OPNsense Forum
Archive => 20.1 Legacy Series => Topic started by: abalsam on April 21, 2020, 08:16:17 pm
-
I am in the process of setting up a test lab using KVM (Ubuntu Server 20.04 running KVM and Cockpit). I am able to install and update OPNsense without issues and the client behind OPNsense has full connectivity. However, even after I permitted incoming non-routable IP address traffic and set the appropriate rules to permit inbound HTTPS and SSH, the traffic times out and I see no entries in the firewall logs. However, when I try to connect from the same source to the same destination on HTTP (still blocked by rule), the traffic also times out but I DO see entries in the firewall logs. I should also note that incoming ICMP is permitted by rule and is working correctly.
To further test if the issue was related to KVM or OPNsense, I downloaded and installed PFsense (latest) in parallel on the KVM server. Same base rules and I am able to successfully connect to the webgui and SSH through the WAN interface.
I am not sure where to look to troubleshoot this issue further.
Please let me know what you need from me (screen shots or logs).
Thanks
-
Just 3 quick updates for you.
First I noticed that my firewall rules were not set to log on success. I enabled logging and was able to confirm that the firewall was successfully passing the traffic but that it then timed out.
Second, I also tested against a fresh OPNSense 19.7 install and I was successfully able to connect without any issues. I then applied the available patches making it a 19.7.10_1 system and it was still working properly.
Third, I installed a fresh version of 20.1 (before patching) and it worked. I then applied the patch to 20.1.4 and it still worked.
This tells me that the issue I am encountering is very weird as I am so far unable to replicate it (maybe it is simply user error).
If anyone has any suggestions, please let me know (I will be keeping the VM).
Thanks