"Recent posts
#91
26.1 Series / Re: MiniUPNPD
Last post by franco - January 29, 2026, 05:10:22 PMReports are piling up. I'm wondering if the kernel has a bad change?
# opnsense-update -zkr 25.7.11
And reboot?
Cheers,
Franco
# opnsense-update -zkr 25.7.11
And reboot?
Cheers,
Franco
#92
General Discussion / Re: NIC Numbers versus Interfa...
Last post by elwell1 - January 29, 2026, 05:07:40 PMResults on ifconfig -l
root@OPNsense:~ # ifconfig -l
em0 em1 em2 em3 em4 em5 em6 em7 em8 em9 em10 em11 em12 em13 lo0 enc0 pfsync0 pflog0
root@OPNsense:~ # ifconfig -l
em0 em1 em2 em3 em4 em5 em6 em7 em8 em9 em10 em11 em12 em13 lo0 enc0 pfsync0 pflog0
#93
26.1 Series / Re: Old rules deprecation
Last post by Seimus - January 29, 2026, 05:00:28 PMI am having the same combination, Pihole + OPN.
But I run Piholes in a HA setup cause why not.
Regards,
S.
But I run Piholes in a HA setup cause why not.
Regards,
S.
#94
26.1 Series / Re: WiFi interface broken afte...
Last post by Seimus - January 29, 2026, 04:57:34 PMQuote from: sandy on January 29, 2026, 04:50:50 PMI've ordered one and hope it will work as well as recommended.
I use it as primary AP in dumb mode, with several SSIDs bound to different VLANs. Basically the AP works as WiFI + VLAN separation.
Quote from: sandy on January 29, 2026, 04:50:50 PMHow does quoting work in this forum software? I can't get it to work and have simply copied it manually in.
On each reply click the "QUOTE" button to quote the whole reply or highlight a word/sentence from a reply and click "QUOTE SELECTED TEXT"
Regards,
S.
#95
26.1 Series / Re: WiFi interface broken afte...
Last post by sandy - January 29, 2026, 04:50:50 PM"Sure, get an Asus RT-AX53U, cheap and powerful option, which is Supporting Dual Radio and WiFi6
Flash on it OpenWRT, which is very simple.
https://openwrt.org/toh/asus/rt-ax53u"
I've ordered one and hope it will work as well as recommended.
How does quoting work in this forum software? I can't get it to work and have simply copied it manually in.
Flash on it OpenWRT, which is very simple.
https://openwrt.org/toh/asus/rt-ax53u"
I've ordered one and hope it will work as well as recommended.
How does quoting work in this forum software? I can't get it to work and have simply copied it manually in.
#96
Zenarmor (Sensei) / Re: UI lockout after 26.1 upgr...
Last post by RutgerDiehard - January 29, 2026, 04:44:29 PMWell that was quite a scary upgrade!
Luckily I had a snapshot but foolishly overwrote the snapshot with another attempt at an upgrade.
Franco, you are quite right, I do have Zenarmor installed but don't use Suricata.
The interfaces that netmap_transmit was flooding the logs alternate between igc3 and igc5. Just so happened to be the ones Zenarmor protect.
After the upgrade, I managed to access the UI from another interface and checked Zenarmor. It was complaining that I seem to have enabled hardware offload - I can guarantee I hadn't!
Anyway, what fixed everything was changing "VLAN Hardware Filtering" from "Leave default" to "Disable VLAN Hardware Filtering"
Luckily I had a snapshot but foolishly overwrote the snapshot with another attempt at an upgrade.
Franco, you are quite right, I do have Zenarmor installed but don't use Suricata.
The interfaces that netmap_transmit was flooding the logs alternate between igc3 and igc5. Just so happened to be the ones Zenarmor protect.
After the upgrade, I managed to access the UI from another interface and checked Zenarmor. It was complaining that I seem to have enabled hardware offload - I can guarantee I hadn't!
Anyway, what fixed everything was changing "VLAN Hardware Filtering" from "Leave default" to "Disable VLAN Hardware Filtering"
#97
26.1 Series / Re: MiniUPNPD
Last post by epyon9283 - January 29, 2026, 04:41:24 PMHere are my logs from a port mapping attempt from qbittorrent:
Code Select
miniupnpd 9211 - - HTTP REQUEST from 192.168.1.158:61797 : POST /ctl/IPConn (HTTP/1.1)
miniupnpd 9211 - - Host: 192.168.1.1:2189
miniupnpd 9211 - - SOAPAction: urn:schemas-upnp-org:service:WANIPConnection:1#AddPortMapping
miniupnpd 9211 - - AddPortMapping: ext port 43831 to 192.168.1.158:7620 protocol UDP for: qBittorrent/5.1.4 leaseduration=604800 rhost=
miniupnpd 9211 - - no permission rule matched : accept by default (n_perms=0)
miniupnpd 9211 - - pfctl_get_rules_info: Invalid argument
miniupnpd 9211 - - Check protocol UDP for port 43831 on ext_if igc1 100.35.202.163, A3CA2364
miniupnpd 9211 - - 0101a8c0:5351 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0132a8c0:5351 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0101a8c0:59796 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0132a8c0:36397 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:1900 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0132a8c0:123 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0100007f:123 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - a3ca2364:123 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0101a8c0:123 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:123 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0101a8c0:43339 0a01a8c0:514 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:0 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0101a8c0:161 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0100007f:2056 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0132a8c0:5353 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0101a8c0:5353 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:5353 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:49935 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0100007f:2055 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0100007f:63685 0100007f:2055 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 0100007f:4930 0100007f:2055 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:53053 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:53053 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:53053 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:53053 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:51820 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:4500 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:500 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:53 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - 00000000:67 00000000:0 <=> 43831 a3ca2364:7620
miniupnpd 9211 - - redirecting port 43831 to 192.168.1.158:7620 protocol UDP for: qBittorrent/5.1.4
miniupnpd 9211 - - ioctl(dev, DIOCCHANGERULE, ...) PF_CHANGE_GET_TICKET: Invalid argument
miniupnpd 9211 - - Returning UPnPError 501: Action Failed #98
Zenarmor (Sensei) / Re: UI lockout after 26.1 upgr...
Last post by franco - January 29, 2026, 04:27:16 PMSounds like intrusion detection or Zenarmor active? Not sure if this is the issue, but it can cause traffic drops.
Cheers,
Franco
Cheers,
Franco
#99
26.1 Series / Re: Fresh install of 26.1 with...
Last post by franco - January 29, 2026, 04:26:23 PMNothing comes to mind. Just make sure you have a config.xml downloaded somewhere so you are prepared. :)
Cheers,
Franco
Cheers,
Franco
#100
26.1 Series / Fresh install of 26.1 with con...
Last post by jp0469 - January 29, 2026, 04:04:11 PMEvery year or so I like to do the major version upgrade by installing fresh and then restoring my latest config backup. Any major watchouts or gotchas that I should be aware of this time around? For reference, I have a pretty vanilla setup. Just a couple of VLANs and a site-to-site Wireguard instance. No IPv6. I already migrated to dnsmasq for DHCP and I'm using the Adguard Home plugin for DNS. No Unbound in use.
