Recent posts

#91
25.7, 25.10 Series / Re: Could This Be The Reason?
Last post by Patrick M. Hausen - December 09, 2025, 12:58:09 AM
Adding the magic security device [1] to your network will improve security. Of course.

Might contain traces of sarcasm.

[1] https://www.ranum.com/security/computer_security/papers/a1-firewall/index.html
#92
25.7, 25.10 Series / Re: Could This Be The Reason?
Last post by OPNenthu - December 09, 2025, 12:30:56 AM
Quote from: Monviech (Cedrik) on December 08, 2025, 03:12:46 PMIt eludes my why so many (new) users choose the transparent filtering bridge setup.

Because YouTube sold it as an easy/fun project and a way to add network security via a black box that you plug and play and not touch a single thing on your existing router.  Also, a travel companion to keep you safe when using hotel internet.

Whether those claims are true or not is beyond me.  I haven't used Suricata but I have heard of the many false alarms it raises.
#93
Hardware and Performance / Re: [solved] Intel i226 Firmwa...
Last post by OPNenthu - December 08, 2025, 11:27:25 PM
Quote from: dirtyfreebooter on December 08, 2025, 08:49:21 PMi had success with my protectli vp2440, both the X710 and i226v nics. first i updated the X710

https://kb.protectli.com/kb/how-to-update-intel-nic-nvm-firmware-on-protectli-vaults/

This is great to see from them, thanks in no small part to this thread.

- official instructions
- offer to support any bricked NICs (at customer's shipping expense)
- an acknowledgement that they are considering how to legally distribute i226-V binaries

Great job all around :)  Hoping to see an official binary soon and bonus points if they can get an actually informative change log out of Intel.
#94
25.7, 25.10 Series / Re: 25.7.9 update and WireGuar...
Last post by s1l3nce - December 08, 2025, 11:01:21 PM
Quote from: Monviech (Cedrik) on December 08, 2025, 09:23:02 PMThe question is, did something change?

The only thing that I've changed recently was the OPNsense firmware. I've been using WireGuard + AdGuard without any issues for several months.
#95
German - Deutsch / Re: Probleme mit DNS + VLAN + ...
Last post by mfreudenberg - December 08, 2025, 10:24:16 PM
Ich habe sowohl den OPNSense als auch den Switch neu gestartet (damit implizit auch die AP's).

Der DNS, den ich in OPNSense eingetragen habe ist die Fritz!Box. Im Fritz!Box-LAN habe ich auch noch einen Pi-hole laufen, der eigentlich keine Probleme machen sollte.

Edit: Der Outbound-NAT steht auf "Hybrid". Hatte aber auch mal automatic probiert.

Edit2: Die automatischen outbound-Regeln sind:


WAN Clients networks, Heimautomation networks, LAN networks, Loopback networks, 127.0.0.0/8 Auto created rule for ISAKMP
 
WAN Clients networks, Heimautomation networks, LAN networks, Loopback networks, MGMT networks, 127.0.0.0/8 Auto created rule

#96
Hardware and Performance / Re: DEC750 Questions
Last post by Monviech (Cedrik) - December 08, 2025, 10:12:24 PM
Just contact sales and they will help you. Email is at the bottom of the page

https://shop.opnsense.com/

#97
Hardware and Performance / Re: DEC750 Questions
Last post by ProximusAl - December 08, 2025, 10:04:18 PM
There is something wrong with the web shop.

It created me an account (still no emails about my order), but when I set a password for the web shop it says it's always weak and won't let me set it

Apparently niOpzEY$3Rie`3-G2`TQT6<(bTS1*Ejysu~4{K0v is a weak password.

So neither can I log in to check my order, or had any emails regarding the shipment of my order, only an acknowledgment email.
#98
German - Deutsch / Re: Probleme mit DNS + VLAN + ...
Last post by viragomann - December 08, 2025, 09:38:25 PM
Da scheinen zumindest 2 Probleme vorzuliegen.

Der Ping nach draußen (1.1.1.1) sollte auf der OPNsense nur die Firewall- und die Outbound NAT Regel benötigen. Die FW-Regel existiert, so überprüfe mal das Outbound NAT.

Wenn seit der Einrichtung des VLANs noch nicht geschehen, würde ich auch eine  Reboot versuchen.

Welches DNS nutzt du auf OPNsense?
#99
General Discussion / Re: Micron exits consumer mark...
Last post by meyergru - December 08, 2025, 09:38:05 PM
Or you go cheap (as I did) and switch to Intel 12th-14th gen. Those LGA1700 boards are still available and many use DDR4. New AM4 boards are unobtanium. And having had the experience of a 400€ board passing out after less than three years, I am not too keen on trying a used/refurbished one.

I never had failing RAM until now, only mainboards. I think it is getting worse with the voltage regulation now on the mainboards instead of the PSU and the obscene power draw of modern CPUs.
#100
General Discussion / Re: Micron exits consumer mark...
Last post by OPNenthu - December 08, 2025, 09:31:14 PM
Quote from: coffeecup25 on December 08, 2025, 03:50:37 PMSeriously, I recently looked for 16GB DDR4 and a larger SSD to upgrade an old laptop and was surprised at how the prices had gone up.

Quote from: meyergru on December 08, 2025, 04:45:36 PMYup, sometimes, this hits earlier than one thinks... Yesterday, I found my Proxmox server getting unstable until I increased Vcore by 100mV - obviously a VRM is on its way out.

I recently got my first NAS (a DXP4800 Plus appliance that I replaced the boot drive and put TrueNAS on it) and was lucky to have found a compatible 64GB kit *just* as the prices started to climb.  Had to return the first kit I tried due to Memtest errors.  Close call on that one. :)

My desktop is on borrowed time.  I've had the same DDR4 kit over three CPUs now.  It's the end of the road for my AM4 and any failure would mean DDR5 or newer now (unobtainium).  I should probably hire a priest to bless it...