Messages

假如配置错误了， 我想提前给个时间， OPNsense可以自动回退。  这样可以防止严重错误，导致的失去连接控制。

自动回退， 这个功能在很多交换机，路由器是有的， 但不知道OPNsense是否有此功能

[WAN interface address]

Topology：


It sounds the "Outbound NAT" did not convert the LAN subnet(100.98.48.0/24) to its WAN interface address(192.168.103.2).



I'm at host 100.98.48.63, trying to ping 192.168.103.1. At the same time capturing these ICMP packets in OPNsense, by using pftop -f 'net 100.98.48.0/24 and proto icmp'(see the snapshot below), I can see the outbound ICMP packets, all from 100.98.48.63 to 192.168.103.1 instead of my expectation to be converted to interface address(192.168.103.2).




There are no any firewall Rule on LAN port inbound direction


My next step is to going to change the NAT Address: interface address to WAN address, but I think both of them have the same IP address 192.168.103.2.  Any ideas are very appreciated !!

In order to prevent the loss of connection due to misconfiguration, how to restore to the previous configuration after a given time (for example, 5 minutes）

Thanks for any advice given!