Messages

What does a ping from a slow client to 1.1.1.1 and at the same time to another LAN device say ?

Thanks for the reply.

On Phone:


From Laptop

What about shopping here for business appliances?

https://shop.opnsense.com/dec3800-series-opnsense-rack-security-appliance/

Are there any US based vendors you recommend?

Here is my setup:

arris cable modem -----> Protectli (opnsense) ------> Orbi 6 as an AP ----->another Orbi Satellite
Cable internet 200mb/s

I'm noticing some weird wifi issues.
On my android, it's like it's delayed. I'll open a page and it will take abit longer.
Also, apps sometimes time out and then I'll re-open and they are fine.

After looking at the forum, I did the following:
1. Deleted ipv6 gateway
2. disabled anything ipv6
3. Disabled sensei

That's about it so far and the issue still persists.

My laptop wifi is fine for the most part.
I have a smart screen device in the bedroom that will occsionally drop internet.

I'm not a big home, 1400sq apartment. Prior to opnsense, I had orbi 6 as the main router and the satellite. Never had these issues so it's some configuration.

Any ideas?

my gateway and dns settings

[access needs]

Any suggestions on best practices to separate the devices?

I would separate the devices in some categories by access needs and by trust.
And then create groups out of it by finding the right balance between simplicity and the security level you want to achieve.

• does only need connection to internet. No connection to or from other devices. (e. g. IoT, guest devices)
• Connection to or from other devices required
• sensible devices worth to protect (e. g. server)
• trusted devices (e. g. PC, phone)
• untrusted devices (e. g. guest phone and PC,
• required connection speed (routing PC to NAS might be slow)
• ...

I personally do not separate wired and wifi devices. As my wifi AP can handle multiple SSID and VLAN I use only one network (VLAN) for wired and wifi devices of the same category.

Thank you! This makes sense to me. I'm going to try this weekend

What about shopping here for business appliances?

https://shop.opnsense.com/dec3800-series-opnsense-rack-security-appliance/

That's an idea  ;D ;D ;D

Those look interesting. I'm wondering which would be better suited for my needs.
I'm assuming the base or 2nd option?

I recently purchased a lower protectli device for my home network of about 30 devices. Works great and I am having a fun time experimenting with opnsense.

Looking to get another protectli for my office which has many more devices:

20 ip cams
15 VOIP phones
20 pc workstations
5 network printers

2 24 port switches
8gb?16gb? or more?
120gb HD

Any other suggestions are appreciated

I've got the following:

• LAN (PC, NAS with private data, Laptops when on Ethernet)
• RLAN (restricted LAN: smart TV, sockets for guests - no access to my NAS or building control)
• BCS (building control system = KNX, photovoltaics, alarm)
• DMZ (externally reachable DNS, Web and Mailserver)
• private WLAN (just like LAN)
• IoT WLAN (Echo Dots...)
• TV WLAN (separate to allow for bandwith control)

Nice setup!
Curious about the RLAN. Is that setup through opnsense? Just a VLAN?
I have all my IoTs connected to my guest account. I don't think my Orbi has the ability to create more than 1 guest wireless. What type of wireless point are you using that does this?

I've got a basic set up and am experimenting with opnsense on my home network.

arris cable modem -----> Protectli (opnsense) ------> Orbi 6 as an AP ----->another Orbi Satellite

So far everything works.

On my network I have about:

3 Smart TVs
1 laptop
3 smart thermostats
4 smart speakers
1 gaming system
1 tablet and mobile

Any suggestions on best practices to separate the devices?

I'm reading about VLANs?

Eventually I want to do this in my office as we have cameras, voip phones etc.  So any soft of advice on how to segment my network is appreciate.

Sorry I'm new to all this an learning.

Thank you so much!

So, I had to play around with the settings a bit.
Since unbound is running, I had to change those settings. I used this post and my DNS leak test now shows I'm using OpenDNS  ;D

https://forum.opnsense.org/index.php?topic=8505.0

Thank you so much though for your help! My first opnsense achievement, haha.

[Question 1:]

Hi All,
I'm 100% new to networking and OPNsense. Sorry for the noob questions.
Before I deploy a box to my small business, I'm experimenting in my home.

So far, I've installed opnsense on a protectli device. I have my network open with most of the default configuration.

It goes:
My arris cable modem -----> Protectli (opnsense) ------> Orbi 6 as an AP ----->another Orbi Satellite

My goal is to learn to configure the box on my home network and then I'll get another more robust one for my office.

I'd like to:
1. block a majority of ads
2. set up a vpn
3. Seperate my IoTs to their own group. (I think a VLAN?)
4.Setup my IPS

So, I found a tutorial which seems pretty easy to follow ( https://forum.opnsense.org/index.php?topic=6893.0 )

Question 1:
Gateway confusion  :o
I have two Gateways (apparently). DHCP6 and DHCP

I recognize my ip from my ISP (WAN)



Is that normal to have both?

2. DNS Confusion

At initial setup, I used
1.1.1.1
8.8.8.8
I'm changing them to OpenDNS and AdGuard
I have them in my configuration but I didn't select a gateway to apply to it.
Do I chose the ISP's gateway?



Sorry for the super basic questions. Hoping to learn as much as I can and of course share what I've learned to someone else someday.

Thanks!