Hey all,
coming from pfSense CE I have some trouble getting my OPNSense instance working.
First of all, when I configured PPPoE for my WAN interface, all the default outbound NAT rules disappeared. I can't seem to get them back... How do I do that?
Second, I can't seem to select a default gateway. In pfSense there is an option to set te default, but I can't find it in OPNSense. This results in no internet for my clients, unless I select a gateway in my firewall rules for my LAN.
Doe someone know what to do?
Thanks in advance!
"Upstream Gateway" should be enabled for the gateway associated with your PPPoE/WAN interface.
@dseven thanks for your reply!
Is that the equivalent for "default"? In that case it is allready selected :)
That option makes the gateway a candidate for use as the default route. You said that you "can't seem to select a default gateway", but I'm not sure what you mean by that - what are you expecting to see?
I'm used to pfSense and there is literally een option to select the default gateway:
(https://i.postimg.cc/ZR83xxjL/gateway.png)
Do you mean this? It is in the Gateway config.
Maybe I am confused by the terminology.
I saw that option and I checked it, but I was in the assumption that, like in pfSense, I had to select it elsewhere as the actual default gateway.
As long as that setting is enough, I configured it the right way.
And do you maybe know why the automatic generated outbound rules disappeared? Is there a way to set them back? I was using the hybrid option. Setting it back to auto doenst help.
The auto NAT outbound rules are generated only in 2 cases.
1. The WAN is obtained via DHCP - IP, MASK and GW needs to be obtained
2. The WAN is configured statically and has a statically assigned Gateway
https://docs.opnsense.org/manual/interfaces.html#assignments
QuoteIPv4 gateway rules
When a gateway is set here, packets entering the interface will also sent out on the same interface when replied. In addition outbound NAT will be set up automatically when mode is set to Automatic or Hybrid.
Regards,
S.
okay check! noted.
Then - i hope - my last opnsense noob question.
My connection comes in via PPPoE. In pfSense I could check a box "request a IPv6 prefix / infomation through the IPv4 connectivitylink " under DHCPv6 configuration. I can't seem to find that checkbox in OPNsense allthough I saw people talking about it. Is it moved or called something else?
IIRC that is always enabled, now.
Yes; from https://forum.opnsense.org/index.php?topic=45460.0:
"interfaces: remove "Use IPv4 connectivity" setting as it will be set by default"
Thanks for your quick reply's!
For some reason it doenst work at my end though.... ISC DHCPv6 doesnt see a prefix coming from the WAN. IPv4 works perfectly fine. I'm gonna check what's going wrong at my end.
Hey all,
I still can't get ipv6 working in OPNsense. My fiber comes in via a ONT and PPPoE (no VLAN). I'm using exactly the same settings as in pfSense CE:
on WAN:
IPv4config type : PPPoE
IPv6config type: DHCPv6
Only request a IPv6 prefix
Delegation size: /48
Send prefix hint
on LAN:
IPv6 Track interface WAN
Prefix ID : 0
Router Advertisements
Managed
Priority normal
With this settings, it works fine in pfSense. Also in OPNSense I get a link local adress on my WAN, just like in pfSense, but for some reason my LAN doesnt get any IPv6.
Is there some magic switch i'm missing?
If you want only SLAAC, then "Managed" is wrong. You need "Unmanaged" in that case. "Managed" means DHCPv6, which you must enable, then, too.
This is all explained here (https://forum.opnsense.org/index.php?topic=45822.0).
Thanks for your reply! I will change that.
But the LAN interface should get an IPv6 anyway right? It even doesnt get that...
It should, and it is neccessary for "Track Interface" to work on LAN interfaces. Sometimes ISPs are picky on what to choose for prefix size, prefix hint and "request prefix only".
Hey @meyergru
In pfSense I have selected them all at the moment. Tomorrow I will try fiddle with it in OPNSense, to see if it will work!
really weird, it seems to be flakey... This morning I booted up my OPNsense box, greeted with an IPv6 subnet on my LAN. After a reboot the subnets disappear again.