How do I turn off OPNSense firewall? like windows firewall.....

Started by agustinrojen, January 13, 2018, 05:54:54 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 13, 2018, 05:54:54 AM
I have an IP address on my OPNsense, 192.168.1.15 (LAN).

And another IP address for my other device 192.168.1.9 (LAN).

It seems that in my shell. I pinged my other device, 192.168.1.9 using my OPNSense. It goes through and it is pinging because my other device firewall was off.

and when I pinged my OPNSense, 192.168.1.15 using my other device. It just says request time out? I just wonder. How do I turn off my OPNSense firewall like windows firewall? Thank youuu.

newwbiee here.
January 13, 2018, 06:48:47 AM #1
You have to check the firewall rules and eventually open ICMP.
Just post a screenshot of the LAN tab.
January 13, 2018, 10:29:29 AM #2
it woks in the advanced settings - see screenshot.

Please note that you will loose NAT as well.
January 13, 2018, 12:37:25 PM #3
Just to clarify, you do not turn off a firewall. That will mean no traffic will be passed at all.
For Windows Firewall not to do anything, you Disable its profiles (Domain, Private and/or Public).
Hobbyist at home, sysadmin at work. Sometimes the first is mixed with the second.
January 13, 2018, 12:38:30 PM #4
FWIW, you can, ending up with a routing platform. ;)
January 15, 2018, 11:06:14 PM #5
Quote from: franco on January 13, 2018, 12:38:30 PM
FWIW, you can, ending up with a routing platform. ;)

is there a guide somewhere on how to do this?

a knob in the advanced page would be handy to click and have it turn into a routing platform and not have to jump thru a bunch of steps.

i have a few locations that i still have pfsense deployed cause its a routing platform only and i couldnt figure out how to make opnsense act like a routing platform only
January 16, 2018, 04:39:25 PM #6
Quote from: HuntingDMouse on January 15, 2018, 11:06:14 PM
is there a guide somewhere on how to do this?
not really
Quote from: HuntingDMouse on January 15, 2018, 11:06:14 PM
a knob in the advanced page would be handy to click and have it turn into a routing platform and not have to jump thru a bunch of steps.

i have a few locations that i still have pfsense deployed cause its a routing platform only and i couldnt figure out how to make opnsense act like a routing platform only

see the screenshot in my previous post
January 17, 2018, 11:49:27 AM #7
Quote from: fabian on January 16, 2018, 04:39:25 PM
Quote from: HuntingDMouse on January 15, 2018, 11:06:14 PM
is there a guide somewhere on how to do this?
not really
Quote from: HuntingDMouse on January 15, 2018, 11:06:14 PM
a knob in the advanced page would be handy to click and have it turn into a routing platform and not have to jump thru a bunch of steps.

i have a few locations that i still have pfsense deployed cause its a routing platform only and i couldnt figure out how to make opnsense act like a routing platform only

see the screenshot in my previous post

so turning off NAT, turns off the firewall? 

on pfsense i have it setup as a routing platform but with the firewall active as certain vlans cant see the internet or certain other vlans per company policy. one of the clients has in excess of 20+ vlans that terminate on pfsense and forward to there edge device (Juniper SRX240H2) which does NAT on certain subnets and not on others.

please provide more info on how to make this work? im obviously not the only one that can make this a routing platform only. it just doesnt forward traffic out the wan port.
January 17, 2018, 10:07:11 PM #8
It's really not that complicated. You can disable outbound NAT and keep the firewall rules functionality, or you can uncheck the firewall filter in the advanced settings, lose rules and NAT at the same time. It depends on your use case, throughput requirements, etc.
Print
Go Up Pages1
User actions