Messages

Hello @lilsense
Actually, the Cisco Switch 3850 is doing inter-vlan routing already, so that's not a problem for now. I wanted to use Policy Based Routing on this Switch to route VLAN 22 traffic to OPNsense and then do another config on OPNsense to forward those traffic to my ASA Firewall, which helps to out into the Internet.

What is confusing is how I set routing on OPNsense to forward back traffic to VLAN 22 on Cisco 3850, secondly, I am thinking to use OSPF between the ASA and OPNsense, since OPNsense will be connected to both ASA and Cisco Router in the future.

[Currently]

@lilsense Thanks for replying

I am afraid that I might over-explain the structure of my network,

Currently:

Cisco 3850 Switch is inter routing the VLANs and is directly connected to the Cisco ASA Firewall (Via OSPF) and connected to Cisco Router (Used static route). I am not using OPNsense for all traffic right now. The current connection of those devices (Cisco Switch, Router, and ASA) is denoted with a dotted line.

What am trying to achieve
I wanted to add an OPNsense device in between Cisco Switch and the Other two Cisco Devices (ASA, Cisco Router)
Since I don't want to interrupt the current network I only wanted to test OPNsense with VLAN 22 which is configured on Cisco 3850 and my laptop is on VLAN 22.

What I have tried so far
I used Policy Based Routing on Cisco 3850 switch to send traffic sourced from VLAN 22 to be forwarded to the OPNsense Interface. The moment I applied that I couldn't connect to the OPNsense web admin. Therefore should I do another routing on OPNsense to forward traffics back to Cisco Switch 3850?

Hello friends
I am having a hard time configuring an OPNsense to accept traffic on LAN Interface and forward them to the WAN interface. It's been a month since I started trying to set up OPNsense, please help me out.
Here is a network structure



I wanted to route traffic to the OPNsense server from Cisco Switch 3850, specifically, VLAN 22-based traffic from Cisco Switch to 3850, and then I want to send the traffic from the OPNsense server to Cisco ASA which is a gateway for my Network.
Can someone please guide me with this setup? I tried policy-based routing on Cisco Switch 3850 and couldn't reach the OPNsense server to configure it through the web.

Thank you.

@HamiltonWDS, Thank you so much for your point. Let me clarify the structure of my network and how am trying to implement filtering of traffic from LAN before they reach the Cisco Firewall.


As you can see in the picture, currently, I am just testing OPNsense by connecting the LAN side to Coreswitch (Cisco 3850 on different VLAN) and the other interface to the ASA Firewall as WAN. I didn't want to interrupt the current connection, therefore, I just connected WAN side of OPNsense to a different interface on Cisco ASA.
The routing between the core switch and ASA is been made with OSPF, after that on Cisco ASA both NAT and the static route have been done for that to access the internet. My current idea is to route traffic of some VLAN to OPNsense from the Coreswitch, and then forward traffic to Cisco ASA to access the internet. Therefore do I need to do some routing on OPNsense itself for the WAN and do another routing staff on the Core Switch to route traffic to OPNsense from different VLANs?

Thank you

Hello everyone

I am new to OPNsense and the community, I am glad to be here.
I am trying to use OPNsense as gateway to all my local VLANS. The following is the simplest way of expressing it with pic:

Currently what I have tried so far is, I connected G/0/1 interface of OPNsense server to the Cisco Coreswitch [as LAN], and Connected G/0/2 interface of OPNsense server to Cisco ASA 5525 [as WAN]. In this case Cisco ASA is the one connected to EPON and gateway to the internet.

Since am just testing for now, I used VLAN22 as example and set a LAN IP of OPNsense server as gateway to dhcppool for vlan 22 in Core Switch, so that end devices uses or pass through OPNsense server [my thoughts].
The problem is I couldn't see a right output from traffic analyzer on OPNsense when I tried to download some huge files, while I was downloading with 1MBs the analyzer shows still in KB. In my understanding the analyzer could only shows me the LAN traffic right?

The ultimate goal of mine is to direct traffics from core switch to OPNsense and from OPNsense to Cisco ASA. Do I need to do some routing on OPNSense to do that?

Thanks