Strange behaviour with fresh install of OPNSense, R86S and SFP+

Started by mikael1985, March 18, 2024, 04:12:10 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 18, 2024, 04:12:10 PM
Hello!

I am trying to replace the router sent from my ISP with a custom OPNSense router with R86S hardware. My internet connection is fiber 10 Gbps. I have successfully installed OPNSense, latest version.

I have added a text file /boot/loader.conf.local with contents "mlx4en_load="YES"" and assigned the different SFP+ ports as WAN and another for LAN. The LAN goes to a 10 Gbps switch.

After running the wizard in OPNSense and entering DNS servers of 8.8.8.8 and 1.1.1.1, I can only visit some pages but most of the Internet is not working at all. What could be the issue here?


This works:
Google works fine i browser

Opnsense.org works fine. I can also update OPNSense through the web gui

fast.com and fast cli speed test works fine

What does not work;
Everything else. Everything I try with "ping" fails, both from my Macbook Pro and from the OPNSense Web GUI.


March 18, 2024, 06:55:42 PM #1
Did you check the box to use the router as a DNS server? I'm guessing you can ping all kinds of IP, just not by name which points to a DNS issues of some kind (It's always DNS).
March 18, 2024, 08:15:47 PM #2
I can not ping any IP address. I tried "ping 1.1.1.1" and "ping 8.8.8.8" for instance.

I have not checked any checkbox to use router as DNS server what I can remember. Is that checkbox the "use system nameservers" in query forwarding (your screenshot)?
March 18, 2024, 09:35:32 PM #3
If you can't ping an ip, then something else is wrong.
March 19, 2024, 08:59:13 AM #4
I'm using an R86S in the exact same config as you with a 10G WAN SFP+ and the other as a 10G LAN SFP+, and I use one of the 2.5G RJ45 as a management port.

I know it doesn't really help you, but I have no issues whatsoever with mine.
March 19, 2024, 11:39:04 AM #5
Hi,

may I suggest you have not permitted ICMP.
Check if you have a rule
    Action: Pass
    Protocol: ICMP
    ICMP subtypes: Echo request
    Source: any
    Destination: WAN
    Description: Allow ping on WAN

I had similar problem on a different platform but same solution
March 19, 2024, 05:04:00 PM #6
I haven't touched the rules, but I'll give it a try.
March 19, 2024, 05:04:40 PM #7
Quote from: ProximusAl on March 19, 2024, 08:59:13 AM
I'm using an R86S in the exact same config as you with a 10G WAN SFP+ and the other as a 10G LAN SFP+, and I use one of the 2.5G RJ45 as a management port.

I know it doesn't really help you, but I have no issues whatsoever with mine.

Good to know that it works for you! Did you also add the loader.conf.local in /boot directory?
March 20, 2024, 08:42:46 AM #8
Yes indeed.
March 20, 2024, 12:50:16 PM #9
Would it be possible for you to share your OPNSense configuration somehow? E.g. which SFP+ port is your WAN/LAN. Nothing sensitive of course!
Print
Go Up Pages1
User actions