Hello everyone,
I have a main server and I want to place it behind opnsense. My main server has virtual machines which have different wan ips.
I find transparent bridge mode is suitable for me. I followed this tutorial but it doesnt work. Any opinions?
My placement:
Wan: just empty wan
has no ip
no dhcp
Lan: just empty lan
has no ip
no dhcp
Bridge0 : wan,lan
has gateway and ip
no dhcp
I can access bridge0 opnsense panel from my browser
wan port<->opnsenser server<->lan port<-> main server
Firewall:
wan-> open any to any
lan-> lan to any open
bridge-> open any to any
outbound nat rule generation disabled
pfil.member 0
pfil.bridge 1
Lots of possibilities. Could be addressing, as that's missing from your post. The rules on the bridge will be evaluated; the member interface rules will not. You can verify this at "Firewall: Diagnostics: Statistics" -> "rules" (expand the rule you wish to examine). "Firewall: Log Files: Live View" is a good way to observe rule evaluation, assuming you have logging enabled.