Static route configuration for new VLAN

Started by Kalamaris, December 29, 2019, 07:18:22 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 29, 2019, 07:18:22 PM Last Edit: December 29, 2019, 11:38:50 PM by Kalamaris
Edit: I guess a NAT rule is missing. Is this possible?
Right now I have following settings, created automatically with "Automatic outbound NAT rule generation":


Hi together,

I installed a new OPNsense firewall, which is connected like following:
- ETH1: WAN Interface to Internet
- ETH2: LAN Interface to my router
    - Point to Point subnet between my Router and the OPNsense in VLAN 255
    - OPNsense IP: 192.168.255.1/30
    - Router IP: 192.168.255.2/30

A default route on my router to the OPNsense and a route back is configured, clients in my subnet 192.168.2.0 (VLAN 2) are able to communicate with the OPNsense. They are not able to reach the internet. A tracert shows me, that internet traffic gets dropped after reaching the OPNsense.

I configured following so far on the OPNsense:
- VLAN 255 Interface on the OPNsense firewall
- My router as a new gateway with the IP 192.168.255.2/30
- Static Route on the OPNsense for my clients in VLAN 2, pointing 192.168.2.0/24 to my router
- Cloned the default firewall rules for IPv4 and IPv6 of the LAN interface to my new VLAN255 Interface

It seems that something is missing on the OPNsense. Do I need to edit the standard default route in some way?
December 30, 2019, 10:45:46 AM #1
with VLAN you mean a "normal" network I guess, or is it actually trunked?

I think you don't have to define a new gateway, new gateway is needed for traffic going out in the internet, if you only have a WAN default configuration should be OK
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
Print
Go Up Pages1
User actions