In case this helps someone else:
To get SSL working properly on your OPNsense firewall, you must have the TCP port set to 443.
--------------------------------
Dear all,
Loosely following a couple of tutorials https://forum.opnsense.org/index.php?topic=23339.0 and https://www.wolffhaven45.com/2017/11/07/intranet-ssl-certificate-for-pfsense-using-lets-encrypt--cloudflare/ to setup SSL for OPNsense WEBGUI access but after many failures to get a secure green padlock connection running we have opted to ask for help.
Domain:
We own a domain (fictional here) mydomain.xyz and the nameservers are pointing to Cloudflare. We do not have or require any hosting.
OPNsense firewall hostname:
Our firewall has beupone as the system Hostname and runs on port 588.
In Cloudflare we added a cname record for the firewall hostname (beupone) pointing to mydomain.xyz resulting in beupone.mydomain.xyz.
General steps:
Installed ACME Client -> Created account -> Added challenge type -> Created certificate successfully
After doing so, we choose the new certificate in System -> Settings -> Administration -> SSL Certificate (beupone.mydomain.xyz)
Trying to access https://beupone.mydomain.xyz:588 fails.
Have attached a few pictures of our settings in case it helps.
Anyone encountered this issue or have any tips on how we can make it work?
Thanks.