"
Hello,
I'm running into a problem with OPNsense on ESXi.
I have a Port Group in ESXi connected to my uplink with a public subnet.
A Windows VM on this Port Group works fine with a public IP — it can ping the gateway and reach the internet.
When I attach OPNsense to the same Port Group (WAN interface), it does not work.
In tcpdump on wan I only see my own ARP requests, but I never see replies from the gateway, nor any other broadcast traffic.
Hardware offloading (TSO/LRO/Checksum) is disabled in OPNsense.
Firewall rules are already configured properly (allowing traffic on WAN), so it's not a rules issue.
Tried multiple times, always the same result: Windows VM works, OPNsense does not.
Network adapter type: VMXNET3
Questions:
Is this a known issue with VMXNET3 on FreeBSD/OPNsense?
Would switching the adapter type to E1000e for WAN help?
Are there any specific ESXi Port Group security settings that OPNsense requires (but Windows does not)?
Thanks for your help.
I'm running into a problem with OPNsense on ESXi.
I have a Port Group in ESXi connected to my uplink with a public subnet.
A Windows VM on this Port Group works fine with a public IP — it can ping the gateway and reach the internet.
When I attach OPNsense to the same Port Group (WAN interface), it does not work.
In tcpdump on wan I only see my own ARP requests, but I never see replies from the gateway, nor any other broadcast traffic.
Hardware offloading (TSO/LRO/Checksum) is disabled in OPNsense.
Firewall rules are already configured properly (allowing traffic on WAN), so it's not a rules issue.
Tried multiple times, always the same result: Windows VM works, OPNsense does not.
Network adapter type: VMXNET3
Questions:
Is this a known issue with VMXNET3 on FreeBSD/OPNsense?
Would switching the adapter type to E1000e for WAN help?
Are there any specific ESXi Port Group security settings that OPNsense requires (but Windows does not)?
Thanks for your help.
