Ad Schellevis
Ad Schellevis
well, not that quick, but it wasn't at the top of my list yet ;)
`vtnet1_vlan100` is not the interface pppoe is bound too? That might be problematic to fix with automatic rules as these aren't (and won't be) fine grained. We are considering adding...
does `pppoe0` have a GUA assigned to it?
@martijncoenen can you try https://github.com/opnsense/core/commit/5018fc8d9df3bbb2a3f8fb195e6b47dc4b275521? ```` opnsense-patch 5018fc8 ````
We haven't seen issues with it, at first I was thinking the same, but this might be pf specific (the to alias is empty when only a link local address...
I'll keep the ticket open for a while to discuss this further internally, for now this seems to be a safe (and sensible) fix
openvpn (like a lot of other services) don't instantly reload CRL's, restart the affected service and you should be fine.
@patschi our time is a bit too limited to assess this further, if more feedback comes in, we can re-evaluate.
The source selector (s_all) should capture the events, but maybe you can’t filter them property now. I have to try this on my end.
@SeimusS the rename is acting as it should, but in order to capture the result, we should add "kernel" as application target on our end. https://github.com/opnsense/core/commit/025988147c99f168f4e7f1978e922f07c2157a8c should fix this.