OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of JCBond »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - JCBond

Pages: [1]
1
General Discussion / anyone having issues accessing https://shop.opnsense.com
« on: September 11, 2023, 12:42:45 am »
I am having problems accessing https://shop.opnsense.com. Whenever I try I get this error: ERR_RESPONSE_HEADERS_TOO_BIG

Interestingly, not being able to access the website, coincided with my moving from Arista(Untangle) to OPNSense. So I am not sure if the issue is a configuration issue on my new OPNSense firewall or just the website has issues at the moment.

I don't seem to have issues accessing any other website I have tried.

2
23.7 Legacy Series / Re: Allow internet traffic but not intraVLAN traffic
« on: September 08, 2023, 02:02:50 am »
Maurice,

I knew this could not be that difficult, but I did not understand what "invert the sense of the match" meant until you brought it up.

Thank you so much.

3
23.7 Legacy Series / Allow internet traffic but not intraVLAN traffic
« on: September 08, 2023, 12:31:59 am »
I am new to OPNsense and am trying unsuccessfully to do something I think should be very easy.

At my location, we have 20 separate VLANs. I would like to allow ALL VLANs full access to the WAN (Internet) but only allow IntraVLAN communication between two of the VLANs and the rest.

I know I could go to each VLAN and create individual firewall rules to Block and Allow communications between every single possibility. But since there are so many VLANs I would like to group things and just allow what is needed.

Basically, this is what I need:
- Allow traffic from VLAN 1 to ALL other VLANs + Internet (I can do this with a rule to allow VLAN 1 to ALL)
- Allow traffic from VLAN 2 to ALL other VLANs + Internet (I can do this with a rule to allow VLAN 2 to ALL)
- Allow only Internet traffic from all other VLANs - This is the question: How do I allow this without at the same time allowing communication to the other VLANs?
I don't want to have to create a block rule from each VLAN to every other VLAN (there are just too many)

I have tried multiple options to group the VLANs in different ways and create Block Rules and Allow rules, but unless I do this to EACH and EVERY VLAN individually, I am not getting the correct results.

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2