Time to live exceeded

cryptoparty · August 29, 2017, 05:58:02 PM

I got :

arm1 - Opnsense1 - gw - Opnsense2 - arm2

when i try ping from arm1 to arm2 i see messages about loss packets: Time to live exceeded

cryptoparty · August 30, 2017, 11:01:58 AM

from arm2 i can ping Wan interface of Opnsense2 10.8.10.6/30, but cant ping 10.8.10.5/30 interface of gw.

Mb u know where should I check something?

franco · August 30, 2017, 11:46:56 AM

Maybe you need to unblock private networks in your Interface: [WAN] configurations?

Cheers,
Franco

cryptoparty · August 30, 2017, 12:31:59 PM

Unlocked privates and bogon networks and disabled all packet filtring

cryptoparty · August 30, 2017, 01:24:08 PM

Will it works, if I use opnsenses without Internet connection? I connect them through gw ( debian ):

and I use gw for WAN interfaces 192.168.2.150 and 10.8.10.5 ip-adresses respectively. Would it work correct ?

in file /etc/defaults/rc.conf :

gateway_enable = "NO"

Is it ok?

cryptoparty · August 31, 2017, 01:18:50 PM

Now I fix it. :D Problem was with ip address ob debian.

But now i got other one :D

I can ping remote opnsense's wan interface but cant ping lan ? any ideas how to tune it?

cryptoparty · September 04, 2017, 09:47:52 AM

Need I surely make Firewall Rules Site A & Site B for using Ipsec , or I can disable all packet filtering?

cryptoparty · September 04, 2017, 12:57:15 PM

I mean: Do I need to make Firewall rules how u show it in tutorial or I can disable it and Ipsec will work?

Time to live exceeded

cryptoparty

August 29, 2017, 05:58:02 PM

cryptoparty

August 30, 2017, 11:01:58 AM #1

franco

August 30, 2017, 11:46:56 AM #2

cryptoparty

August 30, 2017, 12:31:59 PM #3

cryptoparty

August 30, 2017, 01:24:08 PM #4 Last Edit: August 30, 2017, 03:31:50 PM by cryptoparty

cryptoparty

August 31, 2017, 01:18:50 PM #5

cryptoparty

September 04, 2017, 09:47:52 AM #6

cryptoparty

September 04, 2017, 12:57:15 PM #7 Last Edit: September 04, 2017, 04:40:17 PM by cryptoparty