CHECK FOR UPDATE - Authentication error

[PMata]

Please I need help on this error.
This installation is new and is a virtual machine. After a lot of searching I can't resolve this error.

***GOT REQUEST TO CHECK FOR UPDATES***
Currently running OPNsense 24.1 at Thu Feb  1 17:41:36 WET 2024
Fetching changelog information, please wait... 29566024159232:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
fetch: https://pkg.opnsense.org/FreeBSD:13:amd64/24.1/sets/changelog.txz: Authentication error
Updating OPNsense repository catalogue...
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/24.1/latest/meta.txz: Authentication error
repository OPNsense has no meta file, using default settings
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/24.1/latest/packagesite.pkg: Authentication error
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
35084283904:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:/usr/src/crypto/openssl/ssl/record/ssl3_record.c:363:
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/24.1/latest/packagesite.txz: Authentication error
Unable to update repository OPNsense
Error updating repositories!
pkg: Repository OPNsense cannot be opened. 'pkg update' required
Checking integrity... done (0 conflicting)
Your packages are up to date.
***DONE***

[Maurice]

Does OPNsense have unrestricted Internet access? Looks like it might be behind a web proxy.

[PMata]

Maurice:
Yes, it is behind the web proxy. Has access to the internet. pings hosts on the internet, trace routes, etc. I even created a rule in the opnsense firewall that has the web proxy to let everything through. I know the problem is with https access but I haven't found the solution yet. Any idea?

Logical diagram:

  internet<---------wan-- OpnsenseFirewall / web proxy<--Lan-192.168.1.1------------------Wan-192.168.1.2--OpnsenseFirewall <---Lan 172.10.10.1

Lan 172.10.10.0/24 can access the internet whitout a problem.
This reply post is send from a host on Lan 172.10.10.0.
Thank you.

[Maurice]

Have you tried an HTTP mirror instead?

[PMata]

Yes.
   http://mirror.terrahost.no/opnsense/FreeBSD:13:amd64/24.1

And it works.

[Maurice]

Problem solved. :)

I'm not aware of an easy way to make the OPNsense updater work with an HTTPS proxy, never tried. If this is a transparent proxy, installing its CA certificate may or may not be sufficient.

[PMata]

Update problem solved, yes.
But the problem is not solved for example: https://github.com/opnsense/tools

Using: curl https://github.com/opnsense/tools, command the SSL problem is the same as before. :(