"
I have a Protectli 4 port running OPNSense where LAN1 (192.168.10.1/24) is a collection of I0T and other untrusted devices including a TP-Link AX5400 WiFi router (192.168.10.2/24) with an attached WiFi enabled printer (192.168.1.13). I am trying to print from trusted devices attached to the LAN2 interface (192.168.20.1/24) and nothing I have tried as far as firewall rules has worked. Ideally I want all LAN2 devices to be able to connect to any LAN1 device but not the other way around. There is obviously something I am missing here and I was hoping somebody might give me a clue what I need to do to make this happen.
I have logging for everything turned on but I don't see any indication as to where any specific rule denials are happening so I am thinking there might be a routing problem but don't know where in the OPNSense UI to enable something like that. It seems that the packets just don't go anywhere and no default denial rules are being triggered.
Is there a NAT problem on the TP-Link?
A missing interface route igb2->igb1 config?
What else am I possibly missing here?
WAN1 igb0 dhcp
LAN1 igb1 192.168.10.1/24 untrusted network
Wifi device 192.16810.2
WiFi printer at 192.168.1.13
LAN2 igb2 192.168.20.1/24 trusted network
thanks!
I have logging for everything turned on but I don't see any indication as to where any specific rule denials are happening so I am thinking there might be a routing problem but don't know where in the OPNSense UI to enable something like that. It seems that the packets just don't go anywhere and no default denial rules are being triggered.
Is there a NAT problem on the TP-Link?
A missing interface route igb2->igb1 config?
What else am I possibly missing here?
WAN1 igb0 dhcp
LAN1 igb1 192.168.10.1/24 untrusted network
Wifi device 192.16810.2
WiFi printer at 192.168.1.13
LAN2 igb2 192.168.20.1/24 trusted network
thanks!
