OPNsense Forum

Archive => 16.7 Legacy Series => Topic started by: dadotc on November 30, 2016, 10:04:16 am

Title: Transparent Filtering Bridge not working on VSPhere
Post by: dadotc on November 30, 2016, 10:04:16 am
I want to protect one virtual machine from the lan , but I need to keep actual IP address, so my idea is to use transparent filtering bridge with opnsense on a virtual machine with 2 virtual nics to put in the middle between the vm to protect and the actual lan.

One vnic (opnsense wan) is connected to physical nic to the physical lan.
The other vnic (opnsense lan) is connected to a vswitch , here is connected the vm to protect.

I'm following the step by step instructions in the opnsense wiki documentation https://docs.opnsense.org/manual/how-tos/transparent_bridge.html (https://docs.opnsense.org/manual/how-tos/transparent_bridge.html).
But in the end just the machine in the opnsense lan can contact the bridge IP to configure the appliance, the vm on the opnsense wan (physical lan) cannot manage opnsense.
Nor the machines on both sides of the bridge can contact each other on the other side.
In the opnsense console I can ping the vm in the opnsense lan but not the machine in the opnsense wan.

Note that before enabling the bridge the internal everything was working fine, both sides was able to communicate with the other side (with different network address obviously).

It seems there is something not working with the bridge, something like if there are firewall rules blocking everything, but following the instructions I created "allow all" rules in every zone (lan, wan, opt).

Any suggestion is welcome.