Messages

1

General Discussion / TINC Interface MAC Address

« on: July 27, 2021, 01:02:48 pm »

Hi,

I have a TINC setup on two OPNSense appliances, I have successfuly initiated a connection between the two sites but I noticed that the one device has a MAC address of 00:00:00:00:00:00 assigned to the TINC interface. I can make up a MAC address and assign it in the interface settings but I would rather try and resolve why the TINC interface doesnt assign a MAC in the first place.

Any suggestions on this, I have removed/unistalled TINC completely and the rebooted the appliance, then re-configured but the MAC gets re-assigned as 00:00:00:00:00:00

Thanks.

2

General Discussion / Re: Edit Firewall Rules in CLI

« on: June 30, 2021, 06:49:58 pm »

Update and Solved.

I restored an older .xml config backup file remotely by overwriting the config.xml located in the /conf directory.

3

General Discussion / Edit Firewall Rules in CLI

« on: June 30, 2021, 02:24:11 pm »

Hi,

is it possible to edit a firewall rule from the command line? I am running OPNsense 21.1.7_1 and had an existing firewall rule allowing access to the Web GUI from a specific IP block, I then removed the iP block and made available publicly just temporarily, but now I cannot get back to the GUI. I do have SSH access though and I can see in the firewall log that all requests to my Web GUI port 8443 are being blocked.

I have restarted the router a few times in the hope the rule would flush but it seems my only option is to either restore a config file from backup or edit the rule via command line, but I dont find any instructions on CLI firewall editing.

Any help, much appreciated.

4

General Discussion / Re: NAT Troubles

« on: February 14, 2021, 08:21:39 am »

Thanks very much for the feedback, so I studied the docs and found my problem. I also reset all states and then rebooted the firewall, there had been many incorrect attempts to fix this.

So to recap I removed all the rules I had created all over the place, LAN, WAN Floating. Reset the states and then rebooted the firewall.

I then added two rules, one on the WAN - Outbound - Source LAN Net - Destination this Firewall.
Then on the LAN side added LAN - Inbound - Source Any - Destination Any

I can now ping and browse out from my LAN clients.

Thanks again!

5

General Discussion / NAT Troubles

« on: February 13, 2021, 09:03:52 am »

Hello,

I have a pretty straight forward setup but for some reason cannot get my LAN clients to reach the internet either via ping or DNS name.

The Setup:

OpnSense 21.1
Two interfaces WAN / LAN
WAN has a static public IP and I can ping, update, etc from the firewall out to the LAN. I can also ping my LAN gateway and clients within the LAN from the firewall.

I can't however from my LAN clients ping or reach the internet. I can ping the WAN gateway but nothing beyond the gateway.

NAT is set to manual with no automatic rule creation. My WAN and LAN firewall rules are included. I am pretty sure I am missing something on my rulesets, any advice would be much appreciated.