Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
22.7 Legacy Series
»
Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
« previous
next »
Print
Pages: [
1
]
Author
Topic: Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1 (Read 1326 times)
Petroleum3373
Newbie
Posts: 4
Karma: 0
Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
«
on:
January 19, 2023, 06:08:18 pm »
I have noticed that, for some reason, the firewall/NAT does not appear to be functioning correctly on 22.7.11 and 23.1-RC1.
My setup is fairly basic (at least the one I have been using for diagnostics). I have a PPPoE WAN connection and a LAGG LAN connection. I have not set up anything else for the purposes of testing.
On a 22.7 fresh install, the firewall works fine, however after upgrading to 22.7.11 and 23.1-RC1, many programs do not work. For example, Speedtest.net fails with a 'socket error', fast.com does not work, gaming/internet calls do not work and certain endpoints simply fail to connect all together. No relevant blocks are shown in the firewall log and I couldn't see anything untoward in any of the other logs.
I'm fairly certain 22.7.10 worked correctly, but I can't find a way to revert back to that specific release.
The issue can be easily reproduced - running a fresh install of 22.7 works perfectly, updating to 22.7.11 then breaks the setup. A fresh install of 23.1-RC1 also poses the same issue. I can use the same configuration files on all setups.
Is anyone else having a similar issue and/or has any suggestions? I'm not sure what else I can do as I have tried running all versions from scratch and only 22.7(.0) works correctly. However, I would be keen to update as soon as possible to ensure all packages are up to date. It also prevents me installing plugins until updates have been completed.
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
«
Reply #1 on:
January 19, 2023, 11:02:47 pm »
IMHO diagnose 22.7.11. 23.1 is too new, it's still in RC status.
But we'll need to go one problem at the time, and the relevant details for the setup of that problematic part.
Logged
Petroleum3373
Newbie
Posts: 4
Karma: 0
Re: Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
«
Reply #2 on:
January 19, 2023, 11:04:40 pm »
The issue appears to be the same in both - 23.1 was a wing-and-a-prayer test.
Any suggestions as to how to diagnose?
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
«
Reply #3 on:
January 20, 2023, 04:36:53 pm »
Which problem? But in general, please specify your setup infrastructure ie. physical, virtualised, etc.
What NIC, which settings. Anything that can be relevant to the behaviour, you can start with basics.
Then steps to reproduce the error, how, where.
Are there any errors, where.
And this is a *nix-type system. Logs are the first place to look immediately after a problem. Which log, depends on the problem. Learn to hunt around in /var/log/
Logged
Petroleum3373
Newbie
Posts: 4
Karma: 0
Re: Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1
«
Reply #4 on:
January 20, 2023, 05:57:42 pm »
The issue appears to be something with the firewall not tracking the sessions correctly on anything that isn't 'easy' - manifesting with problems with speed tests, video calls, gaming etc.
Physical setup with I225 2.5GbE NICs. One coming in (PPPoE termination), and the two links aggregated to a downstream switch for LAN. I've used a clean install for all testing simply using the install wizard - no other setup has been carried out. The problem is however reproducible with a known good configuration with much more on it.
No errors are shown through my brief flick through the web-gui logs and /var/logs, although there is a lot there. I'm not sure what specifically has changed between 22.7.9/10 and 22.7.11 to potentially narrow it down.
Any other suggestions would be much appreciated.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
22.7 Legacy Series
»
Firewall/NAT causing issues with basic setup - 22.7.11 & 23.1-RC1