Closed briangordon closed 3 years ago
Watanuki-kun
commented
4 years ago I know that in general, usb network adapters are a bit finicky. If your guess is right, it might just be a timing issue. Have you tried to putting in a boot delay to see if the nic needs more time to be visible/initialize?
maxfield-allison
commented
3 years ago You should be using the opnatt.sh script, not the pfatt.sh script
briangordon
commented
3 years ago You should be using the opnatt.sh script, not the pfatt.sh script
I first set up the pfatt script before openatt.sh was split off, and I don't see anything that would make a difference. The old script had a variable for switching between opnsense and pfsense.
maxfield-allison
commented
3 years ago Have you tried using the new opnatt.sh instead? You could try to put pfatt.sh in /usr/local/etc/rc.syshook.d/early as 99-pfatt.sh
Have you confirmed that the needed modules are loaded by doing kldstat -v?
If not, you may need to add /boot/loader.conf.local with the following:
netgraph_load=”YES”
ng_UI_load=”YES”
ng_async_load=”YES”
ng_bpf_load=”YES”
ng_bridge_load=”YES”
ng_car_load=”YES”
ng_cisco_load=”YES”
ng_deflate_load=”YES”
ng_echo_load=”YES”
ng_eiface_load=”YES”
ng_ether_load=”YES”
ng_frame_relay_load=”YES”
ng_hole_load=”YES”
ng_iface_load=”YES”
ng_ksocket_load=”YES”
ng_l2tp_load=”YES”
ng_lmi_load=”YES”
ng_mppc_load=”YES”
ng_one2many_load=”YES”
ng_pipe_load=”YES”
ng_ppp_load=”YES”
ng_pppoe_load=”YES”
ng_pptpgre_load=”YES”
ng_pred1_load=”YES”
ng_rfc1490_load=”YES”
ng_socket_load=”YES”
ng_tcpmss_load=”YES”
ng_tee_load=”YES”
ng_tty_load=”YES”
ng_vjc_load=”YES”
ng_vlan_load=”YES”You shouldn't need to on that version of OPNsense but it couldn't hurt to try.
briangordon
commented
3 years ago Yes, that's the directory (and file name) where I've put the pfatt script. And I'm sure that the right modules are loaded; I suspect that it's just the interface that's not available yet when the early scripts run.
Thanks for your help though.
MonkWho
commented
3 years ago I saw previously that someone had success running the script in /early if they named it 99-opnatt.sh. I believe that made it execute last but I don't know if they were using a USB NIC or not.
You might also want to look into a supplicant mode if your ATT RG is one of the easily rootable models like BGW210. This method eliminates a need for a secondary NIC and you can put your RG away completely.
MonkWho
commented
3 years ago There hasn't been any activity in this thread for a while so I'm going to go ahead and close the issue.
Whenever I reboot my firewall, the WAN interface fails to come up. From
/var/log/pfatt.log:I guess the USB fast ethernet adapter isn't available yet when the
/usr/local/etc/rc.syshook.d/early/scripts run. Unfortunately if I move the pfatt script to thestartdirectory then the firewall comes up with the wrong interface assigned to WAN.If I put the pfatt script into the
earlydirectory then it partially runs until failure and I can SSH into the firewall and re-run the pfatt script manually. This works fine but it's hardly an ideal solution.I'm using the exact ethernet adapter recommended in the readme, on an older (c. 2012) Dell PowerEdge server, running opnsense 19.7.10.
Has anyone else had this issue? If others have had this same problem then it might make sense to revise the README.