"Recent posts
#21
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by lmoore - Today at 09:52:25 AMQuote from: glenb2 on Today at 03:00:03 AMcould someone explain why my WAN interface is passing outward traffic to these networks? These are not even ranges that exist in my internal network.
If I understand your question, are you saying these packets are are being allowed in through your WAN interface and due to the routes configured on your firewall, they are then going back out to the Internet?
Please provide details about your WAN connection and equipment, and which mode of operation the modem is operating in, e.g. bridge mode.
To avoid connections to RFC-1918 destinations leaking out of your firewall to the Internet, other than those directly connected to OPNsense, you can create black hole routes in OPNsense, in addition, as an added precaution you can create a rule to prevent connections to RFC-1918 destinations going out your WAN interface .
In addition, did you enable the option in your WAN interface to Block private networks?
#22
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by Monviech (Cedrik) - Today at 09:40:58 AMLol Bob chill dude, try not to be so passive aggressive all the time.
#23
26.7 Development Series / Re: OPNsense 26.7-BETA images
Last post by newsense - Today at 09:36:31 AMHi Cedrik,
Got a small window on a FW and was able to get the the nat rules on .10 and _110 ( sent it to Franco as it was the fastest option available )
I also applied your patch and rebooted but it didn't seem to make a difference ( still couldn't connect to a machine in lan over a vpn )
Forgot about the debug files, I'll try and get it later today when I can get another window for a couple reboots
Got a small window on a FW and was able to get the the nat rules on .10 and _110 ( sent it to Franco as it was the fastest option available )
I also applied your patch and rebooted but it didn't seem to make a difference ( still couldn't connect to a machine in lan over a vpn )
Forgot about the debug files, I'll try and get it later today when I can get another window for a couple reboots
#24
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by Bob.Dig - Today at 09:26:47 AMQuote from: glenb2 on Today at 03:00:03 AMSorry if this is a dumb questionThat is how routing works, if it is not local, it gets out the default gateway.
Why is your last screenshot not showing any ports, that is dumb for sure.
#25
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by wincent - Today at 09:06:20 AMWhat is the destination address(WAN address) port range for interface WAN rule?
#26
26.1, 26,4 Series / Re: 2 WAN Uplinks split routin...
Last post by wincent - Today at 08:51:50 AMI drew a network topology diagram, and the general structure is like this (the drawing is a bit ugly)
You cannot view this attachment.
You cannot view this attachment.
#27
26.1, 26,4 Series / Re: Schedule fw rule new style...
Last post by wincent - Today at 08:49:18 AMHave you created a new one or some in your schedule(Firewall -> Settings -> Schedules)? if so, open the 'advanced mode' in the upper left corner when you add the new rule.
#28
26.1, 26,4 Series / Schedule fw rule new style.
Last post by ekke - Today at 08:19:54 AMUnder a fw rule there is no option, drop down meny, to selected any of the created schedules.
There is a coloumn for schedules in the overview, but where can you select a schedule for rule?
There is a coloumn for schedules in the overview, but where can you select a schedule for rule?
#29
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by glenb2 - Today at 07:35:42 AMHere are my rules. I only have 5. I passthrough my WAN port directly to my OPNsense VM so Proxmox isn't exposed to the internet.
Thanks!
Thanks!
#30
26.1, 26,4 Series / Re: WAN interface passing to p...
Last post by wincent - Today at 06:58:09 AMEm...It looks like a broadcast packet, but it shouldn't come from a public network address. Are there any other rules besides DNS NAT rules?
