Opnsense in double nat - moved to apartment with WhiteSky community internet

Started by TheLivingBubba, March 06, 2026, 07:27:04 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 06, 2026, 07:27:04 PM
Hello, I recently moved short term to a place with community internet. I want to use my opnsense box and wireless AP rather than the community wifi. The provider is WhiteSky, I have plugged my opnsense box into the apartment ethernet and I am assigned a 10.198.30.158/22 ip address. When I try and ping from the opnsense box it pings successful, but clients connected have no internet. Tried both by ip and dns, and still no internet.

Running a pihole, unbound is disabled in opnsense, I changed the nat outbound rules to automatic.

Can anyone help?
March 07, 2026, 04:51:07 AM #1
Figured it out with Chatgpt's help. WhiteSky is blocking port 53, did some workaround with cloudfare and unbound.
March 07, 2026, 03:42:04 PM #2
Quote from: TheLivingBubba on March 07, 2026, 04:51:07 AMWhiteSky is blocking port 53, did some workaround with cloudfare and unbound.
This : https://docs.pi-hole.net/guides/dns/unbound/
Does not work with CG-NAT like connections or when the ISP is filtering/blocking DNS Traffic indeed :)
Weird guy who likes everything Linux and *BSD on PC/Laptop/Tablet/Mobile and funny little ARM based boards :)
Print
Go Up Pages1
User actions