Messages

Hi,

I have a TINC setup on two OPNSense appliances, I have successfuly initiated a connection between the two sites but I noticed that the one device has a MAC address of 00:00:00:00:00:00 assigned to the TINC interface. I can make up a MAC address and assign it in the interface settings but I would rather try and resolve why the TINC interface doesnt assign a MAC in the first place.

Any suggestions on this, I have removed/unistalled TINC completely and the rebooted the appliance, then re-configured but the MAC gets re-assigned as 00:00:00:00:00:00

Thanks.

Update and Solved.

I restored an older .xml config backup file remotely by overwriting the config.xml located in the /conf directory.

Hi,

is it possible to edit a firewall rule from the command line? I am running OPNsense 21.1.7_1 and had an existing firewall rule allowing access to the Web GUI from a specific IP block, I then removed the iP block and made available publicly just temporarily, but now I cannot get back to the GUI. I do have SSH access though and I can see in the firewall log that all requests to my Web GUI port 8443 are being blocked.

I have restarted the router a few times in the hope the rule would flush but it seems my only option is to either restore a config file from backup or edit the rule via command line, but I dont find any instructions on CLI firewall editing.

Any help, much appreciated.

Thanks very much for the feedback, so I studied the docs and found my problem. I also reset all states and then rebooted the firewall, there had been many incorrect attempts to fix this.

So to recap I removed all the rules I had created all over the place, LAN, WAN Floating. Reset the states and then rebooted the firewall.

I then added two rules, one on the WAN - Outbound - Source LAN Net - Destination this Firewall.
Then on the LAN side added LAN - Inbound - Source Any - Destination Any

I can now ping and browse out from my LAN clients.

Thanks again!

Hello,

I have a pretty straight forward setup but for some reason cannot get my LAN clients to reach the internet either via ping or DNS name.

The Setup:

OpnSense 21.1
Two interfaces WAN / LAN
WAN has a static public IP and I can ping, update, etc from the firewall out to the LAN. I can also ping my LAN gateway and clients within the LAN from the firewall.

I can't however from my LAN clients ping or reach the internet. I can ping the WAN gateway but nothing beyond the gateway.

NAT is set to manual with no automatic rule creation. My WAN and LAN firewall rules are included. I am pretty sure I am missing something on my rulesets, any advice would be much appreciated.