Messages

Thanks fro the guide EricPerl 

I am also not sure if absence of IPv6 affects or should affect the firewall in any way.

Thanks so much. Here is the screenshot of the NAT outbound rules. Looks like both interfaces have that rule enabled.


I am stumped for sure!

I am currently using version 25.1.3 and have added a new Ethernet interface for a second LAN (L2).

While the new interface is configured and enabled, devices on L2 CANNOT access the internet.  However, they CAN communicate with devices on the first LAN (L1). It appears that I need to add a specific firewall rule to resolve this issue.

Here are additional images of the settings:  https://imgur.com/a/qDgix5G
NAT rules: https://imgur.com/a/Ah81Yfn

My set up is as follows
Fiber->Opn sense machine, with AdGuard-> TP Link Deco mesh acting as a router-> remaining deco in AP mode.

The issue is that AdGuard only sees the First TP link Deco router IP (assigned by Opnsense). So all requests that AdGuard sees are that singular Deco IP.

Is there a way configure OpnSense to act as the router, while maintaining the TP link Deco mesh functionality ?

So to go FROM

Opnsense->deco mesh router mode -> deco APs

TO

Opnsense router-> Deco mesh APs

This way all end device IPs will show up on the AdGuard side.

I believe it is working now. What was missing is the IP address on the WAN Gateway!

I went to the admin ui
System→Gateways→  Configuration→clicked on the edit button on WAN_GW

The "IP Address" section was empty. Yikes. 

I entered the IP address  of my ISP router as the gateway and voila - seems to work now.

Likely cause of this IP being empty : I installed Opnsense initially with bad ether cables - so i wasnt getting any upstream IP and it is possible that gateway IP was not detected.

[Problem :]

Quick update
1. Getting new cables fixed the IP issue. WAN is now 1000 full duplex. Yay.


New problem but not quite sure
1. I can physically log on to the OPNsense box and ping google or 8.8.8.8 etc

2. I can log on to the admin for OPN sense box through the LAN port and do a diagnostic trace route as well.

3. Problem : Ho any devices connected to the LAN port of the OPNsense box are NOT able to see the internet.  I am routing the LAN port to my HR (home router).

Very weird. I only have default settings on the opnsense box so far.

Quick update: This is likely caused by faulty cables. The WAN IP comes and goes.. so not quite sure.

Question

1. My Opnsense box is a dual Dual Intel 225-V 2.5Gbe ports - is that relevant to the issues?

2. The Opnsense box negotiates to 10baseT with my ISPRouter (that has 1G ports). Not getting 1G on the connection -  is this likely more a cable issue or the intel 225-V  issue?

[The WAN port of opnsense does NOT get an IP from my ISP Router.]

Here is a quick update

1. ISP Router→ Opnsense (192.168.20.1) →basic switch (not a router) → computer with Hardcoded IP (192.168.20.35)

2. This .35 computer CAN access the admin panel of opnsense

3. The WAN port of opnsense does NOT get an IP from my ISP Router. I see that the WAN interface shows a red X and the text Ethernet Autoselect.


WAN is IGC0, and is configured to be DHCP for both IPv4 and IPv6.

I have rebooted both the ISP Router and the Opnsense machine but no dice.

I can ping everything on the HR network. My media server, home automation server etc.

Can't ping google , or reach any thing outside the HR.

Stumped.

Added $50. Thanks community.

I apologize for the confusion - I'm using the same word for multiple things
1. ISP router (ISPR) is 192.168.1.1

2. ISPR outputs to  Opnsense WAN.

3. OpnSense LAN is configured as 192.168.20.1

3. OpnSense LAN is connected to My home router (HR) with following IP network 192.168.70.1


4. All my devices are in the HR or 192.168.70.1 setup.



Problem : I'm not able to  access internet or the  Opnsense admin on this HR network.

Question :  is there something I should be doing to the ISPR or my HR to make this work ?

I updated Opnsense to LAN 192.168.20.1/24

Updated problem (s)

1. When I put Opnsense between the ISP router and my home network, I lose internet :(

2. I  cant reach the  opnsense setup screen.

3. Does the ISP router need to be in a special mode ? i can see the lights blinking on the ISP router side and OPN sense end.

I have installed Opn sense on a new machine and here is my confusion
1. My router IP is 192.169.1.1
2. During install, I selected Opnsense IP to be 192.168.1.1

See picture for more details
1. After install, I connected the Opnsense and i got to the admin screen.
2. I saved the config and since then I am no longer able to reach the admin panel.
3. 1ith 192.168.1.1 i can only reach the router.

I am not sure what the Opnsense IP means - should it be the same as the router IP ?  I have captured details on the attached image.

I appreciate the help. Apologies- i understand this is a stupid question but my google foo is weak. :(