Messages

Further exploration on the topic brought me to this article:
https://gist.github.com/Juul/e42c5b6ec71ce11923526b36d3f1cb2c

Which explains a lot, further research brought me to the below:
https://forum.netgate.com/topic/147755/ppp-connection-with-qmi-mbim

This leads me to the assumptions that unless something has changed, FreeBSD does not natively support 4g, and thus pfSense/OpnSense does not support 4g.

Hello, I'm still reading up on and troubleshooting out the issue, but I'm struggling with perhaps some of the basics behind an mPCIE modem and PPP.
For starters all the carrier documentation, just says to use their APN and then enable roaming. Which on a Netgear LM1200, that works as expected. However when I follow the opnsense documentation:
https://docs.opnsense.org/manual/how-tos/cellular.html

Everything seems great up until actually enabling it and checking the logs (see attached).
One thing I've noticed is articles where people are talking about how PPP isn't capable of 4G speeds, and that has me wondering if there's some basics here I'm by chance missing. The carrier doesn't have username/password options, they simply send out a SIM, and tell you to enable roaming and use their APN.

Any help, or points in the right direction would be great. Thanks!

I noticed this:
https://githubmemory.com/repo/opnsense/docs/issues/282

Also as referenced in that article this:
https://github.com/opnsense/core/blob/6cc719a50761cf4e419abe7b94fd0d513b2346b4/src/opnsense/service/conf/actions.d/actions_interface.conf#L1-L6

Hey so I want to occasionally reset an interface based on internet availability or not, I'll likely end up having to setup a custom script but before that I noticed a "Periodic Interface Reset" command under the default Settings-Cron. My question is where would I go to see exactly what that does, and what parameters it might accept?

Hey mimugmail,

I actually don't see it listed as an option under interfaces, and when I go to check assignments I don't quite have an option for it there either.

Thanks!

So I've been following this article (which I love the documentation on this firewall).
https://wiki.opnsense.org/manual/how-tos/ipsec-s2s-route.html

The problem becomes when I get to the point of adding a Gateway, I don't have IPSEC as an option for the interface. Thinking maybe I could be crafty, I went to check the interfaces but I don't have an option for it either unfortunately in the interfaces....even though I have a currently connected tunnel. Thoughts?

Thanks!

Hey sorry, I know it's been a little bit but I just now tried what you said azdps.
Here's the interesting thing. When I turn off UPnP, and yet forward every port ever, I receive a "strict NAT" rule. Which leads me to think that maybe something is wrong with UPnP+R6, and something is wrong with my forwarded port rules.

Theoretically I should be able to turn off UPnP (as I've done), forward all the ports, and maintain "Open NAT", and yet that isn't the case.

I've since removed the rule, but you can see a screenshot which I've attached.

Is there a decent way that someone knows of to test that my port forwarding rules are correct? Canyouseeme and other such tools only seem to work for TCP and only if an application is listening on that port.

Thanks!

Here's one more noting the LAN firewall that may be interesting to someone.
I disabled the rule noted and opted for Google DNS on my computer for troubleshooting.

Hey Azdps,

Actually I'm running a PC, the interface for Rainbow 6 calls it "Open NAT" and that's why I referenced that.

Attached is all the images that should be relevant, I can provide more if anyone is interested. I am very much appreciating the help, honestly I'm more of a server guy than a networking guy and past forwarding ports I'm a little out of my element.

I wish Bart, regrettably I cannot purchase any statics without becoming business class, and the price difference is pretty astronomical.
Was a good thought though, can't help but believe it would work.

Ok, that doesn't look to have helped in my particular scenario. I did update, and I applied that patch, then rebooted and hit save under UPnP.
It's worth noting that the concept of UPnP in a firewall is a little foreign to me so I may be doing something wrong. When I enable it, R6 shows I have an "Open NAT", and the appropriate connections show up under Status, however I continue to get the error when trying to join my friend.

I read through the link you provided Franco, but it kind of looks like they are almost being a little more strict than I am in regards to their settings. I am allowing any traffic from LAN Net anywhere (no bars), and I've forwarded the appropriate ports coming in, plus enabled UPnP (for kicks). It probably isn't ideal but right now UPnP has no restrictions on it, I'm just trying to get it working with OPNsense and from there I'll fine tune it down.

Another variable that I really should have noted to begin with (shame on me), is that I'm running OPNSense on Citrix XenServer, I personally don't think that is a factor, but I'm honestly not sure.

Any thoughts?

Is that the attached update? That wasn't there yesterday, you weren't kidding about it being fixed just a bit ago.

EDIT: Nevermind, looks like this particular patch/issue didn't manifest until .9

Hey Franco and Solaris.

For starters, you all are awesome, haven't yet read through all the provided material but I'm appreciative of the effort. I will report back the moment I've read through everything provided, and tried any suggestions.

My current version is:
OPNsense 16.7.8-amd64
FreeBSD 10.3-RELEASE-p11
OpenSSL 1.0.2j 26 Sep 2016

Franco if what you say is true, I assume maybe there is a patch I should be waiting (and excitedly looking forward) to?

EDIT: Or would it be worth me moving out of production to quickly resolve my issue?

Hey All,

I'm having some odd issues with Rainbow Six Siege, and I know it sounds crazy but I was really hoping maybe someone here could help.
Apparently in Rainbow Six if you invite a friend to group, it attempts to join your networks directly. Yes directly, I can see his IP actively trying to communicate with mine (when inviting) via the log.
I know for sure it's my firewall setup because when I bypass and connect directly to internet (receiving WAN IP), it works without issue. Yes I know this isn't ideal for sure, but I had to make sure it wasn't Rainbow 6.

I've forwarded all the ports suggested here:
https://support.ubi.com/en-us/Faqs/000024695/Connectivity-Troubleshooting-PC-R6S

And I've enabled UPnP as someone had suggested to turn it off and back on (mine was never on).

My hope/question is as follows:
Is there anyone here who can think of anything else that might need to typically be turned on/off or configured for most (if not all) video games to typically work?

Thanks,
- Sam

Figured it out.
Long story short those Airave's like to be as close to the gateway as possible apparently, and I had it behind an access point. Putting it direct to the switch fixed the problem.