Messages

I've just found another document, a Cisco one... not sure it's totally correct.


https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-6/chromecastDG76/ChromecastDG76.pdf. Interesting in they say you can cast to the chromecast, but not manage it.


Have you tried MDNS repeater? You can use it alongside UDPBR providing you don't use the same ports, mdns repeater uses port 5353 and 224.0.0.251

How would you run mdns and udpbr together? Would the ports need to be changed on udpbr? I followed your guide for casting from my phone to YouTube and it doesn't work for me. I'm using the exact rules you had for 5353 listening on the 2 interfaces one where the TV is and one where the phone is. Firewall is wide open for the TV to talk back to the phone.

The issue was the subnet mask on my blue iris server was set incorrectly by me to 255.255.255.255 interestingly when I was using unifi it never blocked it. The subnet should have been 255.255.255.0. It's working now.

I figured out the issues with the camera and I had my rules were messed up for IOT -> LAN traffic.

I am certain this issue is caused by something that is truly "default" that I can't find as I tried clicking on the rule Id link and it only works for rules I created meaning it doesn't take me to whichever rule is being invoked. It's bizzare that I was able to access the blue iris server from the IOT Vlan before I fixed the rule but yet on Lan it gets blocked. Obviously all subnet traffic should be allowed by default but that's not what's happening on Lan. I tried creating a rule on lan specifically for the server as a source and it didn't work. I tried creating a floating rule as that's the only area where there's a description of "default deny" and it didn't work there either.

I setup Opnsense today. I am running it on a protecli vault 4 port.
I have 3 networks.
LAN 192.168.1.0/24
VLAN IOT 192.168.4.0/24
VLAN IPCameras 192.168.2.0/24

I am running Blue Iris on LAN. My phone is also connected on LAN. Everything matches on the Unifi side for networks and VLANS. For some reason I am unable to access from my phone UI3 at 192.168.1.246:81

I have no LAN rules set other than the autogenerated rules which means it should be accessible but it is not.

I also have 9 cameras some wifi some ethernet. I have one that is connected over ethernet to a switch that has 2 others connected however this one has the stream dropping for a second or 2 sometimes 5. I have never had an issue with this camera before leading me to believe its a firewall issue. The others have no issues. I have the firewall rule that only port 554 (RTSP) and 80 (ONVIF) can come out of the IPCameras VLAN. I know the camera is not actually dropping offline as I tested it by being in the web UI and if it dropped offline the webui would be inaccessible. I can also see from the logs it is not restarting. My guess is there is something with the firewall filtering gunking up the stream. I read that someone disabled interface scrubbing and it fixed it for them. Under detailed settings I disabled that for IPCameras and it didn't help.

The error in the screenshot suggests it is a port issue as the username and password is correct or else it would not allow the stream in the first place. When I watch the logs live I see nothing out of the ordinary. It is allowing traffic between blue iris and the camera and blocks outgoing wan traffic.

https://imgur.com/a/7yxYhT5

It turns out there is a rule that I can not find anywhere on LAN blocking the traffic between the 2. 192.168.1.24 and 192.168.1.246 for some reason it is being blocked. Similarly the traffic between home assistant and blue iris stopped as well even though it was working an hour ago. Turns out it might have been the RFC1918 rule I saw I should use on youtube. The weirdest thing is that I am not supposed to be able to access blue iris ui3 from IOT and I am able to however on LAN it is blocked I tried to open the source port and destination port in the second screenshot and it the ports kept switching. I tried to just enable on LAN the blue iris server as a source with a destination of any and it still says its being blocked by a default deny rule.

https://imgur.com/a/tz3rFmH