"Recent posts
#91
Tutorials and FAQs / Configuring GRE-tunnel for add...
Last post by bitfinity-nl - January 10, 2026, 09:39:46 AMHi All,
I am not quite sure where to put this, but I think for some users this should be helpful.
I needed some extra IPv4-addresses, I got them from extraip.com so you have to configure them via a GRE-tunnel.
The procedure to get it to work is:
So I have OPNsense installed in a Proxmox VM (VIRTIO) and I have 1Gbit/s connection, the default WAN connection reaches the 1Gbit/s but via de GRE-tunnel it's not more than 30Mbit/s no matter what I do.
So before going further investigate, is there a limit in OPNsense (or BSD) with GRE-tunnels?
* I will update the documentation along the way ;)
I am not quite sure where to put this, but I think for some users this should be helpful.
I needed some extra IPv4-addresses, I got them from extraip.com so you have to configure them via a GRE-tunnel.
The procedure to get it to work is:
- Create a GRE-Tunnel
- Assign the GRE-device to an interface
- Enable the interface
- Configure the gateway
- Configure the public IP's via Virtual IP's
- Configure the firewall rules
- Configure outbound NAT
So I have OPNsense installed in a Proxmox VM (VIRTIO) and I have 1Gbit/s connection, the default WAN connection reaches the 1Gbit/s but via de GRE-tunnel it's not more than 30Mbit/s no matter what I do.
So before going further investigate, is there a limit in OPNsense (or BSD) with GRE-tunnels?
* I will update the documentation along the way ;)
#92
25.7, 25.10 Series / Re: choose shell for item 8 in...
Last post by franco - January 10, 2026, 09:38:49 AMBuilding a complex solution for a problem that doesn't exist for 99.9% of the users to allow to chose a shell that is not even installed by default in a very tiny shell script that offers a bit of convenience shows how impractical the request is.
Why not set the admin shell to bash? Why not use a separate admin user with bash shell and sudo su for the console menu? These types of setups have been supported for many years already.
Cheers,
Franco
Why not set the admin shell to bash? Why not use a separate admin user with bash shell and sudo su for the console menu? These types of setups have been supported for many years already.
Cheers,
Franco
#93
25.7, 25.10 Series / Re: os-acme-client 4.11 on Bus...
Last post by franco - January 10, 2026, 09:33:59 AMI can offer you the latest code we shipped. If that's not what you want from upstream acme.sh you need to patch the file manually because it looks like they did not release it yet?
In general it helps to get the data straight before experimenting if the change one wants is actually there.
Cheers,
Franco
In general it helps to get the data straight before experimenting if the change one wants is actually there.
Cheers,
Franco
#94
25.7, 25.10 Series / Re: Unbound to forward .home d...
Last post by tuxlemmi - January 10, 2026, 08:53:58 AMNope.
I didn't start yelling. Just asking.
I didn't start yelling. Just asking.
#95
General Discussion / Re: Cannot Setup
Last post by OPNenthu - January 10, 2026, 07:08:50 AMQuote from: DigitalSquirrel01 on January 10, 2026, 05:54:43 AMThe DVD, VGA, they all come up as either a corrupted file when I try to run it on the Windows machine, and when I try to run it in VM, it either shows up, and then when I open it, it's empty.
Just to be clear-
You cannot run OPNsense as an application on Windows, so if you are trying to run the installer directly that will not work. OPNsense is an OS (FreeBSD) and therefore you can only either install it on a separate computer or in a hypervisor, such as VirtualBox.
Have you installed 7-zip? You could attach a screenshot to show us where it is failing.
#96
General Discussion / Re: Cannot Setup
Last post by DigitalSquirrel01 - January 10, 2026, 05:54:43 AMHello Sir. How are you doing? I hope you are doing better than I, I am about to lose my mind! :-)
No, not really, I am not losing my mind, but I am just REALLY confused. I worked on this all day, and now it time to go to sleep. I feel a bit defeated.
For more info, I have mispoke; it's not zipped, but it's similar to zipped, as it's compressed. Its a compressed image. I have tried it every which way, and it still will not populate in the VM. The DVD, VGA, they all come up as either a corrupted file when I try to run it on the Windows machine, and when I try to run it in VM, it either shows up, and then when I open it, it's empty. Then, on the VM, I tried changing the setting, thinking that maybe if I put BSD in the format, maybe that was why it's not working, and that turned out to be a flop, too. I was reading the material, and the material states that it can be run on an OS, and also booted off of a Bootable Drive, and use the entire computer for this purpose. So, I tried to run the VM just off that SW itself, and nope, that did not work. For the University Project, we used WAZUH for a project we had in class. Now I am doing this independent lab as a portfolio project. I extracted the compressed file, but there is nothing inside it. I downloaded it from the OPNSense platform, so I trust its okay file. I ran it through Virus Total, and everything checked out well there. This is so confusing to me because I did not have any problems running Kali or Parrot, and everything just boots fine. In my mind, I am thinking this should be the easiest part of the entire process, but now I am completely stumped. :-( I even got desperate and went to AI to help, and now I am in circular thinking and arguments in my head.
I am going to start new tomorrow and re-read the material. Maybe I missed something I should not have. Could you help me understand why these things failed and perhaps put me on a different way of thinking? Thank you. Maybe I am just my own worst enemy here, and I'm thinking this is like other SW, and in reality, it is not, and I should be thinking differently. Anyway, any help is help right now because I am starting from scratch tomorrow.
If you could help, I would be really grateful. Even if it just some thoughts. Maybe just maybe there is something in those thoughts that might help. :-)
Thank you for your time, Sir. And Thanks for helping.
No, not really, I am not losing my mind, but I am just REALLY confused. I worked on this all day, and now it time to go to sleep. I feel a bit defeated.
For more info, I have mispoke; it's not zipped, but it's similar to zipped, as it's compressed. Its a compressed image. I have tried it every which way, and it still will not populate in the VM. The DVD, VGA, they all come up as either a corrupted file when I try to run it on the Windows machine, and when I try to run it in VM, it either shows up, and then when I open it, it's empty. Then, on the VM, I tried changing the setting, thinking that maybe if I put BSD in the format, maybe that was why it's not working, and that turned out to be a flop, too. I was reading the material, and the material states that it can be run on an OS, and also booted off of a Bootable Drive, and use the entire computer for this purpose. So, I tried to run the VM just off that SW itself, and nope, that did not work. For the University Project, we used WAZUH for a project we had in class. Now I am doing this independent lab as a portfolio project. I extracted the compressed file, but there is nothing inside it. I downloaded it from the OPNSense platform, so I trust its okay file. I ran it through Virus Total, and everything checked out well there. This is so confusing to me because I did not have any problems running Kali or Parrot, and everything just boots fine. In my mind, I am thinking this should be the easiest part of the entire process, but now I am completely stumped. :-( I even got desperate and went to AI to help, and now I am in circular thinking and arguments in my head.
I am going to start new tomorrow and re-read the material. Maybe I missed something I should not have. Could you help me understand why these things failed and perhaps put me on a different way of thinking? Thank you. Maybe I am just my own worst enemy here, and I'm thinking this is like other SW, and in reality, it is not, and I should be thinking differently. Anyway, any help is help right now because I am starting from scratch tomorrow.
If you could help, I would be really grateful. Even if it just some thoughts. Maybe just maybe there is something in those thoughts that might help. :-)
Thank you for your time, Sir. And Thanks for helping.
#97
German - Deutsch / Re: Firewallregeln lassen sich...
Last post by patient0 - January 10, 2026, 05:51:09 AMQuote from: Pelikan Netzwerk on January 09, 2026, 10:07:49 PMZu dem ersten Fehler, dem, dass keine Regeln kopiert werden können, wohin adressiere ich den jetzt?
Der offizielle Weg ist über ein Issue auf Github (https://github.com/opnsense/core/issues=, Informationen die notwendig sind: https://docs.opnsense.org/troubleshooting.html
Btw:
Aendert sich was wenn Du die Browserfenster Grösse änderst?
Und wenn Du im Browser, mittels Entwicklertools "Inspect" die Webseite anguckst und dann mit dem Elementen-Picker da rüber fährst, siehst Du ein Element names 'i.fa.fa-clone.fa-fw'?
You cannot view this attachment.
Damit fällt mir auf, es fehlt nicht nur das Duplizier-Icon sondern auch das Editieren-Icon. Du bist mit dem root Benutzer eingeloggt, gibt es noch einen anderen Benutzer den Du probieren kannst?
#98
25.7, 25.10 Series / Re: After upgrading to 25.7.9,...
Last post by patient0 - January 10, 2026, 05:35:28 AMQuote from: kwo1 on January 10, 2026, 12:39:57 AMUnless I'm reading this incorrectly, opnsense is listening on both my LAN subnet (192.168.20.251) and MGMT subnet (192.168.2.251) for both ports 443 and 22Your understanding is correct, both the webGUI and SSH are listening on the two interfaces, assuming that .251 is OPNsense.
Can you show the firewall rules on the MGMT interface? And run a tcpdump/package capture on the MGMT interface and filter for 443/tcp or 22/tcp or both to see what happens when you try to access OPNsense.
#99
General Discussion / Re: Cannot Setup
Last post by OPNenthu - January 10, 2026, 04:27:17 AMQuote from: DigitalSquirrel01 on January 10, 2026, 02:19:43 AMI downloaded OPNsense 25.7 iso vga amd 64, and I have downloaded the zip file 10 times
[...]
Also, when I download it, it shows 0 KB when it is completed, and it shows empty in VirtualBox when I open it through there.
Definitely doesn't sound right. For one thing the OPNsense images are not distributed as zip files, only as bz2. If you really did get a .zip file then that's not an official image.
To unpack the .img file from the .bz2 file you'll need a program that understands the bz2 format. On Windows for example, you can use 7zip as mentioned in the OPNsense docs.
If you're getting a 0KB file then something went wrong on your end but it's hard to tell what without more information. Maybe the program you used doesn't unpack the bz2 file correctly, or your download is failing for some reason. Try again with a different download mirror.
#100
25.7, 25.10 Series / in dnsmasq dhcp: leases: butto...
Last post by sigma - January 10, 2026, 04:23:42 AMI used this with the old version a lot. now I have to wait days for leases to be expire, it is frustrating. I want to see if a device is still active on my network. if I reboot opnsense it will just give the active valid lease so, rebooting does not work. If I had a button like before I can just delete the lease and see if the device requests again without rebooting. Also, when I add a static ip the dhcp lease stays.
Is there a way to delete the ip lease so I may better control my network? not having it seems illogical as it is very handy and useful to have.
Thanks in advance
Is there a way to delete the ip lease so I may better control my network? not having it seems illogical as it is very handy and useful to have.
Thanks in advance
