Help newbie configuring Failover WAN

Started by ttime, March 15, 2021, 03:55:01 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 15, 2021, 03:55:01 PM
I lose connection to the WEBGUI when I apply the suggested firewall rule 5.

Have multiple vlans which save me by switching access to the next vlan when was locked out of the opnsense WEBGUI.  Was using the guide https://docs.opnsense.org/manual/how-tos/multiwan.html and do not know what I am doing.  I only have DNS from the WAN nothing onsite.

Below are the configurations:

Step 1
System: Gateways: Single
     Name    Interface    Protocol    Priority    Gateway    Monitor IP    RTT    RTTd    Loss    Status    Description    
WAN2_DHCP (active)    WAN2    IPv4    254    IPDHCP    72.21.91.19    23.4 ms    0.4 ms    0.0 %    Online
   
Interface WAN2_DHCP Gateway    
      WAN1_DHCP    WAN1    IPv4    254    IPDHCP    208.67.220.220    37.4 ms    2.0 ms    0.0 %    Online
   Interface WAN1_DHCP Gateway

Step 2
System: Gateways: Group
Name    Gateways    Description    
WAN_FAILOVERGROUP    
Tier 1    WAN2_DHCP, Online
Tier 2    WAN1_DHCP, Online

Step 3
prefer IPv4 selected
DNS server Wan 1 1.1.1.1
DNS server WAN 2 1.0.0.1

DNS server options overridden by DHCP selected

Step 4 apply and 5 apply in created vlan 4 firewall
      in block IPv4 *    *    *    LAN2 net    *    *    *       
      in block IPv4 *    *    *    vlan5guest net    *    *    *       
      in block IPv4 *    *    *    vlan2 net    *    *    *       
      in block IPv4 *    *    *    vlan10 net    *    *    *       
      in block IPv4 *    *    *    vlan3 net    *    *    *       
      in block IPv6 *    *    *    *    *    *    *       
      out pass IPv4 TCP/UDP    *    *    vlan4 net    53 (DNS)    *    *    LocalRout_DNS    
      in pass IPv4 TCP/UDP    *    *    192.168.4.1    53 (DNS)    *    *    LocalRout_DNS    
      in pass IPv4 *    *    *    *    *    WAN_FAILOVERGROUP    *       

When I do step 5 and apply I lose connection to the opnsense WEBGUI and can still use internet.  I have not tried to see if the failover works yet by pulling the plug on a WAN.

When I lose the WEBGUI I switch to a different vlan and can get to the WEBGUI again.

Am I still protected with firewall in rest of vlans and wan?  Is failover set correctly? Any suggestions would be helpful.
Thanks
Print
Go Up Pages1
User actions