Messages

YEP! big dummy me was playing around with my ipsec tunnels and looking up things on the internet to try, and well i removed the checkmark for hardware offloading on Opnsense, now i can't get access to it via ip or route traffic.

If i reboot it i have about 15 seconds then its not acessable, I do have access with keyboard and mouse. Am i screwed and need to do new install or is there something i can run to fix this ?

DERP moment !

Depents on email, if its 587 SSL this won't do anything. For IMAP or Pop yeah, but its 2023 who uses IMAP or pop these days.

Will get way better results with newer cpu & not virtualizing it.. Just saying.

And you did set net.link.bridge.pfil_member to 0 and net.link.bridge.pfil_bridge to 1? And reboot?

And there are no interface assignments for the member interface? Only a single assignment for the bridge - probably to LAN?

GOD Damni7,, I missed the pfil.member. it was 1 and needed to be set to 0.  Once i did that it all worked. I also removed the rules on each OPT 1-4 and stuill working..  DAMN ADHD :) thank you Hausen !!

I can also confirm that i can SSH into the firewall and ping any of the devices on each and all ports..

BUT can't ping from one port to the others.

Did you set the two tuneables as told in the bridge documentation?

https://docs.opnsense.org/manual/how-tos/lan_bridge.html

I just tried the tunables, it worked for one of the ports but the other 3 nope. 

I created a video here,   https://www.youtube.com/watch?v=q1Rv4gB8fkI

I created a bridge with 4 ports. I'm getting ips i can acces the firewall on all of them and surf the internet, BUT for the life of me or maybe a check mark i can't find. I can't ping each device or access each device. IE say computer on one port and printer on the other.  It's like there are port blocking rules even though they are all on the same network. ( Lan )

Thoughts ?

IMO Look at Engenius Ap's They have 2 types One is cloud managed ( my favourite ) OR the non Cloud managed ones.

http://www.engeniustech.com

I have both !

YES Zenarmor Paid Home subscription is IMO 100% worth it !

In this video, sorry it might be long, i show you how to add "MORE" Policies In OPNsense & in the Cloud after we add our home subscription.

Special thanks to Deniz & Murat & Dave @ Zenarmor AKA Sunnyvalley !

Link to affiliate link get 10% off : https://tinyurl.com/322d9w8a

Link to Video : https://www.youtube.com/watch?v=rMODzs5yu8k&t=24s

Any logs via console?

I actually figured it out, since it was a test box, I installed 22.7 & updated, it did the same thing.

If i enable EVERY Rule Set, it causes issues.  Even on another box thats 200x more powerfull.

Using 23.1 suricata will run for a bit, then just stop. Anything to obviously start looking at ?

I got it -.-
I hoped i didnt had to do it on that way. But i have to login into the Modem of the ISP and set the Port forwarding rule also there -.-
The DMZ function didnt work -.-
Such a shame

The problem is, your ISP modem isn't allowing any traffic in on those ports, you have 2 ways to do this. Bridge mode OR  port forward those ports to the OPNsense box, doubble natting your setup works for going out, but anything in is not going to work properly.

Call the ISP  get a new modem that allows you to bridge ?  Or look for passthrough on the modem.

Why not just install Adguard on the OPNSense box all together ?

I bought one of these RS86s Units off Ali express. Mine has the tri 2.5gig Intel Ethernet ports. with the Celeron N5100 4c/4T, 4gigs ram and 16gig SSD. When I bought it, i didn't think it was going to be anything special BOY WAS I WRONG !!!

Now i want to buy the beefier unit with 16gigs ram dual SFP+ ports and 128gig storage.
I will be doing a full install & review on mine on my youtube channel :

https://www.youtube.com/jasonslabvideos

Adding a few pictures & screen shots !! If you have anything you wish me to try and include in my video let me know !

The link is here : https://www.aliexpress.com/item/1005004182442458.html?spm=a2g0o.order_detail.order_detail_item.3.33774c7fDZS8gm

Look at the ( in green ) GW-R86s-B!

see interface dhcp enabled

https://forum.proxmox.com/attachments/1673718438300-png.45609/


Kind regards

did you create a dhcp scope ? Every interface you add / use needs a DHCP scope.

GO to Services, dhcp look at the network that you are having issue with.

Check all the settings,  subnet. gateway netmask.

Also confirm that on your interface that its actually ipaddress/24,  it defaults to /32 for some reason.