Messages

Finally got my OPNSense box and connected it. I ask you for help after hours of fruitless testing, internet access is not working correctly.

Google can be snappy, but clicking links result in loading for a long time, usually result in "we're having trouble getting this site". After ca 5 seconds it may reload and get the site, often without loading the whole page

This is via ethernet cable to LAN interface on this box(but same via wifi connected to same interface):
https://teklager.se/en/products/routers/apu2e4-open-source-router?

Variables tested:
Firefox, Chrome, Edge
Unbound enabled/not enabled, with/without forwarding(and Google DNS set), with/without blacklists

If I had to guess, firewall is somehow to blame. I tested traceroute from the menu and it worked sometimes, other times not.

I have two VLAN's on WAN as I need to split what comes from a fibre media converter(IPTV is VLAN 101, internet is 102). Any hints/tips on what/how to test further greatly appreciated.

Thank you for helping out!

I agree on your solution, an own physical subnet would have been ideal. For various reasons I do not want to have a physical unit on the first floor, but I think a wifi router that can handle VLAN will be the solution. I plan to aquire a used RT-N66U and to this basically:
https://netosec.com/setup-wi-fi-vlans-with-tomato-on-rt-n66u/

Thank you. Does this mean I can make VLANs ni OPNSense and wifi ap can use them even though the wifi router itself doesn't support VLAN natively? It seems even DD-WRT wont help because of the chipset:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=319629&sid=46482defb628484c11fcb9eff36062c6

Hi

I want to set up OPNSense as first line of defense for our house. As of now the setup is as follows:

fibre in --> media converter --> ZyXEL 2012 router/wifi ap provided by ISP

I am going to replace the ZyXEL with a custom built(teklager.se) unit running OPNSense. To this I will connect a WRT1900ACS, possible running dd-wrt, but not sure if I really need that when I have OPNSense.

My goal:
Separate subnet for me and my family that is not accessibly for anyone else(MAC address filtering perhaps?)
Guest network and/or another separate subnet for tenant living on the first floor.

I know I can setup guest wifi in WRT1900ACS, but it seems better to let OPNSense handle this. I may be wrong.
I see OPNSense have captive portal, that seems really nice:) Never used OPNSense before, but played quite a bit with IPFire and dd-wrt/tomato.

In OPNSense, is it possible to handle traffic from one subnet/range of ip's/other criteria different? Ie if traffic is from tenant, pass it through, otherwise do all the cool shit:)

He will probably appreciate it(less ads, security..), but I feel reverse proxying someones traffic without them agreeing is not ok, so I have to plan for him disagreeing.

Tips welcome!

PS: reading docs, this software seems great, looking forward to play with it.

EDIT: WRT1900ACS does not support VLAN as far as I can tell