23.1.7_1 broke my Firewall (Fixed)

Started by My_Network, May 05, 2023, 02:49:34 PM

Previous topic - Next topic
Print
Go Down Pages 1 ... 3 4 5
User actions
May 18, 2023, 10:40:51 AM #60
Hi Nic,

No worries. It's just a little difficult to get the full picture in community support as we don't do remote sessions gathering all necessary input like we do in commercial support resulting in a swifter resolution in most cases.

I think if it works that's ok, though "Dynamic gateway policy" is meant for dynamic VPN connections more than anything else. I'd still add a VIP to the LAN network that is in the segment of 192.168.12.0/24 which would allow the routing to pick up the static route more easily (and make that message for the gateway monitor not binding to the right address go away as well).


Cheers,
Franco
May 29, 2023, 06:00:54 PM #61
Hi Franco,

Im sorry to bother your again with this issue. But it is not resolved. I tought is was but it's not. It's been kind of working fine using this: "So I activated the "Dynamic gateway policy : This interface does not require an intermediate system to act as a gateway" in the Lan interface. Then, in Gateways, I checked the box to disable the GATEWAY monitoring for this Gateway so the dping would alwas show that interface as active. Left everything the same in my "FAR GATEWAY" single gateway. In my static route I then changed the GATEWAY to network 192.168.12.0/24 to "LAN_GW - inet" and reloaded / rebooted ". But im experimenting hickup and wierd "BUGS" like MS Teams not working but fine on 23.1.6..

Any way, I found out that I can not have My "LAN_GATEWAY" 192.168.15.1 and my "CISCO_WAN" 192.168.12.1 witch is the FAR GATEWAY running at the same time on 23.1.7_3 and 23.1.8 for that mather. For it to work on 23.1.7_3, the LAN_GATEWAY need's to be in "dynamic" for it's IP with "DISABLE GATEWAY MONITORING" turned on. Plus the "LAN_GATEWAY" alson need's to be set as the default gateway of my "CISCO_WAN" static route, witch make zero sence..

Rollback to 23.1.6 form 23.1.8 and everything is working 100% again.  :o

Thank you,

Nick
May 29, 2023, 06:07:32 PM #62 Last Edit: May 29, 2023, 06:17:22 PM by Julien
i am facing the same issue with one box 23.1.7_3.
the gateway keeps showing offline but everything is working. only sometimes it has to think about reloading websites.
when i tried the revert back to opnsense-revert -r 23.1.6 on the shell nothing happens on the shell.
supposed to reboot after the command line opnsense-revert -r 23.1.6 ?

DEC4240 – OPNsense Owner
May 30, 2023, 08:53:56 AM #63
@My_Network

https://github.com/opnsense/core/commit/25e2c0a30

# opnsense-patch 25e2c0a30


Cheers,
Franco
May 30, 2023, 11:23:44 AM #64
Quote from: franco on May 30, 2023, 08:53:56 AM
@My_Network

https://github.com/opnsense/core/commit/25e2c0a30

# opnsense-patch 25e2c0a30


Cheers,
Franco

Hi Franco,

thank you so much for your answer.
when i enter the command line nothing happens with this machine.
i have the feeling this one is broke.
i tried it on a different one 23.1.8 and it seems to be applied succecefully.

Code Select
Patching file etc/inc/system.inc using Plan A...
Hunk #1 succeeded at 677 (offset -10 lines).
done
All patches have been applied successfully.  Have a nice day.

DEC4240 – OPNsense Owner
May 30, 2023, 11:42:50 AM #65
@Julien

I have the feeling you mistook my note to be for you but I was replying to My_Network/Nick here.
Print
Go Up Pages 1 ... 3 4 5
User actions