Messages

Guys, need your advice.
I have a home lab with OPNsense running at 10.10.10.216/24 I configured ssh port forward on OPNsense and it works fine if I connect from LAN 10.10.10.0/24. If I come to LAN 10.10.10.0/14 from external ZeroTier client port forward on OPNSense WAN interface does not work.
If I first connect via ssh to some node in 10.10.10.0/24 and after that make connection to 10.10.10.216 on port 122 then port forward on OPNsense works without any issue.

What setting I am missing in OPNsense firewall or somewhere else to enable port forward from anywhere?

I attached picture of my home lab environment for better understanding.

Thanks a lot for help.

Just FYI.

I also had an issue with port forwarding.
When I solved ping issue on WAN interface, port forwarding started to work also.

Here is a link to my topic. Hope it will help to you.

https://forum.opnsense.org/index.php?topic=34320.0

I found a solution.

I do not understand why this parameter relates but when I enable  "Disable reply-to" in Firewall settings, it started to work

I'm pretty sure this is about Firewall: Settings: Advanced: "Disable force gateway" option. Please turn it on and try again.

Franco, unfortunately it did not help.

I opened my Firewall for all ICPM traffic from all to all IP addresses and explicitly setup IPv4GW to use and still no Ping from outside

Guys,

Sorry for a stupid question, I need help to enable ping on my WAN interface.
Opnsense is running inside Proxmox VM and WAN is 10.10.10.4.

I created Firewall rule to enable ICMP on wan interface in in direction.
Default Gateway 10.10.10.1 is online.

Anyway ping from WAN subnet 10.10.10.0/24 to 10.10.10.4 does not work
Ping from LAN to 10.10.10.0/24 works without any issues.

I believe something small is missing in my config.

What can it be?  ::)