Messages

[NAT]

I'm trying to migrate over from pfsense to opnsense and I am trying to get the VPNs to work. Basically what I do is at every router that has a pfsense box, I'll add a parallel opnsense router. Once I am able to connect my opnsense routers together successfully, I can just plug the switches into the opnsense routers.

So I followed a combination of reddit + Tailscale's opnsense guide to get Tailscale working on Site A. I am able to get a direct connection.
NAT

• from reddit: interface: tailscale, source: LAN net, NAT address: tailscale address, static port: no
• from Tailscale docs: interface: WAN, source: LAN net, NAT address: interface address, static port: Yes (do this for ipv4 and ipv6)

Rules
tailscale: pass everything


However, on site B, I was not able to get a direct connection. I did the same as above and I was able to get Tailscale to work but no direct connection. I tried the NAT-PMP and Universal Plug and Play and that did not work. On Site B, pfsense has Tailscale working. I asked the LLMs why Tailscale might work on pfsense but not opnsense and it explained something about opnsense having hard NAT while pfsense has easy NAT. Can anyone explain what I might be doing wrong or if there really is a different in the way that pfsense/opnsense do NAT so that it might be impossible for me to get a direct Tailscale connection?

edit: can delete this post
the problem was with sensei package - I removed it and my upload speeds returned.

I recently switched over from PFsense to OPNsense.

I'm using the same hardware that I used with PFsense - i5 8250u with 8gb ram.

I have a test server and client that I use consistently to test my speeds. Server has gigabit internet and client has approximately 40-50MB/s.

On my PFsense, I was able to reach open VPN speeds around 15-30MB/s and WG around 30-40MB/s.
I've set up WG in the same with using OPNsense but I'm only getting around 300KB/s.

I've followed various online guides and tested a ton of different firewall settings. None helped. I've left my settings following this youtube guide: https://www.youtube.com/watch?v=gNyIACWc60w

My best guess is that the problem has something to do with firewall settings - PFsense probably managed some of the firewall adjustments and I don't know how to fix this. I've tried all sorts of various combinations and nothing has helped.

Was hoping that maybe I could get some insight.

Currently my firewall settings are as follows:
No NAT port forward
No NAT outbound
Rules Floating Destination this Firewall, port, pass, UDP, any direction, source: any
No WAN rules
Interface setup WG0 and Rules for WG0 are pass, destination any, source any, direction in, protocol any

EDIT:
Never mind, the problem has to do with my upload speeds. For some reason OPNsense has limited my upload speeds to just a few Mbps. Not sure what's going on. My server can download from the client (who is uploading) fine.