I have made a move to OPNSense within the last 2 months. I am getting use to its workings. Including the rules directions and such. I have NAT Port Forwarding setup and at one point I had Firewall:WAN Rules set (disable at this time).
I have been adjusting and tweaking things to my liking. Somewhere as I have been working with OPNSense router it is no longer allowing the public IP address to be pinged.
Not sure what to check to see if I can get my public IP address to be pingable again.
I appreciate any help moving forward.
Thanks,
-SF-
Maybe show your interface rules?
Thank you Bob.Dig. I am getting into OPNSense for the last couple of months. So the way rules and stuff in OPNSense are done are a little differnet to what I am use too.
You gave me a hint. It was the rules. It was the only thing I had changed. Long story short. I have a email sever sending and receiving. It stopped receiving. I thought the Public IP not ping meant it was blocked somehow. Actually it is still not pinging.
but when I adjusted my NAT and allowed "Add associated filter rule" it set up the WAN Rules. This allowed the sending and received to go back to normal.
I have to credit me looking at OPNSense Firewall Rule "Cheat Sheet" by Dustin Casto from Home Network Guy. I have the link here for anyone else who needs to see it directly -
https://homenetworkguy.com/how-to/firewall-rules-cheat-sheet/
Once I read and saw his examples, it made it much easier to understand. I still have a bit of review to get use to OPNSense setup of rules down and such.
Okay.. You were helpful in getting the WAN Rules setup correctly now lets see if I can get the Public IP ping back.
Quote from: Bob.Dig on September 27, 2024, 07:32:57 PM
Maybe show your interface rules?
You asked for my interface rules. I have attached them.
I see no rule which would allow a ping (echo) request.
I thought I was able to ping my Public IP before I even had any rules, as well as after. I thought maybe I checked something on the interface or something. I guess that would explain it. So would it be on the WAN Rules side? What would the Rule look like?