OPNsense Forum

English Forums => General Discussion => Topic started by: kaz79 on December 17, 2023, 10:58:40 pm

Title: Advice on Configuring OPNsense for Lab/Testing Network with Internet Access
Post by: kaz79 on December 17, 2023, 10:58:40 pm

Hello everyone,

I'm seeking guidance on setting up a lab/testing network using OPNsense as a secondary router while preserving the existing configuration of my primary router (Fritz!Box) as the main gateway router providing internet access.

The desired configuration is as follows:

1. Fritz!Box (Router1 - Primary Router):
   - Acts as the main gateway router connected directly to the internet.
   - Manages the current network configuration for all home devices (e.g., subnet 192.168.1.x).
   - Provides internet access to all devices within its network.
   - Hosts the primary DHCP server for the home network.

2. OPNsense (Router2 - Lab/Testing Network):

   - Configured to receive internet connectivity from Fritz!Box (Router1).
   - Dedicated for lab/testing purposes, creating a separate network for specific devices (e.g., subnet 192.168.2.x).
   - Intended for experimentation, testing configurations, and isolated development.
   - Requirement: Devices on this network should have access to the internet for updates and testing purposes.

My primary objective is to maintain the current setup and configuration of Fritz!Box while using OPNsense solely as a lab/testing environment, ensuring devices connected to it have access to the internet via Fritz!Box.

I've initiated the setup by configuring OPNsense's WAN interface to obtain an IP address automatically from Fritz!Box and set up the LAN interface with a separate subnet for the lab network.

I would greatly appreciate any advice, recommended configurations, or steps on how to:

1. Ensure proper connectivity for devices on the lab/testing network to access the internet through Fritz!Box.
2. Maintain isolation between the two networks while allowing internet connectivity for devices on the lab network.
3. Set up any necessary routing or firewall configurations on OPNsense to facilitate this setup effectively.

Title: Re: Advice on Configuring OPNsense for Lab/Testing Network with Internet Access
Post by: passeri on December 17, 2023, 11:39:38 pm

1. Have you tested access? You should have it already.
2. Your Lab is isolated from your home network by virtue of the default block on WAN/upstream side of the Opnsense router. To protect your home network from the lab, you may need to configure rules in the Fritzbox
3. It is not Opnsense that needs work in this case.

Title: Re: Advice on Configuring OPNsense for Lab/Testing Network with Internet Access
Post by: kaz79 on December 18, 2023, 07:40:29 pm

Thanks for the reply. I've already tested this setting, and the devices connected to OpenSense have no internet connection.

Regards
Kaz