OPNsense Forum
Archive => 23.1 Legacy Series => Topic started by: Julien on July 29, 2023, 12:41:49 am
-
Hello everyone,
We have set up a site-to-site Wireguard VPN to our datacenter. The LAN interface is configured to allow ports 443, 80, 53, and 9100 for printing Konica devices.
However, when the users attempt to print from the remote location to the office, it doesn't work. Printing only functions when we add the rule "any to any."
Could someone advise why this is happening and what I might be missing here? Thank you!
-
Is the tunnel NATing traffic?
-
Is the tunnel NATing traffic?
The tunnel interface firewall rules is allowing any to any of this what you mean.
-
Have you done tcpdump captures on the interfaces in question to make sure the traffic is passing how it should?
-
Printer drivers often try to get the status of the printer via SNMP (UDP/161). So you could try to allow this protocol.
-
Thank you for your answer
I see we have on the printer Alias the next ports 137/138/139/161/162/427/9100/9220/9500
Still killing the printer during the print
When the users print I don’t see anything on the LAN interface being blocked.
-
If snmp does not help you should analyze the traffic with tcpdump and/or wireshark.
-
We managed to find the blocked port on the firewall live vieuw
Thank you everyone