Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - chd1hun

#1
Hi, first of all I would like to thanks the devs for an outstanding FOSS product. I have installed the latest version of OPNsense and have my setup with the new Tailscale plugin completed. Most of everything work as I intended.
There is one minor problem I would like to ask. In the attachment is the one and only firewall rule on my tailscale interface.
With this rule:
-Normal tailscale function works: a tailscaled client can access a service on one subnet through OPNsense (subnet advertised, the VM hosting that service itself is not exposed directly to tailscale)
-However the client cannot connect to OPNsense management Web GUI with OPNsense tailscale IP. (Doubled checked, tailscale interface is listed on System: Settings: Administration: Listening interface)

*If I change the "source" part of this rule to "any" instead of "TLSC net" then client can access OPNsense Web GUI.

My question is, as per my understanding, in this particular case source "any" or "TLSC net" should have the same result? Or am I missing something?