I have wireguard up and running between three OPNsense firewalls and I am trying to get OSPF to work between them. I have all the OPNsense firewalls showing up in the OSPF Neighbor listings, and I have the remote networks showing up in the routing table. The problem is that when I try to ping from Network A behind firewall A, to Network B behind firewall B the OPNsense firewall sends it to the default gateway instead of the OSPF learned route. Can someone help me troubleshoot this?
| Wireguard Local |
(http://www.rosemarknetworks.com/images/fw1-TestlabTunnel1.png) |
| Wireguard Endpoint |
(http://www.rosemarknetworks.com/images/fw1-EndpointTestlab1.png) |
| Wireguard Interfaces |
(http://www.rosemarknetworks.com/images/fw1-interfaces.png) |
| OSPF Neighbors |
(http://www.rosemarknetworks.com/images/fw1-ospf_neighbors.png) |
| OSPF Routes |
(http://www.rosemarknetworks.com/images/fw1-ospf_routes.png) |
(//)
Sounds like a pf route-to rule is catching it
i think this is the same issue as mine https://forum.opnsense.org/index.php?topic=18013.msg82640#msg82640
Quote from: mimugmail on July 27, 2020, 06:03:36 AM
Sounds like a pf route-to rule is catching it
I created a gateway for the wireguard remote address and created a rule to forward traffic over that gateway and it still sends the traceroute out to the internet.
(http://www.rosemarknetworks.com/images/fw1-interface_Rules.png)