Messages

[all]

I'm posting a quick solution for those with a DNS failure using Policy Based Routing (or just VPN in general).

I set up a fresh opnSense install.
I set up a VPN per this tutorial: https://support.nordvpn.com/Connectivity/Router/1292598142/OPNsense-19-1-setup-with-NordVPN.htm
   The only deviation I have is on Step 13, for a PBR.  Instead of routing all LAN through the VPN, I set up a rule to only send a subset (addresses below 192.168.x.y/z)

I had all the same issues of others in which IPs not going through the VPN were just fine but those going through the VPN could ping and text, but not "connect".

After hours of searching, I came across this tutorial: https://homenetworkguy.com/how-to/configure-opnsense-firewall-rules/
I added a firewall rule for DNS (port 53) and put it at the top of my Firewall -> LAN -> Rules list.

Voila.  It's currently stable for me at the moment.

I'm new to opnSense (switching over from ddWRT/openWRT) but trying to do as much research into my problem as I can.  I doubt I'm the first with this configuration but I cannot find a solution in the forum or on the web for my issues below.

1) I have the basic opnSense v21 install.
2) I disabled IPv6 per this tutorial: https://www.thomas-krenn.com/en/wiki/OPNsense_disable_IPv6
3) I installed NordVPN per their tutorial: https://support.nordvpn.com/Connectivity/Router/1292598142/OPNsense-19-1-setup-with-NordVPN.htm
4) I clustered my media players and game consoles into a .224/27 cluster, created an alias for the cluster, then added a VPN bypass rule for the cluster and placed it first in my rules list per this tutorial: https://www.youtube.com/watch?v=ov-xddVpxhc

My Issues:
A) my Rokus now play Netflix/Amazon just fine, but won't play the youtube channel
B) my XBox One gives me a Nat Type: Unavailable issue

I'd be very thankful if someone could point me to any threads that may have covered these issues?