Messages

I got it working in 5 minutes by installing PIhole and using their override DNS option.

It's insane how scuffed OPNsense feels...

Anyway, it's all good now, I hope the load balancing doesn't suck and works. Because that is the only option I need that my current router doesn't support.

Thank for the help.

Re the OP's post - sounds like a classic NAT reflection issue. This can be fixed under Firewall>Settings (and make sure your port forwards are not overriding that)

I tried to enable all the options, it didn't change a thing.

1) Reflection for port forwards
2) Reflection for 1:1
3) Automatic outbound NAT for Reflection


The nat option from the port forward rule I made is set to "use system default", I tried to set it to "yes" or "no", it didn't change anything.

Is there a way to properly troubleshoot this situation ?

Edit : I also try to set the "split dns" option (OPNsense calls it "Overrides"). I simply put a wildcard entry "*" and add my domain, to point to my nginx reverse proxy IP (local IP). Didn't change a thing.

Hello,

Sorry about the title, I have no idea how to phrase my issue properly. I'm new on OPNsense and I'm trying to add it to  my current, very basic, setup.

My issue is very simple and I'm sure very easy to fix, but I couldn't find the option nor formulate properly the search keyword to find any related topic (I'm a noob, don't know the exact words for all the things yet ^^').

--

I have multiple virtual machine on a Proxmox host. I have a NGINX reverse proxy to deal with the internal port forwarding and the https certificate). It's working like a charm without OPNsense, of course.

When I add OPNsense and setup the port forwarding rule for my reverse proxy VM, I can access the all the others VM content via their DNS when I'm outside my LAN (from my phone on 4G), but I can't reach them from my PC on the same lan. The connection times out (took too long to respond).

My port forwarding rules : see attachment 1
The firewall rules (automatically created) : see attachment 2
My current wan/lan setup : see attachment 3


The "443 rule" is my nginx reverse proxy (192.168.1.105). And everything is working when I'm outside my LAN (I also tried from an other ISP connection, and it's working). It simply doesn't work when I'm inside my LAN, and I can't find the option that will make it work (I can smell it ! It's one checkbox to tick ?!? :D).


Any help would be appreciated, sorry again if this is an obvious thing. I couldn't find a way to properly formulate.


TL;DR : My dedicated nginx reverse proxy is working outside my LAN, doesn't work inside my LAN (connection times out).