Messages

Great, thanks. I'll give that a try.

Hi all,

I currently have OPNsense working as seen in the image below on the left.

Due to the layout of my apartment, I'm going to have to move my servers and OPNsense box to another room from where my modem is. Therefore, there is only one physical link between the OPNsense box and the modem/AP/devices.

In the diagram on the right, is it possible to have the WAN connection going straight from the modem to the OPNsense box, and have the Wifi AP and other devices on the first switch use OPNsense as the router with VLANs?

@ChrisChros, yep all networks are selected.

I'm guessing that everything in Adguard and Unbound is set up correctly, and I just need to create to correct rules in the firewall to forward all DNS traffic to Adguard and block everything else.

Does your DNS traffic stay within the lan/vlan? i.e. is the default DNS server the same as the gateway for each subnet? And are the portforward and outbound rules applied only to the LAN interface?

Can someone please explain how to make this work with multiple vlans? I have DNS working so far with Adguard and Unbound, but I'd like to forward all DNS traffic to Adguard.

If I simply create the NAT rules from here https://labzilla.io/blog/force-dns-pihole -- my vlan traffic can't access Adguard.

Do the vlans need to point to their respective gateway for DNS (opnsense IP)? Is there any way to avoid having a different DNS server IP for each vlan? I'm a bit lost..