"Recent posts
#91
Hardware and Performance / Re: Strange DNS spikes and ran...
Last post by Boxer - February 13, 2026, 09:14:25 AMDisable said extensions and see if the queries stop. It's almost certain that one of them is the cause. Be careful :)
#92
26.1 Series / Re: Clean upgrade from 25.1.7 ...
Last post by GambinoG1 - February 13, 2026, 09:12:25 AMI ran a test VM with OPNsense 25.1 installed and updated through GUI, each update took about 1-2 hours and there were 4 updates totaling 7 hours and 35 minutes.
I dont mind losing historic logs.
Our main OPNsense is not a VM and our disks are raidz1 ZFS.
Ok I think i get it now.
I will:
1. Enable Kea (check so everything works with Kea)
3. Backup config
4. Clean install 26.1.1
5. Upload config
If it fails then do incremental updates starting from 25.1.7 creating snapshots with bectl at every incremental update.
If you think I'm wrong please let me know, if you have any suggestions on better ways please inform me I'm happy to learn more.
Otherwise this is the plan I'll execute.
I dont mind losing historic logs.
Our main OPNsense is not a VM and our disks are raidz1 ZFS.
Ok I think i get it now.
I will:
1. Enable Kea (check so everything works with Kea)
3. Backup config
4. Clean install 26.1.1
5. Upload config
If it fails then do incremental updates starting from 25.1.7 creating snapshots with bectl at every incremental update.
If you think I'm wrong please let me know, if you have any suggestions on better ways please inform me I'm happy to learn more.
Otherwise this is the plan I'll execute.
#93
26.1 Series / 26.1.2 - remove "upstream" fro...
Last post by keropiko - February 13, 2026, 08:54:34 AMHello all,
first of all thank you to the team for the great support.
I would like to ask , after update to 26.1.2, i saw in the changelog : system: remove "upstream" from gateway grid as priority already reflects the proper data.
Although i updated, the option upstream gateway is still there in the gateways sections.
Something wrong with the upgrade?
Thank you.
first of all thank you to the team for the great support.
I would like to ask , after update to 26.1.2, i saw in the changelog : system: remove "upstream" from gateway grid as priority already reflects the proper data.
Although i updated, the option upstream gateway is still there in the gateways sections.
Something wrong with the upgrade?
Thank you.
#94
Hardware and Performance / Strange DNS spikes and random ...
Last post by matsoon - February 13, 2026, 08:52:16 AMHi all
I've just finished setting up OPNsense on a small home box (fresh install, default Unbound + DNSBL). Everything looked stable, low latency, no packet loss. Then I noticed repeated DNS queries going out to domains related to Royalspinia and other casino-type sites, even though nobody here actively browses that kind of content. What I expected was clean outbound traffic, but instead I'm seeing bursts every few minutes, mostly from one Windows client. It started right after installing a couple of free browser extensions, so that might be the trigger, but I'm not 100% sure. I'm not a network expert, just trying to keep the setup clean and safe. Would you block this purely at firewall level, tighten DNSBL rules, or look deeper for adware on the client first?
#95
Hardware and Performance / Re: Warning about RealTek adap...
Last post by Stormscape - February 13, 2026, 08:38:06 AMGood thing you posted this, I had been considering one (specifically the SFP+ variant on AliExpress) to replace a SolarFlare SFC9020 SFP+ NIC in my desktop. What do we think of Aquantia AQC113 as an alternative?
#96
Virtual private networks / Re: Wireguard stops working af...
Last post by alto - February 13, 2026, 08:21:32 AMQuote from: Patrick M. Hausen on February 12, 2026, 10:28:31 AMIt does. You do not have a publicly reachable IPv4 address, anymore.
This was indeed correct, I contacted my ISP and requested a new public IP. It got sorted and after rebooting my opnsense router it's now on the new IP and the Wireguard connection works again. It's a bit annoying that they put me behind CG-NAT without even notifying me.
#97
26.1 Series / Re: Packet loss in one of the ...
Last post by samiram - February 13, 2026, 06:40:33 AMBTW I see below entries from the webgiu log whenever there is a packet loss.
Code Select
2026-02-13T11:05:38Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-3: Connection refused
2026-02-13T11:02:36Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-1: Connection refused
2026-02-13T11:00:06Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-1: Connection refused
2026-02-13T10:52:06Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-2: Connection refused
2026-02-13T10:41:24Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-0: Connection refused
2026-02-13T10:14:44Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-4: Connection refused
2026-02-13T10:11:26Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-2: Connection refused
2026-02-13T10:07:16Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-5: Connection refused
2026-02-13T10:02:03Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-3: Connection refused
2026-02-13T09:56:39Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-4: Connection refused
2026-02-13T09:54:04Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/mod_openssl.c.4624) SSL: addr:192.168.1.88 ssl_err:5 rd:-1 errno:60: Operation timed out
2026-02-13T09:48:25Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-4: Connection refused
2026-02-13T09:42:53Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-1: Connection refused
2026-02-13T09:04:57Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-3: Connection refused
2026-02-13T01:30:15Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-2: Connection refused
2026-02-13T01:01:05Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-0: Connection refused
2026-02-13T00:17:05Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-1: Connection refused
2026-02-13T00:14:04Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-2: Connection refused
2026-02-13T00:10:22Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-0: Connection refused
2026-02-12T23:30:20Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi.socket-1: Connection refused
2026-02-12T23:30:09Errorlighttpd(/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.82/src/mod_openssl.c.4624) SSL: addr:192.168.1.88 ssl_err:5 rd:-1 errno:60: Operation timed out #98
26.1 Series / Packet loss in one of the gate...
Last post by samiram - February 13, 2026, 06:33:54 AMHi All,
I had this issue of intermittent packet losses in one of my gateways. NIC, monitoring ip and isp link seems to be ok but that specific gateway still seems to be reporting a packet loss. I checked the usual opnsense logs and logs from underlying hardware (running on proxmos) but still no issue to be found. Resource utilization is normal too. Any idea on where to check next? FYI this specific interface is running on a usb ethernet adapter directly attached/configured to proxmos which works fine without any errors or packet losses.
WAN_GW (active)
192.168.1.1
RTT: 6.8 ms
RTTd: 1.1 ms
Loss: 1.0 %
IPHONE4G_GW
172.20.10.1
RTT: 69.0 ms
RTTd: 24.7 ms
Loss: 0.0 %
Versions
OPNsense 26.1.2-amd64
FreeBSD 14.3-RELEASE-p8
OpenSSL 3.0.19
Load average
0.96, 0.69, 0.61
I had this issue of intermittent packet losses in one of my gateways. NIC, monitoring ip and isp link seems to be ok but that specific gateway still seems to be reporting a packet loss. I checked the usual opnsense logs and logs from underlying hardware (running on proxmos) but still no issue to be found. Resource utilization is normal too. Any idea on where to check next? FYI this specific interface is running on a usb ethernet adapter directly attached/configured to proxmos which works fine without any errors or packet losses.
WAN_GW (active)
192.168.1.1
RTT: 6.8 ms
RTTd: 1.1 ms
Loss: 1.0 %
IPHONE4G_GW
172.20.10.1
RTT: 69.0 ms
RTTd: 24.7 ms
Loss: 0.0 %
Versions
OPNsense 26.1.2-amd64
FreeBSD 14.3-RELEASE-p8
OpenSSL 3.0.19
Load average
0.96, 0.69, 0.61
#99
General Discussion / Re: upgrade from 21.7.8 failed
Last post by Mpegger - February 13, 2026, 06:01:52 AMIf your current 21.7.8 appears to be running fine with no issues, you could just save the configuration and install the next higher version from ISO, then import the configuration you saved.
#100
General Discussion / Re: Dell R620 as an OPNsense h...
Last post by coatmaker618 - February 13, 2026, 05:07:36 AMUpdating that interface on 25 Gbe NIC works now, was just a cable that got loose.
