Messages

1

General Discussion / Re: Guidance on new lan set up

« on: February 09, 2024, 08:32:06 am »

Thank You for your reply

therefore. if i understand you correctly,

Once I change the NIC on the dell to accommodate 2.5 and 10gb connections and build my VLANs on OPNsense

I would then connect my servers to a 10gb lan port  each and this would be VLAN10 for servers
Connect to a 2.5gb port my access points (2) and call this VLAN20
Connect my Managed switch to a secondary 2.5gb port of the OPNsense server this will be Vlan30   

i will need to change my GS724T  to a similar managed switch because it does not have 2.5gb capability and connect Vlan20 and vlan30 assign ports from this switch and via cable connect to regular dumb switches (with 2.5gb) in each room. Then all my devices in this room will connect  to the dumb switch in that room.


My IOT devices and friends will connect to the guest point on my access points   

From a  high level view does this work and  makes sense?

Thank you

Replicate the VLANs on this switch and connect my HTPCs 

Then connect each room   

2

General Discussion / Guidance on new lan set up

« on: February 07, 2024, 10:49:16 am »

Hello all

I have been tinkering with OPNsense on or off for the last year.


I have OPNsense running (in a vanilla configuration) as a Proxmox VM on a dell r720 and for learning ant trying it out it runs perfectly.

The R720 is then connected to a managed switch (netgear GS724t) and I will my use 2 older ausus routers as wifi access points. These access points all have guest network access control> simple

I have:
2 servers running truenas
2 PCs
2 HTPC
and 2 tablets (running  Home assistant dashboards)
100mbps service from my IP provider 

No Vlans or anything else for that matter (i'm now learning on how to configure vlans and firewalls rules)

 Now is the time that i will deploy it on my network.

This will mean moving the rack to my loft.


The HTPCs the TV, AMP and the PCs to a new local 2.5 gb switch In 3 rooms)  all swithwes will be connected with 6E directly from the OPNsense environment  (the HTPCs will have new NIC installed)

Since the time i started to learn and tinker with OPNsense technology has advanced to the point that I will take this opportunity to upgrade and improve my LAN environment.

My 2 objectives are:

• increase my lan from 1gb to 2.5 gb for my PCs
• Connect my server with a 10gb connection between them and have a 2.5gb access for the PCS
• Allow remote access to my music (Jellyfin) and document environment (considering Tailscale) for myself and a few others

To achieve this, i will need to add/replace my NIC on the r720, the HTPC and some PCs to allow 2.5 and 10gb lan


My question


If i construct VLANs on OPNsense, do i need to connect OPNsense to a smart switch?


or Can i just connect the r720 to simple switches and then connect all my devices to the local switch




Thank you so much for your patience, guidace and help in this matter

3

General Discussion / wifi connectivity and integration

« on: July 27, 2023, 01:38:14 pm »

Hello all

I'm new to OpNsense.

I will use this solution as mu main router and firewall for my home environment

I installed in Proxmox on a dell r720. At the moment OPNsense is not operational because i'm still learning.  i plan to make it my main router and firewall solution by end of August.

In addition to OPNsense the Proxmox on the dell R720 will have as VMs Home Assistant and Tuenas

I need to have wifi functionality for Home Assistant to connect some devices

I currently run an Asus RT 87U as my main router and a DSL AC68U  as a wifi access point

I would also like to turn the RT87U in to an access point in september when i will go live with OPNsense

These 2 access points are connected via wireline to each other at the moment and at a later date to proxmox

My questions:

When i will make OPNsense my main router in September, will i need to add to the proxmox server a USB dongle with a wifi capability?

Or will OPNsense and all other VMs on the same proxmox server will serve wifi access point for for the server?

Or will i need to passthrough the wifi USB to Home Assistant 

Many thank for your patience and help in this matter.

Be all well

4

General Discussion / installing a wifi 6 USB

« on: May 24, 2023, 06:01:24 pm »

Hello all


I have currently installed OPNsens 2.7 1.11 as a VM on Proxmox  on a DELL R710 for home use

I have been learning OPNsense and I added it as a VM on proxmox 7 late last year. As far as i can tell all is working well with no issues. I later added Home Assistant OS as a vm

Now the time has come to make OPNsense my main router for my house.

I would like to add a wifi 6 USB and wifi powerline repeaters to this mix.

1) would this be possible/make sense or work?

3) would i need to pass it through from proxmox to OPNsense and Home assistant

2) i see that a version 23.1 is available. however when i go to updates i do not see it available. How do i upgrade to this version ?  I can not see this upgrade ?

5

General Discussion / Re: opnsense install on esxi

« on: August 29, 2022, 11:43:54 am »

Hi

@pmhausen

thank you for your prompt reply. I will re-install opnsense as you directed

Hence my understanding
add a virtual disck to the VM
add the iso to that disk
Install

Once installed
stop the vm
edit the vm by
remove the virtual disck from the vm... save
power on the vm

brilliant

BTW i will move to this opnsense solution in november. the ml350 has only 2 rj45 connections.

in your opinion:
should i buiuld my vlans in opnsense * i would need too buy a 4 port nic
or
should i use the 2nd rj45 and connect it to the gs724t that i use as a switch and build the vlan on the switch?

once again thank you

6

General Discussion / opnsense install on esxi

« on: August 29, 2022, 07:16:47 am »

Hello all

I'm new to opnsense and i'm not an it guy

My Current setup
Router: asus rt ac87u with ip 192.168.1.1

I was gifted an HP ml 350 g6 with vmware 6.7 installed.... great (btw i know nothing about vmware and i'm learning as i go)

I set up opnsense according to youtube video i saw.

opnsense will boot up and give me an ip 192.168.1.1 great

I login as root and opnsense selec 2 to change the ip to 192.168.1.5

I go to the GUI at that address and configure OPNsense in a vanilla configuration great.
( i do not want opnsense to be my main router for the moment or anything else until i know what i'm doing.

Once this is achieved i will make opnsense my main router and my asus  as an access point)

my issue;

When i login to opnsense via a web page and i configure it, I then go to the dashboard. I see a message thast i'm running on a installation media and i should reboot. Fine

in the vm it does reboot

when it finishes it presents to me ther original ip address 192.168.1.1  why?

I changed the lan ip in the configuration in the gui and in the shell in option 2
what am i missing?
thank you in advance for your help

7

General Discussion / Re: Install Issues

« on: August 28, 2022, 10:21:51 pm »

Hello all

I'm new to opnsense and i'm not an it guy

My Current setup
Router: asus rt ac87u with ip 192.168.1.1
I was gifted an HP ml 350 g6 with vmware 6.7 installed.... great (btw i know nothing about vmware and i'm learning as i go)

I set up opnsense according to youtube video.

opnsense will boot up and give me an ip 192.168.1.1 great

I login as root and opnsense selec 2 to change the ip to 192.168.1.5
I go to the GUI at that address and configure OPNsense great.
( i do not want opnsense to be my router or anything else until i know what i'm doing. Once this is achieved i will make opnsense my main router and my asus  as an access point)

my issue
When i login to opnsensean i configure it and then go to the dashboard. I see a message thast i'm running on a installation media and i should reboot. Fine

in the vm it does reboot

when it finishes it presents to me ther original ip address 192.168.1.1  why?
I canged the lan ip in the configuration and in the shell wehat am i missing
thank you in advance for your help

8

General Discussion / Re: cannot access internet

« on: July 26, 2020, 12:08:33 pm »

no worries solved

9

General Discussion / Re: cannot access internet

« on: July 22, 2020, 04:51:20 pm »

hello all

10

General Discussion / cannot access internet

« on: July 22, 2020, 04:42:00 pm »

hello all

I am a newbie at opnesens. I managed to install it on a dell r710.

This is a vanilla installation. No vlans no firewall.

opnsense lan is connected (192.168.1.2) to a dumb switch and i do see the other attached devices

from my pc which is in an other room i can access the opnsense server

my wan is set to ppoe with username and password from eolo (ISP) mtu 1500

the dashboard gives me messages than wan is up and displaying ip addresses from the isp
lan 192.168.1.2
wan 100.119.92.52  (i think this is an ipv6 address) how do i change it?
wan-gw 81.74.xx.xx.

the DNS i tried with 8.8.8.8 and with the DNS server address supplied by the ISP to no avail

I can ping www.yahoo.com and googlw .com with success

Yet i cannot access the internet from other devices

this solution is still in development phase. i still need to purchase the necessary smart switches and more powerlines

 
what am i missing?

Thank you

11

General Discussion / Re: noob of noobs need help in configuring and placing

« on: July 05, 2020, 12:47:47 pm »

hello all

i spent the last week fixing the server that arrived damaged. Now its up and running and i installed opnsense on it.

I spent a lot of time designing on paper what my lan. After reading  documents and youtube videos I would look like to know if my version 8 i  which i wanted to upload my drawing to this message (because a picture equals 1000 words) to no avail because its too large. I also posted on forums for tp link d link and netgear but no response from them.

to recap

i would have
my main lan 192.168.1.x To Connect all my computers and servers
Vlan 20        192.168.2.x  to connect my 2 APs
Vlan 30        192.168.3.x  to connect my IOT

I will assign vlan 20 vlan 30 and main lan to a port in opnsens connect this port to the loft main smart switch

In the Loft main smart switch I build the same vlans.
to on trunk on the switch i assign vlan 20 vlan 30 and main lan to this trunk i will connect the powerline
to an other port on the managed switch I assign Vlan 20 and valn 30 (to connect the AP) which will have Home and guest networks and i will also assign to the guest network to the wireless projector. Here i still have my doubts.
to an other port on the managed switch i assign vlan 30 *to connect my home automation solution)
to an other port on the managed switch (this will be untagged) i will connect my servers (192.168.1.x) via a switch

now to the powerline connected to the loft smart switch i connect
1 pc via powerline in the office (192.168.1.x)
1 pc via powerline in the bedroom (192.168.1.x)
1 pc via powerline in the barn (192.168.1.x)

Living Room
1 powerline connected to local managed switch which has vlan 20 assigned to a port  to which i connect an additional AP,  vlan 30 assigned to a port to which i connect the tv and to an un-tagged port i connect the local HTPC

Home Theater
1 powerline connected to local managed switch which has vlan 30 assigned to a port  to which i connect  connect the Denon  and to an un-tagged port i connect the local HTPC

I hope this is clear enough to allow you to please provide me with your opinion or recommendation on this design.

I thank you all in advance for all the help you are providing me

12

General Discussion / fresh installation

« on: June 29, 2020, 07:39:57 pm »

hello all

I am a neophyte at opensense.

after a weekend spent to build and configure a dell r710 and after spending time to properly have the usb port read my usb, i finally got to install opnsene 20.1 on a 1tb hd.

Now I have the server boot and go straight to the opnsense script

I know nothing about opnsense and i am learning from the installation guide and the videos on youtube.

I did not assign lan or wan during the scipt.  The server is connected to one port of the NIC.

I do not want to use this server as a router for the moment therefore i did not assign a lan address.. if i add a lan ip from the console menu I assign an on the console level i assign a  it as dhcp

issues

1) why during the boot phase of opnsense do i always get ask for credentials before displaying the console menu?

2) how do i stop this?

Thank you for your patience and response

13

General Discussion / Re: noob of noobs need help in configuring and placing

« on: June 25, 2020, 10:39:52 pm »

yes i agree with you however i read that if i put on the main switch a powerline on a untagged port and a second powerline on a trunk hosting the vlans the powerline effectively will consider this having 2 seperate networks

I wrote to d-link forum to ascertain that if i have my local laptops connected to their local powerline with their IP belonging to my private lan.

the main switch should be, once it receives the communication (regardless of the receiving powerline), to identify the sending IP and the sending mac address. from the packet and route it to the right destination based upon the rules for that ip address (or mac address)

The alternative is to put all vlans on one trunk connect to that trunk the powerline  and the the end of any powerline install a small manged switch. I would really prefer to avoid this because one of the laptops is in my room and the other in what was a barn that i converted into a summer kitchen and outdoor dining. This laptop only serves to play music when we are eating or drinking outside (like tonight)

14

General Discussion / Re: noob of noobs need help in configuring and placing

« on: June 25, 2020, 10:49:27 am »

thank you for this directive

I have checked my laptops (and because they are old) i do not have a VLAN ID option. however i do have a priority and vlan. clicking on this i have the option of priority and vlan enable, priority and vlan disable. vlan enable
and priority enabled.

i would agree that passing  an untagged lan would work. if i think closely to what you are saying it seems to me that i have 2 options.
to a untagged port i would connect one powerline for all my home network
and to a trunk an additional powerline for the vlans then the local managed switch will identify the untagged connection and the vlan connection. i would then assign the port on the local manage switch for that vlan

However, come next week i will install opnsense on the r710 configure it with lan on port 2 of the dell and connect that port to the main managed switch and leave everything as untagged and connect all the servers i have to that switch. and connect a powerline. This would replicate what i have today.

then i would replace the ac87u with and AP
step 1 connect all i have today with 1 ssid
step 2 build a gust network with a second ssid, develop a vlan for the wify and point this vland to the 2 powerline.

so essentially i would have 2 powerline connected to the main switch and for all those pc attached directly to the local powerline.

In this case all iot devices will either be connected to wifi or to a pc that is on a local managed switch and they will not be able to access the untagged network devices.

I truly believe that there is a simpler way to do this. in designing ver 3 of my possible network i come to realise that only 2 devices will be connected by wire to the network. my home automation unit this will be part of the iot and be connected to the main switch so in this case i could build a vlan for ito and assign the vlan to a port on the switch and connect the home automation device to that port. would it not be simpler to just connected to the untagged port and build a rule to control the access from that port. the other device which will be my denon av amp (used only as a preamp) and that will be connected to the local managed switch
 
once again thank you

15

General Discussion / Re: noob of noobs need help in configuring and placing

« on: June 25, 2020, 09:24:22 am »

thank you very much for the this clarification


Thanks to your patience and help i confirm my choice of opnsense.

I will then need to buy 3 more 4 port manage switches one foe each of the other rooms. could this not be achieved by setting the ip address of each laptop directly connected to a powerline to a static IP . then once the main switch sees its connection it will know what to do with it.

so if i am using my laptop in my bedroom i could assign it a 192.168.1.101 ip address and the switch would recognise it as part of my private lan?