Hello,
I'm facing a strange problem on my OPNsense setup. After spending a lot o time trying to understand why I couldn't access the gui from my lan network, I realized that the problem is related by the fact that my router's lan interface is a vlan interface.
On my tests I've recreated my routers many times and in every setup that I've used a vlan interface as LAN, the web gui is inaccessible. SSH access and other router's services seem to be ok, though.
Have you guys experienced something similar? Is there some fix for this error?
Thank you in advanced.
Anderson
What are you firewall rules on the vlan?
Thanks for your reply!
I haven't created any especial rule. I was simply using the default rules created by OPNsense. which worked fine when the LAN was a physical interface.
I also disabled pf entirely and the problem still occurred. Monitoring the traffic I could see that, on the router side, it receives the host's requests and answers them. On the host side, some packets coming from router never arrive.
I forgot to mention that the VLAN parent interface is a igc interface.
I'm checking FreeBSD's net mailing list about similar behavior related to this card, but haven't found anything, so far.
Been a while since I created a new vlan but check if you have an allow any rule on it. Physical interfaces have it added automatically but I forget if vlans do too.
Just tried this, no rules added to vlans.
You'll need to add one.