Topics

1

21.7 Legacy Series / OpenDNS not worrking

« on: October 30, 2021, 12:00:02 pm »

I have configured OpenDNS properly on my OpnSense router.  When I do a test from the OpenDNS settings, I got a good confirmation.  Under general settings, I have the OpenDNS IPs listed for DNS Servers.  I have nothing listed for DNS under my DHCP settings for the LAN.

OpenDNS still isnt working when I try a test to their welcome page or the internetbadguys link.

I have some statically assigned devices on my LAN with the OpenDNS IPs entered manually that work fine with OpenDNS, but anything getting a DHCP address, or anything set with statically with DNS set to the router IP dont work with OpenDNS.

Am I missing something to get this working?

Thanks

2

21.1 Legacy Series / Firewall Rule Issues - Seemingly not working

« on: May 15, 2021, 01:47:41 pm »

Having a strange issue where it seems like firewall rules are being ignored.

As an example, I have a VLAN that has my retro computers on it.  For that VLAN, I have disabled the default allow all inbound and outbound rules, but computers on my house VLAN can still contact the retro computers when they are running.  I also tried putting in a block rule from my home computer (on my home vlan) to anything in the retro VLAN, but I can still contact the machines.

I dont know what I am missing here, so hoping someone may have some advice.

The one thing that is still in place is the default Allow LAN to any rule for the NIC that these two VLANs (and others) connect to.  Is that rule my issue?  I thought by creating the Virtual Networks, those rules would trump anything on the main LAN rules.  Perhaps I am wrong?

Thanks for the assistance.

3

21.1 Legacy Series / Upgrade from 19.1.7 to 21.1

« on: April 26, 2021, 02:26:35 am »

Can you upgrade straight from 19.1.7 to 21.1 via the console?

If so, do you choose option 12 and enter 21.1 and the upgrade runs?

Or do you need to upgrade to something in between first?

Thank you!

4

General Discussion / Step by Step Recommended DMZ setup

« on: February 29, 2020, 10:24:32 pm »

Does anyone have or would anyone be kind enough to give a step by step DMZ setup?  Would be for a device on its own VLAN, private IP space...

Just not 100% sure of proper firewall / NAT setup for best perfornance....this will be for a couple gaming consoles.

5

19.1 Legacy Series / Firewall Rules Assistance to Allow 1 IP to talk to Another

« on: June 18, 2019, 02:20:49 pm »

Looking for some assistance on best way to go about this

I have several VLAN Interfaces setup on my OpnSense FW / Router.  One of the VLANs is blocked from allowing any traffic out or in, so only traffic within the VLAN is permitted (older Windows 9X / DOS / etc machines in a Retro VLAN).  I need to allow just the IP of my NT Server in that VLAN to access DNS from a single IP on another VLAN and also allow the same IP of my NT Server to access File Sharing from a single IP on another VLAN.

Not sure the best way to set this up and get it working....any help is appreciated....

6

19.1 Legacy Series / OpnSense Browser Web GUI on Any Interface

« on: June 14, 2019, 06:32:19 pm »

What are the steps I need to take to be able to open the Web GUI from any interface?

Are there fw rules I need to enable on each Interface?  The Admin settings show the GUI should be available from any Interface, but its only accessible currently via LAN1 when LAN1 is on DHCP.  None of my VLAN off LAN1 or my static IP for LAN2 can access it.

Help is greatly appreciated....

7

19.1 Legacy Series / OpnSense LAN / DHCP Assistance

« on: June 08, 2019, 01:24:22 am »

Looking for some assistance as I am noob with the OpnSense Router..

I have 3 NICs in my Router....1 WAN / 2 LANs

LAN1 has 4 VLAN Interfaces created using it as the parent interface with each one set with a Static IP for the address of the Interface (xxx.xxx.xxx.1).  Each one of the VLANs has a DHCP Server and Range Created.  THe actual LAN1 interface I have set with no IPv4 Address as the VLAN sub interface IPs act as the Gateway IPs for each VLAN / SUbnet.

LAN2 has a static IP Address created on it (192.168.10.1) and a DHCP Server / Range set for it as well.

I cant get an address on any computer I try to connect to any of the VLANs on LAN1 or the LAN2 Interface.

I have firewalls rules setup to allow all out of the interfaces.

The WAN is set to get DHCP.

I see good link lights on the NICs on the Router, so I am guessing the Interface IPs are fine and my issue is with DHCP or something else...I even setup the Router off the network as a stand alone with a computer connected directly to the LAN2 interface and I have also connected a stand alone computer to a switch that has access to one of the VLANs with a trunk port for the switch going to LAN1 of the OpnSense Router....

If I set LAN1 and LAN2 to DHCP they both get an address from my current router as well so I know the NICs are good...

Any help is greatly appreciated!

8

19.1 Legacy Series / Automatic Outbound NAT Rules

« on: June 06, 2019, 03:16:05 am »

Unless I am reading it wrong, setting outbound NAT to Automatic would generate NAT rules for Interfaces that were created...

I have created 4 Sub-Interfaces (VLANs) off of LAN1 and none of them are showing up in the Outbound NAT rules, only the initial LAN1 rule is there.  Also, I have a LAN2 port and it to is not showing anything created in the outbound NAT rules....

Do I need to switch to Manual and setup the rules for each Interface?

9

19.1 Legacy Series / OpnSense GUI from Any LAN?

« on: June 04, 2019, 01:51:59 am »

I am in the process of setting up my OpnSense router.  I have a WAN and 2 LAN interfaces in the system, all currently set to use DHCP for an address.

When I boot up the Router with LAN1 plugged in, it gets a DHCP address from my current Router and I get the message the Web Gui is available on that IP.  However, if I load the Router with only LAN2 plugged in, it gets an IP Adress properly in the same subnet as LAN1 from the same DHCP Server, but I cant hit the web GUI on that IP.....

Is there a setting somewhere that says what LANs you can / cant access the GUI from? 

Both LANs Interfaces have Allow Any for Source and Destination.  I'd like to get this up on LAN2 as there are things I need to do on LAN1 that I cant do if the port is active or it will cause issues with my current network

10

19.1 Legacy Series / Firewall Rule to Block all Inbound Traffic

« on: May 31, 2019, 01:12:26 pm »

I realize this may be a dumb question, but I am new to the OpnSense Interface, so I want to make sure I set it up right...

To setup a Firewall rule that blocks all Inbound Traffic to the Firewall (Traffic trying to get in from the Internet) what would be the proper setup of the rule?  I know the rule would be set on the WAN Port, but not 100% sure of the Interface and what goes where...

Interface - WAN
TCP/IP - IPv4+IPv6
Protocol - Any
Source / Invert - ?
Source - Any?
Destination / Invert - ?
Destination - Any?
Destination Port Range - from Any to Any

Thanks ahead of time for the assistance...again, I know this should be simple, but I want to make sure I am seeing it properly!

11

Hardware and Performance / OpnSense and WiFi Mesh

« on: April 30, 2019, 12:46:40 pm »

Hello all,

New to the forums and a new OpnSense user.  Just beginning to get the details down of OpnSense setup and use, but one thing I wanted to ask before I go any further is if the TP-Link Deco Mesh Hardware / Setup is compatible with OpnSense

https://www.amazon.com/TP-Link-Deco-Whole-Home-System/dp/B07PS6X293?th=1

Still learning / reading up on the OpnSense Firewall / Router, but I have this system at home currently running on my ISP's Router and want to keep the system in place in my home, but also want to use a better, more configurable routing / firewall solution like OpnSense.

Thanks for the assistance!