OPNsense Forum
English Forums => General Discussion => Topic started by: Piersonjarvis on February 23, 2018, 02:01:46 am
-
Hello, I am very new to firewalls, and have just setup an opnsense box in my home. I have looked around got a lot of things working on my own, but I have come to my wits end on three things. The first is I'd like to use the unbound dns service from outside of my LAN, so when I am trying to get to a service on a subdomain I can access it from anywhere not just my home. Is this possible or do I have to setup a seperate DNS machine? second, I am trying to get it so all http and https requests come through the firewall, yet I can't seem to be able to do this either? and lastly I have setup the openvpn with the setup wizard, but trying to connect to it from outside my network results in a timeout, and no connection, any ideas as to why this would happen and what I can do to fix it? Many thanks in advance!
-
You do not want to expose (and under no circumstances should you do this) a LAN DNS server to the internet. You can either set-up port forwarding to your internal LAN server(s) or you can do the sensible thing and use a VPN to access your LAN, you'll then have full and secure access to your LAN without exposing anything to the outside world.
-
... The first is I'd like to use the unbound dns service from outside of my LAN, so when I am trying to get to a service on a subdomain I can access it from anywhere not just my home. Is this possible or do I have to setup a seperate DNS machine?
Where is the subdomain? Is it in your LAN?
second, I am trying to get it so all http and https requests come through the firewall, yet I can't seem to be able to do this either?
"... come through..." - as in come from the outside/WAN to the inside/LAN?
and lastly I have setup the openvpn with the setup wizard, but trying to connect to it from outside my network results in a timeout, and no connection, any ideas as to why this would happen and what I can do to fix it? Many thanks in advance!
You should take a look at the How-To page for this: https://docs.opnsense.org/manual/how-tos/sslvpn_client.html
My experience with the setup wizard was that it wasn't extremely helpful - it seems to basically just present the configuration page with not much filled out, and no "what are you trying to do" questions that would allow it to make recommendations. Not very "wizard-y", IMHO, but I'm sure others will disagree. In any case, you'll benefit by working through the How-To, and generally perusing the Docs for items of interest.