1
24.7 Production Series / Re: Web access to OPNSense
« on: August 01, 2024, 09:30:55 pm »
Do not do this.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
22.1 Legacy Series / Re: shutdown not working after update from 21.7.8 to 22.1
« on: April 18, 2022, 01:52:07 pm »I had a similar problem a while ago on older versions.
I fixed it by:
System > Settings > Miscellaneous
And then disable all of the periodic backups:
Periodic RRD Backup > DISABLED
Periodic DHCP Leases Backup > DISABLED
Periodic NetFlow Backup > DISBALED
Periodic Captive Portal Backup > DISABLED
Reboot and the now shutdown and reboot worked great.
This fixed the issue for me as well. I tried to disable all except DHCP lease backup, rebooted, and the lockup still happened. My DHCP server(s) are disabled on OPN. Perhaps that is the cause of the issue? OPN is attempting to backup something that does not exist and just hangs instead of timing out?
3
Virtual private networks / Re: WireGuard - adding peer with 0.0.0.0/0 causes loss of WAN
« on: March 25, 2021, 12:12:37 pm »On the Server side when you add endpoint, only enter the remote Tunnel IP with /32 there. On endpoint itself you can add 0.0.0.0/0 as allowed ip
I found this to be super unintuitive with WireGuard. This exact thing caught me at first, too. When shown the correct way to set the configuration, it makes sense. To make things worse, there's a ton of misinformation out there.
4
21.1 Legacy Series / Re: LAN static routes not returning internet traffic
« on: March 23, 2021, 12:02:36 am »
L3 networks (multiple routers, multiple networks) - OPNsense - Internet
The issue was lack of outbound NAT rule. Once I created an outbound NAT rule with all of my static routes, it started working. I actually used an alias to include them all in one rule.
The issue was lack of outbound NAT rule. Once I created an outbound NAT rule with all of my static routes, it started working. I actually used an alias to include them all in one rule.
5
21.1 Legacy Series / LAN static routes not returning internet traffic
« on: March 22, 2021, 03:32:07 pm »
Greetings,
I have a routed network on the LAN side of my OPNsense box. There are multiple routers on this network, and they all use the single OPNsense box to get to the Internet via the LAN interface. Naturally, this doesn't work out of the box, I need to set up static routes.
I made another gateway, the address is the router that's upstream of OPNsense on the same /24. All created static routes point to my newly created gateway.
From my "remote" network, I can ping to my OPNsense box.
From my OPNsense box, I can ping to my "remote" network.
From my OPNsense box, I can ping to the Internet.
From my "remote" network, I cannot ping to the Internet.
Looking in the firewall rules, nothing is being blocked. I can see traffic passing coming from my IP address, but it is not returning (not showing up in the firewall logs).
What am I missing? I'm a pfSense convert (you can guess why), and this exact setup worked fine on pfSense. It has to be something that's not automatically configured and I just don't know what it is.
I have a routed network on the LAN side of my OPNsense box. There are multiple routers on this network, and they all use the single OPNsense box to get to the Internet via the LAN interface. Naturally, this doesn't work out of the box, I need to set up static routes.
I made another gateway, the address is the router that's upstream of OPNsense on the same /24. All created static routes point to my newly created gateway.
From my "remote" network, I can ping to my OPNsense box.
From my OPNsense box, I can ping to my "remote" network.
From my OPNsense box, I can ping to the Internet.
From my "remote" network, I cannot ping to the Internet.
Looking in the firewall rules, nothing is being blocked. I can see traffic passing coming from my IP address, but it is not returning (not showing up in the firewall logs).
What am I missing? I'm a pfSense convert (you can guess why), and this exact setup worked fine on pfSense. It has to be something that's not automatically configured and I just don't know what it is.
Pages: [1]