I ask for help with setting up

Started by guest17399, April 15, 2018, 12:55:51 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 15, 2018, 12:55:51 PM
Good day. Friends.
I ask for help with the setup.

What do I have:
2 completely identical servers
HP Proliant 360G6 with firmware all to the latest versions
CPU: intel x5670 x2
Network cards: intel 350t4 v2
RAM: 16Gb
HDD Hw Raid 1 (p410i no battery): 300 Gb

Quote2 provider:
1 prov BGP Community
2 prov standard, without BGP and other

What do you need:
opnsense + suricata + signatures from snort;
add the support of two providers:
1 prov must be in the 0 port of the intel 350 t4v2 network card;
2 prov in 1 port of the intel 350 t4v2 network card;

The standard network port (which is now used for LAN) is used to synchronize with another server.

From the other two ports of the intel 350t4v2 network card, make a connection to the switch.


He sketched out a small diagram for visual understanding.

How can I do this?
To begin with at least setting up the network on Intel 350t4v2?
April 18, 2018, 03:42:10 PM #1
The whole problem is that through the "OPT" (external network card (intel 350t4v2)) does not pass traffic to the world.
The gateway pings. And then there are no pings.

Through WAN everything works correctly, with similar settings.

The connection is direct, without switch
April 22, 2018, 09:18:50 PM #2
I would be grateful for any ideas and clarifications
April 24, 2018, 02:33:39 AM #3 Last Edit: April 24, 2018, 01:44:51 PM by Evil_Sense
As far as I shortly researched the OPT interface configuration, you have to create the same rules as the automatic ones for LAN, so it will pass the same traffic as the LAN interface does.

Maybe this helps
April 24, 2018, 10:30:12 AM #4
I need 2 OPT ports to work as a WAN and 2 OPT ports as LAN.

According to the scheme...

p.s. And what rules are created? Where can I see them? I was guided by WAN
I looked in the firewall, nat, routing - all the same ...
April 24, 2018, 01:50:56 PM #5
I think you need to set up a bridge with the two respective OPT interfaces, this could help:
https://forum.opnsense.org/index.php?topic=2981.0

You are currently running a WAN and a LAN interface, the two automatically created rules for the LAN interface are any to any rules and are allowing connection..
Print
Go Up Pages1
User actions