Google devices currently only support slacc, which will not appear on KEA IPv6 leases.
#27
Hardware and Performance / Re: N150 / N355 good fits?
Last post by Billy2010 - November 25, 2025, 09:06:58 PMPrices for barebones, compareable setup. (2x2.5 instead of 4 for the 355)
Minisforum a2 is a beast though.
There is a setting to limit TDP on the minisforum.
| Model # | Single core benchmark # | TDP # | Price # |
| 355 | 2215 | 15 | 239.98€ |
| i5-1335u | 3302 | 15 | 502.5 |
| 155h | 3446 | 28 | 830.7 |
| minisforum ms-a2 | 4378 | 100 | 884 |
Minisforum a2 is a beast though.
There is a setting to limit TDP on the minisforum.
#28
25.7, 25.10 Series / Re: KEA IPv6 Leases
Last post by Patrick M. Hausen - November 25, 2025, 08:59:56 PMApparently there are no IPv6 leases on any other interface?
#29
25.7, 25.10 Series / KEA IPv6 Leases
Last post by rjopn - November 25, 2025, 08:51:10 PMThe "Services: Kea DHCP: Leases DHCPv4" shows to which interface the IP-address is assigned.
The "Services: Kea DHCP: Leases DHCPv6" shows only "LAN" as interface.
Have I done something wrong?
The "Services: Kea DHCP: Leases DHCPv6" shows only "LAN" as interface.
Have I done something wrong?
#30
24.7, 24.10 Legacy Series / Re: (SOLVED) I need an os-cadd...
Last post by Monviech (Cedrik) - November 25, 2025, 08:07:16 PMI also added the exchange feature and more in OPNWAF (which is Apache based) so it might be the better choice if you have some more enterprise requirements.
Its only in the business edition though but I know of quite a few customers using it successfully.
https://docs.opnsense.org/vendor/deciso/opnwaf.html#exchange-server
But in caddy it works too, still, as far as I know.
Its only in the business edition though but I know of quite a few customers using it successfully.
https://docs.opnsense.org/vendor/deciso/opnwaf.html#exchange-server
But in caddy it works too, still, as far as I know.
