Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Unable to access resources on the LAN
« previous
next »
Print
Pages: [
1
]
Author
Topic: Unable to access resources on the LAN (Read 1523 times)
vroberts
Newbie
Posts: 4
Karma: 1
Unable to access resources on the LAN
«
on:
March 02, 2024, 07:59:41 am »
Fresh install and updated to 24.1.2_1.
I have wiregaurd VPN configured, and I am able to make a connection. Once connected I can access the web GUI of the OpnSense firewall on the client connected via VPN with no issue. However I am unable to access any other resources on the LAN side of the network.
I setup my instance following the instructions here:
https://docs.opnsense.org/manual/how-tos/wireguard-client.html
I'm fairly new at all this, so if there are some kind of config files I can/should share please let me know and I can do that.
Any help would be greatly appreciated, thanks.
Logged
awado
Newbie
Posts: 15
Karma: 0
Re: Unable to access resources on the LAN
«
Reply #1 on:
March 02, 2024, 08:49:24 pm »
Seems like you need to set up firewall rules allowing this.
Logged
Seimus
Hero Member
Posts: 608
Karma: 59
Re: Unable to access resources on the LAN
«
Reply #2 on:
March 02, 2024, 09:11:07 pm »
Probably missing a proper rule to allow to access it.
Shows us the Rule you have for WG on the WG interface under Firewall.
Regards,
S.
Logged
Networking is love. You may hate it, but in the end, you always come back to it.
OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G -
VM HA(SOON)
N100 - i226-V | Crucial 16G 4800 DDR5 | S 980 500G -
PROD
vroberts
Newbie
Posts: 4
Karma: 1
Re: Unable to access resources on the LAN
«
Reply #3 on:
March 04, 2024, 08:24:09 pm »
Here is a screen grab of the fw rule on the wg interface
Logged
jp0469
Jr. Member
Posts: 60
Karma: 8
Re: Unable to access resources on the LAN
«
Reply #4 on:
March 04, 2024, 08:42:32 pm »
I believe the source will be the IP of the client on the remote network. Try changing the source to "any".
Logged
vroberts
Newbie
Posts: 4
Karma: 1
Re: Unable to access resources on the LAN
«
Reply #5 on:
March 05, 2024, 12:11:40 am »
Changing the source to any didnt seem to do anything.
«
Last Edit: March 05, 2024, 01:01:19 am by vroberts
»
Logged
Seimus
Hero Member
Posts: 608
Karma: 59
Re: Unable to access resources on the LAN
«
Reply #6 on:
March 05, 2024, 10:18:22 am »
Rule looks okay,
Can you enable LOGing of the this specific rule?
Can you please make a picture of all of the Rules under WG interface?
Also did you purge the state table after implementing this rule or any other rule?
Did you implement any outbound (egress rule)?
Can you reach internet when host is using WG? (meaning internet is working okay but intranet LAN is not)
Did you configure mss clamping and proper MTU on WG?
Then>
Can you go to Firewall > log files > live view
Set source to your WG host IP
Try to connect with that specific host to any of your LAN resources
Make a screenshot of the live view and share it
Regards,
S.
«
Last Edit: March 05, 2024, 10:20:08 am by Seimus
»
Logged
Networking is love. You may hate it, but in the end, you always come back to it.
OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G -
VM HA(SOON)
N100 - i226-V | Crucial 16G 4800 DDR5 | S 980 500G -
PROD
vroberts
Newbie
Posts: 4
Karma: 1
Re: Unable to access resources on the LAN
«
Reply #7 on:
March 05, 2024, 08:47:44 pm »
I think I've managed to track down the problem.
When I set this up initially WAN was using DHCP. I then reconfigured WAN to STATIC and that seems to be where my issues began.
In the wizard, I did not explicitly enter an upstream gateway address, which was causing my WAN gateway to default to a defunct status. It's odd because I know that it was showing as working immediately after the DHCP to STATIC IP change, but it fell off sometime after.
I walked through the wizard again and specified the upstream gateway IP in the STATIC configs for the WAN and immediately after wireguard connections were able to see resources on the internal LAN again.
This also highlighted an issue with DNS and the internal LAN devices not being able to resolve webpages (I'm still in the setup phase so there were no users to complain about missing internet access). I realized I needed to manually input some public DNS servers in the Settings > General area and specify my WAN_GW for them.
Thank you everyone for your assistance!
Logged
Seimus
Hero Member
Posts: 608
Karma: 59
Re: Unable to access resources on the LAN
«
Reply #8 on:
March 06, 2024, 09:48:54 am »
Glad to hear you were able to find the problem.
Please adjust your thread with [SOLVED]
Regards,
S.
Logged
Networking is love. You may hate it, but in the end, you always come back to it.
OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G -
VM HA(SOON)
N100 - i226-V | Crucial 16G 4800 DDR5 | S 980 500G -
PROD
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Unable to access resources on the LAN