Messages

1

22.1 Legacy Series / Re: All traffic from LAN blocked after upgrade to 22.1

« on: February 10, 2022, 01:48:23 pm »

Sounds similar to what we are seeing on a Jetway board with Intel AT211 NICs. No traffic, no nothing.  Pretty much useless build of 22.1.  Rolled back to 21.7.8.

2

22.1 Legacy Series / 22.1 No Network - Jetway JNF9HG-2930

« on: February 07, 2022, 06:29:09 pm »

Hi,

Upgrading to 22.1 on a Jetway JNF9HG-2930 kills the appliance.  Anyone else seen this happen?

Intel i211AT chipset on this board so should be supported by FreeBSD 13.0.

Haven't had time to do any further investigation yet.

BL

3

20.1 Legacy Series / Public IP DMZ NAT

« on: May 12, 2020, 05:43:13 pm »

Hi,

Our DMZ has a range of IP addresses (a /27 subnet) which are public IPs rather than private IPs.

We have needed to move that Subnet onto a VLAN (tagged 121).

OPNSense is running as a HA environment with two firewalls sharing the virtual IPs via CARP.

There's a manual Outbound NAT rule for NO NAT from the DMZ net (to override the automatic NAT rule) and a firewall rule allowing certain public IPs to access the DMZ addresses.

Inbound traffic to the DMZ is appearing on the DMZ VLAN interface.

Outbound traffic from the DMZ net isn't appearing on the VLAN interface but on the LAN interface and dropped by the default drop rule.

It looks like the VLAN traffic isn't being tagged but we know it is from packet captures.

Anyone got any ideas as to why it isn't showing on the VLAN interface?  Other LANs and VLANs are working fine.  Just not this particular VLAN with the no NAT needed.

Scratching head a bit...

4

Tutorials and FAQs / OPNSense logging via Filebeats Tutorial

« on: April 19, 2020, 05:40:13 pm »

Hi,

Anyone got a good setup guide for setting up OPNSense logging to Elastic Cloud via filebeats?  Even the Elastic tutorial seems a bit crappy.

I've got beats installed on OPNSense but that's as far as I've got.  Any ideas?

TVM,

BL