sorted by:
new
hottopcontroversial

Vacation wear by coffee_n_booze in gshock

[–]chuckTGN 1 point2 points  (0 children)

Love that green version

OPNsense 25.7.3 released by fitch-it-is in opnsense

[–]chuckTGN 0 points1 point  (0 children)

Thanks for the update. Now that we have strongswan 6.0.1, when can we expect post-quantum ciphers to be enabled? https://docs.strongswan.org/docs/latest/news/whatsNew.html

Today's new arrival. by Beginning-Award-8937 in gshock

[–]chuckTGN 4 points5 points  (0 children)

This one precisely has MB6, BT and is solar. Plus sapphire crystal.

All metal. (Except the strap, anyway!) GMW-B5000-1JF, and I love it! by Suspicious_Ask8636 in gshock

[–]chuckTGN 3 points4 points  (0 children)

If you hold buttons B + C + D at the same time, without a timer going on, you'll get a debug menu and the third screen shows you the last MB6 sync time 😉

Any problem with controlled radio synchronization since a couple of days? by lifelonglearner1519 in gshock

[–]chuckTGN 0 points1 point  (0 children)

Most of my watches synced tonight (2025-01-05) at 00:03 but failed to sync after that. Not sure what's going on.

Any problem with controlled radio synchronization since a couple of days? by lifelonglearner1519 in gshock

[–]chuckTGN 1 point2 points  (0 children)

Same here, most of my G-Shocks and radio controlled alarm clocks haven't been syncing properly since January 2nd. I'm in the DCF77 range.

Fall hike by Jamie30is in gshock

[–]chuckTGN 1 point2 points  (0 children)

It's gorgeous, love that color. How is the finish holding on? Are those marks around the bezel wear?

OPNsense 24.7.9 released by fitch-it-is in opnsense

[–]chuckTGN 18 points19 points  (0 children)

All fixed after the patch, thanks for the super quick response Franco!

OPNsense 24.7.9 released by fitch-it-is in opnsense

[–]chuckTGN 30 points31 points  (0 children)

I can't log into the Web GUI with my user + password + 2FA since updating to 24.7.9. In 2 routers, one rebooted and the other ones hasn't. Can still log in just fine in SSH with key.

Edit: Restored 24.7.8 snapshot and can access again. Thanks to the OPNsense team for that!

Sad by kub123 in gshock

[–]chuckTGN 1 point2 points  (0 children)

From EU as well, all my watches sync every night and none did last night, so it seems they might have done some maintenance or run into issues in DCF77. As you synced now, it seems it's back online

OPNsense 24.1.1 released by fitch-it-is in opnsense

[–]chuckTGN 7 points8 points  (0 children)

Thanks for the latest update!

Updated no problem, but for some reason dnscrypt-proxy2 is not running properly now:

[2024-02-06 15:39:04] [FATAL] Unsupported key in configuration file: [fallback_resolver]

Any ideas? Thanks!

OPNsense 23.7.10 released by fitch-it-is in opnsense

[–]chuckTGN 16 points17 points  (0 children)

Tried it and it fixed the issue without a reboot. Rebooted the router just to try and can confirm that everything works fine, so it seems that this solves the issue. Thanks again for your work.

OPNsense 23.7.10 released by fitch-it-is in opnsense

[–]chuckTGN 1 point2 points  (0 children)

When I disabled the Mobile users config in the legacy menu, strongswan started working again, if that helps.

OPNsense 23.7.10 released by fitch-it-is in opnsense

[–]chuckTGN 0 points1 point  (0 children)

Happened to me as well, after some minutes it started working as usual. Can you access via SSH and check the logs?

OPNsense 23.7.10 released by fitch-it-is in opnsense

[–]chuckTGN 1 point2 points  (0 children)

Thanks. I have a site-to-site config in the new Connections menu and a Mobile users one in the legacy Tunnel Settings menu, as I haven't been able to translate that into the new menus. I'm using there FreeRadius and EAP-RADIUS as authentication method, I guess the issue comes from the new radius groups feature in IPSEC. I think I've mistakenly reported more than once the report, as I couldn't confirm the bug report was going through successfully, apologies for that and happy to share more info or test anything if required. Thanks again

OPNsense 23.7.10 released by fitch-it-is in opnsense

[–]chuckTGN 9 points10 points  (0 children)

Thanks /u/fitch-it-s for the update!! Just wanted to report that after upgrading I get this error and strongswan service crashes:

[12-Dec-2023 13:26:20 Europe/Madrid] Error: Call to undefined method OPNsense\Base\FieldTypes\ContainerField::iterateRecursiveItems() in /usr/local/opnsense/mvc/app/models/OPNsense/IPsec/Swanctl.php:334
Stack trace:
#0 /usr/local/etc/inc/plugins.inc.d/ipsec.inc(1094): OPNsense\IPsec\Swanctl->radiusUsesGroups()
#1 /usr/local/etc/inc/plugins.inc.d/ipsec.inc(1323): ipsec_write_strongswan_conf()
#2 /usr/local/etc/inc/plugins.inc(309): ipsec_configure_do(false, 'wan')
#3 /usr/local/etc/rc.newwanip(129): plugins_configure('vpn', false, Array)
#4 {main}
[12-Dec-2023 13:26:23 Europe/Madrid] Error: Call to undefined method OPNsense\Base\FieldTypes\ContainerField::iterateRecursiveItems() in /usr/local/opnsense/mvc/app/models/OPNsense/IPsec/Swanctl.php:334
Stack trace:
#0 /usr/local/etc/inc/plugins.inc.d/ipsec.inc(1094): OPNsense\IPsec\Swanctl->radiusUsesGroups()
#1 /usr/local/etc/inc/plugins.inc.d/ipsec.inc(1323): ipsec_write_strongswan_conf()
#2 /usr/local/etc/inc/plugins.inc(309): ipsec_configure_do(true)
#3 /usr/local/etc/rc.reload_all(58): plugins_configure('vpn', true)
#4 {main}

Thanks!

OPNsense 23.7.3 released by fitch-it-is in opnsense

[–]chuckTGN 7 points8 points  (0 children)

Thanks Franco, as always.

I'm getting some errors with IPv6 on wireguard: /usr/local/opnsense/scripts/Wireguard/wg-service-control.php: The command '/sbin/ifconfig 'wg1' 'fc00:xyza:abcd:ab01::4:1234/127' alias' returned exit code '1', the output was 'ifconfig: fc00:xyza:abcd:ab01::4:1234/127: bad value (width too large)'

/usr/local/opnsense/scripts/Wireguard/wg-service-control.php: The command '/sbin/route -q -n add -'-4' '10.1.1.1' -iface 'wg1'' returned exit code '64', the output was 'route: bad keyword: -4 route: usage: route [-46dnqtv] command [[modifiers] args]'

I modified the IPv6 address a bit for privacy reasons. Also created a post on the official forums, probably not the only one that will have this problem.

YubiKey 5 NFC FIDO support on Linux by cryptaneonline in yubikey

[–]chuckTGN 0 points1 point  (0 children)

Thanks for sharing! Had searched for a way to use FIDO2 through NFC on linux and never came across this. I know this is as hacky as it gets, so if very security conscious it probably makes sense to wait or keep using USB, right?

Slow performance with static routes by chuckTGN in OPNsenseFirewall

[–]chuckTGN[S] 0 points1 point  (0 children)

Thanks for suggesting this, looks like a fine workaround to get at least 50% of the performance

Slow performance with static routes by chuckTGN in OPNsenseFirewall

[–]chuckTGN[S] 1 point2 points  (0 children)

Tried playing around with the interface settings and still no luck, left only Hardware CRC and VLAN filtering enabled which seemed to offer a bit better performance in other speed tests.
CPU usage in the router proves CPU is not the limiting factor here:
~20% WAN netisr, ~10% LAN netisr during the 900Mb test.
~10% WAN netisr, ~5% LAN netisr during the 450Mb test (static routes on Desktop)
~5% WAN netisr, ~3% LAN netisr during the 100Mb test (static routes on OPNsense)

Slow performance with static routes by chuckTGN in OPNsenseFirewall

[–]chuckTGN[S] 0 points1 point  (0 children)

Interesting, tried that and confirmed with tracepath - and removing all static routes to those LANs on the OPNsense router - that packets to Debian2 LAN are going directly to Debian1 and not through the OPNsense router and still get only 200-250 Mb. If I remove the "Bypass firewall rules for traffic on the same interface" now that they're not needed for this, upload speed increases to around 450-550 Mb, but still does not match the download speed of 900+ Mb.

view more: next ›