Search the Community
Showing results for tags 'opnsense'.
-
Hello LTT forum, I've been following Tomaž Zaman, a YouTuber who is planning to create a high-end router. His focus isn't solely on providing behind-the-scenes insights into the design and planning process but also on everything involved in commercializing it.... from picking components for the device and seeking investors and establishing a company. What sets this project apart is its commitment to transparency. Through his videos and posts, he intends to document every step of the process, from idea to execution. He's already uploaded several videos, ranging from the presentation of his prototype to announcing his interest in creating and selling the device. He's also discussed potential pricing based on the bill of materials he's already shared. Summary Personally, I don't know him beyond his channel, but I am very interested in this project, and I believe it deserves a litter of exposure for everyone to appreciate. By sharing this project with all of you, I hope to generate additional interest and foster a community that can contribute ideas and feedback. Sources His YouTube Channel:https://www.youtube.com/@tomazzaman
-
So, I have 16GB of DDR5 sodimm RAM (2x8GB) just laying around after upgrading my Laptop. I don't want it to go to waste and I also want to make a very low-power custom router with a mini PC, was thinking of getting a barebones that supports DDR5, has dual RJ45 and go from there, any suggestions for a EU guy?
-
I've been trying to figure out port-forwarding for a simple minecraft server all morning, my head is spinning lol. I used these guides below but found no luck. Port-forwarding is likely out of my frame of understanding but I would still like to regardless. https://forum.opnsense.org/index.php?topic=8783.0 & https://www.wundertech.net/how-to-port-forward-in-opnsense/ Here is what I've attempted so far. I added a forwarded port and NAT rule for the port I was going to use. Traditionally minecraft servers are on port 25565, but a guide above was using port 3200-3100 for theirs, so I figured it couldn't hurt while trying to figure it out. I also added an alias to set up this port. Lastly, I changed some port settings in Firewall: Settings: Advanced to allow the reflection of port forwards, and I enabled automatic outbound NAT for reflection. Anyone have any thoughts?
- 10 replies
-
- port-forwarding
- networking
-
(and 3 more)
Tagged with:
-
I am currently trying to deploy a vlan at my house to separate my IoT devices from the rest of my network. Here's an overview of my network setup and what I'm trying to do: Hardware Router/firewall: Protectli Vault 4 Port running opnsense Switch: Netgear managed 8 port MS108EUP WAP: netgear wax630e wifi 6e access point On my router I have my default lan addresses (192.168.1.0/24) as well as a vlan set up for my IoT devices (10.0.0.0/24). My switch is plugged into that with Advanced 802.1Q VLAN switching enabled. Off of that switch I have a couple different devices including my wap with 2 different ssids set up, one for default lan and one for vlan1. So far I have been able to get either Ethernet vlans working or wifi vlans, but not both. I have a feeling it has to do with how I'm tagging each port on the switch, but it feels like I've tried everything. Can someone tell me what I'm doing wrong or if this is even possible with my current set up?
-
Hey all, I have just started with OPNsense, but I've ran into the issue that proxmox (10.0.77.20)(hosting OPNsense) can't communicate, well kinda. "ping 10.0.77.20" works fine. but when I try and go to proxmox's web interface it doesnt work (10.0.77.20:8006), and the response is being blocked by OPNsense firewall. (10.0.77.20 => 10.0.77.83). interresting I dont see any traffic from 'mylaptop => proxmox', only blocked traffic from 'proxmox => mylaptop'. I think 'mylaptop => proxmox' is being routed straight through the switch while 'proxmox => mylaptop' is being routed through OPNsense. If I hookup my old edgerouter lite everything works fine. OPNsense firewall logs OPNsense firewall rules, the top one "Default deny / state violation rule" is the one blocking traffic Proxmox network settings
-
Hello, My brother is running an mc server on his computer and wants to port forward it. We tried to port forward it on the opnsense nat, but it did work. We tried both his computers IP and our public IP. Any tips or advise? The server runs on port 25565 on his computer.
- 14 replies
-
Hello, all! I'm a networking newbie in need of some assistance. Please let me know if this one belongs more on the gaming subcategory. I figured it's more of an internet issue than a game issue. Here's what's happening: My Nintendo Switch cannot connect with other players online. I believe this is due to my NAT type being in the 'D' category. Here's my setup: I'm running an HP T620 Plus with OPNSense as my router (my ISP-provided by Cox is in bridge mode). I'm running that to a Ubiquiti Switch which is connected to a U6-Pro AP and a small Intel computer running Ubuntu that houses the Unifi controller software. Attached is a picture laying out my whole network setup. Other problems I've been having that might(?) be contributing: I haven't been able to properly get my OPNSense router and my Unifi setup to communicate with one another properly. Sure, my internet works fine and is pretty fast, but I can't seem to do more advanced(?) things like VLANs and such. I'm a total newbie at this stuff, so I think I'm way out of my depth here. Would anyone be able to help me diagnose my issue or contribute some ideas for solutions? Has anyone seen NAT D problems on Unifi setups before? Thanks a ton!
-
I currently put my network back on my TP-Link router, since it has VPN and DDNS services on it. Still able to access my internal network. So I currently went back to my router due to Pfsense and Opnsense being similar. Pfsense is complicated but once you learn it its gets easier and very confusing GUI. OPNsense is easier for the most part in the GUI layout but when it comes to importing my openvpn hosted on linode, it is a headache. Pfsense is easier to import vpn certs. I hooked up my opnsense box to my 2nd computer to keep my main network going without interupting it. So what im asking has anyone everswitched to OPNSENSE from Pfsense and how has it affected you home network like steam and game servers.
-
Hello! Comcast recently upgraded my internet service to 1.2Gb and I have attempted to configure LAGG via LACP to my MB8600 modem. I have successfully gotten this working and do in fact see the full 1.2Gb in a speedtest from the router! All outbound traffic seems to be functioning normally, no issues there. However, inbound traffic from the WAN side, such as trying to reach a web server I host, always times out on the client. I don't see any errors or collisions on the LAGG interface. When doing a packet capture I see a ton of TCP Retransmission packets coming from the client back into the router. What happens is, in this case my phone on data gets all of the packets out of order and sends a request for TCP Retransmission but continues getting the data out of order until it times out. This does not happen when I have the WAN as only one interface so I believe it is directly related to the LAGG splitting packets between the interfaces. Is there any way that I can fix this issue? Any recommendations would be appreciated!
-
I've been trying to troubleshoot this for about 6 months. Would love any insight or even guesses at what could be happening here as I'm at my wits end at this. Here is the quick description of whats happening: Randomly my internet drops out for a few seconds, rarely a minute long then it comes back. LAN is fine. This happens once a day, sometimes 2-3 times a day. Here is the long part: Watching the status page on Pfsense/Opnsense I can see that my WAN gateway starts slowly going up in packet loss percent. I think this is only affecting my upload. When on discord everyone says I'm starting to sound crunchy but everyone sounds fine to me. Same when playing multiplayer. For example in Arma3 I was told my voice was going crunchy, but in game everyone was walking around just fine no rubberbanding or the walking forever in one direction. Discord will disconnect me fairly quickly where as arma takes a while to boot me. Details: My ISP is GCI and it's a cable modem set as a gateway. Been using them for years and they are highly reliable, going down maybe once or twice a year. I've had techs check it out several times and it's fine. It's shown zero packet loss and very few uncorrectable in it's own logs. The hardware I've been using for 4 years now is a Jetway NUC PC with gigabit Intel NICs built in. Running PfSense. The switch I have is an unmanaged 1GB TP-link 24-port. Along with a Access Point. In PfSense I don't have anything setup like VLANs or VPNs just DHCP setup directing DNS requests to my PiHole running on an Raspbery Pi. UPnP NAT-PMP and some manually set port forwarding for my game servers. Other things on the network is my server running TrueNAS, a few PCs, Switch, PS4, IP Cameras tethered to Zoneminder. TrueNAS is running a handful of things, Samba shares, Plex server, SyncThing, Zoneminder, Mumble server, MineOS server. Now here is what I've done: All the coax cabled replaced and tested. Changed out all of the ethernet cables within my network. Everything is plugged into a UPS. Replaced the modem and the new version is 2.5GB version. So with a 2.5 GB modem I also decided to update my router. I bought a HUNSN RS34g, another intel NUC but with 2.5GB Intel NICs and a TRENDnet 8-Port Unmanaged 2.5G Switch. Reinstalled Pfsense fresh and restored settings from the prevoius router. I'm not sure when exactly this problem started but I think it was around PfSense version 2.6.0. Problem is still present. At this point I'm going crazy. So I wipe the install clean with Opnsense. Problem is still present. Few more things: I've messed with gateway settings, such as disabling gateway monitoring, changed the monitor IP to 1.1.1.1 to keep the ping off of the gateway. Disabled IPv6 on both LAN and WAN. Tried using "Override MTU" "Dynamic gateway policy". Also forced speed and duplex to both 2.5GB and 1GB. Unplugged just about everything at one point and this still happens. Also I completely reinstalled my PiHole on a new SDcard as well. In the Interface Statistics of Opnsense there isn't any listed errors or collisions in LAN or WAN The only place I can see an error is in the gateway logs, here is an example: 2022-09-27T16:14:43-08:00 Warning dpinger WAN_DHCP 66.77.123.1: Clear latency 9544us stddev 1926us loss 11% 2022-09-27T16:12:22-08:00 Warning dpinger WAN_DHCP 66.77.123.1: Alarm latency 10715us stddev 2377us loss 21% 2022-09-25T17:54:35-08:00 Warning dpinger send_interval 1000ms loss_interval 2000ms time_period 60000ms report_interval 0ms data_len 0 alert_interval 1000ms latency_alarm 500ms loss_alarm 20% dest_addr 66.77.123.1 bind_addr 66.77.123.75 identifier "WAN_DHCP " 2022-09-25T17:54:35-08:00 Warning dpinger exiting on signal 15 I get Clear and Alarm alternating quite a bit in the logs and the send_interval along with sginal 15 now and then. Never consistent. I changed my listed IP other than the last digit holder; 66.77.123.1 is my ISP and 66.77.123.75 is my web visible IP address. When I used 1.1.1.1 as my monitor IP the logs don't really change 2022-09-25T17:51:59-08:00 Warning dpinger WAN_DHCP 1.1.1.1: sendto error: 65 2022-09-25T17:51:48-08:00 Warning dpinger WAN_DHCP 1.1.1.1: Alarm latency 37534us stddev 1343us loss 22% I know this is a lot of info for something that randomly happens whenever it feels like but I hope someone has some sort of idea of whats going on. Last bit of detail, the only time it happens "more" is when a friend is watching something on my plex, but even then it's not always going to happen, just slightly more. Thanks for reading my maddening problem, any help is very welcome.
-
Hello, So I am having trouble getting two PC's playing Call Of Duty at the same time. I have heard others chalk this issue up to bad network design on the game side and I honestly believe them because I have no issues with any other game ever. What happens is that one machine is perfectly able to connect to online services, then if a second machine tries to connect they are greeted with an error saying they are not able to connect to online services. I have a current workaround that I just use a VPN on the second machine that connects but that is getting frustrating because at this point I have 4 machines playing COD and only one of them is able to connect without a VPN. I am running the most up to date version of OPNsense and updates have not solved this problem. Thanks!
-
Hey There - I will be joining you all in the Home Networking rabbit hole soon. I have some spare computer parts laying around and wish to build a OPNSense Router for my new fiber connection. When installing and setting up OPNSense, is there a YouTube channel that would be best to follow or would the OPNSense documentation be best? I am also umm and ahhing about getting an EdgeRouter X instead, purely for the sake of not spending $600. But I know this is a much better investment... See attached is my proposed build. Cheers guys! EDIT: I have been told that the PSU is a little OP for this job, but I would need an ATX PSU that is roughly 350-400W right?
-
Hi everyone, I have a Proxmox virtual machine running on OpenSense firewall. The VM has some port-forwarding rules set up for specific ports, but it cannot access those ports on its own public IP address. I have checked the firewall rules on both OpenSense and the VM, and they appear to be correctly configured. Proxmox only has one NIC and is running OpenSense inside a virtual machine, below is the Proxmox configuration and port forwarding rule. I have also tried accessing the forwarded ports from outside the network, and they work perfectly fine. However, when trying to access the same ports from within the network, the connection times out. Has anyone encountered this issue before? Any ideas on what could be causing this and how to fix it? So far, I've run an NMAP scan on both the OpenSense firewall and the Proxmox VM, and everything appears to be correctly configured. However, I'm not sure what other diagnostic data I can provide to help troubleshoot this issue. Scan from an external network: Scan from inside the virtual machine on the same hostname: As you can see, the port forward works properly on other networks but when we check it in NMAP it's `filtered`. This also occurs on Linux virtual machines, while this virtual machine is running Windows Server 2019 disabling the firewall changes nothing. I'm climbing mount stupid here with the searching and forum posts, feel free to ask if you people need any more log files / information! Thank you in advance for your help!
-
- opnsense
- port-forwarding
-
(and 3 more)
Tagged with:
-
So I've been using this Asrock q1900m pro3 board which has worked fine until recently when my pfsense installation literally shat itself. I decided to try opnsense which was working but with somewhat sluggish results. After updating to 19.1 it decided to not boot from any sata port whatsoever, onboard or an asmedia based pcie adapter. Tried several firewall dists and it worked fine as long as I ran it from a livecd but as soon as it rebooted it came to a halt. Finally, I put the same drive into an usb cabinet and booted and to my surprise everything worked, and my steam problem seems to have resolved itself. Steam sometimes took several hours to start, despite a fresh install of both steam and windows. The usb cabinet is a temporary solution but at least things are working again.
-
I build a Host with very capable Hardware, Core i7 3770K with 8GB of RAM and 120GB SSD Host, 120GB SSD VM, 2TB Cache As diagram below: before I put online, I was testing OPNSense NAT performance under VM, I found I couldn't achieve at least 350Mbps, I assign 2 vCPU for OPNSense alone, during iperf Test, OPNSense max out 100% CPU Usage. Currently I doing separate machine, I thought using VM can save some electricity, but performance are not satisfied
-
So im trying to set up OPNsense with 3 LANs, a gateway, a vpn, and 4 interfaces. bce0 - WAN : DHCP from cable modem : will soon be upgrading to gigabit internet, currently just 300/75 bce1 - LAN : 10.10.1.1/24 : TV's, Roku's, "Smart" devices, WIFI 1 bce2 - PIA : 10.10.2.1/24 : Servers, Desktops, Laptops, Cell Phones, WIFI 2 bce3 - MAN : 10.10.0.1/24 : Switches, IPMI (ILO, DRAC, BMC), UPCs, Tape Library I want every device accessible to each other but..... PIA should only be able to access the internet via VPN LAN - WAN MAN - no internet access, I can get the interfaces configured and DHCP working on all the networks, but when it comes to the firewall im completely useless. I've been using pfSense guides and just general poking around to get this far. Opnsense's firewall is a lot different than pfSense's, and ive always just let the firewall do it own thing in the past with a simple 2 interfaces 1 WAN, 1 LAN config, with NAT. All the guides like to post the firewall rules like so: IPv4 * LAN net * * * * Default allow LAN to any rule and i dont understand the syntax , or they tell you to use manual NAT and copy the entries to the other interfaces. When i switch to manual NAT all entries are gone. Any thoughts on how I should set up the firewall???? The modem can do NAT, do i need it on Opnsense? Or how to connect the PIA-VPN to the PIA network only and still have access to the rest of the LAN's. Ive gotten the VPN connected in Opnsense just not to a network. Let me know what you whan screenshots of..............
-
I'm having issues getting portforwarding to work in OPNsense. At first glance it seems pretty simple compared to pfsense but I just can't get it to work. So the rule i've set is source = any to destination = wan address. Redirect target ip is single host or network.