24.7.8 System: Firmware failure

[Yewtink]

I can no longer connect to my windows 10 PC I am using as a local lan file server.  My Norton Antivirus is telling me that my workstation is being blocked because of SMB:Brute-Force attack on the File server.

My 2nd thought was to updated my OPNsense since it had been about a week or 2 since I last looked.  When I did I got an error that it could not Authentication error.  I did change to another mirror to test and got the same error.

***GOT REQUEST TO AUDIT CONNECTIVITY***
Currently running OPNsense 24.7.8 at Mon Nov 18 15:02:35 EST 2024
Checking connectivity for host: pkg.opnsense.org -> 89.149.222.99
PING 89.149.222.99 (89.149.222.99): 1500 data bytes
1508 bytes from 89.149.222.99: icmp_seq=0 ttl=53 time=178.871 ms
1508 bytes from 89.149.222.99: icmp_seq=1 ttl=53 time=177.511 ms
1508 bytes from 89.149.222.99: icmp_seq=2 ttl=53 time=195.501 ms
1508 bytes from 89.149.222.99: icmp_seq=3 ttl=53 time=185.200 ms

--- 89.149.222.99 ping statistics ---
4 packets transmitted, 4 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 177.511/184.271/195.501/7.103 ms
Checking connectivity for repository (IPv4): https://pkg.opnsense.org/FreeBSD:14:amd64/24.7
Updating OPNsense repository catalogue...
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/meta.txz: Authentication error
repository OPNsense has no meta file, using default settings
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/packagesite.pkg: Authentication error
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/packagesite.txz: Authentication error
Unable to update repository OPNsense
Error updating repositories!
Checking connectivity for host: pkg.opnsense.org -> 2001:1af8:5300:a010:1::1
ping: UDP connect: No route to host
Checking connectivity for repository (IPv6): https://pkg.opnsense.org/FreeBSD:14:amd64/24.7
Updating OPNsense repository catalogue...
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/meta.txz: Non-recoverable resolver failure
repository OPNsense has no meta file, using default settings
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/packagesite.pkg: Non-recoverable resolver failure
pkg: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/latest/packagesite.txz: Non-recoverable resolver failure
Unable to update repository OPNsense
Error updating repositories!
Checking server certificate for host: pkg.opnsense.org
write:errno=54
***DONE***


Could they be related or I had 2 different issues?

[newsense]

Not related.

Disable IPv6 on WAN and try updating again.

[franco]

Some sort of proxy or firewall in front messes with your remote access..

Checking server certificate for host: pkg.opnsense.org
write:errno=54

54 -> ECONNRESET -> Connection reset by peer

[Yewtink]

IPV6 has been disabled from day one.  I can login to OPNsense but refusing to update and plugins are showing up as orphaned.

[newsense]

Do you have any DNS servers in system-settings-general ?

[franco]

Again, your TLS connections are being reset. This does not look like an OPNsense issue. Everything you see is normal given the fact that you cannot reach the update server for this reason.


Cheers,
Franco

[stefan00]

Had the same error yesterday early in the morning. Changing the mirror from dns-root.de (HTTPS, Cloudflare CDN) to LeaseWeb (HTTPS, Frankfurt, DE) fixed it immediately.