Skip to main content

OPN006 - OPNsense Request Failed

Agent error code #OPN006 is the fallback code for OPNsense API errors that don't match a more specific classification. The agent reached the firewall and the call completed, but the response indicated a transport-level or unclassified failure.

This error is distinct from the more specific codes (#OPN000 through #OPN005, #OPN100 through #OPN103, #OPN200) and indicates that none of the typical failure modes applied.

Common causes include:

  • A transient network glitch (TCP reset, mid-stream connection drop)
  • An HTTP response code that the agent does not recognise as a known failure mode
  • A proxy or load balancer between the agent and OPNsense returning a non-OPNsense error body
  • A firmware upgrade in progress on OPNsense

Steps to Resolve

Check the Agent Log for the Underlying Error

  1. Open the orchestration agent log on the agent host
  2. Find the entry corresponding to the failed grant and read the technical detail logged alongside the user-visible code
  3. The detail will identify whether the failure was a TCP reset, an HTTP status code, or a malformed response body

Reproduce With curl

If the underlying detail is unclear, reproduce the call manually from the agent host:

curl -sk -u <key>:<secret> https://<host>/api/firewall/alias_util/list/<alias>

If the command also returns an unexpected response, the issue is in the network path or on OPNsense itself.

Retry the Operation

  1. Grants are idempotent. Retry by logging the affected user in again
  2. If the failure persists, escalate using the agent log detail

Still Having Issues?

We can help you out, contact us at support@knocknoc.io.

Back to top