OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: alaa.chatti on August 28, 2018, 02:48:07 pm

Title: Update from 18.1 to 18.7.1
Post by: alaa.chatti on August 28, 2018, 02:48:07 pm
Hello,

I have two OPNSenses running the same configuration and they run on version OPNsense 18.1.
I upgraded one of them yesterday to version 18.7.1. The upgrade broke the port forwarding.
Here is more context:
* We have OpenVPN server configured on the OPNSense
* Once clients are connected to OpenVPN server, we have port forwarding rules that translates to traffic allowing them to access the internal devices

The observed behavior:
* Clients can still connect to OpenVPN
* The port forwarding rules are no longer working: clients are no longer able to communicate with the internal devices
* From the OPNSense internal interface, I can reach the internal devices directly.

The OPNSense still running 18.1 is working without issues.

Thanks and please advise on that issue.
Title: Re: Update from 18.1 to 18.7.1
Post by: marjohn56 on August 28, 2018, 02:50:24 pm
You can try deleting the port forwards and re-creating them. IIRC there were cases of that fixing similar issues.
Title: Re: Update from 18.1 to 18.7.1
Post by: alaa.chatti on August 28, 2018, 03:58:10 pm
Thank you for your reply.
I just deleted the existing forwarding rules and created them again, but that did not help solve the issue.
Any other ideas on what this could be ?
Thanks in advance.
Title: Re: Update from 18.1 to 18.7.1
Post by: marjohn56 on August 28, 2018, 04:27:47 pm
OK, so this is VPN clients cannot connect the internal LAN network?


Check the Firewall->Rules->VPN to make sure that is OK. Just set it to allow any to any if it's not set. I assume that if the client can connect via VPN you have no objection to them accessing whatever they want to.


On WAN, there is a rule for Open VPN, UDP pass from ANY to WAN Address, Destination port rang <1195>


Not sure what port forwards you have, I actually have no port forward for my OpenVPN.