Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Switching From PFSense, General Questions
« previous
next »
Print
Pages: [
1
]
Author
Topic: Switching From PFSense, General Questions (Read 808 times)
House Of Cards
Newbie
Posts: 11
Karma: 0
Switching From PFSense, General Questions
«
on:
May 17, 2024, 05:32:49 pm »
Good day,
I've been using PFSense for a decade, but the shift from community development to a paid model was the last straw. I'm using this opportunity to rebuild as a chance to better configure my router, and I have a few questions.
First, I'm using CGNAT from T-Mobile, and that makes some challenges for remotely accessing my media server. Before I create any rules or do any configuration, I was wondering if anyone has any advise for setting up remote access correctly/securely?
Second, on the rules topic... One thing I greatly miss in the rules configuration is the ability to group rules under folders for organization. Much like the interface has a "folder" for the automatically created rules, I was wondering if I'm missing something? If there is no way to do that I'm missing, I'll have to find where to file a feature request. That was handy to group rules.
Finally, I've noticed that OPNSense reports packet loss on the gateway pretty often. I never saw this on PFSense with the same hardware. I'm not sure what that's about. Any ideas would be appreciated...
Thanks for helping with the transition!
Logged
Greg_E
Sr. Member
Posts: 342
Karma: 19
Re: Switching From PFSense, General Questions
«
Reply #1 on:
May 17, 2024, 10:08:26 pm »
I had PFsense running at home also with tmobile... You should have seen packet loss and probably connection loss if that feature has been turned on.
How were you getting around CGNAT with pfsense? There are no real static IP given to home users on tmobile, though some have been able to figure out how to get ipv6 to do this (like it was designed to do). Sorry, no additional details on this because I haven't sat down long enough to try and figure out how I can or can not.
Logged
House Of Cards
Newbie
Posts: 11
Karma: 0
Re: Switching From PFSense, General Questions
«
Reply #2 on:
May 18, 2024, 06:12:46 pm »
I switched to T-Mobile and never bothered to figure out the remote access thing again once I did it. It was on the to-do list, but I never got around to diving into the issue. I've heard some ideas about how to get around it with VPN tunnels or something, but now that I switched to OPNSense and need to reconfigure everything anyway... now is a good time to figure it out once and for all...
I think I'm going to try to figure out Tailscale (
www.tailscale.com
) and see if that works.
I'm pretty busy this weekend, but maybe we can follow along here in this thread to help others. I'm going to follow this tutorial and see how it goes.
https://www.zenarmor.com/docs/network-security-tutorials/how-to-install-and-configure-tailscale-on-opnsense
Logged
saulsutherland
Newbie
Posts: 7
Karma: 1
Re: Switching From PFSense, General Questions
«
Reply #3 on:
May 19, 2024, 04:52:40 am »
After taking about 2 weeks to wrap my head around WireGuard and get all my devices setup with it, I then found Tailscale and had all my devices switched over to it in less than 10 minutes.
Highly recommend it, be sure to read their thorough documentation.
Logged
House Of Cards
Newbie
Posts: 11
Karma: 0
Re: Switching From PFSense, General Questions
«
Reply #4 on:
May 21, 2024, 05:13:07 pm »
The tutorial I have here is for installing tailscale on OPNSense... This could be handy if I want to use my home internet as an exit node...
For starters, I really want to limit this to my media server running in a docker container on UnRAID. There is an UnRAID plugin for tailscale, but it seems to grant remote access to the whole server. I'm looking into a way to limit tailscale to just the docker container, if that's possible...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Switching From PFSense, General Questions