Recent posts

#81

26.1, 26,4 Series / Re: Problem with shutdown/rebo...

Last post by mrzaz - June 25, 2026, 09:58:06 PM

Can you confirm this only happens with divert? It may be an open file descriptor / socket that the kernel doesn't yield.


Cheers,
Franco

If it happens agen  I will try to check that setting.  I prefer to use Divert in the way that is handled.

#82

26.1, 26,4 Series / Re: Problem with shutdown/rebo...

Last post by mrzaz - June 25, 2026, 09:56:14 PM

Can you confirm this only happens with divert? It may be an open file descriptor / socket that the kernel doesn't yield.


Cheers,
Franco

Feels like it happens intermittent now. I tried one more time from console and then it was able to kill all.
Will try one more time from GUI.  Jupp. now that worked as well.

Must be something hanging that is now cleared somehow.
I will monitor this the comming days to see if it re-appers.

//Dan Lundqvist

#83

Hardware and Performance / Problems With Nics not been ab...

Last post by Tuti1196 - June 25, 2026, 09:54:17 PM

Hello Friends

I have adquiere a Exinda 4062 hardware and succesfully intall opensense , now the hardware itsell shows the comes with 6 nics

But only the managment is the only one working the nics present as:

igb0  Intel(R) I210  (Copper)
igb1  Intel(R) I350  (Copper)
igb2  Intel(R) I350  (Copper)
igb3  Intel(R) I350  (Copper)
igb4  Intel(R) I354  (SGMII)
igb5  Intel(R) I354  (SGMII)
igb6  Intel(R) I354  (SGMII)

i understand that ports are like this: 3 Bridge Pairs, 1 Management

Any sugestions?

#84

Hardware and Performance / Re: Stuck in "Administer Secur...

Last post by jurajlutter - June 25, 2026, 09:53:12 PM

I'm in the same situation. What was the solution, please?

#85

26.1, 26,4 Series / Re: Problem with shutdown/rebo...

Last post by franco - June 25, 2026, 09:52:03 PM

Can you confirm this only happens with divert? It may be an open file descriptor / socket that the kernel doesn't yield.


Cheers,
Franco

#86

26.1, 26,4 Series / Re: Unbound DNS log

Last post by FredFresh - June 25, 2026, 09:10:19 PM

I already tried that, but it does not provide the same information.

I have a cpu n100 and 16gb of ram, keeping the unbound dns log active is detrimental for performances?

#87

26.1, 26,4 Series / Re: Problem with shutdown/rebo...

Last post by mrzaz - June 25, 2026, 08:55:30 PM

I tried the proposed in other thread.

I get the following in the console:
root@OPNsense:~ # /usr/local/etc/rc.d/suricata onestop
Stopping suricata.
Waiting for PIDS: 71649.
root@OPNsense:~ #


and the following in Suricata Logfile:

2026-06-25T20:47:04  Notice  suricata  [100787] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04  Notice  suricata  [100787] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:04  Notice  suricata  [100786] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04  Notice  suricata  [100786] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:04  Notice  suricata  [100785] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04  Notice  suricata  [100785] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:03  Notice  suricata  [100642] <Notice> -- Signal Received. Stopping engine.

So when doing this, it shuts down but when it is done as the part of OpnSense shutdown it just hangs.
or at least it says that.  It never passes the killing of PID for surcata and never continues with rest
of the shutdown procedure.

//Dan Lundqvist

#88

26.1, 26,4 Series / Re: Issues with Reboot / Power...

Last post by mrzaz - June 25, 2026, 08:53:05 PM

Try running "/usr/local/etc/rc.d/suricata onestop" in the terminal and see what happens and then go and check what's in the "Services -> Intrusion Detection -> Log File"

Code Select Expand

/usr/local/etc/rc.d/suricata onestop

I get the following in the console:
root@OPNsense:~ # /usr/local/etc/rc.d/suricata onestop
Stopping suricata.
Waiting for PIDS: 71649.
root@OPNsense:~ #


and the following in Suricata Logfile:

2026-06-25T20:47:04   Notice   suricata   [100787] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04   Notice   suricata   [100787] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:04   Notice   suricata   [100786] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04   Notice   suricata   [100786] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:04   Notice   suricata   [100785] <Notice> -- (W-8000) Verdict: Accepted 0, Dropped 0
2026-06-25T20:47:04   Notice   suricata   [100785] <Notice> -- (W-8000) Treated: Pkts 0, Bytes 0, Errors 0
2026-06-25T20:47:03   Notice   suricata   [100642] <Notice> -- Signal Received. Stopping engine.

So when doing this, it shuts down but when it is done as the part of OpnSense shutdown it just hangs.
or at least it says that.  It never passes the killing of PID for surcata.

//Dan Lundqvist

#89

26.1, 26,4 Series / Re: 26.1 upgrade chaos, Realte...

Last post by Patrick M. Hausen - June 25, 2026, 08:49:49 PM

ISC (Legacy) DHCP is available as a plugin.

Don't use Realtek.

[A huge THANK YOU to all opnsense "builders"]

#90

26.1, 26,4 Series / Re: 26.1 upgrade chaos, Realte...

Last post by pixelmeister - June 25, 2026, 08:44:12 PM

Hi, I would like to add my story to this - spoiler: no solution yet

21.6 with realtek 1Gb/4x1GB > realtek 1Gb/4x2.5Gb

Migration from "old" to "new" hardwware was a nightmare and the new hardware is not working yet.

Its a Family class smart home with lots of Youngsters busting bandwith with everything the can get

Running rock solid through COVID 5 people HomeOffice - A huge THANK YOU to all opnsense "builders"

just wanted to start using more QoS and Security Feature which the "old" CPU can't handle well
(I like to be on the save side and keep everthing under 30% load in general)

old:

• using opnsense since about 2021 (never reinstalled, just upgraded)
• 26.1.10
• consumer miniitx asrock N4105
• exsys 4x1GB pcie card (realtek)
• lots of VLANs and Native LANS

new:

• complete new install 26.X upgraded to latest
• 26.1.10
• consumer miniitx GigaByte B550M K
• digitus 4x2.5GB pcie card (realtek 8125B)
• same config as above

my facts:

• working with IT since more than 35 years
• no crack, but serious PC knowledge
• general network understanding
• unifi Networkstack
• gracefule to all facepalm explainers and Layer8-knowledge extenders
• awareness of being the problem :-)

• the new hardware is running with opnsense 26.1.10
• on an USB RJ45 everything works LAN side
• WAN side 1Gb Realtek running
• 4xLAN card was dedected after driver install (plugin)
• no DHCP is working in either LAN side of the PCiecard

As the setup identicall and the hardware are IMHO very similar I do not see any Error on my side - I would love to find it and solve it!

Things that I recouldniced during working on this nearly 2 weeks after work (which is surely not the best time to make critical things)

After last setup LEGACY DHCP is not shown up any more? on my old running setup (and first migrations tests legacy DHCP was still there)
legacy DHCP should not be used - deactivated
I do not use any 2.5Gb switch they are prepared in the rack and not in the testsetup (maybe? the card does not fallback to 1Gb correctly?)
At my first test with my old 25.x opnsense USB Stick the card was recouldniced from the first start without doing a plugin or driver install

I do not know if this helps anybody or anybody could help me?
I will/have to try do get it done anyway :)

Yes for sure I searched and read a lot but - found a lot of useful help here to improve my understanding, but nothing that may solve my problem

Test still pending: trying 2.5Gb switch to attach, try to attach with manual setup network settings, ...?

best regards
Antonio