Firewall causing trouble in double NAT setup

Started by Heliox, February 12, 2023, 07:54:36 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 12, 2023, 07:54:36 PM Last Edit: February 12, 2023, 08:18:35 PM by Heliox
Hello,

I am trying to run OPNsense virtualised in Proxmox with limited success.

Problem

  • Once the firewall is enabled the internet access on WAN stops working and likewise OPNsense is not accessible from WAN-side.
  • LAN interface DHCP works, but no internet access and not able to ping 192.168.0.1. In general there's no routing from LAN -> WAN 

Double NAT setup configuration

1) OPNsense gets a static ip from ISP router (192.168.0.0/24) with IP 192.168.0.2 on the WAN interface. DMZ is enabled for this IP.
2) OPNsense runs DHCP 192.168.3.0/24 for virtualised clients in Proxmox and physical clients connected either by cable or wifi.

Visualised here: https://i.ibb.co/ctwtrP6/Setup.png (nb. proxmox 7.3)

Interface overview:
WAN - https://ibb.co/xgqmyWd - Block bogon networks and Block private networks disabled.
LAN - https://ibb.co/LZXkPMT

Firewall:
WAN - https://ibb.co/7p8FXnko
LAN - https://ibb.co/rxtCTJj

Other:
Gateway - https://ibb.co/cyGNTSs
Routes - https://ibb.co/R75hDtH
NAT - default settings.
Loopback - default settings.
Unbound DNS - enabled, default settings.


Any information missing?
February 12, 2023, 08:28:58 PM #1
Interfaces, WAN, Block private networks

untick and apply
February 12, 2023, 08:32:52 PM #2
Already unticked - https://ibb.co/vwhn40B
February 18, 2023, 10:21:49 AM #3
So, well. It was a problem with "block private networks". Despite being unticked during the wizard installation, they were still  In interfaces wan i had to tick them, apply and then untick them and apply again. Now everythign works as expected.

// close thread.
Print
Go Up Pages1
User actions