No internet for lan devices

Started by beankylla, Today at 07:38:40 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
Today at 07:38:40 AM Last Edit: Today at 09:07:04 AM by beankylla
Hello,
Sorry Opnsense newbie here.
I though i was tech savyy but am somewhat overwhelmed with the amount of options settings.
I tried following tutorials but somehow am missing something.

I setup opnsense.
I have firewall rules that allow outgoing traffic.
I have internet on Opnsense can update and ping.
Alas no LAN devices can access the internet
I can ping the router
I get an ip adress and the dns configured on the server so i guess that is OK.

bash-5.3$ ping 192.168.1.1
PING 192.168.1.1 (192.168.1.1) 56(84) bytes of data.
64 bytes from 192.168.1.1: icmp_seq=1 ttl=64 time=0.486 ms
64 bytes from 192.168.1.1: icmp_seq=2 ttl=64 time=0.568 ms

but nothing outside of the network:
bash-5.3$ ping 9.9.9.9
ping: connect: Network is unreachable

I have the standard rules enabled that to my understanding lets everything go out.

What am i missing?
Here a couple of configs:

NAT:

Mode: Automatic outbound NAT rule generation (no manual rules can be used)

Automatic rules
          Interface    Source Networks    Source Port    Destination    Destination Port    NAT Address    NAT Port    Static Port    Description
        WAN    LAN networks, Loopback networks, 127.0.0.0/8    *    *    500    WAN    *    YES    Auto created rule for ISAKMP
        WAN    LAN networks, Loopback networks, 127.0.0.0/8    *    *    *    WAN    *    NO    Auto created rule

Firewall: LAN:

     Protocol    Source    Port    Destination    Port    Gateway    Schedule       Description    
               Automatically generated rules    
      IPv4 *    LAN net    *    *    *    *    *       Default allow LAN to any rule    
      IPv6 *    LAN net    *    *    *    *    *       Default allow LAN IPv6 to any rule

(plus the 16 auto rules)

Firewall: WAN:

I added this rule on top of all the auto generated ones:

       IPv4+6 *    *    *    *    *    *    *    *    let out anything from firewall host itself

So not sure what i am missing, any clues? :-)
Today at 10:23:03 AM #1 Last Edit: Today at 10:25:09 AM by meyergru
It seems you have not set up DHCP on your LAN. This looks like if you configured your LAN client statically and forgot to add 192.168.1.1 as default gateway. The gateway should be provided if you use DHCP, as well as the DNS server.

Otherwise, all looks fine, although you do not need that WAN rule.
Intel N100, 4* I226-V, 2* 82559, 16 GByte, 500 GByte NVME, ZTE F6005

1100 down / 800 up, Bufferbloat A+
Print
Go Up Pages1
User actions