OPNSense and PPPoE Router questions

[deanfourie]

Hi guys,

I have just installed OPNSense on a NUC, and am placing between my PPPoE router and my LAN switch. My question is around the setup of the PPPoE router.

This router has an active ADSL connection, and for this reason the router does not support PPPoE in bridged mode. So I have set it up as a upstream gateway.

Do I need to disable the firewall on the ADSL router? How can I ensure that the router is secure and all incoming traffic is forwarded (including IPSec) to OPNSense? Do I need to setup a DMZ?

My current setup

ADSL Router (172.16.1.1/30)
OPNSense WAN (172.16.1.2/30)
OPNSense LAN (192.168.1.0/24)

Right now I can reach the ADSL Router (172.16.1.1/30) from the LAN (192.168.1.0/24)

This doesnt seem right to me.

Any advice greatly appreciated.

Regards

[utahbmxer]

What modem model do you have?

OPNsense can do PPPoE (that's what I am using for my fiber).  If you can set your modem to full bridge mode you should be able to setup the PPPoE connection in OPNsense.  Without that, you're going to be doing double-NAT, which is exactly what you're describing being able to access the ADSL router from a machine behind OPNsense.  OPNsense is NATing the PCs traffic to it's WAN address and sending it out to the modem.  Double NAT is messy.

[deanfourie]

Thanks for the reply. Im using a Spark SmartModem (not so smart IMO).

Its an Arcadyan VRV9517

I don't believe that bridged mode support ADSL.

Would be nice if I was wrong.

Thanks in advance.

[deanfourie]

Having said that, I did just find this.

See attached.

[chemlud]

Now it is in bridged mode and the sense can do your ADSL? Can you extract/do you know the credentials necessary?

[deanfourie]

Seems to be a no go.

Have set it up in bridged mode. And plugged the OPNSense WAN port into the WAN or FIBRE port of the ADSL router.

Still doesnt seem to want to connect.

Here are my ISP details, most of which I would imagine are configured directly on the router except authentication.

https://www.spark.co.nz/help/internet/set-up/non-spark-modem/

Any ideas? Cheers

[deanfourie]

Ok things are looking better now. I ticked

This connection does not require an immediate gateway or something along those lines. I think it is connected now (screenshot attached).

However, I have no DNS and no route to host when pinging 8.8.8.8 (no DNS with google.com)

Cheers

[deanfourie]

I think I have NAT setup, the first box ticked out of the 4

Attached.

[deanfourie]

Ok i stuffed up and have screwed myself out of OPNSense.

I put a static route in

Gateway: 192.168.1.0/24
Destination: IPv4_WAN

now I cannot access OPNSense anymore.

Any ideas haha?

[chemlud]

connect via serial console and use the menu there.

Have you configured PPPoE in OPNsense? Or in the modem? When the modem is bridged, the credentials will be needed in OPNsense for PPPoE. Do you have the password for the connection? Or is it only available in the Spark?

[deanfourie]

Yes I have configured the WAN interface to use PPPoE and entered all details. It shows WANIPv4 as connected so I assume that it is connected fine.

However when trying to ping 8.8.8.8 I get no route to host, and dns failure when trying to ping google.com

See attached of my WAN status.

Thanks

[deanfourie]

Please anyone,

Im urgently awaiting a response to try get this working.

Regards

[deanfourie]

From my log.


Date
Process
Line
2021-08-21T13:34:09   ppp[41221]   [wan_link0] Link: reconnection attempt 28 in 1 seconds   
2021-08-21T13:34:09   ppp[41221]   [wan_link0] LCP: Down event   
2021-08-21T13:34:09   ppp[41221]   [wan_link0] Link: DOWN event   
2021-08-21T13:34:09   ppp[41221]   [wan_link0] PPPoE node for link is not initialized   
2021-08-21T13:34:09   ppp[41221]   [wan_link0] PPPoE: Error creating ng_pppoe node on pppoe0:   
2021-08-21T13:34:09   ppp[41221]   [pppoe0] Cannot send a netgraph message: pppoe0:: No such file or directory   
2021-08-21T13:34:09   ppp[41221]   [wan_link0] Link: reconnection attempt 27   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] Link: reconnection attempt 27 in 1 seconds   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] LCP: Down event   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] Link: DOWN event   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] PPPoE node for link is not initialized   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] PPPoE: Error creating ng_pppoe node on pppoe0:   
2021-08-21T13:34:08   ppp[41221]   [pppoe0] Cannot send a netgraph message: pppoe0:: No such file or directory   
2021-08-21T13:34:08   ppp[41221]   [wan_link0] Link: reconnection attempt 26   
2021-08-21T13:34:06   ppp[41221]   [wan_link0] Link: reconnection attempt 26 in 2 seconds   
2021-08-21T13:34:06   ppp[41221]   [wan_link0] LCP: Down event   
2021-08-21T13:34:06   ppp[41221]   [wan_link0] Link: DOWN event   
2021-08-21T13:34:06   ppp[41221]   [wan_link0] PPPoE node for link is not initialized   
2021-08-21T13:34:06   ppp[41221]   [wan_link0] PPPoE: Error creating ng_pppoe node on pppoe0:   
2021-08-21T13:34:06   ppp[41221]   [pppoe0] Cannot send a netgraph message: pppoe0:: No such file or directory

[Greelan]

This any help? https://www.geekzone.co.nz/forums.asp?forumid=39&topicid=257136&page_no=36#2489354

[Greelan]

I just wonder if you are using the right ports on the smart modem. Shouldn't the WAN port go out of the wall, and the LAN port be connected to the WAN port of OPNsense?