OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of almador »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - almador

Pages: [1]
1
21.1 Legacy Series / Re: LAN client to second gateway
« on: June 25, 2021, 08:32:50 pm »
small update, issue still exists but I notice something else.
When doing a traceroute to the IP address of the firewall, then the first is the firewall but it has also a second hop and a third hop (wan addresses).

the client and the firewall are in the same subnet 10.10.10.0/23

2
21.1 Legacy Series / LAN client to second gateway
« on: June 24, 2021, 10:06:18 pm »
Hi all,

I'm quite stumped with a stupid problem.
My unit has 2 WAN connections and by thus 2 gateways.

Now I want to force traffic from a specific lan client to go over the second gateway.
So I created an alias containing the IP of the client and then;

Fw rules - LAN_1 - new rule - pass (quick) - src the alias - destination any - port any - gateway the second gateway

This then results that the client wan ip address is the one of the second gateway and I can ping 1.1.1.1 BUT I lose connection to the opnsense LAN IP, which is also my DNS so no name resolution

What does work:

Fw rules - LAN_1 - new rule - pass (quick) - src any- destination wan server address - port any - gateway the second gateway

But that doesn't solve my issue because I want all traffic from that client to go over the second wan connection

Any ideas?

3
19.1 Legacy Series / Mobile IPSec - No internet (on Android)
« on: April 14, 2019, 01:29:41 pm »
Hi All,

I'm ran into a problem where I can't find a solution to.

Overview net:
LAN: 10.10.10.0/23
WAN: static ip
IPSEC Mobile W LAN: 10.10.60.0/24

Setup mobile ipsec with the guide provided in the Wiki.
Connection works fine, I can ping from IPsec to LAN range and the other way around.

An iOS, I have working internet. So in other words only LAN traffic is sent over the tunnel.
On Android (9) I have working tunnel traffic but when trying to go outside the IPSEC/LAN range everything gets blocked.

After checking the NAT Outbound page, I saw that the IPSEC range was not there.
So I have created a new rule (changed to hybrid mode) and setup the following rule. Found the advise in another thread. But still no traffic

Link to image: http://prntscr.com/nbqlp8

The traffic test is done with ping to 1.1.1.1 and requesting http page

PS: 10.10.61.0/24 is used for OpenVPN, so no typo there

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2