Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - em.tie

Pages1
#1
25.1, 25.4 Production Series / Re: Port Forwarding Not Working
March 23, 2025, 06:17:59 PM
Hey Patrick,

my setup is like this:

internet <-> Fritz!Box <-> OPNSense Cluster (WAN) <-> networks
             192.168.55.1  192.168.55.80

on the fritzbox side of things it is like that



Thanks for your support
#2
25.1, 25.4 Production Series / Re: Port Forwarding Not Working
March 23, 2025, 10:35:54 AM
Hi,

is that what is needed?

Screenshot of port-forwarding


screenshot of the firewall rules
#3
25.1, 25.4 Production Series / Re: Port Forwarding Not Working
March 23, 2025, 10:12:16 AM
Dear all,

I am a longtime opnsense user as well. Since the update to version 25.1.3 my portforwarding does not work any more. I have 2 opnsense firewall machines running in high availabilty mode each running on a virtual machine virtualised by proxmox ve. I cant find anything in the logs so I would be very thankful for any hints on things I can provide or test to help solve the issue.

Thanks in advance.
#4
High availability / CARP and WireGuard
December 15, 2021, 10:52:21 AM
Dear All,

I have "upgraded" my single opnsense box to 2 opnsense boxes. Before upgrading I had wireguard running as VPN solution. With my 2 new boxes which are running in CARP / HA Mode wireguard seems not to work although I have followed the documentation. I have read a bit and found out, that in ha mode wireguard does not work. Is there a way to get wireguard working even it does not work with ha?

For clarification I have the following configuration / rules / etc.

WAN Router -> Fritzbox 192.168.1.1
opnsense1 (WAN) -> 192.168.1.10
opnsense 2(WAN) -> 192.168.1.11
opnsense carp (WAN) -> 192.168.1.20

internet -> WAN Router (fritzbox) with Portforwarding to opnsense carp -> opnsense 1 +2 -> LAN / ...

Firewall Rule on WAN Interface:

Interface - WAN
Direction - in
TCP/IP Version - IPv4
Protocol - UDP
Source - any
destination - WAN Address                                 ### is this right? should it be carp address?
destination port - WireGuard Server Port

Firewall outbound NAT

Interface - WAN
tCP / IP - IPv4
Protocol - any
source - WGUA Network        ### this is the created interface for wireguard according to the documentatino
source port - any
destination - any
destination port - any
Translation - CARP IP WAN Interface

WireGuard on opnsense 2 (backup box) -> Disabled


Thanks for any hints!!!

cu em.tie
Pages1