Messages

1

Virtual private networks / Need a little help: VPN into Network without default gateway - NAT?

« on: June 11, 2021, 09:31:18 am »

Hi there.

I'd need a little help or a pointer to the right direction.

Setup:

Opnsense here
LAN 192.168.40.0/22
VLAN33 192.168.110.0/24
Opensense in VLAN33: 192.168.110.100

VLAN33 is set up for our companys production air conditioning systems: A large amount of AC compressors, valve controls, Siemens HMI/control panels etc.

The majority of these AC network devices does not have a default gateway set and we currently do not want ot set one. One Windows server in that network has the GW set to 192.168.110.100, however.

A 3rd party company managing these AC devices used to VPN into that VLAN 33 usting a Lancom/NCP client and an old Lancom 1711 router at our site.

That Lancom router and it's DSL line are gone, I set up an IPsec Tunnel that works perfectly using their Lancom/NCP client. They can reach VLAN 33 and RDP to the Windows Server.

The problem is:

They can reach the Windows server which has a default gateway set, but none of the gateway-less devices without a gateway, of course.

This is where I could need someone pointing me to the right direction.

Can I NAT the VPN client (coming from virtual IP 192.168.169.0/24) as if it came from OPNsense (192.168.110.100)?
Some kind of Proxy ARP?

I have no clue how the Lancom VPN router did this, I guess Proxy ARP.

Thanks in advance!

2

Hardware and Performance / Re: My new Hardware: Hunsn RM02 Firewall Appliance

« on: April 21, 2021, 03:42:34 pm »

Please send me a PM or mail, I'll add an image of your board to my site.

Unfortunately I didn't take any notes of my BIOS settings as everyting was set up well and worked out of the box.

3

Hardware and Performance / Re: My new Hardware: Hunsn RM02 Firewall Appliance

« on: April 21, 2021, 02:55:35 pm »

The reversed ethernet ports could be the result of the BIOS scanning devices in the wrong order.

Mine are in the "right" order: left most LAN1 = igb0 (blue), ..., right most LAN6 = igb5 (yellow)

I don't have a monitor plugged in at the moment, you could try to check your BIOS-settings, maybe you can find some settings related to PCI bus scanning and device order.

4

Hardware and Performance / Re: My new Hardware: Hunsn RM02 Firewall Appliance

« on: April 19, 2021, 11:28:34 am »

Here you go - an average of 5 measurements:

Off: 1,8 Watts
Boot: About 15,4 Watts
Idle, about one minute after the "I'm up"-beep: 13,6 Watts
Routing (1 GBit/s WAN-LAN): 18,4 Watts

I guess a few Watts could be saved by replacing the original Chinese power brick with a good better PSU.

Somewhen, maybe 

5

Hardware and Performance / Re: My new Hardware: Hunsn RM02 Firewall Appliance

« on: April 16, 2021, 08:22:53 pm »

Yes, I do have one.

Will do some measurements as soon as I can disconnect my VPNs and my wife has finished her university stuff. We're working remote from home for the last 2 years or so - at least that's how it feels...

6

Hardware and Performance / My new Hardware: Hunsn RM02 Firewall Appliance

« on: April 15, 2021, 11:36:40 am »

Hi.

After struggling for weeks - but not managing - to get my loved old APU2 to route a real 1GBps wire speed, I was looking for something more powerful - and found something.

Here is my (German) small Review of a "Hunsn RM02 Firewall" I ordered from China:



https://www.onderka.com/computer-und-netzwerk/hunsn-rm02-firewall-appliance

With subpages > images, > hardware and > serial port

If you have any hardware related questions or need an English translation you're welcome, of course.

Not affiliated, not sponsored.