"Recent posts
#81
25.7, 25.10 Series / Re: DNS failures after upgrade...
Last post by someone - December 23, 2025, 04:42:38 AMProgress? Did you get it working. The things I mentioned effect DNS considerably.
#82
25.7, 25.10 Series / Re: dnsmasq and ipv6 config
Last post by muchacha_grande - December 23, 2025, 04:11:21 AMHi OzziGoblin, as we talked earlier I'm reporting my still ongoing migration from ISC DHCP 4 and 6 to Dnsmasq.
I made a first try today and it didn't work as expected. I couldn't make DHCPv6 working as it is with ISC DHCPv6.
My setup is somewhat weird because my OPNSense is behind the ISP router already acting as NAT router with a configured DMZ pointing to OPNSense WAN.
The ISP doesn't allow me to use bridge mode, so this is what I have.
The rare thing is the way I could get IPv6 to work. The ISP assigns a single /64 IPv6, no PD, no nothing. So I'm doing NATv6 and DHCPv6 assigns /80 addresses to local PCs. I chose /80 because I have some VLANs and I had to create different subnets for each one.
This way I have IPv6 /80 networks on each VLAN and it works perfect. Is not the ideal situation because I'm NATing IPv6, but I didn't find a single problem yet in the daily use.
THE MIGRATION:
I could make work the IPv4 part, but I couldn't make DHCPv6 assign an address. It doesn't work. The Dnsmask log says "dnsmask no address range available for DHCPv6".
I tried different RA flags, and even external radvd in assisted mode as the docs says, but still nothing.
One thing I noted is that I can't select other prefix than 64. Higher numbers throws an "integer" error on the GUI and lower values makes Dnsmask to abort at start telling that the prefix has to be at least 64. So the only choice is 64.
With ISC DHCPv6 I have /80 configured as prefix for the assigned addresses on each VLAN.
Well... that's all for now. I'll keep trying...
Cheers
I made a first try today and it didn't work as expected. I couldn't make DHCPv6 working as it is with ISC DHCPv6.
My setup is somewhat weird because my OPNSense is behind the ISP router already acting as NAT router with a configured DMZ pointing to OPNSense WAN.
The ISP doesn't allow me to use bridge mode, so this is what I have.
The rare thing is the way I could get IPv6 to work. The ISP assigns a single /64 IPv6, no PD, no nothing. So I'm doing NATv6 and DHCPv6 assigns /80 addresses to local PCs. I chose /80 because I have some VLANs and I had to create different subnets for each one.
This way I have IPv6 /80 networks on each VLAN and it works perfect. Is not the ideal situation because I'm NATing IPv6, but I didn't find a single problem yet in the daily use.
THE MIGRATION:
I could make work the IPv4 part, but I couldn't make DHCPv6 assign an address. It doesn't work. The Dnsmask log says "dnsmask no address range available for DHCPv6".
I tried different RA flags, and even external radvd in assisted mode as the docs says, but still nothing.
One thing I noted is that I can't select other prefix than 64. Higher numbers throws an "integer" error on the GUI and lower values makes Dnsmask to abort at start telling that the prefix has to be at least 64. So the only choice is 64.
With ISC DHCPv6 I have /80 configured as prefix for the assigned addresses on each VLAN.
Well... that's all for now. I'll keep trying...
Cheers
#83
German - Deutsch / Re: Core Switch zusätzlich als...
Last post by Maurice - December 23, 2025, 03:55:54 AMKlar, kannst Du machen. Sofern Du das richtig isolierst (dediziertes VLAN fürs WAN) ist da auch nichts exponiert.
Habe ich privat ähnlich gelöst: OPNsense hängt nur mit einem einzigen Kupfer-Port am Switch (VLAN-Trunk für alle WANs und LANs). Und im Switch steckt u. A. ein GPON-SFP, von dem es direkt zur Glasfaser-Dose geht.
Grüße
Maurice
Habe ich privat ähnlich gelöst: OPNsense hängt nur mit einem einzigen Kupfer-Port am Switch (VLAN-Trunk für alle WANs und LANs). Und im Switch steckt u. A. ein GPON-SFP, von dem es direkt zur Glasfaser-Dose geht.
Grüße
Maurice
#84
Hardware and Performance / Re: Adapts to Marvell AQC113C-...
Last post by OPNenthu - December 23, 2025, 02:23:04 AMSorry, you asked about firmware. No I haven't yet come across an update package for that. I probably also don't have access to UEFI updates because UGREEN doesn't publish them; at least not that I could find.
#85
Hardware and Performance / Re: Adapts to Marvell AQC113C-...
Last post by OPNenthu - December 23, 2025, 02:10:44 AMIt's possible that UGREEN include an updated driver on their NAS OS (or they just don't test advanced networking functions), but AFAIK it's not possible to update it in TrueNAS unless/until they ship an updated kernel with upstream fixes. IIRC, I had come across some comments that the driver is not well maintained or was never completed since Marvell acquired Aquantia... but I really don't know.
#86
Hardware and Performance / Re: Adapts to Marvell AQC113C-...
Last post by pfry - December 23, 2025, 01:59:42 AMI suppose I should dig into this before asking, but: Have you got the latest firmware? I don't know if the Linux driver (or packages) includes it. The OpenWRT instructions for the Linksys MX8500 included the firmware upgrade (the firmware in that case being loaded under U-Boot, IIRC). The Marvell flash utility is Windows only.
#87
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by mpoldphone191 - December 23, 2025, 01:50:53 AMThanks for this info I was able to update the 4 I226-V NICS from version 2.14 to 2.32 in my newly acquired N150 box. Did the update doing a temp OPNSense install on an old drive, then using SSH/SFTP to transfer files and run commands on the box.
Just one question when I ran "dmesg | grep IGC" I am seeing some references to the older version? I am assuming that this is a cumulative log that doesn't clear on reboot? The later entry shows the newer version, and I checked the log output from running nvmupdate64e on each NIC post update and they all showed a successful update, so I am assuming everything went ok.
Just want to be sure before I start doing the migration to the new hardware.
Just one question when I ran "dmesg | grep IGC" I am seeing some references to the older version? I am assuming that this is a cumulative log that doesn't clear on reboot? The later entry shows the newer version, and I checked the log output from running nvmupdate64e on each NIC post update and they all showed a successful update, so I am assuming everything went ok.
Just want to be sure before I start doing the migration to the new hardware.
#88
25.7, 25.10 Series / Re: Specific Websites not reac...
Last post by pdxar - December 23, 2025, 01:35:50 AMCheck the WAN interface: in my case the upgrade dropped IPv4 on WAN.
#89
25.7, 25.10 Series / Re: IGMP Proxy broken after up...
Last post by OPNenthu - December 23, 2025, 12:34:35 AMHave a look at the "snapshots" feature (a.k.a ZFS boot environments) for future upgrades:
https://docs.opnsense.org/manual/snapshots.html
https://www.youtube.com/watch?v=Z1OX0CKU__U
It doesn't fix broken plugins but it sure can spare a ruined holiday.
https://docs.opnsense.org/manual/snapshots.html
https://www.youtube.com/watch?v=Z1OX0CKU__U
It doesn't fix broken plugins but it sure can spare a ruined holiday.
#90
25.7, 25.10 Series / Re: IGMP Proxy broken after up...
Last post by Shoog - December 23, 2025, 12:17:46 AMI believe I have a temporary workaround by directing all my network traffic through a dumb switch. Should hopefully get me through Xmas. A bit early to tell if this is a robust solution.
The underlying issue remains though.
The underlying issue remains though.
