Recent posts

#81

German - Deutsch / Re: HAProxy X-Forwarded-For fu...

Last post by MiRei - January 16, 2026, 05:57:17 PM

Bei mir ist Version 3.0.12-21a355d installiert.

#82

25.7, 25.10 Series / 25.7.11 /var/log/suricata:No s...

Last post by JamesFrisch - January 16, 2026, 05:51:56 PM

I have 50% RAM (4GB) assigned as /var/log/ and I don't use surricata.

Still got

Code Select Expand

[1/2] Extracting suricata-8.0.3: .........
pkg-static: Fail to create /var/log/suricata:No space left on device
while RAM usage was at 2GB.
After disabling RAM disk, the update went through.

#83

German - Deutsch / Re: MTU bei PPPoe | Deutsche G...

Last post by carepack - January 16, 2026, 05:36:31 PM

Und wie ist is, wenn du mtu nicht spezifizierst und auf default Einstellungen lässt? Geh davon aus der physische Port ist exklusiv der VM zugewiesen?

#84

25.7, 25.10 Series / Re: in dnsmasq dhcp: leases: b...

Last post by Monviech (Cedrik) - January 16, 2026, 05:31:51 PM

Im not sure if we are going in circles now?

https://github.com/opnsense/core/pull/8899#issuecomment-3031389959

#85

25.7, 25.10 Series / Re: in dnsmasq dhcp: leases: b...

Last post by pseudonym3k - January 16, 2026, 05:22:54 PM

And while I was writing the above edit, I've had a reply from Simon Kelley:



In the dnsmasq source tree, there's a directory called

contrib/lease-tools

which contains what you're looking for.



Cheers,

Simon.



Would someone from OPNsense be able to take a look at this and see if it is possible to implement?

#86

25.7, 25.10 Series / Re: in dnsmasq dhcp: leases: b...

Last post by franco - January 16, 2026, 05:17:12 PM

What knebb said is true. On a protocol level, there's no way for the server to revoke a lease once it's been given out to the client for the lifetime it was given out.

Yes you can restart the server and forget the lease, but technically speaking the two are not the same.


Cheers,
Franco

#87

25.7, 25.10 Series / Re: in dnsmasq dhcp: leases: b...

Last post by pseudonym3k - January 16, 2026, 05:14:24 PM

there is no way a given lease can be recalled

I'm not sure this is true. At Franco's suggestion I've sent a message to Simon Kelley, the developer of DNSMasq, as I searched his discussion list archives and found out he provided a script that could be attached to a button to remove a lease without stopping DNSMasq. This is what I likely used way back when since I don't remember having these issues. I've asked if this is still available or if he can recommend another method to settle this issue. I hope he'll respond to my query.

ETA: Here's a quote from Simon Kelley on DNSMasq discussion list:  "dhcp_release works by faking up a DHCP message as if it's coming from the DHCP client, which tells the server to release the lease."

This is exactly what I'm hoping for, a way to tell DNSMasq to perform all standard processes to release the lease.

#88

25.7, 25.10 Series / Re: Where is the "Create Post"...

Last post by Patrick M. Hausen - January 16, 2026, 05:07:47 PM

See screen shot.

#89

German - Deutsch / Re: HAProxy X-Forwarded-For fu...

Last post by viragomann - January 16, 2026, 05:06:56 PM

Aber eigentlich müsste ich doch per tcpdump das
in den Pakete sehen können.

Ich habe hier allen Backend-Zugriff verschlüsselt und kann es damit nicht nachprüfen. Aber ja, wenn du die anderen Header siehst, müsste X-Forwarded-For auch zu sehen sein.

Im Backend steht derzeit unter options passthrough:

option forwardfor
http-request replace-value X-Forwarded-for ^ "%[hdr(x-forwarded-for)], %[src]"

Bei mir sehe ich nur die erste Zeile.
Mir ist auch nicht klar, was die zweite machen soll. Den Wert im Header ersetzen, obwohl dieser eh korrekt ist?

Bei mir läuft übrigens die HAproxy Version 3.0.12-21a355d. Hast du eine andere?

#90

25.7, 25.10 Series / Re: Reporting: Columns not rem...

Last post by franco - January 16, 2026, 04:51:39 PM

Ok, then it's likely something small. A ticket on GitHub would help.


Thanks,
Franco