@eduncan911 said in Certificates: Pickup my own from a directory?:

Again, I do not want to use pfSense to manage any LetsEncrypt certs. I'm looking for a way just to import/refresh a cert on boot or alike.
Essentially, this post has nothing to do with LetsEncrypt. It's asking how to auto-load a cert from a local directory say on boot.

It's that package (acme Letenscrypt) that contains a script file that shows how you can incorporate cert files- where ever they are - into the pfSense (== the pfSense config). See it as an example.

@eduncan911 said in Certificates: Pickup my own from a directory?:

And any changes gets overwritten on pfSense upgrades. Don't think that's a solution.
Doing it via CLI seems to be the only way.

The mentioned file was an example. Base your own script (won't get overwritten) on it.
Place it in your own /root/ directory - and keep a backup.
I've my own scripts living in /root/ for a decade or more, as from pfSense 1.0.

@eduncan911 said in Certificates: Pickup my own from a directory?:

I'll look at the script to see how things are being imported. That's a good start to setup in a cron

Exactly.

So I deleted those files completely, seemed to help for the moment.

@jimp thank you. That fixed it.

If I remove the ~38000 IPv6 kernel routes I did get installed via BGP, then I'm able to access general setup.

@teamits
Thanks for the reply. No to Snort. Home user, so it's just me. No torrents or anything, just my streamer box and the stuff I'm typing on. 6 Mbps is what I have calculated my streaming uses. I can watch a channel, the graph displays 3Mb, refresh displays 6Mb. No other changes. It's not like it's bursting. When I see a burst, like when changing channels, if it's currently showing 3Mb, it will burst to 15Mb. If it's showing 6Mb, it bursts to 30Mb. More of a curiosity than a fatal flaw.

Packages : Cron, Iperf, Mailreport, Notes, Nut, OpenVPN, pfBlockerNG-devel, RRD_Summary, Service Watchdog, System_Patches

Ps - No shaping. I used to use it when I was seeing if I could scrape by on a slower plan, but that's gone and a fresh install of 2.5 in it's place.

These clips taken back to back with a refresh in between.

1507192f-ce58-45a5-b36f-4aeccf9ebc9d-image.png
861a3d3e-1673-4b6c-b354-a4785710ba95-image.png

That seems to be a poorly functioning behavior. I like the fixed menu on the desktop browser, but I guess I have to turn in off if I ever have to adjust something remotely from my phone because it's unusable.

Its related to Suricata and Unbound...

Deleted the blocks and restarted Unbound.

Then the package updates showed as they should.

@nogbadthebad said in Logfile Filter:

[0-2][0-5][0-5]

That might miss stuff? Its not a mask.. so for example 167.x.x.x ?? Wouldn't it be easier to just do !: for say source IP, any IP with a : in it would be excluded - so all you would see it IPv4

@gertjan Here is the new certification in the new VM.
c3442ea5-d402-414c-a0a9-fadd3d4f4d4f-image.png

@stephenw10 said in After 2.5.0 update, Dashboard never receives update statue for version:

https://redmine.pfsense.org/issues/11443

The bug report title is: Disabling 'State Table Size' prevents other data being displayed
So don't do that. 😉

...or use the patch linked there is you really don't want the state table size displayed before p2.

Steve

It's a known issue but there is no real workaround.

Resetting the logs also resets the dmesg.boot log which is what gets parsed to check CPU flags for things like AES-NI among others.

See also: https://redmine.pfsense.org/issues/11428

@johnpoz I tried accessing web UI from the LAN device to IP 192.168.1.1
I also had tried from a device on the WAN accessing the router assigned IP of 192.168.1.30.

Neither worked.