UPNP Stops Responding After a Couple of Minutes

Started by dcrdev, December 02, 2024, 12:32:00 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 02, 2024, 12:32:00 AM
Did a fresh install of OPNSense on a new box yesterday and have been grappling with UPNP. I have it working, but it only works for a couple of minutes before not responding. I can restart the miniupnpd service and it will start responding again, but will ultimately stop responding.

Here's my config:
Code Select
ext_ifname=pppoe0
port=2189
listening_ip=bridge0
ext_perform_stun=yes
ext_stun_host=stun.l.google.com
ext_stun_port=19302
secure_mode=yes
packet_log=yes
system_uptime=yes
presentation_url=https://10.210.1.1/
uuid=528c8e6c-4a3c-6598-999a-0e9df15ad32
serial=528C8E6C
model_number=24.7.9_1
allow 88-65535 10.210.1.230/32 88-65535
allow 88-65535 10.210.1.231/32 88-65535
allow 88-65535 10.210.1.48/32 88-65535
allow 88-65535 10.210.1.66/32 88-65535
deny 0-65535 0.0.0.0/0 0-65535
enable_upnp=yes
enable_pcp_pmp=yes
clean_ruleset_interval=600
min_lifetime=120
max_lifetime=86400

After a couple of minutes of miniupnpd being active:
Code Select
dominic@Dominics-MacBook-Pro ~ % upnpc -s             
upnpc: miniupnpc library test client, version 2.2.8.
(c) 2005-2024 Thomas Bernard.
More information at https://miniupnp.tuxfamily.org/ or http://miniupnp.free.fr/

List of UPNP devices found on the network :
desc: http://10.210.1.20:80/description.xml
st: urn:schemas-upnp-org:device:basic:1

desc: http://10.210.1.20:80/description.xml
st: uuid:2f402f80-da50-11e1-9b23-ecb5fa24d6cf

desc: http://10.210.1.20:80/description.xml
st: upnp:rootdevice

UPnP device found. Is it an IGD ? : http://10.210.1.20:80/
No valid UPNP Internet Gateway Device found.

After a restart of the service:
Code Select
dominic@Dominics-MacBook-Pro ~ % upnpc -s
upnpc: miniupnpc library test client, version 2.2.8.
(c) 2005-2024 Thomas Bernard.
More information at https://miniupnp.tuxfamily.org/ or http://miniupnp.free.fr/

List of UPNP devices found on the network :
desc: http://10.210.1.20:80/description.xml
st: urn:schemas-upnp-org:device:basic:1

desc: http://10.210.1.20:80/description.xml
st: uuid:2f402f80-da50-11e1-9b23-ecb5fa24d6cf

desc: http://10.210.1.20:80/description.xml
st: upnp:rootdevice

desc: http://10.210.1.1:2189/rootDesc.xml
st: urn:schemas-upnp-org:device:InternetGatewayDevice:1

Found valid IGD : http://10.210.1.1:2189/ctl/IPConn
Local LAN ip address : 10.210.1.231
Connection Type : IP_Routed
Status : Connected, uptime=3211s, LastConnectionError : ERROR_NONE
  Time started : Sun Dec  1 22:35:43 2024
MaxBitRateDown : 64000 bps (64 Kbps)   MaxBitRateUp 64000 bps (64 Kbps)
ExternalIPAddress = REDACTED
Bytes:   Sent:  8211684 Recv: 167733177
Packets: Sent:    45845 Recv:   139374

I'm not seeing any blocks in the logs, in fact I only see upnp requests prior to the service not responding. I am not sure what could be happening here. Looks like other people may be experiencing the same (not many): https://redmine.pfsense.org/issues/15732

Help please  :)
December 02, 2024, 11:34:08 AM #1
Turned out to be a Phillips Hue bridge which runs an UPNP server (for reasons?) - it would seem if the firewall comes up after the bridge is powered on these issues occur, but if the firewall comes up before it seems to be stable.
Print
Go Up Pages1
User actions