Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - pludikovsky

Pages1
#1
General Discussion / Re: Issues setting up in existing environment
October 24, 2025, 09:55:45 AM
Just saw that I have made a typo. The VPN network is 10.9.7.0/24, not /22. And even then, they wouldn't be overlapping:
  • 10.9.7.0/22 -> 10.9.4.0 - 10.9.7.255
  • 10.9.8.0/22 -> 10.9.8.0 - 10.9.11.255
#2
General Discussion / Issues setting up in existing environment
October 24, 2025, 09:01:52 AM
First time OpnSense user, but I have some knowledge of FreeBSD & Networking.

We're updating our network and want to use OpnSense as the firewall in the future. However we've encountered an issue.

Some basic info:
  • Local network: 10.9.8.0/22
  • VPN network: 10.9.7.0/24
  • Temporary WAN IP: 10.9.8.148

As soon as I configure on of the internal networks (10.9.11.0/24) I lose connectivity to the WebGUI on the WAN interface, and can only reach it again by disabling the firewall (pfctl -d) on the console. This tells me it's not a routing issue.

In the FW logs I see these messages:
Code Select
WAN
2025-10-24T06:46:34
TCP
10.9.7.2:60542
10.9.8.148:443
block
Default deny / state violation rule

Checking with tcpdump doesn't resolve this in any meaningful way as the incoming packets are clearly marked as SYN packets, so not a strange state for a new connection. Any ideas on what to check or what could be the issue?

And yes, we know there's a network overlap between the existing a new network. It's intentional, we're moving from 10.9.8.0/24 to /22 to 4 separated /24 networks, 3 of which are currently empty.
Pages1