Messages

It's FIXED!

Thanks to everyone who took their time and helped me figure this out.

Whenever I do a reinstall/reset I go through and copy down all settings I changed/added to make sure I have them, just in case the backup fails for some reason (I've had a backup fail before). In doing so I found the error in section "Firewall: Automation: Source NAT" "PLEX" "Interface" set to LAN instead of WAN. I'm not sure when or how that happened.

The one benefit to all of this is I am now just a little more familiar with OPNsense than I was with my firebox T20 firewall.

Thanks! I was afraid I was going to have to try and re-install. sadly it wasn't windows firewall. I created an exception in it a while ago just in case that was it. I did try disabling it, just in case I had misconfigured the exception. I am not sure I will have time to re-do the firewall for 1-2 weeks. I will post back with the results.

I have everything set as you said. still not working. I didn't have the associated filter rule applied as I had created my own, but it is now checked. I came from an old Firebox firewall and I had to set everything manually in it. It worked for about 5 seconds then stopped again.

I don't think I have the servers blocked. I had originally installed CrowdSec but have stopped it in Lobby>Dashboard. Could it still have some part working to block?

It says I don't have remote access.  And I tried 32400 and 54444 neither worked.

Plex will show green and say I can access remotely for a couple of seconds and then switch to red and say that it's inaccessible.

Sadly it didn't work. I also set "Redirect target port" to 54444 and triple checked the server IP address. (which I have my firewall set (static) as it is the DNS also (unboundDNS))

I have been trying to get this to work for a while and have tried every post I can find for getting remote plex to work with OPNsense. I am running plex on the following server:
AMD Ryzen 7 5800X 8-Core Processor
64.0 GB RAM
LAN: Realtek USB 2.5GbE hardwire connection
64-bit Windows 11 Pro 23H2 OS build 22631.4602 (I have other programs that need windows..., they are not the problem)

OPNsense running on Minisforum MS-01 (on bare metal for now):
Software Versions:
OPNsense 24.7.11_2-amd64
FreeBSD 14.1-RELEASE-p6
OpenSSL 3.0.15

CPU: 12th Gen Intel(R) Core(TM) i9-12900H
RAM: 32GB (less than 7% currently used according to OPNsense)
10GbE optical to LAN switch
2.5GbE Intel WAN to modem (connected at 1GbE, Charter 600Mb/s internet)


The last guide I tried got me the closest, followed the guide https://forum.opnsense.org/index.php?topic=40273.0 and it worked, but it made it so PLEX remote access was the only thing that could communicate outside my network (internet didn't work for any device). I narrowed it down to the last part being the problem.

Firewall-> Settings -> Advanced
Reflection for port forwards: checked
Reflection for 1:1: checked
Automatic outbound NAT for Reflection: checked
Firewall Optimization: normal

When I  have "Reflection for port forwards" and/or "Automatic outbound NAT for Reflection" checked then my internet goes down for everything but remote plex. even devices on Wi-Fi. Reflection for 1:1 and Firewall Optimization don't affect it and are set as checked and normal.

I did just find out my external Wan IP ends in .228.8 (https://www.top10vpn.com/tools/what-is-my-ip/) and my WAN IP from OPNsense ends in .228.1 (first parts of the IP address are the same). This is new for my location as 1 month ago they were the same. So I assume Charter is Double-NATing me now?
I am not sure how to set up port forward in Charters modem (don't know if I can even get into it). I'm assuming if I can get the 2 problems above in OPNsense worked out I won't need access to the modem, but I don't know how to fix OPNsense.

Please Help!
Thanks