How well does OPNsense perform with desktop and console gaming? Would it be worth opening a new subforum specifically for this topic?
The reason I ask... just google "PFsense multiple consoles" or "PFsense uPnP." Their implementation has been scuffed for four years. Or take a peek at the PFsense gaming forum. This consumer-ready software sure is a pain in the ass for consumers.
Can we get a "POGGERS" in the chat for Feature #7727, born into a life of eternal misery on 7/26/2017? https://redmine.pfsense.org/issues/7727
Anyway, can anyone comment on OPNsense and what configuration is needed to achieve the golden "Open NAT Type" when it comes to what's reported from Xbox Networking (Windows > Settings > Gaming > Xbox Networking), or when two PCs on the same network launch COD Warzone?
Basically trying to avoid spaghetti NATing every port for every game and PC on my network. Enjoy this schadenfreude: https://forum.netgate.com/topic/153478/pfsense-multiple-pcs-open-nat-a-solution-and-a-grievance
i did not test it on 2 consoles but if you want to have UPnP functionality this could help
you have to install the UPnP plugin to enable it on OPNsense
https://forum.opnsense.org/index.php?topic=4578.0
https://forum.opnsense.org/index.php?topic=1368.15
I don't have multiple consoles/desktops gaming at the same time as well, but what I found really helped, apart from proper port forwarding (if needed, because Nintendo switch doesn't) is Static Port for the IP address of the console/desktop under Firewall: NAT: Outbound.
So something like this:
Interface Source Source Port Destination Destination Port NAT Address NAT Port Static Port Description
WAN PlayStation4 * * * Interface address * YES Game Static port
PlayStation4 is the name of the alias I use for my PS4 Pro.
You can't unfortuntately. This applies to OpenBSD as well. It's just not possible until miniupnpd implements the appropriate code for pf. Most of the miniupnpd iptables and netfilter code was contributed to the project by other coders to make it fully functional under linux. Playing the same game using mutilple PC's or consoles of the same type just won't work at this time with a BSD based distro using pf.
This is a miniupnpd limitation for pf based packet filtering and not a pfSense or OPNsense caused limitation. It's not something that pfSense or OPNsense can fix on their end. Also, the IPFILTER (ipf) and IPFW code that FreeBSD uses is outdated in the miniupnpd repository and hasn't been updated for about 9 years now. BUT you're still golden when it comes to gaming with one PC or a single console.
I'm not trying to blame the miniupnpd developer. He clearly doesn't use BSD distros for testing purposes and most of the information he obtains is from bugs posted to his respository reference miniupnpd not working properly with pfSense.
A linux based firewall/router with miniupnpd is the only working solution for playing the same game with multiple consoles of the same type or multiple PC's. That's why consumer grade routers (Asus, Netgear, etc) using Linux with miniupnpd works great.