test network design - are there ways to access a downstream virtual network?

Started by jata, July 30, 2025, 02:56:26 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 30, 2025, 02:56:26 AM
I am a network / opnsense newbie and I am learning by using an isolated opnsense firewall/network using a VM environment.

I have this all working nicely - see architecture attached - don't laugh too much

I can easily access home network from test network (and i expected this as it is 'upstream).

What would I need to do to be able to access devices in test network from home?

Is a VPN the only way?

July 30, 2025, 06:01:59 AM #1
as your Test OPNsense WAN is connected to your home LAN, really only 2 x options.

1. VPN from Home LAN, to test opnsense


2. inbound port forward configured on test OPNsense deployment.


I assume the reason you've connected OPNsense WAN to Home LAN, is to test the test OPNsense F/W etc ?

The other option would be to connect a second LAN interface of test OPNsense to LAN home network...
OPNsense 25.7.1_1-amd64 running on ESXi 6.7 U2 VM, 4Gbytes RAM, 2 x vCPU
Basic non-complex install with frr, IDS and sftp-backup plugins
July 30, 2025, 06:51:22 AM #2
Thanks.

Yes this all just for learning but I see that the setup WAN setup on the test network makes it tricky.

I thought it might be possible using an outbound NAT rule on the home network but I can't get it working.

Appreciate the help and thanks again.
Print
Go Up Pages1
User actions