Hello,
Sorry Opnsense newbie here.
I though i was tech savyy but am somewhat overwhelmed with the amount of options settings.
I tried following tutorials but somehow am missing something.
I setup opnsense.
I have firewall rules that allow outgoing traffic.
I have internet on Opnsense can update and ping.
Alas no LAN devices can access the internet
I can ping the router
I get an ip adress and the dns configured on the server so i guess that is OK.
bash-5.3$ ping 192.168.1.1
PING 192.168.1.1 (192.168.1.1) 56(84) bytes of data.
64 bytes from 192.168.1.1: icmp_seq=1 ttl=64 time=0.486 ms
64 bytes from 192.168.1.1: icmp_seq=2 ttl=64 time=0.568 ms
but nothing outside of the network:
bash-5.3$ ping 9.9.9.9
ping: connect: Network is unreachable
I have the standard rules enabled that to my understanding lets everything go out.
What am i missing?
Here a couple of configs:
NAT:
Mode: Automatic outbound NAT rule generation (no manual rules can be used)
Automatic rules
Interface Source Networks Source Port Destination Destination Port NAT Address NAT Port Static Port Description
WAN LAN networks, Loopback networks, 127.0.0.0/8 * * 500 WAN * YES Auto created rule for ISAKMP
WAN LAN networks, Loopback networks, 127.0.0.0/8 * * * WAN * NO Auto created rule
Firewall: LAN:
Protocol Source Port Destination Port Gateway Schedule Description
Automatically generated rules
IPv4 * LAN net * * * * * Default allow LAN to any rule
IPv6 * LAN net * * * * * Default allow LAN IPv6 to any rule
(plus the 16 auto rules)
Firewall: WAN:
I added this rule on top of all the auto generated ones:
IPv4+6 * * * * * * * * let out anything from firewall host itself
So not sure what i am missing, any clues? :-)
It seems you have not set up DHCP on your LAN. This looks like if you configured your LAN client statically and forgot to add 192.168.1.1 as default gateway. The gateway should be provided if you use DHCP, as well as the DNS server.
Otherwise, all looks fine, although you do not need that WAN rule.