Upgradethread 23.1.11_1 to 23.7

Started by seed, July 31, 2023, 03:07:59 PM

Previous topic - Next topic
Print
Go Down Pages 1 ... 5 6 7 8 9
User actions
August 04, 2023, 03:11:17 PM #90
no AdGuard Service on this device.
August 04, 2023, 03:23:32 PM #91
Looks like that after the upgrade the suricata does not work and found the link below that may be why.

https://forum.opnsense.org/index.php?topic=35130.0

can someone let me know...

August 04, 2023, 03:24:41 PM #92 Last Edit: August 04, 2023, 03:28:11 PM by lilsense
Is there a way to roll back from 23.7 back to 23.1...  :'(

Can I use this to roll back: https://docs.opnsense.org/manual/opnsense_tools.html
August 04, 2023, 04:48:57 PM #93
Quote from: opn_nwo on August 04, 2023, 03:05:34 PM
Any undesirable interaction between the new version and AdGuard to be aware of?
None
August 04, 2023, 05:00:03 PM #94
Quote from: lilsense on August 04, 2023, 03:23:32 PM
Looks like that after the upgrade the suricata does not work and found the link below that may be why.

https://forum.opnsense.org/index.php?topic=35130.0

can someone let me know...

They were on suricata-devel and you're probably not. You can try disabling it and see i it helps.

Best to open a dedicated thread for your issue.

Reverting won't work, I'd recommend waiting or 23.7.1 next week instead while discussing on the new thread
August 04, 2023, 08:03:33 PM #95
Hello

The upgrade appears to be failing / not working for me.
I am running

OPNsense 23.1.11_1-amd64
FreeBSD 13.2-RELEASE-p1
OpenSSL 1.1.1u 30 May 2023

System is a Dell Wyze 5070 with a Mellanox Connect-X 3 card and i'm using a router on a stick approach. Multiple WAN links. The system appears to download and extract files, the says please reboot, so I reboot, but the system still reports itself as being on 23.1.11_1 and tells me an upgrade to 23.7 is available. I have also performed the upgrade via the CLI and I don't see any errors.

However when doing an audit I see tons of errors relating to PHP. The error log is too large for me to paste into pastebin or attach it. (It's 1.02MB) the only errors i see though are like this

Code Select
opnsense has a missing dependency: php81-session
opnsense has a missing dependency: php81-phalcon
opnsense has a missing dependency: php81-xml
opnsense has a missing dependency: php81-simplexml
opnsense has a missing dependency: php81-dom
opnsense has a missing dependency: php81-ctype
opnsense has a missing dependency: php81-filter
opnsense has a missing dependency: php81-pear-Crypt_CHAP
opnsense has a missing dependency: php81-phpseclib
opnsense has a missing dependency: php81-google-api-php-client
opnsense has a missing dependency: php81-sockets
opnsense has a missing dependency: php81-ldap
opnsense has a missing dependency: php81-pecl-radius
opnsense has a missing dependency: php81-curl
opnsense has a missing dependency: php81-gettext
opnsense has a missing dependency: php81-sqlite3
opnsense has a missing dependency: php81-pdo
opnsense has a missing dependency: php81-zlib

there are dozens and dozens of errors about something "google" related too ?

e.g.

Code Select
php82-google-api-php-client-2.4.0: missing file /usr/local/share/google-api-php-client/vendor/google/apiclient-services/src/Google/Service/DLP/Resource/InfoTypes.php
php82-google-api-php-client-2.4.0: missing file /usr/local/share/google-api-php-client/vendor/google/apiclient-services/src/Google/Service/DLP/Resource/Locations.php
php82-google-api-php-client-2.4.0: missing file /usr/local/share/google-api-php-client/vendor/google/apiclient-services/src/Google/Service/DLP/Resource/Organizations.php

Everything is working fine on 23.1.11 though.

Please be gently, I am a OPNsense noob , but I do have reasonable/good IT knowledge and networking knowledge. I would appreciate any suggestions on how to upgrade, I'd rather not have to wipe and re-install.
I've tried this four times now and each time it returns to 23.1.11_1 after downloading. However the audit DOES say that the kernel version is 23.7 ?

Code Select
Currently running OPNsense 23.1.11_1 at Fri Aug  4 17:43:33 UTC 2023
>>> Check installed kernel version
Version 23.7 is correct.
>>> Check for missing or altered kernel files
No problems detected.
>>> Check installed base version
Version 23.7 is correct

if anyone would like me to send / email the complete log file from the audit please let me know where to send it.

Thanks.
August 04, 2023, 08:54:46 PM #96
Log in via ssh and try this command, post the output if it doesn't complete the upgrade. You're half way there already.

Code Select
opnsense-update -u
August 04, 2023, 09:38:39 PM #97
Hi @newsense

Thanks very much for your assistance.
I'm not sure what was different this time, but it appears to have worked  :)
The system is now reporting

OPNsense 23.7-amd64
FreeBSD 13.2-RELEASE-p1
OpenSSL 1.1.1u 30 May 2023

Thank you!!
August 07, 2023, 12:57:45 PM #98
Wanted to add my success status to the thread, upgraded from the last 23.1 to 23.7 without a problem. The only thing I did to prepare was to reconfigure Bind to listen on an IP (with ACLs) instead of 127.0.0.1 so that I could remove the "allow localhost" override in Unbound that was done through the 3rd party plugin to give me customised commands. Thought it would be much better to try to stick to built-in options when possible.
August 07, 2023, 04:51:03 PM #99
HP T620 4gb ram
Upgrade went fine, just took a while ~15min. Patience is needed.
August 08, 2023, 06:27:39 AM #100 Last Edit: August 08, 2023, 06:30:23 AM by zandrr
I had an unfortunate issue with DNS not working properly locally after 23.1.11_1 > 23.7.
Notably it's virtualised on Proxmox (kernel 6.2.16-6). OpenvSwitch bridging with VLAN interfaces on *sense.
ISP is static with public DNS upstreams (eg 1.0.0.1, 1.1.1.1, 8.8.8.8 and ip6 equivalents).

Had to rollback, so didn't take the time to tshoot sorry. Just wondering if anyone else experienced something similar?

Cannot rule out config deviation of course, or some introduced quirk like MTU, but I played through Unbound a bit and the behaviour persisted (not that it appeared very rational in the first place). Also disabled ip6 entirely to rule out stack behaviour.

Have it running separately on a dedicated device with no issues to speak of... however that was fresh stock and not an upgrade install, so it's yet another variable. Might test again this weekend if no leads here.
August 08, 2023, 08:06:11 AM #101
23.7.1 should be released in the next 72 hours if I'm not mistaken and the upgrade path adjusted for it. The release notes might offer more insight once it is published.
August 08, 2023, 02:51:17 PM #102
Hi all,

anyone else had problems upgrading from 23.1 to 23.7 via SSH? I upgraded past Saturday.
I have logged in successfully via SSH and selected the menu option for updating. Afterwards I have typed in "23.7" and nothing happend. Tried again after rebooting. The only thing that happend was listing the release notes.
Upgrading via Web-GUI was flawless as always. Is this a common (known) problem?

Cyberturtle
August 08, 2023, 02:55:58 PM #103
Confirming the release notes after reading(scrolling) via "q" then the upgrade starts. The console is a little tricky since it was asked for to show the release notes too.


Cheers,
Franco
August 08, 2023, 03:01:50 PM #104
Good to know, thx!  :)
Print
Go Up Pages 1 ... 5 6 7 8 9
User actions