I'm sure this has been asked and answered a million times, but I've searched out and read through as many as I could find that were "more recent", and still no luck.
Before I get to far into the details, the one thing I have that wasn't mentioned in other threads is the PFATT bypass using netgraph. I'm still shocked that I was able to get that working, so I can't be sure my problem isn't related to how I have that setup.
I know a little bit more than the basics about networking, but L3 is over my head.
With port forwarding, I was able to get remote management of OPNsense working from the internet, but I've tried duplicating that working rule and I still can't get anything else passing through.
My goal is to pass WireGuard VPN, a few different management webpages, and maybe some VNC/RDP.
- My setup is ONT > IGB0 | IGB1 > AT&T Gateway (ONT port) | IGB2 > LAN
- NGETH0 is the virtual adaptor that the AT&T Residential Gateway Bypass uses as WAN
- WAN picks up a DHCP v4 IP from the AT&T side
- All devices on the network have internet access
- All devices on the network have access to each other
- Port checking tools show a few standard ports open, but none that I've added tried to use
- 443 currently gets me to my OPNsense login screen
- I use the hotspot on my phone to test inbound traffic from the internet
I am pretty sure there is some dead simple resolution to this, but my lack of experience with firewall rules and routing limits my abilities to properly troubleshoot. Any guidance would be appreciated!