Wireguard VLAN no longer gets an internet connection after update

Started by The_Dave, January 19, 2024, 10:43:17 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 19, 2024, 10:43:17 PM
After updating to the development build and from there to the release candidate my wireguard vlan is no longer getting an internet connection. I have no idea why this is, but I saw that osfirewall and os-wireguard show as missing under plugins and this can't be resolved.
January 20, 2024, 09:06:19 AM #1
They're not missing, part of core now.

A screenshot from System-Gateways-Configuration please ?
January 20, 2024, 11:47:13 AM #2
Here you go, it shows working as before
January 20, 2024, 11:52:46 AM #3
Mkay...was expecting something else.

FW rules on the VLAN and NAT would be next ones to check
January 20, 2024, 12:13:17 PM #4 Last Edit: January 20, 2024, 12:19:09 PM by The_Dave
I think I found the problem, somehow the vpn gateway group got deleted but the rules still reference it.
I recreated the group and everything is working fine again.
January 20, 2024, 12:24:26 PM #5
Confirmed, mine are gone too. Didn't notice so far as I had some individual rules active since the last time I had to change servers
January 20, 2024, 02:19:01 PM #6
did you check for updates again after it updated?    ignore my post next to yours, its a different weird issue.

I have Wireguard fully working on my box after updating
January 20, 2024, 08:02:50 PM #7 Last Edit: January 20, 2024, 08:06:29 PM by sofax
my gateway group was gone also
i posted it in the irc earlier
January 20, 2024, 09:18:03 PM #8
Do you have any <gateway_group> listed in /conf/config.xml or the only remnants of the name are in the rules section ?
January 21, 2024, 01:30:06 PM #9 Last Edit: January 21, 2024, 01:37:55 PM by sofax
Quote from: newsense on January 20, 2024, 09:18:03 PM
Do you have any <gateway_group> listed in /conf/config.xml or the only remnants of the name are in the rules section ?

I took a look at the configuration history, the entire gateways block was not there in the config before i added it back.
But I only had this one wireguard gateway group before the update.

Code Select

+  <gateways>
+    <gateway_group>
+      <name>***</name>
+      <item>***|1</item>
+      <item>***|1</item>
+      <trigger>down</trigger>
+      <poolopts/>
+      <descr/>
+    </gateway_group>
+  </gateways>


It looks like the '/usr/local/opnsense/mvc/script/run_migrations.php' delete all gateways and the group, but only recreated the gateways withoutt the group
January 22, 2024, 04:31:33 AM #10
Same here. I lost all my gateway groups and they are not in the config file either. Only the references to the gw groups remain in the firewall rules.

Actually, everything (and including) under <gateways> is gone, including this tag itself.
January 26, 2024, 04:11:58 AM #11
@franco, not sure if you'll see this but I did notice the commit that fixes this issue.  If I upgraded now that it's fixed, would I still encounter this issue?  Just wondering since there won't be a RC2 and I'm itching to try it.
January 26, 2024, 04:24:31 AM #12
It's not fixed in anything that you can upgrade to until 24.1 is out next week. If you're on a VM you can try applying the patch after you land on 24.1.r1 but I doubt it would work retroactively.

The only possibility for this to work would be to export the config, upgrade to 24.1.r1, apply patch, reboot and import the config file again -- that is _if_ the GW migration script is triggered on import.
January 27, 2024, 08:22:53 PM #13
Thanks for the info.  I bit the bullet and recreated my groups.  No big deal.
Print
Go Up Pages1
User actions