Dum as they come

Started by timlab55, October 20, 2025, 04:50:20 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 20, 2025, 04:50:20 AM
I'm not dum, just don't know that much as far as networking.  I'm learning tho, but right now the wife is getting pissed at me because I'm been working (about 6 hours a day) trying to get opnsense (Transpart bridge) to work for me.  Even my MGMT don't work for me once I hit apply and I lose the dashboard.  So I'm sure everything will understand this.
ATT (In passthorugh mode (192.168.1.X) ----> Mini PC (Have no clue aboout the subnet here) ----- Going to my ASUS router (router mode (192.168.75.X).  So what can I do to get my mgmt to work right.  I'm following the homenetwork guy onn How To Set Up A Transparent Filtering Bridge on OPNsense.

October 20, 2025, 08:29:10 AM #1 Last Edit: October 20, 2025, 12:37:35 PM by meyergru
That is mainly because you have chosen to use a non-preferred setup (i.e. transparent bridge), which complicates things when compared to the usual routed setup.

Just glacing over that "homenetwork guy's" guide, I saw that he uses a non-routed setup, yet wants a third NIC for management, which further complicates things.

In his - presumably - preferred option "Between the router and network switch", he talks about using a router-on-a-stick, which has nothing to do with what he describes, in that neither OpnSense nor the existing router is, can or has to be used as a router-on-a-stick, which by definition uses only one physical interface. This becomes clear even in his picture showing at least two interfaces.

Those youtube guides are mostly done by people who want to make a dollar out of it. I have seen many of them that only touch the surface and still spread the impression that this was easy to to do (which is false for most people).

That set aside, you will have to acquire knowledge of networking if you want to use OpnSense. It is not your average consumer router, which works right out of the box. Frankly, I still do not get why people assume that they can "make their network safer" without any networking knowledge.

You can chosse between a consumer appliance that does most of the neccessary things themselves or OpnSense, which is a tool for professionals. That is a basic tradeoff: you choose either flexibility (which comes along with complexity) or simplicity.

So,  do not expect this to be easy or fast or not fail to work once in a while. If you want to learn networking, you can still do it, but there will be disappointments going along.
Intel N100, 4* I226-V, 2* 82559, 16 GByte, 500 GByte NVME, ZTE F6005

1100 down / 800 up, Bufferbloat A+
October 20, 2025, 08:54:35 AM #2
Adding to @meyergru: best start with the official documentation and guide instead of arbitrary YT videos. 90% on YT is crap. If not more.

https://docs.opnsense.org/manual/how-tos/transparent_bridge.html
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
October 20, 2025, 10:59:26 AM #3
Also there are different transparent bridge setups, and some nic drivers do not like netmap at all if you want to use IDS/IPS

There are different considerations to such a setup as well, e.g. this is an example I did for a customer recently:

https://github.com/opnsense/docs/issues/776

Definitely not a setup for beginners in my opinion.
Hardware:
DEC740
October 20, 2025, 11:20:05 AM #4
Print
Go Up Pages1
User actions