FW (22.1.10) stops giving internet access until reboot

Started by zeboulon, July 22, 2022, 12:16:04 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 22, 2022, 12:16:04 AM Last Edit: July 22, 2022, 12:34:18 PM by zeboulon
During last 3 days the fw has stopped passing traffic through randomly 4 times.
Nothing changed in the config.
Nothing found in the logs, works immediately after reboot.
Thoughts?

Edit: it's running in Hyper-V 2016.
July 22, 2022, 11:58:19 PM #1
Are you running Zenarmor?


Sent from my iPhone using Tapatalk Pro
July 23, 2022, 09:10:00 AM #2 Last Edit: July 23, 2022, 11:14:11 AM by zeboulon
Yes, I am.
Will uninstall that now. This is now happening multiple times every day.
It seems like the external interface just stops working.
The update feature in OPNsense can't connect either.
The internal interface works though, and the logs arn't saying anything at all. (those I'm looking at least)
(edit: wrote install instead of uninstall)
July 23, 2022, 09:29:53 AM #3
Quote from: zeboulon on July 23, 2022, 09:10:00 AM
Yes, I am.
Will install that now. This is now happening multiple times every day.
It seems like the external interface just stops working.
The update feature in OPNsense can't connect either.
The internal interface works though, and the logs arn't saying anything at all. (those I'm looking at least)
I had a similar problem lately and did memory tests (passed), reinstalled the bios and OPNsense, and after ruling other things out, I uninstalled Zenarmor and the problem stopped. I have been using ZA since May with no problems, but since 22.1.9 and creating some pretty gnarly profiles on ZA, it started crashing. I am not saying it's ZA alone, as I have not heard much in the forums about this until your post. Try your setup without ZA. If it still happens we can rule that out. You should also try a memory test to rule that out (try that first).
July 24, 2022, 10:09:14 PM #4
After uninstalling Zenarmor it hasn't occured...
Got to be careful when installing such big plugins, obviously.
It wasn't possible to ping from the WAN interface using the diagnostics, until after reboot, so I uninstalled Zenarmor. 24hrs later all seems fine.
July 28, 2022, 03:06:02 AM #5
I've experienced this same issue in several locations on several version of firmware since 02/02/2022.

I have yet to find a fix, ZenArmor is install across all devices. I'll run a diagnostic test here: I'll uninstall ZenArmor on 2 firewalls, reinstall on 2 firewalls, and leave it on 2 firewall and I'll let you know if the crashes stop.

All firewalls are identical hardware. This ZenArmor fix looks promising :)
October 07, 2022, 07:27:32 AM #6
I am glad you posted this because since my original post, I have an update. It was not actually Zenarmor that was the problem. For me it was the ElasticSearch database that, for some reason, was not compatible with my setup. I have since reinstalled Zenarmor and am now using MongoDB. My system has been running fine. It took weeks of troubleshooting to resolve the issue. Maybe this would be helpful to you, too. I do find Zenarmor to be a great tool with the proper setup. I hope this is helpful.
Print
Go Up Pages1
User actions