[Solved] Likely Stupid Noob question - but somehow stuck at step 1

[kitaro1999]

I have installed Opn sense on a new machine and here is my confusion
1. My router IP is 192.169.1.1
2. During install, I selected Opnsense IP to be 192.168.1.1

See picture for more details
1. After install, I connected the Opnsense and i got to the admin screen.
2. I saved the config and since then I am no longer able to reach the admin panel.
3. 1ith 192.168.1.1 i can only reach the router.

I am not sure what the Opnsense IP means - should it be the same as the router IP ?  I have captured details on the attached image.

I appreciate the help. Apologies- i understand this is a stupid question but my google foo is weak. :(

[Patrick M. Hausen]

You cannot use the same network on both WAN and LAN (192.168.1.0/24).

You must change either your ISP router or the LAN interface of OPNsense.

[Seimus]

Patrick was faster >

You cant have the same IP on two different device or two different interfaces on the same device.

If you have a device in your network that has already a 192.168.1.1 you cant give it to OPNsense anymore.

If your Router LAN has 192.168.1.0/24 and you connect to this router WAN for OPN, he needs to get either via DHCP from that router or statically set different IP than .1

Same goes for OPNsense LAN, you cant anymore use 192.168.1.0/24

Regards,
S.

[kitaro1999]

I updated Opnsense to LAN 192.168.20.1/24

Updated problem (s)

1. When I put Opnsense between the ISP router and my home network, I lose internet :(

2. I  cant reach the  opnsense setup screen.

3. Does the ISP router need to be in a special mode ? i can see the lights blinking on the ISP router side and OPN sense end.

[newsense]

You've only moved "the problem" around.

Make the OPNsense lan 192.168.30.1

The WiFi router - unless it can run OpenWRT or DD-WRT and be set in Access Point mode only - will only create issues for you and not much will be gained by having OPNsense with a single client -- the WAN end of your WiFi router.

If DD-WRT or OpenWRT are not supported by that particular router it's time to look at a Unifi AP and run the controller either on the FW or somewhere else either in Docker or one of the other available methods.

[kitaro1999]

I apologize for the confusion - I'm using the same word for multiple things
1. ISP router (ISPR) is 192.168.1.1

2. ISPR outputs to  Opnsense WAN.

3. OpnSense LAN is configured as 192.168.20.1

3. OpnSense LAN is connected to My home router (HR) with following IP network 192.168.70.1


4. All my devices are in the HR or 192.168.70.1 setup.



Problem : I'm not able to  access internet or the  Opnsense admin on this HR network.

Question :  is there something I should be doing to the ISPR or my HR to make this work ?

[newsense]

From your home network, start by pinging each interface, see where things stop.

If all goes well inside see if you can ping google.com

Then there's a question of DNS, where do you have it defined.

[kitaro1999]

I can ping everything on the HR network. My media server, home automation server etc.

Can't ping google , or reach any thing outside the HR.

Stumped.

[kitaro1999]

Here is a quick update

1. ISP Router→ Opnsense (192.168.20.1) →basic switch (not a router) → computer with Hardcoded IP (192.168.20.35)

2. This .35 computer CAN access the admin panel of opnsense

3. The WAN port of opnsense does NOT get an IP from my ISP Router. I see that the WAN interface shows a red X and the text Ethernet Autoselect.


WAN is IGC0, and is configured to be DHCP for both IPv4 and IPv6.

I have rebooted both the ISP Router and the Opnsense machine but no dice.

[kitaro1999]

Quick update: This is likely caused by faulty cables. The WAN IP comes and goes.. so not quite sure.

Question

1. My Opnsense box is a dual Dual Intel 225-V 2.5Gbe ports - is that relevant to the issues?

2. The Opnsense box negotiates to 10baseT with my ISPRouter (that has 1G ports). Not getting 1G on the connection -  is this likely more a cable issue or the intel 225-V  issue?

[newsense]

Make sure you have good/reliable cables.

The ISP modem could have issues negotiating the link, but you can alway set it manually on the WAN interface.

[someone]

Your wan defaults work, as everyone says change opnsense lan ip
leave the wan defaults and uncheck the two bogon boxes in the wizard
opnsense will pick up dhcp ip from the router automatically
should

[kitaro1999]

Quick update
1. Getting new cables fixed the IP issue. WAN is now 1000 full duplex. Yay.


New problem but not quite sure
1. I can physically log on to the OPNsense box and ping google or 8.8.8.8 etc

2. I can log on to the admin for OPN sense box through the LAN port and do a diagnostic trace route as well.

3. Problem : Ho any devices connected to the LAN port of the OPNsense box are NOT able to see the internet.  I am routing the LAN port to my HR (home router).

Very weird. I only have default settings on the opnsense box so far.

[kitaro1999]

I believe it is working now. What was missing is the IP address on the WAN Gateway!

I went to the admin ui
System→Gateways→  Configuration→clicked on the edit button on WAN_GW

The "IP Address" section was empty. Yikes. 

I entered the IP address  of my ISP router as the gateway and voila - seems to work now.

Likely cause of this IP being empty : I installed Opnsense initially with bad ether cables - so i wasnt getting any upstream IP and it is possible that gateway IP was not detected.