So I finally figured out my OSPF mess with Opnsense and got that working. I can ping from the firewall to everything inside the LAN on all the subnets, and all the subnets can ping the firewall...but nothing on the LAN can get out to the internet.
Topology:
Comcast modem > Opnsense firewall > Core switch > Access switch
Core switch is doing DHCP for all the subnets.
I have a default route on the access switch that points to the core switch, and the default route of the core switch points to the interface IP on the firewall that's being used for the OSPF adjacency.
All of the Windows desktop clients on the LAN, Wifi or CAT5 connected are showing "No internet"
WAN gateway is getting an IP from comcast via DHCP. Windows clients have their default gateway set to the .1 of their respective Vlans which all live on the core switch. I've rebooted the firewall a few times.
The WAN gateway is set as "upstream" so it is default. Using ping diagnostics on the firewall, I can ping out to things like 8.8.8.8, 4.2.2.2, 8.8.4.4 from the firewall and that works fine.
I can ping the WAN IP of the firewall I'm getting from comcast from inside the LAN, meaning I can ping the "outside" IP of the firewall. I cannot ping the address from comcast that the firewall is telling me is the gateway of that interface.
If I get on one of the windows clients and try to ping out to the internet, I'm not seeing anything blocked in the firewall logs. I'm trying to ping out to the internet from inside the LAN using IP's, not hostnames.
Any advice is appreciated
HI, I'm in the same situation.
I have more subnets in differents vlan configured and I can ping them from my client but I'm not be able to exit to internet.
I've configured a PPPoE on Wan interface and from the diagnostic tool I can ping Google's DNS without any problems,
Do you found any solution?