OPNsense Forum
Archive => 16.7 Legacy Series => Topic started by: king-dude on November 13, 2016, 11:21:04 pm
-
Hi,
I have just installed latest OPNsense an trying it out.
I want to have OPNsense as a bridge and I have the most basic setup I follow Bridge manual and just now I have Allow any on all interface.
So what I have is
Internet -> OPNsense Wan > OPNsense LAN > PFsense with Nat – My computer
If im surfing or do whatever it looks like the traffic is okej.
But here comes the problem I have a IPSEC tunnel from The PFSense to a Firewall on Internet.
And Ping (ICMP) and normal Surf to port 80 going in the tunnel is working.
Nothing else is working in that tunnel, like another random port 8080 but still regular surf. or SSL 443 no traffic is going true.
Regards
\Pelle
-
Anyone?
Is the Bridge function broken or what?
-
Hi Pelle,
IPsec routing in FreeBSD is fragile and will be harder to set up, because it requires the traffic to originate from a Security Policy Database enclosed network.
Bridges itself have limitations as well, e.g. they won't easily filter.
It's hard to tell if that's the case for you without a glance at the networks you're trying to bridge and how IPsec is set up.
Cheers,
Franco
-
Hi,
Okej, after spending my day to this absurd problem its now working.
After finding this How to i can send traffic as normal in my IPSEC tunnel. And the sick thing is now im reverting back to see what of the settings was wrong... And it still works... So one of this setting have change something but dident change back to original. And now im back to my original setup.
http://users.ox.ac.uk/~clas0415/assets/Setting-up-pfSense-as-a-Stateful-Bridging-Firewall-with-commodity-hardware.pdf