46
22.1 Legacy Series / [solved] Strange issue after upgrading to 22.1
« on: January 28, 2022, 03:05:44 pm »
Resolution RTFM, IE this was documented in the Upgrade notes but somewhat cryptic, which has since been clarified.. Read on
22.1 changed how vlan MAC address spoofing worked. In 22.1 you either turn on promiscuous mode on a vlan'd DHCP enabled WAN interface, or add the sppof MAC address to the Parent.
To spoof the Parent vlan interface: in the GUI add the Parent, enable it and add the spoof MAC. The spoofed MAC will propagate to all vlan'd interfaces. If you want you can change <Parent>_vlan<id> interface MACs.
UPDATE TO BElOW. Got a new DHCP lease request on the Partaker and that knocked out the WAN connection so the Virtual and Bare Metal routers have the same behavior.
UPDATE 2 I suspect I am having the same issue as this post https://forum.opnsense.org/index.php?topic=26554.0 Will do a TCP dump to verify when I have a chance.
I have an Opnsense VM running as a Proxmox guest. I have two Proxmox servers a 6.4 and 7.0. I have setup a MicroTik mid router on my network so I can do upgrades to test and make sure things work post upgrade.
I have Verizon FIOS as my provider and use MAC spoofing. Both Proxmox systems have a quad port Intel i350 GigE card which I PCI passthrough one port to Opnsense. This setup has worked well for some time. I also have a 2 port fanless Partaker PC that I have Opnsense running as a backup. Opnsense is running baremetal on the Partaker.
The setups use a single vlan nic, wan vlan10, lan vlan100 and guest vlan200. I upgraded the Partaker PC first and it worked without issue on the MicroTik and Verizon networks.
I then upgraded the backup Proxmox system (PM 7) behind the MicroTik and that went well. I tested throughput on the MicroTik network and everything was great. Now comes the odd part. When I move the Proxmox Opnsense port from behind the MicroTik to my LAN, the WAN port will not acquire an IP address from Verizon. The Partaker PC which uses the same vlan setup and connects to Verizon fine. FWIW the Partaker uses Intel 82574L nics.
The Proxmox Lan side works and I am assuming the guest side does also but I haven't tested it. So there is something that either Verizon or Opnsense Proxmox Guest doesn't like on the WAN side of things with 22.1. Any suggestions on what to look for?
22.1 changed how vlan MAC address spoofing worked. In 22.1 you either turn on promiscuous mode on a vlan'd DHCP enabled WAN interface, or add the sppof MAC address to the Parent.
To spoof the Parent vlan interface: in the GUI add the Parent, enable it and add the spoof MAC. The spoofed MAC will propagate to all vlan'd interfaces. If you want you can change <Parent>_vlan<id> interface MACs.
UPDATE TO BElOW. Got a new DHCP lease request on the Partaker and that knocked out the WAN connection so the Virtual and Bare Metal routers have the same behavior.
UPDATE 2 I suspect I am having the same issue as this post https://forum.opnsense.org/index.php?topic=26554.0 Will do a TCP dump to verify when I have a chance.
I have an Opnsense VM running as a Proxmox guest. I have two Proxmox servers a 6.4 and 7.0. I have setup a MicroTik mid router on my network so I can do upgrades to test and make sure things work post upgrade.
I have Verizon FIOS as my provider and use MAC spoofing. Both Proxmox systems have a quad port Intel i350 GigE card which I PCI passthrough one port to Opnsense. This setup has worked well for some time. I also have a 2 port fanless Partaker PC that I have Opnsense running as a backup. Opnsense is running baremetal on the Partaker.
The setups use a single vlan nic, wan vlan10, lan vlan100 and guest vlan200. I upgraded the Partaker PC first and it worked without issue on the MicroTik and Verizon networks.
I then upgraded the backup Proxmox system (PM 7) behind the MicroTik and that went well. I tested throughput on the MicroTik network and everything was great. Now comes the odd part. When I move the Proxmox Opnsense port from behind the MicroTik to my LAN, the WAN port will not acquire an IP address from Verizon. The Partaker PC which uses the same vlan setup and connects to Verizon fine. FWIW the Partaker uses Intel 82574L nics.
The Proxmox Lan side works and I am assuming the guest side does also but I haven't tested it. So there is something that either Verizon or Opnsense Proxmox Guest doesn't like on the WAN side of things with 22.1. Any suggestions on what to look for?