Installed sensei - webinterface not working anymore

Started by jannisj, January 04, 2020, 04:18:45 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 04, 2020, 04:18:45 PM Last Edit: January 04, 2020, 04:36:12 PM by jannisj
I tried to install Sensei according to the install guide.
After the wizard, were I chose to protect the lan interface, I can no longer connect to the webinterface of the opnsense box.
ssh is no longer connecting either.

Web browsing seems to work so far, but it's pretty useless if I cannot log into the management system...

Has anyone had this happen?
Opnsense is on newest patch level.

I had to stop the services from the console, and delete the os-sensei and elasticsearch5 packages, then reboot the opnsense box to regain access to the webinterface.

-Jannis
January 07, 2020, 05:37:01 PM #1
Had also a couple of problems with stability and crashes after installing sensei. Finally I decided to uninstall completely:

- unstable - causing crash/instabilities ending up with inaccesibility of the firewall- needed to shutdown the system and reboot a couple of times - finally I was a lucky guy and could access again the gui ..
- unreliable - switch to bypass mode and vice versa does not work properly ->the configured settings are not executed after exiting bypass mode
- lack of transparency -> regarding the complete rule setting - who is compiling the rules and categories, what exactly does cloud reputation etc, etc.
- others  - dns resolving should be improved

Urmel
January 07, 2020, 07:05:38 PM #2
Good evening,
I would be curious to know your hardware (motherboard, processor, memory, sata or ssd hard drive).
Having several configurations, I am interested in all the information revolving around this module.
Cordially.
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
January 08, 2020, 03:02:55 AM #3
Quote from: jannisj on January 04, 2020, 04:18:45 PM
I tried to install Sensei according to the install guide.
After the wizard, were I chose to protect the lan interface, I can no longer connect to the webinterface of the opnsense box.
ssh is no longer connecting either.

Web browsing seems to work so far, but it's pretty useless if I cannot log into the management system...

Has anyone had this happen?
Opnsense is on newest patch level.

-Jannis

Hi Jannis,

Happy to help.

Which ethernet interface are you using for LAN (igb, em, re?) . Are there any VLANs configured for the LAN interface?
January 08, 2020, 01:23:21 PM #4
Quote from: mb on January 08, 2020, 03:02:55 AM
Hi Jannis,

Happy to help.

Which ethernet interface are you using for LAN (igb, em, re?) . Are there any VLANs configured for the LAN interface?

I'll doublecheck when I get home, but it's an enterprise intel nic in a Dell PowerEdge 210 II.
Xeon cpu, 16GB memory, 240GB SSD.

No VLANS's at all, very simple setup, just WAN and LAN ports on the same dual port intel nic.

-jannis
January 08, 2020, 05:31:05 PM #5
hi jannis,

Hardware side nothing to say.

If I understand correctly on the PowerEdge you have installed OPNsense version?, And you have access to it using the Web interface and / or in SSH.

This, locally in your company and / or also from your home, before the installation of sensei?

I did not understand if the blocking was local or remote?

cordially
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
January 08, 2020, 09:56:15 PM #6
Quote from: jannisj on January 08, 2020, 01:23:21 PM
I'll doublecheck when I get home, but it's an enterprise intel nic in a Dell PowerEdge 210 II.
Xeon cpu, 16GB memory, 240GB SSD.

No VLANS's at all, very simple setup, just WAN and LAN ports on the same dual port intel nic.

Jannis, this hw looks decent and should have no problems with Sensei. I'll PM you so that we have a look together.
January 09, 2020, 07:45:10 AM #7
Quote from: Darkopnsense on January 08, 2020, 05:31:05 PM
hi jannis,

Hardware side nothing to say.

If I understand correctly on the PowerEdge you have installed OPNsense version?, And you have access to it using the Web interface and / or in SSH.

This, locally in your company and / or also from your home, before the installation of sensei?

I did not understand if the blocking was local or remote?

cordially

After I installed Sensei, I lost access to the opnsense webinterface and ssh.
This was on the LAN side of the appliance, I have not exposed the webinterface or ssh login to the WAN side

-jannis
January 09, 2020, 12:20:16 PM #8
Hello Jannis,
In my experience, I have had no problems with Sensei.
Your symptom of the joint loss of the web interface and / or SSH have your link in common.
Did you check if the leds of the parts and others were on.
I speak knowingly.
This is just a reflection.
As the description goes, I don't see any interactions.
Regards,
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
January 09, 2020, 12:33:04 PM #9
what if you disable "cloud threat intel" after installation?
January 09, 2020, 02:00:21 PM #10
Hello,
Interestingly, it did not occur to me to try.
I would test.
Regards,
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
March 01, 2021, 04:48:51 AM #11
Was there a fix for this issue.  I've got the same problem.
Dell i5-4570, 8GB, Intel i350-T4
Print
Go Up Pages1
User actions