Messages

Thanks again for your replies!

OK, I will restart OPNSense from scratch, don't recall making any changes from install other than enabling nat reflection but will see how it goes!

If I restore my old sophos installation instead of opnsense everything works as it should on the LAN so I know it is a setting that I am missing on opnsense somewhere.?

If you disable reflection and stop pointing things at your WAN's hostname which resolves to your WAN IP, while those services are on your LAN in fact, the LAN <-> LAN packets will flow across the switches and will not hit your OPNsense WAN - and not even LAN - at all.

The reflection hack is doing exactly what it should. You point things to WAN - they go through your router's WAN and then back to LAN. Stupid? Yes, the reflection is a stupid concept.

Thank you so much for your reply!

I have disabled the "Stupid" reflection but still all my LAN traffic is going through WAN?  If I use Sophos or my Vodafone Router all traffic goes through the LAN as expected.  I must have done something even more stupid than reflection! :-D  Is there another setting somewhere that I have missed? I have rebooted also.

Again, thanks for your help!

I have 2 local unraid servers and I am trying to use syncthing on both of them.  They are on the same subnet and IP Range. (192.168.0.33 & 192.168.0.62)

They will only sync using Relay WAN, If I disable the Relay WAN option on either of the servers they lose connection and never connect using LAN

I read about a UDP Broadcast Relay Plugin but can anyone confirm if that would be needed?  I would have thought I would be able to communicate to 2 local LAN servers without needing a plugin?

I have no VLANS, just WAN & LAN interfaces.

Thank you!

Hi!
Thanks for your reply, if I disable relaying (basically force local on syncthing) it never connects.  I have 2 syncthing instances on 2 different unraid servers with the same issue.

Also. I have this issue with nextcloud and immich.

If I restore my old sophos installation instead of opnsense everything works as it should on the LAN so I know it is a setting that I am missing on opnsense somewhere.?

I have ticked the Automatic outbound NAT for Reflection box

Hi,

I am a new user so probably something obvious, but I keep revisiting this problem and now I really need to fix it due to needing to transfer terabytes of data.

I have a local LAN 192.168.0.0/24 and many dockers and several servers all running on it.

For example I have immich & syncthing all local on the LAN

If I try to upload to any of them I am using my WAN connection? how can I make my local dockers etc use the LAN instead?

Many thanks!!

This is great! Thank you!

I am on holiday for a week and will try this when I get home, thanks again!

Hi,

I am running OPNSense on a HP Microserver with a 4 port nic, all working well :-)

I am trying to split the internet load between two wan's

I have my dsl wan on one port, local lan on another and would like to add a 5G RUTX50 Router as another wan that only serves a certain IP range, is this possible or a different way to achieve certain lan connections to use this 5G lan rather than my main dsl?

Many thanks!

Hi,

I have changed my OPNsense gui from 443 to 8443, rebooted but still when I enable nat reflection on this rule I lose access to all https websites?  Am I missing a step?

Hi!

Thanks so much for the reply!

Please see the attached image for what I am trying to achieve,

I have already tried the first 2 suggestions (they are in my previous screenshots) but have not installed a reverse proxy on the router itself as that runs on my unraid server.

I am struggling to get my head around this as I am out of my comfort zone but is what I am trying to achieve possible with a reverse proxy running on unraid from the diagram attached? (Credit to spaceinvader one for his video guide to installl nextcloud on unraid)

Again, thanks!

Have moved a little further with this as I have been able to get 2 of the 3 port forwards working by setting the rules to pass, enable nat reflection and setup unbound dns override.

The 2 that work are standard http but as soon as I enable nat reflection on the nextcloud port forward I lose internet, is that because it is https? I really don't know enough to know where to go from here and getting lost in a google maze, if someone could help I would really appreciate it!

Many thanks

I followed this guide for split DNS but get a potential DNS rebind attack warning message on the web page

https://docs.netgate.com/pfsense/en/latest/recipes/port-forwards-from-local-networks.html

Hi,

I am new to OPNsense, have carried out a couple of factory resets to make sure I am not doing something stupid but I cannot access nextcloud (or any of my forwarded ports) from within my lan?  I have setup nextcloud using a cloudflare tunnel and I can access perfectly on a mobile connection or a connection outside my network

The tracert shows that it is pointing to the correct local ip

I have tried enabling reflective nat in the port forward rule but lose internet connection when applied?

I also tried creating a

Can anyone please help?

Thank you!