Transitioning to OPNsense. Hoping for temp usage of 2 firewalls on same LAN

Started by hwitten, March 24, 2021, 02:56:46 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 24, 2021, 02:56:46 AM
My current setup is PublicIP182-->Cyberoam-->192.168.2.0/24 (CyberoamIP .251)

I have a new PublicIP50-->OPNsense-->hopefully also to 192.168.2.0/24 (OpnsenseIP .1)
DHCP server is OFF for OPNsense as the Cyberoam has it ON)

Webserver is on 192.168.2.6 and works correctly, with PublicIP182 and the Cyberoam.

What I was hoping is that I could ease myself into OPNsense by getting web access with PublicIP50, by port forwarding to 192.168.2.6 as well.

I get a "connection timed out" error.

Am I trying the impossible?

March 24, 2021, 10:07:35 AM #1
Pretty much  :D

Your web server needs to return packets to the client. Since these are all on the internet, it needs to use a default route which can only point to one firewall.

You can test your PublicIP50 connection by temporarily changing your web server's default gateway, which will obviously make it unavailable on your PublicIP182 side.

If you need to do more testing than your outage window allows, consider setting up a separate test server which is equivalent to your main server but has a different internal IP and DG.

Bart...
March 24, 2021, 06:23:37 PM #2
Thank you Bart.
Print
Go Up Pages1
User actions