Is there a way to find out what causes random freezing of OPNSense?

[securityconscious]

Is there a way to find out what causes random freezing of OPNSense?

Few days ago, there was a disconnection in WAN side, in the night, OPNSense froze, no clients were on during this time, when I turned on I couldn't access the webUI. I had to hard reset to get it back up.

I was wondering if anyone could have performed a man-in-the-middle attack while there was a disconnection in the WAN side, can I run any integrity checks or view logs? Where can I find system logs if it has  been tampered with?

Or should reinstall the whole thing again?

[d3pr3cat3d]

M

f the import logs are available via the GUI
https://docs.opnsense.org/manual/logging_system.html?highlight=logs

You can also use shell access to view the logs in /var/log

Code Select Expand

# ls /var/log/
acme.sh.log flowd.log flowd.log.000008 ntp setuid.today utx.lastlogin
bsdinstaller flowd.log.000001 flowd.log.000009 ntpd.log setuid.yesterday utx.log
configd.log flowd.log.000002 flowd.log.000010 openvpn.log squid vpn.log
dhcpd.log flowd.log.000003 gateways.log pkg.log squid.log wireless.log
dmesg.today flowd.log.000004 ipsec.log portalauth.log suricata
dmesg.yesterday flowd.log.000005 lighttpd ppps.log suricata.log
dnsmasq.log flowd.log.000006 lighttpd.log resolver.log system.log
filter.log flowd.log.000007 mount.today routing.log userlog