OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of mbc0 »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - mbc0

Pages: [1]
1
General Discussion / Re: Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 31, 2024, 03:09:24 pm »
Thanks again for your replies!

OK, I will restart OPNSense from scratch, don't recall making any changes from install other than enabling nat reflection but will see how it goes!

2
General Discussion / Re: Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 31, 2024, 11:05:40 am »
Quote from: doktornotor on August 28, 2024, 10:32:22 am
Quote from: mbc0 on August 27, 2024, 06:07:33 pm
If I restore my old sophos installation instead of opnsense everything works as it should on the LAN so I know it is a setting that I am missing on opnsense somewhere.?

If you disable reflection and stop pointing things at your WAN's hostname which resolves to your WAN IP, while those services are on your LAN in fact, the LAN <-> LAN packets will flow across the switches and will not hit your OPNsense WAN - and not even LAN - at all.

The reflection hack is doing exactly what it should. You point things to WAN - they go through your router's WAN and then back to LAN. Stupid? Yes, the reflection is a stupid concept.

Thank you so much for your reply!

I have disabled the "Stupid" reflection but still all my LAN traffic is going through WAN?  If I use Sophos or my Vodafone Router all traffic goes through the LAN as expected.  I must have done something even more stupid than reflection! :-D  Is there another setting somewhere that I have missed? I have rebooted also.

Again, thanks for your help!

3
General Discussion / Re: Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 28, 2024, 10:08:00 am »
I have 2 local unraid servers and I am trying to use syncthing on both of them.  They are on the same subnet and IP Range. (192.168.0.33 & 192.168.0.62)

They will only sync using Relay WAN, If I disable the Relay WAN option on either of the servers they lose connection and never connect using LAN

I read about a UDP Broadcast Relay Plugin but can anyone confirm if that would be needed?  I would have thought I would be able to communicate to 2 local LAN servers without needing a plugin?

I have no VLANS, just WAN & LAN interfaces.

Thank you!

4
General Discussion / Re: Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 27, 2024, 06:07:33 pm »
Hi!
Thanks for your reply, if I disable relaying (basically force local on syncthing) it never connects.  I have 2 syncthing instances on 2 different unraid servers with the same issue.

Also. I have this issue with nextcloud and immich.

If I restore my old sophos installation instead of opnsense everything works as it should on the LAN so I know it is a setting that I am missing on opnsense somewhere.?

5
General Discussion / Re: Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 27, 2024, 04:42:53 pm »
I have ticked the Automatic outbound NAT for Reflection box




6
General Discussion / Local LAN traffic going through WAN instead of LAN? Syncthing/immich etc
« on: August 27, 2024, 04:39:37 pm »
Hi,

I am a new user so probably something obvious, but I keep revisiting this problem and now I really need to fix it due to needing to transfer terabytes of data.

I have a local LAN 192.168.0.0/24 and many dockers and several servers all running on it.

For example I have immich & syncthing all local on the LAN

If I try to upload to any of them I am using my WAN connection? how can I make my local dockers etc use the LAN instead?

Many thanks!!

7
General Discussion / Re: Possible to have an IP range using a different wan port?
« on: June 25, 2024, 11:55:18 pm »
This is great! Thank you!

I am on holiday for a week and will try this when I get home, thanks again!

8
General Discussion / Possible to have an IP range using a different wan port?
« on: June 22, 2024, 11:57:38 pm »
Hi,

I am running OPNSense on a HP Microserver with a 4 port nic, all working well :-)

I am trying to split the internet load between two wan's

I have my dsl wan on one port, local lan on another and would like to add a 5G RUTX50 Router as another wan that only serves a certain IP range, is this possible or a different way to achieve certain lan connections to use this 5G lan rather than my main dsl?

Many thanks!

9
General Discussion / Re: Cannot access nextcloud (or any port forwards) from lan
« on: May 17, 2024, 05:34:06 pm »
Hi,

I have changed my OPNsense gui from 443 to 8443, rebooted but still when I enable nat reflection on this rule I lose access to all https websites?  Am I missing a step?




10
General Discussion / Re: Cannot access nextcloud (or any port forwards) from lan
« on: May 17, 2024, 04:30:26 pm »
Hi!

Thanks so much for the reply!

Please see the attached image for what I am trying to achieve,

I have already tried the first 2 suggestions (they are in my previous screenshots) but have not installed a reverse proxy on the router itself as that runs on my unraid server.

I am struggling to get my head around this as I am out of my comfort zone but is what I am trying to achieve possible with a reverse proxy running on unraid from the diagram attached? (Credit to spaceinvader one for his video guide to installl nextcloud on unraid)

Again, thanks!

11
General Discussion / Re: Cannot access nextcloud (or any port forwards) from lan
« on: May 17, 2024, 11:36:36 am »
Have moved a little further with this as I have been able to get 2 of the 3 port forwards working by setting the rules to pass, enable nat reflection and setup unbound dns override.

The 2 that work are standard http but as soon as I enable nat reflection on the nextcloud port forward I lose internet, is that because it is https? I really don't know enough to know where to go from here and getting lost in a google maze, if someone could help I would really appreciate it!

Many thanks

12
General Discussion / Re: Cannot access nextcloud (or any port forwards) from lan
« on: May 16, 2024, 06:19:36 pm »
I followed this guide for split DNS but get a potential DNS rebind attack warning message on the web page

https://docs.netgate.com/pfsense/en/latest/recipes/port-forwards-from-local-networks.html

13
General Discussion / Cannot access nextcloud (or any port forwards) from lan
« on: May 16, 2024, 02:50:08 pm »
Hi,

I am new to OPNsense, have carried out a couple of factory resets to make sure I am not doing something stupid but I cannot access nextcloud (or any of my forwarded ports) from within my lan?  I have setup nextcloud using a cloudflare tunnel and I can access perfectly on a mobile connection or a connection outside my network

The tracert shows that it is pointing to the correct local ip

I have tried enabling reflective nat in the port forward rule but lose internet connection when applied?

I also tried creating a

Can anyone please help?

Thank you!


Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2