"
Maybe they could add an additional step in the initial configuratio wizard for this setting? Seems important enough I think. Or maybe not a direct question about this setting but rather about the environment where OPNsense is being deployed. Surely, just like the aforementioned one, there are more settings that should be different in a private-network-within-private-network environment, and a simple "What environment are you deploying OPNsense in?" question could set a couple of defaults just for ease of mind.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
24.7, 24.10 Series / Re: Can't enable seemingly simple port forwarding scenario
February 23, 2025, 01:28:18 PM #2
24.7, 24.10 Series / Re: Can't enable seemingly simple port forwarding scenario
February 22, 2025, 01:19:16 PMQuote from: dseven on February 22, 2025, 11:24:09 AMFirewall > Settings > Advanced > Disable reply-to
OMG this did it! Thanks a lot! It would be great to know where I can read more about this. In fact I had never heard of the term "Multi-WAN". Thanks again.
#3
24.7, 24.10 Series / Can't enable seemingly simple port forwarding scenario
February 21, 2025, 10:18:03 PM
I'm trying to learn OPNsense using a virtual environment I have set up for testing at home, using VirtualBox. The setup is as follows.
I have my home network, with a home router that offers DHCP for the 192.168.50.0/24 network. The gateway is at 192.168.50.1.
My main computer receives its ip address via DHCP. Let's say it gets assigned the 192.168.50.100 address.
Then I have a VM in VirtualBox with OPNsense freshly installed. It's got two network adapters, the first one (em0, which would be the WAN adapter) in bridged mode, which receives an IP address from the home network (let's say it gets the 192.168.50.150). The other adapter (em1, configured as the LAN adapter) is in internal network mode. The internal, local network uses the 10.10.0.0/24 addressing, and OPNsense uses the 10.10.0.1 address within that network.
Finally I have a Ubuntu machine with just one adapter in internal network mode. It's got the 10.10.0.30 address (received via DHCP from OPNsense). It's got a web server installed, listening on port 80. That machine has proper internet access using OPNsense as the gateway.
What I'm trying to achieve is a simple port forwarding of that web server outside the local network. In OPNsense, I go to Firewall > NAT > Port Forward, set the destination to the WAN address, the destination port to HTTP, the redirect target IP to 10.10.0.30 and the redirect target port to HTTP.
If I now try to access the port 80 of the OPNsense machine from my host machine, that is, connecting from 192.168.50.100 to 192.168.50.150:80, I can see that the internal machine receives the HTTP GET request, but I get an error in the host machine and the website never loads.
Most of the time I get a "connection reset" error. I think my home router is somehow interferring, because if I run wireshark in my host I can see the router responding instead of the OPNsense machine.
I can't make sense of it.
I have my home network, with a home router that offers DHCP for the 192.168.50.0/24 network. The gateway is at 192.168.50.1.
My main computer receives its ip address via DHCP. Let's say it gets assigned the 192.168.50.100 address.
Then I have a VM in VirtualBox with OPNsense freshly installed. It's got two network adapters, the first one (em0, which would be the WAN adapter) in bridged mode, which receives an IP address from the home network (let's say it gets the 192.168.50.150). The other adapter (em1, configured as the LAN adapter) is in internal network mode. The internal, local network uses the 10.10.0.0/24 addressing, and OPNsense uses the 10.10.0.1 address within that network.
Finally I have a Ubuntu machine with just one adapter in internal network mode. It's got the 10.10.0.30 address (received via DHCP from OPNsense). It's got a web server installed, listening on port 80. That machine has proper internet access using OPNsense as the gateway.
What I'm trying to achieve is a simple port forwarding of that web server outside the local network. In OPNsense, I go to Firewall > NAT > Port Forward, set the destination to the WAN address, the destination port to HTTP, the redirect target IP to 10.10.0.30 and the redirect target port to HTTP.
If I now try to access the port 80 of the OPNsense machine from my host machine, that is, connecting from 192.168.50.100 to 192.168.50.150:80, I can see that the internal machine receives the HTTP GET request, but I get an error in the host machine and the website never loads.
Most of the time I get a "connection reset" error. I think my home router is somehow interferring, because if I run wireshark in my host I can see the router responding instead of the OPNsense machine.
I can't make sense of it.
Pages1
