Didn't receive any help on my Outbound NAT questions so I am taking a different approach to not do a group gateway.
I have a working OPNsense firewall with web and email servers. My goal is to add another WAN for use only by the LAN interface on the firewall.
So what I did was change the LAN gateway to the new WAN service and add the corresponding Outbound NAT. I have connectivity to the new WAN on the LAN now, but now there is no access to the servers on the firewall. Not sure what rules to add to gain access to the servers from the LAN now that both are running on different gateways. The servers run on different interfaces on the same firewall.
I am not trying to do Multi-WAN. Just want the LAN to use it's own gateway.
Can anyone help with this?
Not 100% sure I'm following your intended outcome but you probably want to use FW rules here...
- Ensure "new WAN" has it's own gateway configured
- Change the LAN gateway back to "auto-detect"
- Create a new LAN firewall rule = " pass from LAN Network to * "; likely below all blocking rules and/or other allow rules for traffic between local networks.
- Set the gateway for the above rule = "new WAN"
Are you trying to access your servers from the router?