Slow GUI on FQDN. Fast with direct IP

Started by Daves_nt_here, July 22, 2024, 02:44:54 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 22, 2024, 02:44:54 AM
Just added my LetsEncrypt cert. I access OPNsnese through the FQDN but most times it will take 1~2 minutes to load. When it does load, everything is fine for a min or two but then clicking on any option causes the 1~2 min delay again.
If I access it from the IP address https://192.168.5.1:8443 it loads as expected.
I tried adding an Unbound DNS host override: opnsense.domain.com > 192.168.5.1 but that doesn't seem to make any difference.
July 22, 2024, 10:19:12 AM #1
It is unlikely that the DNS resolution takes that long, so DNS is probably not the problem here.

Toggle the "OCSP must staple" setting in the certificate. If the webserver does not support it properly, it could lead to slow download of certificate revocation lists, which in case of LetsEncrypt should be huge.
Intel N100, 4 x I226-V, 16 GByte, 256 GByte NVME, ZTE F6005

1100 down / 800 up, Bufferbloat A+
July 24, 2024, 03:23:45 PM #2
That seemed to do the trick.
Thanks for the help!
Print
Go Up Pages1
User actions