Messages

Thank to all for you're replays.

It's solved now.
And sorry for the few information, I didn't believed it has to do with my ISP-Router.
In fact all settings I did was fine excepted a small check-box i missed.

I Have an ISP Router (192.168.10.1) in DMZ mode (Bridge is not possible). There is a Wlan running which I like to keep (don't need more devices and every guest can take it). Now on the Router I set my 2 IP 192.168.0.5 and 192.168.0.19 as DNS. Also set an static route on the ISP-Router to send traffic for 192.168.0.0/24 to 192.168.10.28 (opnsense WAN ip).

So opnsense sow this and choose to set an static rout for these two IP's to the ISP router (which sends all the traffic to 192.168.0.0/24 back to opnsense). Now I saw I have to uncheck the "Allow DNS server list to be overridden by DHCP/PPP on WAN" (System-> Settings -> General). This way opnsense is not add these routing to the system.

But for me this is still a bug - isn't it? Why does opnsense create a route for his own client (clients from DHCP-range) to the wan?? If i set opnsense as DNS on ISP router it also sets an static route for the own WAN-ip (192.168.10.28) to send traffic to my ISP router - why??

Thanks again

There are 2 ip which are wrong (x.x.x.19 AND x.x.x.5) The LAN is a bridge with opt1, 2 and 3
x.19 is connected to opt2 (directly) and x.5 is connected to a swicht on opt3. on the switch there are 4 more pc, printer and phone, everything fine...

On the 2 ip where talking about there are AdguardHome (x.19 minipc) And pihole(x.5 in a Docker)  running. Never set them as DNS in opnsense. I Disabled Adguard and shutdown the Docker of Pihole, but still after reboot of opnsense the routes are back :(.

Could not see any special in logs.

Thanks for your replay.
I decided to change the Ip - so everithing worked fine until it didn't - same as before.

after some more hours i found the problem, but don't know how to resolve it permanent. My ip is listed under SYSTEM->Routes->Status as follow:
ipv4   192.168.0.19   192.168.10.1   UGHS   NaN   1500   igc1   WAN
So opnsense send the traffic to LAN (192.168.0.19) over my WAN port ?!
Where is this from??!! When I delete this one everything works fine. But some minutes later its back.
So I don't understand, how can Opnsense give an ip over DHCP but send then the traffic wrong (What did I wrong)? I didn't made any static routing. But how do I get this deleted permanently??

Hello everyone
I've tried this several times and haven't found a solution yet. I installed Opnsense and set up everything (including rules and port forwarding). Everything worked fine until I noticed that one of my PCs had no internet connection. After a lot of trying, I started a new installation because I thought I had misconfigured something. I've tried the whole thing several times now.

Current status:
New installation of opnsense. I only changed the IP and DHCP address of the LAN (192.168.0.1). I didn't change anything else (no rules not portforwarding, no services nothing). All PCs and nas are connectet over the same switch and work perfectly except the IP 192.168.0.19. This has no connection to Opnsense - but has fetched the opnsense settings (static DHCP). All entries such as gateaway, DNS server and IP are correct but nothing works.

I can see the IP under Interfaces->Diagnostic->ARP Table. But DNS lookup or ping etc. doesn't work in both directions. If I set the IP to x.x.x.18 or x.x.x.20 everything works fine, as soon as I set it back to 19 nothing happens (change can be made over opnsense static - or on the pc directly, no differences). I tested this on 2 Windows and one Linux PC - same everywhere. What could be the reason?
Nothing is blocked in the FW protocol live log, the only thing I see is when I want to access the GUI via the browser - 3 entries out of 19 - on Opnsense, which are not blocked, but the GUI cannot then be accessed.

So I could change the ip and everything would work. But I would like to have this pc on the IP 19 because there are some services running. The other thing is, as long I don't know the problem, this maybe happens to other pc in longer term, that's why I want to understand it.

Thanks for advice
Fabo

hallo zusammen
ich wollte opnsense mal ausprobieren und bin dabei auf ein Problem gestossen.
ich habe sicherlich nicht das optimale setup,  jedoch möchte ich dies so beibehalten (Router kann nicht ersetzt werden
und da der bereits WLAN hat warum noch ein Gerät...).

1. Router (ISP nur DMZ Möglich) - Wlan zugriff 192.168.10.0
2. DMZ: Opnsense mit DHCP Server auf lan
3. Lan 192.168.0.0

FW Regeln wie folgt:
1. 192.168.10.0/24 DNS Zugriff von Wlan(WAN) auf LAN
2. ein WLAN pc voll zugriff auf lan (fixe IP)
3. zwei Portweiterleitungen auf nas.

Im Lan habe ich 2 dns im Einsatz (Adguard und Pihole)
Der ISP-Router hat für 192.168.0.0/24 fixer Route ins Lan.  Dns überall auf die 2 gesetzt (xxx.19 und xxx.5).
Funktioniert alles einwandfrei bis nach ca.  30min beide DNS Blockiert wurden (kein Internetzugang auf den dns pc). Nichts geht mehr... 
sobald ich die IP der DNS ändere funktioniert alles wieder für die nächsten ca 30min dann kann ich die ip wieder zurückstellen.
es ist noch nichts weiter eingerichtet was ips etc.  betrifft nur die paar Regeln wie oben beschrieben.

ich habe ebenfalls Ipfire getestet - selbes setup funktioniert.

weiss jemand woran das liegen könnte?