Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
[SOLVED] Weird network behaviour
« previous
next »
Print
Pages: [
1
]
2
Author
Topic: [SOLVED] Weird network behaviour (Read 1538 times)
crazywolf13
Newbie
Posts: 21
Karma: 0
[SOLVED] Weird network behaviour
«
on:
August 21, 2024, 08:01:13 pm »
Hi
I'm experiencing some weird network issues, a part of my homelab behind opnsense becomes incassible almost daily.
I'm trying to wrap my head around this for weeks.
Nearly daily everything in my VLAN 1 (so default network) behind opnsense becomes inacessible / behaving very weirdly, a reboot of opnsene or a reboot of any device between like switch/ISP router fixes every single problem magically.
Tough everything boils down to opnsense, as soon as opnsense becomes inaccessible to PING my network begins to behave weirdly.
This probably explains everthing the best:
- Ping is working to everything except opnsense. (most of the time ping is also not working and looks fully red on uptime-kuma.)
- OPNsense is reachable through IP:Port, however not through reverseproxy
- physical hosts are inaccessible through reverseproxy
- every single web-service running in vlan20 is fully accessible through the same reverseproxy
My current network layout:
- Physical Hosts: 10.50.20.x Subnet, VLAN 1
- VM/LXC: 10.10.20.x Subnet, VLAN 20
On my Switch I tagged each port for a physical host as VLAN 1 and 20 TAGGED
I dug through every log avaiable on opnsense but sadly have not yet found anything roughly matching with the timeframe opnsense/network becoming offline.
I'm really at the end of my knowledge on how to go on in this error/ how to troubleshoot, and really really hope for some help.
THANKS!
EDIT: Problems were also before upgrade to 24.7
EDIT: Fixed images
«
Last Edit: August 29, 2024, 05:07:30 pm by crazywolf13
»
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Weird network behaviour
«
Reply #1 on:
August 21, 2024, 11:03:52 pm »
Have you checked that the interface into OPN i.e. the trunk is carrying _only_ tagged frames?
Ideally but not mandatory is to move away from VLAN1 and replace with something else. I.e. you end up with ports on either VLAN 20 or VLAN 10 for instance. This is to avoid -if necessary- oddities between vendors as to the behaviour of their "native VLAN".
Also can you describe your OPN setup in this.
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #2 on:
August 22, 2024, 07:01:00 am »
Hi Cookiemonster, thanks for your reply!
What's the best view to see that?
I've wanted to do that as well, however due to the nature of proxmox, that runs on the same Port as the VM's / LXC's will run, I had issues in getting Proxmox itself work in a VLAN with only 1 LAN connection.
Also I'm not really sure if it has to do with the VLAN, I just noticed, that the devices in VLAN 1 are getting somewhat inaccessible.
To my opnsense node:
https://www.shuttle.eu/de/products/slim/dl30n
Intel N100
16 GB DDR5
2x 2.5GB Intel Ports
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Weird network behaviour
«
Reply #3 on:
August 22, 2024, 12:10:11 pm »
On OPN, Interfaces > Assignments. There the interfaces should have only tagged devices.
Then on your managed switch, you have to define the trunk port that will carry only tagged traffic
And then you would setup your access ports with the vlan tags you want to be carried on the trunk.
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #4 on:
August 22, 2024, 05:07:31 pm »
Thanks!
Yes that's exactly how I set it up.
Also there are no unassigned interfaces.
Any other ideas, how I could further troubleshoot these weird issues ?
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Weird network behaviour
«
Reply #5 on:
August 22, 2024, 05:20:46 pm »
sounds like OPN side is fine then.
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #6 on:
August 22, 2024, 05:23:26 pm »
Well what else could it be then?
Can't really imagine of the hosts themselves bening the problem here.
I imagined the switch, but could not get a single idea, even with the help of cisco support/forum.
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Weird network behaviour
«
Reply #7 on:
August 22, 2024, 06:15:24 pm »
maybe expanding on the layout and setup would help. For instance you have virtualisation/hypervisor that can do vlans in play. Also some reverse proxy in play it seems. A schematic would help too but that's just me.
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #8 on:
August 22, 2024, 07:31:26 pm »
Hi
Yeah you are right!
Sorry about that, the images embed di not work correctly due to me not using the correct RAW iamge url, just fixed it.
Edit: altough the uptime-kuma board shows they are partually online, they are inaccessible for a normal browser, during that time.
For the reverse proxy, it's run inside a LXC inside Proxmox with an IP inside VLAN 20, it's nginxreverseproxy.
Feel free to let me know what else I shall provide.
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #9 on:
August 25, 2024, 11:44:28 am »
So I've just further looked into this and even physically replaced the suspected broken switch.
After replacing the switch, the issue kep occuring, so I can now definitely say that opnsense is the problem.
Anyone got ideas on how to further troubleshoot here?
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #10 on:
August 27, 2024, 05:39:55 pm »
Issue definitely keep occurring, I now have to physically reboot my opnsense around every 5 hours.
Most likely it's always the opnsense that becomes offline first, then my other Proxmox Nodes all become really sluggish, reachable/the other second not, login through proxmox webgui is then mostly not possible etc.
This seems really odd to me, where could I start to debug this?
Is that some package/ip conflict?
Hardware fault? (Opnsense has Intel NIC's and manufacturer labeled as opnsense good)
Config Error?
Problems with other Networking gear?
Problem with VLANs?
I can't seem to find any real trace here, not even any of the debug logs on opnsense tell me anything.
Also weirdly enough, all my web-applications, that are proxied through my reverseproxy are always online and fully accessible (except opnsense).
has anyone some idea where I could start?
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Weird network behaviour
«
Reply #11 on:
August 27, 2024, 10:49:40 pm »
sorry, been away. But no ideas how to go about this one. Seems like a few moving parts there and some I don't even dabble with i.e. LXC. And the only reverse proxies I use are on the router/firewall i.e. the edge. and not within a network, nor within a DMZ. No idea, sorry.
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Weird network behaviour
«
Reply #12 on:
August 27, 2024, 11:09:55 pm »
Maybe it’s something on the network. Do you use STP or similar? That explains things getting sluggish over time and not reacting anymore at some point in time. I would check in that direction.
Are you able to access the OPNsense via console, when it’s no longer reachable via network?
Logged
„The S in IoT stands for Security!“
imk82
Newbie
Posts: 44
Karma: 2
Re: Weird network behaviour
«
Reply #13 on:
August 27, 2024, 11:29:29 pm »
Hi crazywolf13,
just as a shot into the blue, maybe you can check this and have a look at your Bios settings:
https://forum.opnsense.org/index.php?topic=42240.0
Best regards
Robert
Logged
crazywolf13
Newbie
Posts: 21
Karma: 0
Re: Weird network behaviour
«
Reply #14 on:
August 28, 2024, 07:04:28 am »
Thanks imk82
That is fitting my exact scenario very well, for me it also occured after switching to a Intel N100 based Mini-PC, with Intel NIC's, also for me it surprisingly often occurs when there is high load on the LAN interface. Also funnily enough I also have Intel-i226-LM NIC's.
I'll update as soon as I could look at the bios.
Hi Gauss23
Thanks for the suggestion with SPanning-Tree-Protocol, I don't have anything particularly set up in this direction.
As I don't have a console cable, I can only guess here, but mostly the opnsense seems online, just really sluggish, and sometimes not on all interfaces.
Logged
Print
Pages: [
1
]
2
« previous
next »
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
[SOLVED] Weird network behaviour