16
22.7 Legacy Series / Access GUI from wan subnet
« on: January 05, 2023, 11:15:26 am »
I have 2 opnSense installations (FW1 & FW2) which are connected behind the Provider modem / router which means that the WAN ports get an (non routable) IPv4 address in the 192.168.1.x subnet range
I needed two installs as i have 2 seperate LAN segments which different functions which i wanted to be completed seperated (also physical). To make the post a little bit more readable i will use LAN1 and WAN1 for Fw1 and LAN2 and WAN2 for interfaces on the 2nd firewall.
When connected to LAN1 i can reach the GUI of FW1 and when connected to LAN2 i can reach the gui of FW2 normally as expected. But not able to reach the GUi of FW2 using its wan IP when connected to LAN1 and vice versa. I unticked "block private networks & block bogon networks" on both wan interfaces , i even added a rule on the WAN Firewall configuration allow any any , but still not able to access the gui.
Even tried to connect a pc to the same sub-net as the WAN interfaces , and still not able to access the gui on either of the WAN IP's.
Dont see any blocked traffic messages when checking the firewall logs.
I also tried the any source /any destination rule for HTTP & HTTPs traffic on the WAN Fw config , but still not possible to access the gui.
The only way to access the GUI on either of the 2 WAN IP's is by ticking the option disable firewall in the advanced firewall config...
I am a bit lost what is blocking / preventing me to access the gui.
Any help is appreciated to point me back to the right direction
I needed two installs as i have 2 seperate LAN segments which different functions which i wanted to be completed seperated (also physical). To make the post a little bit more readable i will use LAN1 and WAN1 for Fw1 and LAN2 and WAN2 for interfaces on the 2nd firewall.
When connected to LAN1 i can reach the GUI of FW1 and when connected to LAN2 i can reach the gui of FW2 normally as expected. But not able to reach the GUi of FW2 using its wan IP when connected to LAN1 and vice versa. I unticked "block private networks & block bogon networks" on both wan interfaces , i even added a rule on the WAN Firewall configuration allow any any , but still not able to access the gui.
Even tried to connect a pc to the same sub-net as the WAN interfaces , and still not able to access the gui on either of the WAN IP's.
Dont see any blocked traffic messages when checking the firewall logs.
I also tried the any source /any destination rule for HTTP & HTTPs traffic on the WAN Fw config , but still not possible to access the gui.
The only way to access the GUI on either of the 2 WAN IP's is by ticking the option disable firewall in the advanced firewall config...
I am a bit lost what is blocking / preventing me to access the gui.
Any help is appreciated to point me back to the right direction