OPNsense Forum
English Forums => 24.1 Production Series => Topic started by: MadDieAxx on March 08, 2024, 08:28:37 am
-
I get FTTB from my ISP with an RJ45 port comming to my appartment.
I need to log me in with PPPOE.
So I set up my WAN port with my PPPOE credentials and i get my public IP 79.133.XXX.XXX and my Gateway 93.91.XXX.XXX.
No modem between my opnsense and my isp port.
Now i made any any firewall rules on WAN and LAN interface.
But my problem is, I cant get to the internet. I cant ping 8.8.8.8 from my PC connetet on LAN. But also from the opnsense itselfe i cant ping 8.8.8.8.
On the firewall logs i see outgoing packets, but no incomming packets that are blocked.
I use the default outgoing NAT rules on my WAN interface.
I also tried to make a route 0.0.0.0/0 to my gateway. But it makes no difference.
A very strange thning is, that i can ping my public ip 79.133.XXX.XXX from my phone using mobile data.
I feel like im missing some essential setting.
Here some screenshots: https://imgur.com/a/dO732Eg
Someone here who can help me?
Thanks!
-
(1) I see that you have pppoe directly over the physical interface (igcxxxxx).
In Italy, ISP pppoe access is always, as far as I know, over a vlan.
Are you certain that you do not need pppoe over a vlanto access your ISP?
(2) I see that you have vlan's on your internal interfaces. Have you set Promiscuos mode on the underlying igcxxx interface?
(3) Could you please do a packet capture in promiscuous mode on igc1 (not the pppoe interface) when you ping from OPNsense. What do you see?
-
SOLVED:
I had to disable firewall packet filtering in advanced firewall settings.
After re enabling it, it worked!
-
From you description of how you fixed the problem, it sounds as if you might have made some firewall changes but didnt then clear the firewall states (at Firewall: Diagnostics: States->Reset State Table). If it happens again, then try resetting the states rather than disabling and then renabling the firewall;-) Of course you could also reboot if you prefer.
-
I did a couple of reboots and also a factory reset. Very strange. But my problem is solved, so i am happy!
-
but when you checkmark Disable all packet filtering. you get: Warning: This will convert into a routing-only platform!
Warning: This will also turn off NAT!
If you only want to disable NAT, and not firewall rules, visit the Outbound NAT page.
is that what you want?