OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of driz »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - driz

Pages: [1]
1
General Discussion / Re: Changing firewall gateway rule to failover group prevents SSH or WebGui access?
« on: March 21, 2024, 02:28:41 pm »
just wanted to let you know i resolved my issue. as noted at the end of step4 in https://docs.opnsense.org/manual/how-tos/multiwan.html , traffic destined for the firewall itself will be routed in the wrong direction. While their focus is on dns, this applies to all traffic. In my case, I followed step5 but rather than dns, i created a management port alias containing 22,80,443, then created the step5 rule (above my lan pass rule) and it fixed my issues.

tl;dr do step 5 before step 4, change step5 rule to be management ports

2
General Discussion / Re: Changing firewall gateway rule to failover group prevents SSH or WebGui access?
« on: March 20, 2024, 10:32:09 pm »
I saw the exact same behavior, read your post, realized my firewall rule was mistakenly using default gateway, changed it to the group, per the opnsense documentation, immediately lost webui and ssh access. I've actually not fixed it yet because it's a long walk down to the server room...

3
General Discussion / Re: UDP Broadcast Relay
« on: March 05, 2023, 05:21:16 pm »
Hello, very new opnsense user here. I'm about 3 days in. UDP broadcast relay made casting to my TVs stupid simple, so thanks! I followed the guidance in this thread and it was working pretty quickly across VLANs. However, I was wondering if anyone has a situation similar to my other. I have some security cameras around the home, they are configured for multicast on 224.1.3.X (X being 1 through 10) on port 20016. When on the same vlan, i can subscribe to these feeds with udp://224.1.3.X:20016. I have some raspberry pis affixed to the back of monitors around the home all displaying these multicast feeds in a no WAN access vlan.

I would also to view the multicast feed from my PC which is in a different VLAN. I have IGMP setup on my trunk ports, the camera ports, my PC's port, and the router's port. in UDP Broadcast relay, i set the relay port to 20016, selected my two vlan interfaces, and individually put in each multicast ip the cameras are on. I have some pretty open rules for the camera IPs, their multicast IPs, and all the ports they might use. It's not working and I'm not seeing anything in the firewall logs. I am hoping someone else has attempted to do something similar and may have some advice? :)

-----
As an additional note, I found in Marjohn56's gh repo that udp broadcast relay supports --msearch dial, this support doesn't appear to have made it into the opnsense plugin yet. Unknown arg: --msearch

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2