Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Configure OPNSense as a firewall router
« previous
next »
Print
Pages: [
1
]
Author
Topic: Configure OPNSense as a firewall router (Read 953 times)
ADmiNX
Newbie
Posts: 1
Karma: 0
Configure OPNSense as a firewall router
«
on:
May 31, 2024, 10:16:27 am »
Hello together
I want to configure OPNSense as a firewall in my home network, but after I have activated OPNSense behind my internet modem which is configured as a bridge modus all my LAN connections were blocked by OPNSense, the Firewall Rule for my LAN is configuread as Direction in and Source and Destination as any, the WAN connection is configured with Direction in and Source and Destination as any.
Unfortunately i still don't understand where i made a mistake, please don't forget i am relatively new with opnsense and firewall setup, can you take a look at my network diagram and help me to find the error?
I have configured my home network as follows:
OPNSense was connected behind my Internet modem, the modem is configured with DHCP which is configured in bridge mode, and the OPNSense FW it also gets an IP from my Internet provider.
I have configured the LAN interface on OPNSense with the static IP address 192.168.2.2 and DHCP is deactivated.
The LAN IP address of the OPNSense FW was entered as WAN Connection on my Wifi router.
DHCP has been activated on the Wifi router with the DHCP IP range 192,168,1,0/24.
Logged
cookiemonster
Hero Member
Posts: 1823
Karma: 95
Re: Configure OPNSense as a firewall router
«
Reply #1 on:
May 31, 2024, 11:52:02 am »
I suggest you start with a flat network. That is, the same across all devices. Later you can start thinking about splitting it if that's what you want.
- Disable if you haven't yet the DHCP on the modem device. Will prevent any conflicts in IP assignments.
- Leave OPN firewall rules with defaults. That will block anything coming in from the outside WAN, allow all out from LAN to internet.
- Set OPN Lan ip to the first ip in your selected network range. For instance if you want to go 192.168.2.0/24 then OPN LAN will be set to 192.168.2.1.
- Enable DHCP on OPN on the range above (as a server i.e. the service)
- Disable DHCP server on the Wifi router and put it in AP mode. That's a current mistake you have it seems. It will get an IP from DHCP from OPN and the clients will do the same through it.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Configure OPNSense as a firewall router