Update OPNsense from LAN interface

Started by Jedis, October 07, 2023, 01:12:03 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 07, 2023, 01:12:03 AM
Hello,

New OPNsense user as of today. I have to do some more work before I can migrate over my WANs to the new box that is running OPNsense.

I am able to connect to the web interface of OPNsense. I can use the ping utility to ping devices on the local LAN.

Is there a way to, temporarily, allow internet access via the LAN so I can check for updates? I am running the version on the website - 23.7, but figured it couldn't hurt to check for updates before I go any further.

My fall back option is going to be to connect another ethernet cable to the WAN0 and plug it into my LAN.

Thanks!
October 07, 2023, 01:29:06 AM #1
If I understood you correctly, I always use your fall back option.

Connect OPNsense WAN to your current network configured to receive an address from DHCP. Configure all of your LAN interfaces and rules. When that testing is complete, change your WAN config and drop it into place for the live WAN test. This is a normal routine which will give you a smoother path to your base configuration before you go live.
Deciso DEC697
+crowdsec +wireguard
October 07, 2023, 02:35:40 PM #2
Are you just plugging one cable into the OPNSense LAN port and then connecting that to your existing network?  I'm trying to understand your setup and use case.

If you have console access, you can plug the WAN port only into your network and then use the console to perform all of the needed updates.
October 07, 2023, 04:31:24 PM #3
Or connect only LAN, activate SSH, login and enter as root:
Code Select
route add default <ip of your LAN router>
You should be able to install updates with an otherwise default installation, then.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
October 07, 2023, 06:09:05 PM #4
Thanks, all! Appreciate you all for offering solutions for either method!
November 21, 2024, 12:47:58 PM #5
Since nobody actually mention or explain how to do this properly via the GUI. And I also needed to add my OPNsense to a LAN interface temporally and running updates (before deployment).

1. I assume your LAN interface is enabled and basically configured like out of the box (eg. using a static IP address for OPNsense)
2. Let's create a upstream gateway, by going to: System -> Gateways -> Configuration -> Create a new gateway by clicking the + icon.
3. Now give the gateway a name, select the correct "LAN" interface, enter the upstream router under IP address (eg. 192.168.1.1).
Then check the "Upstream Gateway" checkbox. Press Save button.
4. Finally, press the Apply button.

See attachment how it should look like.

If you are done, you can remove the temp. gateway configuration again from above. Normally you will add a gateway configuration on your WAN interface.
Hardware: DEC3852
Version: OPNsense 24.10 Business Edition
Print
Go Up Pages1
User actions