"Recent posts
#81
General Discussion / Re: [Noob question] - DNS Cach...
Last post by Taxickdk - January 27, 2026, 07:18:43 PMHi,
Thanks for the reply. I rebooted my servers and PC, and now it works fine.
Thanks for the reply. I rebooted my servers and PC, and now it works fine.
#82
26.1 Series / Re: MiniUPNPD
Last post by fotring - January 27, 2026, 07:13:02 PMQuote from: Kewin on January 27, 2026, 09:48:45 AMJust to chime in since I guess not that many are using miniupnpd.. I'm still running 25.7.11_2 and I use UPnP for consoles and kids' gaming, and I'm not seeing those errors in my log..
(A lot of other errors, but I'm guessing it's because the clients didn't clear their active mappings before shutting off)..Code Select2026-01-27T09:23:31 Error miniupnpd upnpevents_processfds: 0x1239f410080, remove subscriber uuid:4a4dccd4-fb59-11f0-af55-00d0b4023658 after an ERROR cb: http://10.0.10.134:2869/upnp/eventing/dkgqwukrhw
2026-01-27T09:23:31 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:23:31 Error miniupnpd upnpevents_processfds: 0x1239f410100, remove subscriber uuid:4a487762-fb59-11f0-af55-00d0b4023658 after an ERROR cb: http://10.0.10.134:2869/upnp/eventing/bejxzoycej
2026-01-27T09:23:31 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:23:31 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:23:15 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:23:15 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:23:15 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.134:2869): Operation timed out
2026-01-27T09:21:25 Warning miniupnpd upnp_event_process_notify: connect(10.0.1.153:2869): Operation timed out
2026-01-27T09:07:13 Error miniupnpd upnpevents_processfds: 0x1239f410000, remove subscriber uuid:0319bd80-fb57-11f0-af55-00d0b4023658 after an ERROR cb: http://10.0.10.127:2869/upnp/eventing/ujhzqdwdtn
2026-01-27T09:07:13 Warning miniupnpd upnp_event_process_notify: connect(10.0.10.127:2869): Operation timed out
2026-01-27T09:07:13 Error miniupnpd upnpevents_processfds: 0x1239f410280, remove subscriber uuid:0314bbca-fb57-11f0-af55-00d0b4023658 after an ERROR cb: http://10.0.10.127:2869/upnp/eventing/ocsmvlvmza
/Kewin
Good note! Then it's not just my install. Can something have changed upstream in miniupnpd? Im on 2.3.9_2,1.
#83
26.1 Series / Re: Upgrade to RC1 successful
Last post by OPNenthu - January 27, 2026, 06:00:19 PM(Sorry, saw your message late. I didn't reboot after RC2.)
---
Ok, I'm getting a different set of results this time but nothing too concerning like from earlier.
This time I got a php error after the last upgrade toward 26.1.r2_2 and I submitted the crash report from within the GUI.
I saw that on the intermediate upgrade to 26.1.r_9, the list of interfaces under Services->Router Advertisements had already shrunk down to two interfaces from the full set of ten internal interfaces that I have, and it's the same two as before (LAN & CLEAR). The other 8 interfaces are missing from the radvd list, even though they all have the same settings (Track Interface w/ Allow manual adjustments checked). The difference this time is that the radvd service was not enabled on them after the upgrade.
Next I manually changed all the internal interfaces to "Identity Association," and as before I clicked "Save" between each interface change and applied them all in one shot at the end. It took a bit to process and my WAN IPv6 gateway went down for some reason (I didn't edit that interface) but came up after some time. The UI is still responding at this point.
Finally I removed the ISC plugin from the GUI. This time I did not get a crash. The GUI is still responding.
So it seems as though the upgrade is not deterministic when starting from the "same" state. This surprised me. There's some variability somewhere, but it's likely not in the packages (?) and it's likely not in the config file (preserved by snapshot).
Anyhow, I have the before/intermediate/after configs and I also captured the terminal buffer during the major upgrade to 26.1.r_9. Let me know if you need me to send them to you.
---
Ok, I'm getting a different set of results this time but nothing too concerning like from earlier.
This time I got a php error after the last upgrade toward 26.1.r2_2 and I submitted the crash report from within the GUI.
I saw that on the intermediate upgrade to 26.1.r_9, the list of interfaces under Services->Router Advertisements had already shrunk down to two interfaces from the full set of ten internal interfaces that I have, and it's the same two as before (LAN & CLEAR). The other 8 interfaces are missing from the radvd list, even though they all have the same settings (Track Interface w/ Allow manual adjustments checked). The difference this time is that the radvd service was not enabled on them after the upgrade.
Next I manually changed all the internal interfaces to "Identity Association," and as before I clicked "Save" between each interface change and applied them all in one shot at the end. It took a bit to process and my WAN IPv6 gateway went down for some reason (I didn't edit that interface) but came up after some time. The UI is still responding at this point.
Finally I removed the ISC plugin from the GUI. This time I did not get a crash. The GUI is still responding.
So it seems as though the upgrade is not deterministic when starting from the "same" state. This surprised me. There's some variability somewhere, but it's likely not in the packages (?) and it's likely not in the config file (preserved by snapshot).
Anyhow, I have the before/intermediate/after configs and I also captured the terminal buffer during the major upgrade to 26.1.r_9. Let me know if you need me to send them to you.
#84
26.1 Series / Re: 26.1.rc1 -> 26.1 rc2 ........
Last post by franco - January 27, 2026, 05:55:14 PMWhat does your System: Firmware: Status say?
Cheers,
Franco
Cheers,
Franco
#85
26.1 Series / Re: Upgrade to RC1 successful
Last post by franco - January 27, 2026, 05:54:05 PMLocal patches and test packages are not an issue. The upgrade will remove them.
Just make sure to directly follow up RC1 with RC2 and a reboot to ensure consistency within the latest RC2 code.
The final update to 26.1 will take care of this eventually, but intermediate RCs are a bit "floating" in terms of overall integration. ;)
Cheers,
Franco
Just make sure to directly follow up RC1 with RC2 and a reboot to ensure consistency within the latest RC2 code.
The final update to 26.1 will take care of this eventually, but intermediate RCs are a bit "floating" in terms of overall integration. ;)
Cheers,
Franco
#86
26.1 Series / Re: 26.1.rc1 -> 26.1 rc2 ........
Last post by spetrillo - January 27, 2026, 05:37:40 PMQuote from: franco on January 27, 2026, 08:40:30 AMok, nice, thanks for the feedback :)
FYI @franco I was not able to see R2. I am on R1 and its telling me I have no update.
#87
German - Deutsch / Re: Problem mit Port Forwardin...
Last post by viragomann - January 27, 2026, 05:09:49 PMHallo,
die Webseite liegt außerhalb deines Netzwerks im Internet, wenn ich das richtig interpretiere?
Und die Aufrufe sollen ebenfalls von außen kommen?
Von intern sollte es mit NAT Reflection klappen.
Die Möglichkeit dazu hast du in der Port Forwarding Regel selbst. Dein zweiter Screenshot zeigt die Einstellung an vorletzer Stelle.
Oder global für alle NAT Regeln in Firewall: Settings: Advanced.
die Webseite liegt außerhalb deines Netzwerks im Internet, wenn ich das richtig interpretiere?
Und die Aufrufe sollen ebenfalls von außen kommen?
Von intern sollte es mit NAT Reflection klappen.
Die Möglichkeit dazu hast du in der Port Forwarding Regel selbst. Dein zweiter Screenshot zeigt die Einstellung an vorletzer Stelle.
Oder global für alle NAT Regeln in Firewall: Settings: Advanced.
#88
German - Deutsch / Re: Problem mit Port Forwardin...
Last post by meyergru - January 27, 2026, 05:08:10 PMSchau mal genau in Deinen eigenen Screenshots, vielleicht findest Du es...
#89
General Discussion / Re: [Noob question] - DNS Cach...
Last post by meyergru - January 27, 2026, 05:07:37 PMPlease indicate more precisely what you want to achieve.
So what you want to do seems to be that the DNS entry wpdebat.dk is resolved on your OpnSense itself as an authoritative DNS server.
First thing I can tell you that from outside your LAN, no DNS requests are served - probably because that is blocked by the firewall:
So I doubt that the name resolves fine when your mobile is outside of your WiFi and uses public DNS.
Also, although the domain seems registered, there are no nameservers declared:
If you only want to resolve that name as an override only locally, you would need to create it in unbound to resolve to whatever you want.
So what you want to do seems to be that the DNS entry wpdebat.dk is resolved on your OpnSense itself as an authoritative DNS server.
First thing I can tell you that from outside your LAN, no DNS requests are served - probably because that is blocked by the firewall:
Code Select
#nslookup fw.halfdaner.dk
Server: 127.0.0.53
Address: 127.0.0.53#53
Non-authoritative answer:
Name: fw.halfdaner.dk
Address: 5.186.54.48
#nslookup wpdebat.dk fw.halfdaner.dk
;; communications error to 5.186.54.48#53: timed out
So I doubt that the name resolves fine when your mobile is outside of your WiFi and uses public DNS.
Also, although the domain seems registered, there are no nameservers declared:
Code Select
#nslookup -query=ns wpdebat.dk
;; Got SERVFAIL reply from 127.0.0.53
Server: 127.0.0.53
Address: 127.0.0.53#53
** server can't find wpdebat.dk: SERVFAIL
If you only want to resolve that name as an override only locally, you would need to create it in unbound to resolve to whatever you want.
#90
Q-Feeds (Threat intelligence) / Re: Looking for testers Q-Feed...
Last post by sammy - January 27, 2026, 04:53:55 PMI just installed Q-Feeds according to the documentation. After testing both plant-with-crypto.org and platform8414.com, I'm receiving the following result for each:
{
"status": "OK",
"action": "Pass"
}
In the Q-Feeds settings, "Register domain feeds" is enabled.
{
"status": "OK",
"action": "Pass"
}
In the Q-Feeds settings, "Register domain feeds" is enabled.
