Messages

I am having problems accessing https://shop.opnsense.com. Whenever I try I get this error: ERR_RESPONSE_HEADERS_TOO_BIG

Interestingly, not being able to access the website, coincided with my moving from Arista(Untangle) to OPNSense. So I am not sure if the issue is a configuration issue on my new OPNSense firewall or just the website has issues at the moment.

I don't seem to have issues accessing any other website I have tried.

Maurice,

I knew this could not be that difficult, but I did not understand what "invert the sense of the match" meant until you brought it up.

Thank you so much.

I am new to OPNsense and am trying unsuccessfully to do something I think should be very easy.

At my location, we have 20 separate VLANs. I would like to allow ALL VLANs full access to the WAN (Internet) but only allow IntraVLAN communication between two of the VLANs and the rest.

I know I could go to each VLAN and create individual firewall rules to Block and Allow communications between every single possibility. But since there are so many VLANs I would like to group things and just allow what is needed.

Basically, this is what I need:
- Allow traffic from VLAN 1 to ALL other VLANs + Internet (I can do this with a rule to allow VLAN 1 to ALL)
- Allow traffic from VLAN 2 to ALL other VLANs + Internet (I can do this with a rule to allow VLAN 2 to ALL)
- Allow only Internet traffic from all other VLANs - This is the question: How do I allow this without at the same time allowing communication to the other VLANs?
I don't want to have to create a block rule from each VLAN to every other VLAN (there are just too many)

I have tried multiple options to group the VLANs in different ways and create Block Rules and Allow rules, but unless I do this to EACH and EVERY VLAN individually, I am not getting the correct results.