Automatic outbound NAT rule does not working

Started by ccesario, November 08, 2018, 07:50:39 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 08, 2018, 07:50:39 PM
Hi guys,

It seems that Automatic outbound NAT rule generation does not working as expected.
It works only when I define Manual outbound NAT rule generation and create my rules.

Tested with fresh installation OPNsense 18.7.7 and 18.7.7 versions.

Does someone are facing the same problem ??!

Regards
Carlos

November 09, 2018, 07:08:43 AM #1
Hi Carlos,

Can you define "not working" a bit more for us?

And what does the automatic rule look like, and what is the manual rule?


Cheers,
Franco
November 09, 2018, 11:53:42 AM #2
Quote from: franco on November 09, 2018, 07:08:43 AM
Hi Carlos,

Can you define "not working" a bit more for us?

And what does the automatic rule look like, and what is the manual rule?


Cheers,
Franco

Hi Franco,

Not working in my tests  mean that when I create a Lan to Wan rule, my hosts does not have internet access. And after investigate I could see that there is no "Automatic Outbond nat rule".  I think that is would be created (in older versions this work)

And after I create a manual Outbound nat rule, my hosts got internet access.


Expected result it is attached.
Current result is Blank.
November 09, 2018, 01:07:28 PM #3
So you are saying automatic outbound rules aren't created for your LAN anymore since a version 18.7.x? Do you know which particular version for reference?


Cheers,
Franco
November 09, 2018, 02:06:41 PM #4
Hi Franco,
Yes, the automatic outbound rules aren't created from LAN.

Well, I have tested it 18.7.6 and 18.7.7 .. and both does not work.

I have a 18.7.3 version that is working.

Best regards
November 12, 2018, 12:23:00 PM #5
Hi @Franco,

It seems the problem happen after 18.7.5.
We have tested 18.7.6 and 18.7.7 and both have the same  behaivor. But with 18.7.5 no.

Best regards
Carlos
March 12, 2019, 07:39:46 PM #6
I can confirm this issue exists in 19.1.x; specifically if you follow the guidance on interfaces page regarding gateway selection for WAN, automatic outbound NAT rules are not created, but manual ones work; if you select the default (only) gateway automatic outbound NAT rules work as expected.

The firewall on which this was diagnosed worked in a n initial test bench situation; the only difference will have been WAN changed to manual from DHCP (and gateway added) and additional LAN/SSN network interfaces added (but not yet in use).
March 12, 2019, 07:52:16 PM #7
We debugged this and changed a lot of code in the process:

https://github.com/opnsense/core/issues/2914

Can't rule out there is still an issue left, but would you mind going through the history and letting me know what differs in your case?


Cheers,
Franco
April 04, 2019, 04:48:46 PM #8
I can confirm this issue exists in 19.1.4. I have updated a v18.7.10 today to v19.1.4 and have no outbound NAT automatic rules and must create it manually.

Thank you
April 05, 2019, 11:01:39 AM #9
Print
Go Up Pages1
User actions