No more web interface or SSH after updating to 22.1.10

Started by Singman, July 10, 2022, 10:41:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 10, 2022, 10:41:47 PM Last Edit: July 15, 2022, 05:44:00 PM by Singman
Hi,
I updated my OPNSense via the web interface with no problem, system rebooted and functional.
A week later, I wanted to access it via web interface : no answer.
I've tried via SSH : no connection.
Only the console is ok, no error, no strange message.
Updated via console : ok
Restarted : still no web interface or SSH.

I think some rules discarded during update. Any idea ?
July 11, 2022, 12:34:40 AM #1
by any chance, have you tried using SSL?  I too noticed the same thing and simply entering https solved the issue.
July 11, 2022, 11:30:41 PM #2
I'm already accessing with https SSL the router.
Have tried without too, same result
July 11, 2022, 11:41:18 PM #3
Using the console, have you tried the normal network debugging tools?

Show interfaces: ifconfig
Try if a host is reachable: ping
Show if any services are listening on any ports: netstat -a
Show raw packets while trying to access the system: tcpdump

I guess that's the only way to diagnose the current state of your OPNsense.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
July 12, 2022, 09:02:29 AM #4
I have the same problem.

What I did was:
- Check my interfaces were up
- Interfaces are bound on the right NIC in VMware
- I can ping the MGMT interface
- netstat -a shows that the firewall is listening on http and https.


July 15, 2022, 03:38:45 PM #5 Last Edit: July 15, 2022, 05:48:31 PM by Singman
ipconfig show :
igb0 (LAN) with an IPv4 address I've defined (192.168.0.254), status active and up
igb1 (WAN) with an IPv4 address too, defined by provider via DHCP (...), status active and up.
Others interfaces have no carrier (igb2 and igb3.
Also exists enc0, lo0, pflog0 and pfsync0

From the LAN, I could ping OPNSense. Look like everything is ok

For netstat, I'm used to type "netstat -tlnp" from other Unix (not *BSD) so I could not decrypt exactly what is showed in "netstat -a" qo I used "netstat -4an" to focus on my access from LAN to web management :
I have DNS (53), HTTP (80) and HTTPS (443) listening (see picture). Look like OK for me.

TCPdump give too much informations (and private ones), so I need an example to narrow the display.
July 15, 2022, 09:50:30 PM #6
Result of "tcpdump -n host 192.168.0.60 and port 22" while trying to open an SSH session from PC to opnsense :

Look like there is nothing that answer on this interface (LAN). Really strange if you see the previous screenshot.
Print
Go Up Pages1
User actions