Network via intel 350t4v2 - please help

[guest17399]

I'm trying to make an analogue of wan and Lan. I spent a lot of time solving this problem.

1. For the operation of the WAN analog on OPT1, I indicated in the settings of the interface mac the address of the network card from the WAN itself. There was an exit in the world. ( We will assume that it works. )

2. To configure the LAN on OPT2, I made similar settings, as for the LAN itself. The LAN itself was turned off.
I registered any poppies.
The route does not go beyond the gateway. Exit to the world does not work accordingly.

What to do with LAN (OPT2)?
How correctly was WAN configured (OPT1)?

p.s. opnsense latest

Scheme: https://i.imgur.com/RSid9i3.png

[guest15389]

I'm trying to follow but not really clear on what the problem is or how you are setup.

Can you share what your Interface Assignments window looks like?

So you are trying to ping out to the Internet from the internal network and traffic isn't going out?

[guest17399]

So you are trying to ping out to the Internet from the internal network and traffic isn't going out?

Yes.

Routing:

Code: [Select]

ipv4  default  178.215.11.1  UGS  5590  1500  igb0  OPT1_2Provider   
ipv4  127.0.0.1  link#7  UH  394  16384  lo0     
ipv4  178.215.11.0/25  link#3  U  2527  1500  igb0  OPT1_2Provider   
ipv4  178.215.11.10  link#3  UHS  0  16384  lo0     
ipv4  192.168.1.0/24  link#1  U  955  1500  bce0  LAN   
ipv4  192.168.1.3  link#1  UHS  0  16384  lo0     
ipv4  192.168.2.0/24  link#4  U  11  1500  igb1  OPT2_2Provider_LAN   
ipv4  192.168.2.1  link#4  UHS  0  16384  lo0
Settings of the machine connected to OPT2_2Provider_LAN:
IP: 192.168.2.26
Mask: 255.255.255.0
Gateway: 192.168.2.1
+2 dns

[guest17399]

I also tried to turn off the firewall, configure NAT, make a special route ...

[guest15389]

Can you share what your Interface Assignments window looks like?

[guest17399]

Oh sure. Anything you want

[guest15389]

Why aren't you using WAN for your WAN interface and just a LAN interface? I'm not following why you have so many.

What's the "WAN" interface configured as: DHCP/Static?

[guest17399]

I have network interfaces that are integrated into the motherboard - turned off.
Now only the external network card is used (intel 350t4v2) - on it you need to configure WAN and LAN.

"WAN" on OPT1 seems to work correctly.
But the "LAN" on OPT2 can not be configured.

I also want to try bridge use on the OPT2 interface...

What's the "WAN" interface configured as: DHCP/Static?

Static

[weust]

Why didn't you just disable the onboard NICs in the BIOS/UEFI?
That way they won't even be detected by the OS.

[guest15389]

Even so, I just only configure the 2 ports I use on my 4 port firewall. The other 2 are just left alone and not assigned.

0 is my WAN and 1 is my LAN, other 2 ports are just unassigned.

[weust]

What Animosity022 is fine too. During initial setup you simply select which NIC to use for which type of connection (WAN or LAN).

[guest17399]

Why didn't you just disable the onboard NICs in the BIOS/UEFI?
That way they won't even be detected by the OS.

1. And then how to perform the basic setting?
2. The built-in adapter will synchronize with another opnsense. We have two identical machine

[guest17399]

Even so, I just only configure the 2 ports I use on my 4 port firewall. The other 2 are just left alone and not assigned.

0 is my WAN and 1 is my LAN, other 2 ports are just unassigned.

I plan to use the second two ports as WAN and LAN on a network card for another provider.
But now I'm trying at least two current settings...

That is, it turns out like this (intel 350t4v2):
OPT1 - WAN
OPT2 - LAN
OPT3 - WAN
OPT4 - LAN

default LAN - synchronization with another similar server.

That is, if I now reassign the LAN, then in the future it can not be used for synchronization (probably).
Or in any case I can not configure the second provider.

[weust]

I see where you're going at, but it feels like you are overthinking things.

Why not the first WAN/LAN bundle on the onboard NICs (assuming you have at least two onboard NICs) and the second bundle on OPT1 and OPT2, and then use OPT3 and OPT4 for connecting the second node?

I take it this is a HA setup?

[guest17399]

I see where you're going at, but it feels like you are overthinking things.

Why not the first WAN/LAN bundle on the onboard NICs (assuming you have at least two onboard NICs) and the second bundle on OPT1 and OPT2, and then use OPT3 and OPT4 for connecting the second node?

The scheme is not accurate, in a hurry. But I think the principle is clear. That this is the most correct way to make a failover cluster.