Recent posts

Pages 1 ... 6 7 8 9 10
#71
25.1, 25.4 Series / Re: IPv6 not functional (Spect...
Last post by karvec - Today at 04:11:19 AM
No ISP provided equipment, just ISP <-> MB8600 cable modem <-> OPNsense box <-> various switches, APs, etc.  Since I am really just troubleshooting the ISP <-> OPNsense I haven't focused on any of the LAN side of things...  Figure when I get it working OPNsense <-> WAN I should be golden.

I believe it has worked in the past but I wasn't very interested in learning IPv6 then, or setting it up.  I should have taken advantage of the learning experience when the opportunity was there, since it seems like it no longer is.

Thanks for your time and responses.  If I manage to change something and it does start magically working I will definitely post my fix to this thread.

karvec
#72
General Discussion / Re: Limit Unifi Software Contr...
Last post by OmegaWaffle - Today at 03:47:44 AM
Quote from: meyergru on September 02, 2025, 09:27:14 AMYou probably installed the Unifi Controller Plugin with a Unifi account instead of just a local account, which is encouraged by the workflow for the setup.

You are correct, I did set it up with a Unifi Account. I've deleted the plugin and started from scratch with a local account, along with tried to access my ip from a device completely unconnected to my network. It looks like I can no longer access the web UI, but when starting an nmap scan against my IP, I get open ports on 6789, 8080, and 8443. From what I can tell those are all used for Unifi equipment, so is there still accessible services on my network? Or am I misunderstanding the results of the nmap scan?
#73
General Discussion / Re: new install problem adding...
Last post by ldanna1945 - Today at 02:56:41 AM
Yes I figured it out. I missed the box to show community plug ins . So simple but I missed it. Thanks for listening.

LArry
#74
25.7 Series / Re: SOLVED - 25.7.2 shadowsock...
Last post by beren - Today at 02:47:09 AM
Well, under the ShadowSocks: Local I have server address and port set, and local address 10.0.0.1 and local port 1080. I can see in the logs it's binding to 127.0.0.1 port 1080.
The server is set to 127.0.0.1 and port 8388.

I have not changed the config since it was working for the past couple years and use it with FoxyProxy on some of my machines.

I even checked the config.xml and it's correct. For now I was able to rig it to work with port forwarding but that's not ideal.
#75
General Discussion / Re: Firewall is blocking outbo...
Last post by shaam - Today at 02:13:20 AM
Yes, it's a physical device. It's a Dell PC, to be specific.
I am using Proxmox hypervisor.
I set a static IP on the VM itself.

Promox server has two interfaces, vmbr0 with subnet 192.168.1.1/24, which I use for management, the second interface, vmbr1 (for Proxmox) with subnet 192.168.50.1/24, which is a VLAN, is used by VMs and other external servers outside of Proxmox, such as Truenas, Backup server, etc. Traffic from VLAN to LAN gets blocked or vice versa.
I have a weird theory. It might have something to do with routing when VM 192.168.50.202 sends traffic to Proxmox (192.168.1.100) or any server on the LAN subnet, the packet goes from VM -> Opnsense-> Proxmox. Proxmox receives it on vmbr0. Proxmox replies to VM. Since Proxmox also has a direct connection to 192.168.50.0/24 (via vmbr1), it bypasses Opnsense and attempts to communicate directly with the VM. I might be wrong.
#76
General Discussion / DNS queries for a non-existent...
Last post by andrew_241 - Today at 01:48:17 AM
I'm seeing DNS queries for A and AAAA records for jetstream.tour.in. tour.in doesn't exist. In 'Reporting', it accounted for somewhere around 10 percent of passed domains (making it the largest by far) before I put it in a blocklist. I'm almost certain that I don't have any malware on any of my devices. Has anyone else encountered this domain?
#77
25.7 Series / Re: After upgrade from 25.1.12...
Last post by rainerle - Today at 01:15:25 AM
Here the pciconf -l
Code Select
root@opnsense01:~ # pciconf -l
hostb0@pci0:0:0:0:      class=0x060000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2020 subvendor=0x17aa subdevice=0x7800
ioat0@pci0:0:4:0:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat1@pci0:0:4:1:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat2@pci0:0:4:2:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat3@pci0:0:4:3:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat4@pci0:0:4:4:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat5@pci0:0:4:5:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat6@pci0:0:4:6:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
ioat7@pci0:0:4:7:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2021 subvendor=0x17aa subdevice=0x7800
none0@pci0:0:5:0:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2024 subvendor=0x17aa subdevice=0x7800
none1@pci0:0:5:2:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2025 subvendor=0x17aa subdevice=0x7800
ioapic0@pci0:0:5:4:     class=0x080020 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2026 subvendor=0x17aa subdevice=0x7800
none2@pci0:0:8:0:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2014 subvendor=0x17aa subdevice=0x7800
none3@pci0:0:8:1:       class=0x110100 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2015 subvendor=0x17aa subdevice=0x7800
none4@pci0:0:8:2:       class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2016 subvendor=0x17aa subdevice=0x7800
none5@pci0:0:17:0:      class=0xff0000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1ec subvendor=0x17aa subdevice=0x7800
ahci0@pci0:0:17:5:      class=0x010601 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1d2 subvendor=0x17aa subdevice=0x7800
xhci0@pci0:0:20:0:      class=0x0c0330 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1af subvendor=0x17aa subdevice=0x7800
pchtherm0@pci0:0:20:2:  class=0x118000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1b1 subvendor=0x17aa subdevice=0x7800
none6@pci0:0:22:0:      class=0x078000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1ba subvendor=0x17aa subdevice=0x7800
none7@pci0:0:22:1:      class=0x078000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1bb subvendor=0x17aa subdevice=0x7800
none8@pci0:0:22:4:      class=0x078000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1be subvendor=0x17aa subdevice=0x7800
ahci1@pci0:0:23:0:      class=0x010601 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa182 subvendor=0x17aa subdevice=0x7800
pcib1@pci0:0:28:0:      class=0x060400 rev=0xf9 hdr=0x01 vendor=0x8086 device=0xa190 subvendor=0x17aa subdevice=0x7800
isab0@pci0:0:31:0:      class=0x060100 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1c3 subvendor=0x17aa subdevice=0x7800
none9@pci0:0:31:2:      class=0x058000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1a1 subvendor=0x17aa subdevice=0x7800
ichsmb0@pci0:0:31:4:    class=0x0c0500 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1a3 subvendor=0x17aa subdevice=0x7800
none10@pci0:0:31:5:     class=0x0c8000 rev=0x09 hdr=0x00 vendor=0x8086 device=0xa1a4 subvendor=0x17aa subdevice=0x7800
pcib2@pci0:1:0:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x19a2 device=0x0120 subvendor=0x0000 subdevice=0x0000
vgapci0@pci0:2:0:0:     class=0x030000 rev=0x42 hdr=0x00 vendor=0x102b device=0x0522 subvendor=0x19a2 subdevice=0x0101
pcib4@pci0:7:2:0:       class=0x060400 rev=0x04 hdr=0x01 vendor=0x8086 device=0x2032 subvendor=0x17aa subdevice=0x7800
none11@pci0:7:5:0:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2034 subvendor=0x17aa subdevice=0x7800
none12@pci0:7:5:2:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2035 subvendor=0x17aa subdevice=0x7800
ioapic1@pci0:7:5:4:     class=0x080020 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2036 subvendor=0x17aa subdevice=0x7800
none13@pci0:7:8:0:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none14@pci0:7:8:1:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none15@pci0:7:8:2:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none16@pci0:7:8:3:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none17@pci0:7:8:4:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none18@pci0:7:8:5:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none19@pci0:7:8:6:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none20@pci0:7:8:7:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none21@pci0:7:9:0:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none22@pci0:7:9:1:      class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208d subvendor=0x17aa subdevice=0x7800
none23@pci0:7:14:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none24@pci0:7:14:1:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none25@pci0:7:14:2:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none26@pci0:7:14:3:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none27@pci0:7:14:4:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none28@pci0:7:14:5:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none29@pci0:7:14:6:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none30@pci0:7:14:7:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none31@pci0:7:15:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none32@pci0:7:15:1:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x208e subvendor=0x17aa subdevice=0x7800
none33@pci0:7:29:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2054 subvendor=0x17aa subdevice=0x7800
none34@pci0:7:29:1:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2055 subvendor=0x17aa subdevice=0x7800
none35@pci0:7:29:2:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2056 subvendor=0x17aa subdevice=0x7800
none36@pci0:7:29:3:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2057 subvendor=0x17aa subdevice=0x7800
none37@pci0:7:30:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2080 subvendor=0x17aa subdevice=0x7800
none38@pci0:7:30:1:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2081 subvendor=0x17aa subdevice=0x7800
none39@pci0:7:30:2:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2082 subvendor=0x17aa subdevice=0x7800
none40@pci0:7:30:3:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2083 subvendor=0x17aa subdevice=0x7800
none41@pci0:7:30:4:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2084 subvendor=0x17aa subdevice=0x7800
none42@pci0:7:30:5:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2085 subvendor=0x17aa subdevice=0x7800
none43@pci0:7:30:6:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2086 subvendor=0x17aa subdevice=0x7800
pcib5@pci0:8:0:0:       class=0x060400 rev=0x09 hdr=0x01 vendor=0x8086 device=0x37c0 subvendor=0xbeef subdevice=0xdead
pcib6@pci0:9:3:0:       class=0x060400 rev=0x09 hdr=0x01 vendor=0x8086 device=0x37c5 subvendor=0xbeef subdevice=0xdead
ixl0@pci0:10:0:0:       class=0x020000 rev=0x09 hdr=0x00 vendor=0x8086 device=0x37d3 subvendor=0x17aa subdevice=0x4021
ixl1@pci0:10:0:1:       class=0x020000 rev=0x09 hdr=0x00 vendor=0x8086 device=0x37d3 subvendor=0x17aa subdevice=0x4021
ixl2@pci0:10:0:2:       class=0x020000 rev=0x09 hdr=0x00 vendor=0x8086 device=0x37d3 subvendor=0x17aa subdevice=0x4021
ixl3@pci0:10:0:3:       class=0x020000 rev=0x09 hdr=0x00 vendor=0x8086 device=0x37d3 subvendor=0x17aa subdevice=0x4021
none44@pci0:90:5:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2034 subvendor=0x17aa subdevice=0x7800
none45@pci0:90:5:2:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2035 subvendor=0x17aa subdevice=0x7800
ioapic2@pci0:90:5:4:    class=0x080020 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2036 subvendor=0x17aa subdevice=0x7800
none46@pci0:90:8:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2066 subvendor=0x17aa subdevice=0x7800
none47@pci0:90:9:0:     class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2066 subvendor=0x17aa subdevice=0x7800
none48@pci0:90:10:0:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2040 subvendor=0x17aa subdevice=0x7800
none49@pci0:90:10:1:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2041 subvendor=0x17aa subdevice=0x7800
none50@pci0:90:10:2:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2042 subvendor=0x17aa subdevice=0x7800
none51@pci0:90:10:3:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2043 subvendor=0x17aa subdevice=0x7800
none52@pci0:90:10:4:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2044 subvendor=0x17aa subdevice=0x7800
none53@pci0:90:10:5:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2045 subvendor=0x17aa subdevice=0x7800
none54@pci0:90:10:6:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2046 subvendor=0x17aa subdevice=0x7800
none55@pci0:90:10:7:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2047 subvendor=0x17aa subdevice=0x7800
none56@pci0:90:11:0:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2048 subvendor=0x17aa subdevice=0x7800
none57@pci0:90:11:1:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2049 subvendor=0x17aa subdevice=0x7800
none58@pci0:90:11:2:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204a subvendor=0x17aa subdevice=0x7800
none59@pci0:90:11:3:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204b subvendor=0x17aa subdevice=0x7800
none60@pci0:90:12:0:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2040 subvendor=0x17aa subdevice=0x7800
none61@pci0:90:12:1:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2041 subvendor=0x17aa subdevice=0x7800
none62@pci0:90:12:2:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2042 subvendor=0x17aa subdevice=0x7800
none63@pci0:90:12:3:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2043 subvendor=0x17aa subdevice=0x7800
none64@pci0:90:12:4:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2044 subvendor=0x17aa subdevice=0x7800
none65@pci0:90:12:5:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2045 subvendor=0x17aa subdevice=0x7800
none66@pci0:90:12:6:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2046 subvendor=0x17aa subdevice=0x7800
none67@pci0:90:12:7:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2047 subvendor=0x17aa subdevice=0x7800
none68@pci0:90:13:0:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2048 subvendor=0x17aa subdevice=0x7800
none69@pci0:90:13:1:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2049 subvendor=0x17aa subdevice=0x7800
none70@pci0:90:13:2:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204a subvendor=0x17aa subdevice=0x7800
none71@pci0:90:13:3:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204b subvendor=0x17aa subdevice=0x7800
pcib9@pci0:173:2:0:     class=0x060400 rev=0x04 hdr=0x01 vendor=0x8086 device=0x2032 subvendor=0x17aa subdevice=0x7800
none72@pci0:173:5:0:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2034 subvendor=0x17aa subdevice=0x7800
none73@pci0:173:5:2:    class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2035 subvendor=0x17aa subdevice=0x7800
ioapic3@pci0:173:5:4:   class=0x080020 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2036 subvendor=0x17aa subdevice=0x7800
none74@pci0:173:14:0:   class=0x110100 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2058 subvendor=0x17aa subdevice=0x7800
none75@pci0:173:14:1:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2059 subvendor=0x17aa subdevice=0x7800
none76@pci0:173:15:0:   class=0x110100 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2058 subvendor=0x17aa subdevice=0x7800
none77@pci0:173:15:1:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2059 subvendor=0x17aa subdevice=0x7800
none78@pci0:173:18:0:   class=0x110100 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204c subvendor=0x17aa subdevice=0x7800
none79@pci0:173:18:1:   class=0x110100 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204d subvendor=0x17aa subdevice=0x7800
none80@pci0:173:18:2:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x204e subvendor=0x17aa subdevice=0x7800
none81@pci0:173:21:0:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2018 subvendor=0x17aa subdevice=0x7800
none82@pci0:173:22:0:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2018 subvendor=0x17aa subdevice=0x7800
none83@pci0:173:22:4:   class=0x088000 rev=0x04 hdr=0x00 vendor=0x8086 device=0x2018 subvendor=0x17aa subdevice=0x7800
mpr0@pci0:174:0:0:      class=0x010700 rev=0x01 hdr=0x00 vendor=0x1000 device=0x00af subvendor=0x1d49 subdevice=0x0200
root@opnsense01:~ #
#78
Tutorials and FAQs / DHCP Server doesn't respond on...
Last post by user4000 - Today at 12:54:47 AM
Hi All,

I'm completely new to OPNSense, trying to setup a standard home network ISP Modem -> Router -> Switch -> Multiple Stuff. I was able to setup everything as needed - LAN, WAN, Internet is connected, but the problem I have is DHCP.

For the simplicity and cleannes sake I reduced the setup to ISP Modem -> Bare metal OPN Sense -> PC. No VLANs, no IPv6, just a bare minimum setup, OPNSense v 24.7 (Although, I tried 25.Xs with the same result). If I set the PC's IP manually statically to 192.168.10.X - it works fine, has the Internet, WebGUI available. However, when I turn DHCP on the client PC on, it fails to obtain the IP address. According to DHCP server log, it believes that it sends DHCPOFFER back. However, according to OPNSense's own Firewall log, only the incoming DHCPDISCOVER happens. I even recorded packets on the client PC Wireshark - it also only see the DHCP DIscover 0.0.0.0:68 -> 255.255.255.255:67.

Quite possibly this is a misconfiguration of the firewall (see the rules screenshot), but can't figure out what exactly. I explicitly added "allow all outbound" on lan interface - doesn't help. I would appreciate any help - Thanks a lot in advance.
#79
24.7, 24.10 Series / Re: RADIUS WITH WINDOWS NPS
Last post by kone - Today at 12:10:19 AM
My problem is that when I create the server in OPNsense and want to test it, it displays "authentication failed." However, everything seems correct in NPS and also in OPNsense. If you can help me.
#80
German - Deutsch / Re: Pkg: libxslt vulnerable
Last post by Marcel_75 - Today at 12:09:25 AM
Apple hat diese Probleme mit Unterstützung durch Sergei Glazunov und Ivan Fratric (beide vom Google Project Zero) immerhin schon am 29. / 30. Juli 2025 gefixt, also sowohl in libxml2 als auch libxslt (CVE-2025-7425 sowie CVE-2025-7424), siehe dazu:

https://support.apple.com/de-de/124152 bzw. auch https://support.apple.com/en-us/124149

Eventuell macht es ja Sinn, das entsprechend erfahrene OPNsense-Entwickler Kontakt mit Sergei und/oder Ivan aufnehmen, um einen Fix für FreeBSD und letztlich auch OPNsense entwickeln zu können?

Man will doch ganz sicher nicht damit leben, dass diese CVEs jetzt "für immer" als Warnung in der OPNsense angezeigt werden, sobald man den Security Audit laufen lässt?

Sprich, da sollte doch ein Patch möglich sein, insbesondere bei einem so sicherheits-sensiblen Projekt wie OPNsense?
Pages 1 ... 6 7 8 9 10