Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - nutseo6

Pages1
#1
General Discussion / Multi-WAN 2 tier and Unbound DNS has DNS failure mode v.2
September 19, 2019, 12:11:39 PM
I have 2 WANs set up as tier 1 and 2, and I enabled Unbound DNS. Today the tier 1 WAN failed completely and tier 2 WAN took over. Pings of ip addrs and existing connections over tier 1 were working, but new DNS lookups did not.

I was able to get Unbound DNS working again by picking my tier 2 WAN only in "Outgoing Network Interfaces". When this was set to the recommended Any or if I checked both WANs, DNS did not work.

Is this a bug? I have Opnsense 19.1.4

I thought Unbound DNS would send requests over both WANs. It seems like the wrong approach to fail when I am using Multi-WAN. Should I not use Unbound DNS if I have Multi-WAN?

(Interesting observation: I often have partial failover of WAN due to high packet loss almost every day, but it took a rare complete failure to see this problem. I think Unbound DNS always uses the top tier.)

เว็บแทงบอล
#2
General Discussion / What Switching from KPN PPPoE to IPoE
September 02, 2019, 05:36:43 AM
My fiber provider in Holland (KPN) offered me a free upgrade from 100Mb to 200Mb, but told me I need to switch from PPPoE to IPoE.
Current situation: WAN is PPPoE, getting first IP automatically from my /29 subnet from provider, and configured the remaining IPs as an alias, working perfectly fine. LAN is on 192.168.1.0/24.
As I was unfamiliar with IPoE I started looking around and read everywhere I should just change the WAN type to DHCP and asked KPN for confirmation for that.

To my surprise they told me it was quite different and gave me a example config for Cisco looking quite strange to me. This was the only example they could provide. The Cisco config they gave me seem to tell to configure the WAN on a static IP in a different /30 subnet (calling it a "interlink subnet") with a gateway in that same subnet and configure my current /29 subnet on the LAN side...

!## Guide, instelling IPOE met Cisco Router.
!## Poortype kan afwijken
!-------
!------- WAN poort ----
!------- interface GigabitEthernet0/0/0 description Connection to WAN ip address 145.54.111.62 255.255.255.252 speed 100 duplex FULL MTU 1500
!
!
!
!-------
!------- LAN ------
!-------
! interface GigabitEthernet0/0/1 description to Customer LAN ip address 31.149.115.137 255.255.255.248
!
!
! ip route 0.0.0.0 0.0.0.0 145.54.111.61
!
แทงบอล
That looks ridiculous to me, as I don't want my public IPs on the LAN! And I also don't want to buy a another router to put in front of OPNsense so I could use my public IPs on my OPNsense WAN.
Any idea how to configure this right on the OPNsense WAN interface? Could I probably just use the /30 subnet as suggested as primary and configure the /29 as aliases on the WAN also?
Anyone familiar with IPoE in general and/or KPN setup in particular?

Regards,

Julian
Pages1