No more Internet access from LAN after upgrade to 21.1.6

[JohnnyBeee]

Hi.
I upgraded from 21.1.3 or so to the latest 21.1.6 and suddenly I can no longer access the Internet from the LAN.
Everything worked fine before  >:(
Has anybody experienced the same?
All the rules etc seem ok, and like I said, there were no problems before the upgrade.
So now I no longer have Internet access from my home network.  :'(

Any ideas as to how to solve this quickly would be most appreciated!

[Greelan]

Odd problem. Give info on your setup and post screenshots of relevant config pages

[JohnnyBeee]

Yes, very odd.
To restore internet access to the family now, I reverted back to Opnsense 21.1.3_3 and immediately everything was back to normal .
NoW the next step is to install a new, more powerful firewall.
On my first attempt I installed 21.1.6 and then restored backup that I made on the current firewall with 21.1.3.
That was almost good but I had to reinstall one or two plugins (like Dnscryopt-proxy).
But that is when I hit the internet from Lan issue first.

It was confirmed when I thought it was a good idea to upgrade my current firewall to 21.1.6.
What causes the problem is the upgrade.

Providing screenshots of my config with loads of rules might be a tad demanding.
Would a backup do it?

For now I will rest as I spent a night with no sleep trying to get to work first my new and then my current firewall.

More testing next night when the family does not need the internet ..

[rhubarb]

You say you lost internet access.  Did you perhaps only lose DNS?  Using Unbound?

[JohnnyBeee]

Actually DNS works.
Pings do not.
URLs are properly resolved but connections fail.
It all worked fine in 16.1.3 but after the upgrade, now 16.1.7_1, LAN to WAN connections all fail.
I checked the LAN rules and there is a rule that allows all connections from LAN.net to all
Same as for the DMZ interface that does work.
I have two network cards on my PC. When I deactivate the LAN card and thus force the PC to go through the DMZ I can access the internet.
Any ideas as to where to look for the problem source?

[JohnnyBeee]

It would seem that a VPN interface was the culprit.
One that I never got to work.
Once I deactivated it, everything was back to normal (at least it looks like it so far).
So I guess something changed in the way OPNsense processes VPN interfaces after 21.1.3.