Topics

I have a working wireguard site to site setup. I have a working openvpn setup at site a. However, I can't get the openvpn client that is connected to site A to see Site B.

I have put in the wierguard and site b's addresses into ipv4 remote in openvpn. However, I can't even see anything bounce of the firewall. If the data isn't making it to the firewall then what does that mean?

I'm going to try and do a better job explaining my issue.

I have a multi-WAN setup.  I also have a group gateway setup for failover.  I have devices connected to my LAN.  One of those devices is another router.

Here is my problem:  If I select any other gateway other than "default" in the firewall the other router stops working but the rest of my LAN devices works correctly.

I have tried many combinations of settings and am still stuck.  I have unchecked the "block private networks" on each of my WAN interfaces.

What am I missing?

Edited subject to better reflect my problem.

Multiwan works on everything except the 2nd router and devices sitting behind it.  It is not just a DNS issue. Just switching the default LAN to all rule gateway to the multiwan group will cause it to fail.  Just in case I have even created a rule for the ip address subnet sitting behind 2nd router.


old ->
I was following the instructions on how to setup a multi-wan failover.  One of the last things it says is to create a DNS rule.

This rule will utilize the gateway group for all traffic coming from our LAN network. This also means that traffic intended for the firewall itself will be routed in this (wrong) direction. That is why Step 5 is needed for our DNS traffic going to and coming from our DNS forwarder on the firewall itself.

I have a double NAT situation.  The main router is running OPNSense.  The router behind this one is the one that loses DNS when I enable the firewall rule that the above talks about.  Why and how do I get DNS to work on the 2nd router?