OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: ccesario on November 08, 2018, 07:50:39 pm

Title: Automatic outbound NAT rule does not working
Post by: ccesario on November 08, 2018, 07:50:39 pm
Hi guys,

It seems that Automatic outbound NAT rule generation does not working as expected.
It works only when I define Manual outbound NAT rule generation and create my rules.

Tested with fresh installation OPNsense 18.7.7 and 18.7.7 versions.

Does someone are facing the same problem ??!

Regards
Carlos

Title: Re: Automatic outbound NAT rule does not working
Post by: franco on November 09, 2018, 07:08:43 am
Hi Carlos,

Can you define "not working" a bit more for us?

And what does the automatic rule look like, and what is the manual rule?


Cheers,
Franco
Title: Re: Automatic outbound NAT rule does not working
Post by: ccesario on November 09, 2018, 11:53:42 am
Hi Carlos,

Can you define "not working" a bit more for us?

And what does the automatic rule look like, and what is the manual rule?


Cheers,
Franco

Hi Franco,

Not working in my tests  mean that when I create a Lan to Wan rule, my hosts does not have internet access. And after investigate I could see that there is no "Automatic Outbond nat rule".  I think that is would be created (in older versions this work)

And after I create a manual Outbound nat rule, my hosts got internet access.


Expected result it is attached.
Current result is Blank.
Title: Re: Automatic outbound NAT rule does not working
Post by: franco on November 09, 2018, 01:07:28 pm
So you are saying automatic outbound rules aren't created for your LAN anymore since a version 18.7.x? Do you know which particular version for reference?


Cheers,
Franco
Title: Re: Automatic outbound NAT rule does not working
Post by: ccesario on November 09, 2018, 02:06:41 pm
Hi Franco,
Yes, the automatic outbound rules aren't created from LAN.

Well, I have tested it 18.7.6 and 18.7.7 .. and both does not work.

I have a 18.7.3 version that is working.

Best regards
Title: Re: Automatic outbound NAT rule does not working
Post by: ccesario on November 12, 2018, 12:23:00 pm
Hi @Franco,

It seems the problem happen after 18.7.5.
We have tested 18.7.6 and 18.7.7 and both have the same  behaivor. But with 18.7.5 no.

Best regards
Carlos
Title: Re: Automatic outbound NAT rule does not working
Post by: putt1ck on March 12, 2019, 07:39:46 pm
I can confirm this issue exists in 19.1.x; specifically if you follow the guidance on interfaces page regarding gateway selection for WAN, automatic outbound NAT rules are not created, but manual ones work; if you select the default (only) gateway automatic outbound NAT rules work as expected.

The firewall on which this was diagnosed worked in a n initial test bench situation; the only difference will have been WAN changed to manual from DHCP (and gateway added) and additional LAN/SSN network interfaces added (but not yet in use).
Title: Re: Automatic outbound NAT rule does not working
Post by: franco on March 12, 2019, 07:52:16 pm
We debugged this and changed a lot of code in the process:

https://github.com/opnsense/core/issues/2914

Can't rule out there is still an issue left, but would you mind going through the history and letting me know what differs in your case?


Cheers,
Franco
Title: Re: Automatic outbound NAT rule does not working
Post by: flehmann on April 04, 2019, 04:48:46 pm
I can confirm this issue exists in 19.1.4. I have updated a v18.7.10 today to v19.1.4 and have no outbound NAT automatic rules and must create it manually.

Thank you
Title: Re: Automatic outbound NAT rule does not working
Post by: franco on April 05, 2019, 11:01:39 am
Please fix your setup according to https://github.com/opnsense/core/issues/2914#issuecomment-439904741