Simple and quick question about interfaces and security zones setting

[fvnet]

Hello,

I have a simple OPNSense installation and testing it. It has two NICs, so the one is the WAN and the other the LAN. No vlans.
Isn't proper the set security zone tag "wan" to the wan interface and "lan" to the lan interface?
Why do I get this " Please add WAN security zones" warning?

Or shall i set to both the security zone "wan"?

Thank you so much

[patient0]

Have a read through Zenarmor: Web UI Initial Configuration, Zenarmor (Sensei): Installing via Web Interface and Best Practices for Zenarmor Deployment.

That will give you a good overview over setting up Zenarmor.

[fvnet]

Hi, I read all documentation and that confused me. It says "As a best practice, it is recommended to protect LAN interfaces".
So i simply select the LAN interface, add the "lan" tag, right?

But i still get this get this " Please add WAN security zones" warning?

[patient0]

As a best practice, it is recommended to protect LAN interfaces

Yes, but then you would not select "Show WAN interfaces". Or at least you would not select the WAN interface to be protected.

What is the OPNsense version you are running and what is the deployment mode?

With the settings (security zones set for LAN and WAN) in you first post/screenshot the error message should not appear. Just for a test, what happens when you remove the security zone from WAN and apply the 'lan' security zone? And if the error message disappears, remove the 'lan' and add the 'wan' security zone again.