Messages

Hey all,

Unfortunately after many months of joyfull use of the OPNsense software the installation seems to have gone corrupt.

After a simple reboot of the machine the OPNsense installation boot sequence does not progress. No error messages.

This is the console output:



What to do?

Hey Bert,

Thank you for your response, much appreciated! You got the gist of it. Technically multiple IP's are served over the same physical NIC, but for virtualization purposes they accept only traffic from pre-defined MAC addresses, or the host MAC.

Your solution would work, and its definitely a good way to go about things. However is that not sort of the same approach as installing HAProxy on the OPNSense machine and using that for routing? Maybe Apache is easier, but I have HAProxy running without problems on another place aswell.

My main goal here was to try and avoid the extra configuration needed per domain. Since I have the luxury of mapping a public IP to each of the backend servers.

Kind regards,
Mastermind

Hello,

During the last few weeks I have set up a new corporate infrastructure with OPNSense as its core networking component.
The OPNSense instance is virtualized on a KVM supervisor.

Now there will be multiple webservers on the private LAN, each in charge of providing resources to run their own by domain defined appliances. To accomplish the appropriate routing, HAproxy is an option but requires an extra step in the configuration for SSL and each domain/appliance. Since I have multiple public IP addresses available I would like to route these (HTTP/HTTPS ports only) to the respective backend servers on the LAN.

Normally, I'd add these extra public WAN addresses as Virtual IP in the OPNSense web GUI. However, the current colocation partner restricts every IP addresses traffic to a single originating MAC address. And since the primary WAN interface can only have one MAC address, I can only bind this to one public IP as the colocation partner will only accept one MAC and IP combination.

So, to still make use of the public addresses available I thought of adding another virtual interface to the machine, with a seperate MAC address to use with a second public IP. So far so good. Unfortunately, both interfaces and IPs are in the same space and will need to use the same gateway address. This is where the curlpit lies, as I can apperantly not use the same gateway destination address for multiple interface nor bind one gateway to multiple interfaces.

So to sum up:

112.112.112.5 - Public IP1, WAN interface with specified MAC
112.112.112.6 - Public IP2, OPT interface with specified MAC
112.112.112.1 - Gateway designated for use by colocation partner for all traffic

How can I proceed with setting this up successfully?

Thoughts and advice much appreciated. Thanks in advance.

Ah, thanks. I thought could use the ISO if I would use the appropriate settings.

Mounting the USB Image as VirtIO disk was easy enough too.

Keep up the good work!

Hello,

The last few days I have been struggling with getting an OPNSense installation running in my new production environment.

After creating the virtual machine using KVM, and mounting the ISO with its device set as the #1 boot option, I am unable to get any output on either the Spice or Serial console.

I've tried alot of things, most notably setting the video to VGA mode or trying to connect a serial device to a hardware mapping /dev/cuau0 and /dev/cuaU0.

Most of the other information I have found online is related to an after-the-fact installation. But I am even unable to get to this step. I am unable to get any output or access to launch the installation process. I only have this issue with the latest pfSense (just for checking) and OPNSense installation media.

Please tell me if I can provide you with further information.

I am looking forward to seeing your replies and assistance regarding this issue.

* raises hand.