Messages

Hello guys!

Sorry about my English.

Does OPNSense.org offer courses or training?

I'm already 2 weeks ago looking for some documentation so I can base myself to make a VPN IPsec failover.

I have realized that it is complicated and that maybe OPNSense does not availability natively, so maybe a workaround is needed.

Thank you all.

Hi franco,

it worked.

Thanks!

Thanks franco.

I will update opnsense-patch 2f715d2 and anything downgrade this package.
Before, a backup of course haha.

Yes, fabio, here also it is not working...

I came back to version 17.1.4 and it's working.

Thank you franco. I'm reading the FreeBSD topic.

Guys, thanks for the feedback.

I understood ... is that I saw that in Fortinet has this functionality so I even thought I was not finding in OPNSense.
And I'm still looking for a way to do a failover with my IPsec hahaha.
It's complicated, I have not found any cases with either OPNSense or PFSense ...

Thank you guys!

thale, thanks for your help.

This is exactly what I thought until reading in Fortinet materials that they use route metrics, that is, they leave the two phases 1 (with two different Internet IPs) enabled and place metrics / priorities on the routes (this option does not I found it on OPNSense).
I'm still looking for another possible solution hahaha

Well, anyway you've helped clarify my doubt.

Many thanks friend!

Hello,

sorry about my English.

Can I define metrics for routes? As priorities, distance ...

I need something like this to do a failover on my IPsec network.

Thank you!

Hi thale,

Yes, I have a Dual-WAN connection and I want it when my primary link drops, it goes to the secondary link.

Is there in OPNSense a way to do this?

Thank you for your attention.

Hello, excuse my English.

In OPNSense, is it possible to have two IPsec tunnels with two different links and use metrics?

I have 2 OPNSense, one in a matrix (2 links) and one in a branch office (1 link). I want to do a failover on the connection.

Do you have any documentation explaining how it works?

Thank you all!

Hi!

Sorry my english.

Is it possible to make an IPsec failover connection with OPNSense?

I want to use 2 links to make a redundancy connection.

In the configuration there is no option to add a second Link/IP.

Is there an alternative?

Thank you.

Hello everyone!

I'm having a problem doing port redirection.

I have 2 links, each with its gateway (WAN - GWWAN / WAN2 - GWWAN2).

For example, using WAN, when I make a target so that when a packet hits port 5555 of the WAN, it is routing to the IP 172.16.100.10 on port 22. That works fine there. I am using the Filter rule association = Add associated filter rule option.

When I create the same rule, but using WAN2, it does not work. Only works when Filter rule association = Passed

Note: The default gateway is GWWAN.

Below are the rules.

Code Select Expand

Firewall: NAT: Port Forward

If Proto Address Ports Address Ports IP Ports Description
WAN TCP * * This Firewall 5555 172.16.100.10 22 (SSH)
WAN2 TCP * * This Firewall 5555 172.16.100.10 22 (SSH)


Firewall: Rules

Tab WAN
Proto Source Port Destination Port Gateway Schedule Description
IPv4 TCP * * 172.16.100.10 22 (SSH) * NAT


Tab WAN2
Proto Source Port Destination Port Gateway Schedule Description
IPv4 TCP * * 172.16.100.10 22 (SSH) * NAT


Am I doing it wrong or having a problem?

Thank you all!

Hi there,

Give us an example rule, please.

I was interested.

Good morning everyone!

Really, it's working now.

I will continue with the other tests haha

Thank you all!!

[TLS Error: TLS handshake failed]

Hello everyone
I am installing and configuring 17.1 here in the company, but I have not been able to upload VPN using OpenVPN yet.

I configure exactly the current one, in version 16.7 but I can not make this new one work.

The message that appears is "TLS Error: TLS handshake failed".

I have already reviewed and reconfigured the settings and have re-created the certificates, and always gives the same message.

Does anyone have the same problem?

Thank you!