http://192.168.180.206:8001/ 2026-05-13T23:54:32+00:00 http://192.168.180.206:8001/ http://192.168.180.206:8001/_media/wiki:dokuwiki.svg text/html 2019-04-09T05:37:44+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:boot?rev=1554788264&do=diff cat /var/run/dmesg.boot Use GUI System-->Settings-->Tunables <https://www.freebsd.org/doc/handbook/boot-introduction.html> Autogenerated: autoboot_delay="3" User overrides: text/html 2021-01-09T20:15:03+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:dnsmasq?rev=1610223303&do=diff dnsmasq dnsmasq is called with arguments: ps -fwwaux | grep dnsmasq /usr/local/sbin/dnsmasq --all-servers --rebind-localhost-ok --stop-dns-rebind -H /var/etc/dnsmasq-hosts --port=53 --bogus-priv \ --server=/lan.example.com/192.168.0.1 \ --rebind-domain-ok=/lan.example.com/ \ --strict-order --domain-needed --dns-forward-max=5000 --cache-size=10000 --local-ttl=1 \ --conf-dir=/usr/local/etc/dnsmasq.conf.d,*.conf text/html 2020-05-13T07:34:33+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:howto?rev=1589355273&do=diff HOWTO Redirecting all DNS Requests to Opnsense redirect works with a port forward rule. port 53 UDP/TCP to not this firewll -> IP_OF_THE_FIREWALL port 53 add a pass rule to allow TCP/UDP 53 to this IP if not generated automatically restriction: pass tcp/udp 53 to text/html 2019-03-25T13:13:12+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:installation?rev=1553519592&do=diff Installation * login intaller / opnsense Configuration After login as root console menu willo shown. * Console menu * setup IP * Setup correct CPU and HW in System --> Settings --> Miscellaneous * intall bash pkg install bash text/html 2025-08-20T10:12:49+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:issues?rev=1755684769&do=diff OPNSense issues WAN bandwidth limited 4 port Intel(R) PRO/1000 Network Connection * last post in: [Help] troubleshooting high latency issues * Bandwidth cut in half when traversing system but direct bandwidth test is fine * OPNSense issues <https://forum.opnsense.org/index.php?topic=15019.0> <https://forum.opnsense.org/index.php?topic=9693.0> Performance tuning for IPS maximum performance flowd flowd.log is 5GB. flowd_aggregate.py died (Insight Aggregator service). Workaround is to… text/html 2020-09-11T06:19:14+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:logging?rev=1599805154&do=diff Logging Update for 20.7 There is a option to disable legacy circular logging: Local (non circular) logs And code change: Syslog: optionally disable legacy (clog) logging Pre 20.7 DO NOT INCRESE CIRCULAR LOG SIZES! SYSLOG CLOG support is implemented using mmap-ed files. So with log file size 100MB it makes HDD 100% busy and make system not responsive. text/html 2020-05-13T07:35:19+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:network_card?rev=1589355319&do=diff Network Cards Supported igb driver: * Intel Gigabit ET Dual Port Server Adapter (82576) * Intel Gigabit VT Quad Port Server Adapter (82575) * Intel Single, Dual and Quad Gigabit Ethernet Controller (82580) * Intel i210 and i211 Gigabit Ethernet Controller text/html 2025-08-22T10:06:19+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:performance?rev=1755857179&do=diff Performance * Performance * OpnSense Firewall Configuration: Performance Tuning for Multi-Gigabit Internet and better speeds in general Truvis Thornton sysctl * hw.ibrs_disable=1 Disable Indirect Branch Restricted Speculation (Spectre V2 mitigation) * vm.pmap.pti=0 Page Table Isolation (Meltdown mitigation, requires reboot.) * net.isr.maxthreads=-1 (was 1 thread) This uncaps the amount of CPU’s which can be used for netisr processing. By default this aspect of the network stack on… text/html 2025-08-22T09:54:18+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:pkg?rev=1755856458&do=diff OPNsense pkg update opnsense-update manual update pkg update -f # dry run pkg upgrade -n # or console menu [11] /usr/local/etc/rc.restart_webgui Install midnight commander opnsense-code tools ports cd /usr/ports/misc/mc make install more usefull tools text/html 2021-01-18T12:54:39+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:serial_port?rev=1610974479&do=diff Serial Port * Use serial port as system console * System --> Administration --> Console Use as console # fstat | grep ttyu root sh 21461 ctty /dev 68 crw------- ttyu0 rw root sh 21461 0 /dev 68 crw------- ttyu0 rw root sh 21461 1 /dev 68 crw------- ttyu0 rw root sh 21461 2 /dev 68 crw------- ttyu0 rw root login 76568 ctty /dev 68 crw------- ttyu0 rw root login 76… text/html 2020-05-25T15:04:54+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:shell?rev=1590419094&do=diff Shell It is based on FreeBSD OPNSense custom pkg update pkg upgrade pkg upgrade dnsmasq opnsense-update shell menu # opnsense-shell 0) Logout 7) Ping host 1) Assign interfaces 8) Shell 2) Set interface IP address 9) pfTop 3) Reset the root password 10) Firewall log 4) Reset to factory defaults 11) Reload all services 5) Power off system 12) Update from console 6) Reboot sys… text/html 2020-05-13T07:33:58+00:00 Anonymous (anonymous@undisclosed.example.com) http://192.168.180.206:8001/sw:opnsense:traffic_shaper?rev=1589355238&do=diff Traffic Shaper dummynet -- flexible bandwidth manager and delay emulator <http://caia.swin.edu.au/reports/160708A/CAIA-TR-160708A.pdf> Some terms: * AQM - Active Queue Management * droptail - drop packetss if full * CoDel * PIE * pipe (link, limiter)- virtual path that emulates a connection with a specified bandwidth, propagation delay, and packet loss pattern.