Messages

I have setup OPNSense in bridge mode  running on a mini PC based on:

https://docs.opnsense.org/manual/how-tos/lan_bridge.html

When booted the system starts up and the internet is usable and everyting appears to be working fine, After about an hour or so the internet is lost. I can still login to OPNSense web-gui but I cannot access the internet.

What should I look for in order to resolve this issue? What could be causing it to block internet access?

When it has failed I can SSH onto the device but from the device I cannot ping the wider internet (e.g. ping 8.8.8.8)

If I reboot the device the internet is available again, so it looks like like the interface connected to my ISP supplied router has failed / stopped.

[re0 - LAN (WebGui via IPv4)re1 - WANue0 - OPT1 (USB/RJ45)]

I appear to have it all up and working using a USB/RJ45 connector as follows:

re0 - LAN   (WebGui via IPv4)
re1 - WAN
ue0 - OPT1 (USB/RJ45)

I set the bridge up between WAN and OPT1 (with the bridge between WAN & LAN I couldn't access the WebGui on OPT1 even though I gave it a static ipv4 address.

I had to add a gateway to allow the device itself access to the WAN so that ClamAV / FreshClam  could update, i.e.

    Name: LAN-GW
    interface: LAN
    Protocol: IPv4
    Priority: 255
    Gateway 192.168.2.1

Is this the  correct thing to do?

Now I have the system up and running can someone point me to a beginners guide for things I should configure to protect my network?

I have also enabled Intrusion Detection with IPS (as per Dave's video) - is there anything else I should do to properly configure this? I noticed that using the WebGUI there currently no Rules configured and there are options for downloading Rulesets.

That's not the best video. It keeps mixing a mini-pc with 2 NICs with one with 4 NICs. I think he used a 4-NIC mini-pc in the end. You can add another NIC by attaching a RJ45 USB adapter and using it for OPT1.

Follow these instructions instead.
https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-transparent-filtering-bridge-on-opnsense

Thanks I will get an RJ45 USB adapter and give it a try

[ISP Router / Box --> OPNSense Bridge --> Netgear ORBI (also doing DHCP for LAN/WIFI)]

I have been tring to setup a transparent bridge by following the instructions in this video (Dave's Garage)

https://www.youtube.com/watch?v=dTUvlFfThPw

The Network is configures as follows:

ISP Router / Box  --> OPNSense Bridge --> Netgear ORBI (also doing DHCP for LAN/WIFI)



The mini-pc I am using has 2 physical network ports, the output from the ISP Box (WAN) does into the OPNSense box and the output (LAN) from the OPNSense  box goes into the WAN input of the ORBI.

If I go-ahead and disable IPv4 for the WAN & LAN there is no way to access the web gui or SSH onto the box. even though I believe I have assigned a ststic ip address to the Bridge.

What am I missing? Does the setup from Dave's Garage video require 3 physical ports?