"Recent posts
#81
26.1 Series / Re: Nothing happens when impor...
Last post by Odjuret - January 29, 2026, 08:35:48 PMI seem to have fooled myself.
I didnt see any rules because if was on floating, my interface rules was there.
I didnt see any rules because if was on floating, my interface rules was there.
#82
Portuguese - Português / Re: Comunidade - Língua Portug...
Last post by Leandro Franklin - January 29, 2026, 08:34:49 PMPrazer, me chamo Leandro Franklin, sou de Jaraguá do sul -SC.
Sou analisa de redes, uso OPnsense em produção deste de 2021.
Sou analisa de redes, uso OPnsense em produção deste de 2021.
#83
26.1 Series / Re: internet stops! pf_test: ...
Last post by RamSense - January 29, 2026, 08:23:47 PMOpnsense keeps running.
But I see on the interface overview that wan is red/down after a minute or so.
The default routes boots with an ip mentioned there, but then changes from this ip address to nothing.
Hitting refresh or in interface disable and enable wan does not bring it backup. Only a reboot of the opnsense box, and only for a very short time
In gateways configurations wan pppoe states than: defunct (upstream)
I Also see it stops after those log mentions:
2026-01-29T20:32:47
Notice
ppp
[opt3_link0] PPPoE: Connecting to ''
2026-01-29T20:32:47
Notice
ppp
[opt3_link0] Link: reconnection attempt 2
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: reconnection attempt 2 in 3 seconds
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] LCP: Down event
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: DOWN event
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] PPPoE: can't connect "[11]:"->"mpd2857-0" and "[8]:"->"left": No such file or directory
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: reconnection attempt 1
But I see on the interface overview that wan is red/down after a minute or so.
The default routes boots with an ip mentioned there, but then changes from this ip address to nothing.
Hitting refresh or in interface disable and enable wan does not bring it backup. Only a reboot of the opnsense box, and only for a very short time
In gateways configurations wan pppoe states than: defunct (upstream)
I Also see it stops after those log mentions:
2026-01-29T20:32:47
Notice
ppp
[opt3_link0] PPPoE: Connecting to ''
2026-01-29T20:32:47
Notice
ppp
[opt3_link0] Link: reconnection attempt 2
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: reconnection attempt 2 in 3 seconds
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] LCP: Down event
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: DOWN event
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] PPPoE: can't connect "[11]:"->"mpd2857-0" and "[8]:"->"left": No such file or directory
2026-01-29T20:32:44
Notice
ppp
[opt3_link0] Link: reconnection attempt 1
#84
26.1 Series / Re: internet stops! pf_test: ...
Last post by franco - January 29, 2026, 08:15:28 PMTook a quick look. Nothing around this code changed in the last 3 years. I'm assuming this is one of those teardown races which PPPoE is especially prone to (mpd5 removes and recreates devices on a restart). If it's not crashing it's good. If it stalls traffic now that's a bit weird. Is your pppoe0 still there?
Cheers,
Franco
Cheers,
Franco
#85
26.1 Series / Nothing happens when importing...
Last post by Odjuret - January 29, 2026, 08:04:09 PMI download my old rules
they looks find in excel, I don't save them.
I choose import, press the button.
Nothing happens.
I have 72 lines in my download_rules.csv
they looks find in excel, I don't save them.
I choose import, press the button.
Nothing happens.
I have 72 lines in my download_rules.csv
#86
26.1 Series / internet stops! pf_test: kif ...
Last post by RamSense - January 29, 2026, 08:03:18 PMI just took the jump also,
Upgraded and after reboot i have internet connection for a little while. And that stops,
I am not able to get it back up.
After another reboot the same.
I noticed the wan interface was down.
In the log I noticed this:
[357] pf_test: kif == NULL, if_xname pppoe0
Is this the reason?
What can i do?
Thanks for the help in advance!
Upgraded and after reboot i have internet connection for a little while. And that stops,
I am not able to get it back up.
After another reboot the same.
I noticed the wan interface was down.
In the log I noticed this:
[357] pf_test: kif == NULL, if_xname pppoe0
Is this the reason?
What can i do?
Thanks for the help in advance!
#87
German - Deutsch / Re: "Sicheres" betreiben eines...
Last post by meyergru - January 29, 2026, 07:38:47 PMDas kannst Du so machen, wenn es auch eine sehr eingeschränkte Nutzung für OpnSense ist, bei der ggf. Blocklisten oder GeoIP erst nach der Fritzbox wirken. Wie Du weisst, sollte man die Angriffsfläche möglichst minimieren. Auch wird das alles in Bezug auf IPv6 schwierig - ich habe keine Ahnung, ob/wie man die IPv6-Präfixe delegieren kann oder ob Du das brauchst/willst.
Ich würde aus pragmatischen Gründen auch das Port-Forwarding nur auf der Fritzbox machen und auf der OpnSense anstelle von Port-Forwards oder Firewall-Regeln lieber einen Reverse-Proxy einsetzen, aber das hast Du ja schon gelesen. Eins davon musst Du auf jeden Fall tun, weil auf einem typischen "WAN" Interface per Default kein eingehender Traffic zugelassen ist (NAT musst Du dort dann auch abschalten).
Was die Subnetze angeht, solltest Du vielleicht noch dies lesen. Ohne Not würde ich weder ein /16 definieren noch 192.168.0.x/24 nutzen.
Richtig ist, dass Du damit eine DMZ schaffen kannst, die nur ins Internet kommt und keinen Zugriff auf interne Geräte hat. Das wäre aber eleganter auch mit einer OpnSense "vorne" möglich.
Ich würde aus pragmatischen Gründen auch das Port-Forwarding nur auf der Fritzbox machen und auf der OpnSense anstelle von Port-Forwards oder Firewall-Regeln lieber einen Reverse-Proxy einsetzen, aber das hast Du ja schon gelesen. Eins davon musst Du auf jeden Fall tun, weil auf einem typischen "WAN" Interface per Default kein eingehender Traffic zugelassen ist (NAT musst Du dort dann auch abschalten).
Was die Subnetze angeht, solltest Du vielleicht noch dies lesen. Ohne Not würde ich weder ein /16 definieren noch 192.168.0.x/24 nutzen.
Richtig ist, dass Du damit eine DMZ schaffen kannst, die nur ins Internet kommt und keinen Zugriff auf interne Geräte hat. Das wäre aber eleganter auch mit einer OpnSense "vorne" möglich.
#88
26.1 Series / Re: 26.1 is out!!!
Last post by amw-tue - January 29, 2026, 07:32:04 PMQuote from: donks on January 29, 2026, 12:54:29 PMAppears to be a bug when trying to create a rule in the new FW GUI that uses the q-feed blocklist alias.
I installed the Q-feed plugin as per the documentation and confirmed the API key is working and downloads the IP and DNS feed.
The alias is also populated with 200K odd entries.
The error when trying to save the rule is "__qfeeds_malware_ip is not a valid source IP address or alias"
When I create the rule using the old FW GUI, the rule is created without any issues.
I experienced the same problem as donks described. Before that, I migrated the old rules to the new ones (via migration assistant and according to the process described there).
Later on that day I tried to setup q-feeds as written in their setup guide for opnsense.
I can confirm that it works in the old fw rules section, but not in the new one. As workaround I created this as an old rule and imported it within the new rules section.
Cheers, Mario
#89
26.1 Series / Re: DNAT auto firewall [Regist...
Last post by franco - January 29, 2026, 07:16:56 PMCan you raise a ticket on GitHub about this? This may require a bit of discussion.
Thanks,
Franco
Thanks,
Franco
#90
25.7, 25.10 Series / Will 25.7.11_9 fix the memory/...
Last post by allenlook - January 29, 2026, 06:52:25 PMAs it says on the tin, will 25.7.11_9 fix the memory/swap consumption issue?
I see a line item for "dnsmasq: fix log conditions", but I'm not sure if that's what that means?
I see a line item for "dnsmasq: fix log conditions", but I'm not sure if that's what that means?
