First post :)
I have ran into a situation where the carrier at a site gave me a private /30 for the WAN side of the router and public /29 for the LAN side. Was planning to use OpnSense only as a non NAT router and firewall so I thought 'no big deal.' Everything is setup and working fine from a router and firewall perspective. However, any traffic not originating from one of the public addressees will not route past the provider's edge.
Example:
WAN=
10.68.0.220/30
.221 gateway
.222 WAN interface address
LAN
50.21.0.48/29
.49 LAN interface address
.50 - 54 -Assigned to NAT routers/gateways feeding various subnets and services
Opt1
192.168.1.0/24
Used for management only. I have management blocked on both the LAN and WAN interfaces.
The primary issue I have is this, OpnSense itself and the underlying operating system cannot access the internet across the WAN connection. This means no automatic firmware checks and no ability to use plugins such as auto updating geolocation filtering.
Any way to work around this?
Hi... check this option and see what happens: Firewall > Settings > Advanced > Disable force gateway
Tried that and it didn't work. I still have no idea how to solve this one.