Hi,
I'm suddenly experiencing a problem where our gateway reports as offline on our opnsense router and all internet access is gone.
If i try to ping any external internet IP or DNS address trough the diagnostics tool with either LAN or WAN as source, i get no response.
We have a /28 range og public static IP addresses assigned to us.
Right now i have two routers running on this range, this opnsense and a Ubuquiti EdgeMax.
The Edgemax uses .228 - .236 and opnsense uses .238 for static WAN and .237 as a virtual IP.
I have a gateway setup on opnsense for .225 which is the supplied gateway IP. Internet works fine on EdgeMax and internet has been working fine until this morning on our opnsense for two years. The thing that has changed since yesterday is the addition of the virtual IP, which we use together with a port forwarding rule.
I tried, just to test, and remove the virtual IP and the port forward rules used with it but this did not change anything.
I cannot figure out whats wrong. A reboot does not solve it.
Here's a few screenshots of my settings:
(https://universe.dk/opnsense/gateway-overview.png)
(https://universe.dk/opnsense/gateway.png)
(https://universe.dk/opnsense/outbound-nat.png)
(https://universe.dk/opnsense/routes.png)
(https://universe.dk/opnsense/WAN-interface.png)
(https://universe.dk/opnsense/virtual-ip.png)
Any help is highly appreciated!
You kept a copy of your config.xml before doing changes like adding the virtual IP? Role back the config with this xml.
Otherwise role back the changes you made in the GUI (System -> Configuration -> History) and see if things go back to normal.
@chemlud Didn't know of that history option with rollback feature! And yes, that solved it! I got internet access back as soon as rolled back and rebooted.
However, as soon as i add a virtual IP on our WAN interface, i loose all internet access again. Do you have any clue as to why and what i should do to avoid this?
Before upgrades and major changes: keep a copy of your (running...) config.xml.
Virtual IPs are too.... virtual.... for me ;-) That's beyond my paygrade. Wait some minutes and someone will help out with more experience. :-)
In the meantime: https://docs.opnsense.org/manual/firewall_vip.html
or more something like that?
https://forum.opnsense.org/index.php?topic=31215.0
Quote from: chemlud on April 18, 2024, 05:53:28 PM
Before upgrades and major changes: keep a copy of your (running...) config.xml.
Virtual IPs are too.... virtual.... for me ;-) That's beyond my paygrade. Wait some minutes and someone will help out with more experience. :-)
In the meantime: https://docs.opnsense.org/manual/firewall_vip.html
It is also new territtor for me with those pesky virtual IP's ;) But thanks for the queck help anyways! The hostory rollback function is god send.
I managed to figure out the error. It wasn't with the virtual IP at all. When i added the virtual IP i misread the multi-WAN support as in "multi public IP's" and set the gateway for our WAN interface to the gateway i created. However, this results in no internet if you only have this single WAN. It should be kept at "Auto-select".
So all is good now!