Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Cannot access nextcloud (or any port forwards) from lan
« previous
next »
Print
Pages: [
1
]
Author
Topic: Cannot access nextcloud (or any port forwards) from lan (Read 1041 times)
mbc0
Newbie
Posts: 13
Karma: 1
Cannot access nextcloud (or any port forwards) from lan
«
on:
May 16, 2024, 02:50:08 pm »
Hi,
I am new to OPNsense, have carried out a couple of factory resets to make sure I am not doing something stupid but I cannot access nextcloud (or any of my forwarded ports) from within my lan? I have setup nextcloud using a cloudflare tunnel and I can access perfectly on a mobile connection or a connection outside my network
The tracert shows that it is pointing to the correct local ip
I have tried enabling reflective nat in the port forward rule but lose internet connection when applied?
I also tried creating a
Can anyone please help?
Thank you!
Logged
mbc0
Newbie
Posts: 13
Karma: 1
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #1 on:
May 16, 2024, 06:19:36 pm »
I followed this guide for split DNS but get a potential DNS rebind attack warning message on the web page
https://docs.netgate.com/pfsense/en/latest/recipes/port-forwards-from-local-networks.html
Logged
mbc0
Newbie
Posts: 13
Karma: 1
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #2 on:
May 17, 2024, 11:36:36 am »
Have moved a little further with this as I have been able to get 2 of the 3 port forwards working by setting the rules to pass, enable nat reflection and setup unbound dns override.
The 2 that work are standard http but as soon as I enable nat reflection on the nextcloud port forward I lose internet, is that because it is https? I really don't know enough to know where to go from here and getting lost in a google maze, if someone could help I would really appreciate it!
Many thanks
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1596
Karma: 176
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #3 on:
May 17, 2024, 02:41:58 pm »
You have to make sure the port you forward is not one used for the OPNsense Webui (80/443), you have to change the ports of the WebUI to non standard ones like 8443 - before you can freely port forward 443 to an internal service.
Then there are three distinct ways to reach your goal:
- Configure NAT Reflection:
https://docs.opnsense.org/manual/how-tos/nat_reflection.html
- Use a Host Overwrite in Unbound for Split DNS.
- Use a Reverse Proxy on the OPNsense, like os-caddy:
https://docs.opnsense.org/manual/how-tos/caddy.html
Logged
Hardware:
DEC740
mbc0
Newbie
Posts: 13
Karma: 1
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #4 on:
May 17, 2024, 04:30:26 pm »
Hi!
Thanks so much for the reply!
Please see the attached image for what I am trying to achieve,
I have already tried the first 2 suggestions (they are in my previous screenshots) but have not installed a reverse proxy on the router itself as that runs on my unraid server.
I am struggling to get my head around this as I am out of my comfort zone but is what I am trying to achieve possible with a reverse proxy running on unraid from the diagram attached? (Credit to spaceinvader one for his video guide to installl nextcloud on unraid)
Again, thanks!
Logged
mbc0
Newbie
Posts: 13
Karma: 1
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #5 on:
May 17, 2024, 05:34:06 pm »
Hi,
I have changed my OPNsense gui from 443 to 8443, rebooted but still when I enable nat reflection on this rule I lose access to all https websites? Am I missing a step?
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1596
Karma: 176
Re: Cannot access nextcloud (or any port forwards) from lan
«
Reply #6 on:
May 17, 2024, 11:33:39 pm »
Destination any is too broad, you have to choose your external IP address or "WAN Address" (probably "dsl Address" in your case since interface name is dsl) as destination.
«
Last Edit: May 17, 2024, 11:45:24 pm by Monviech
»
Logged
Hardware:
DEC740
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Cannot access nextcloud (or any port forwards) from lan