OpnSense SIte to Site issue

ismurdegus · December 24, 2023, 1:34am

Hi guys, hope everyone doing well.
I am been using Zerotier for over two years and I am very happy the way work.

I just have one big problem, I can’t setup SITE-TO-SITE configuration on two OPNSense router.

Details below:

ZeroTier Network: 192.168.4.0/24

Managed Routes on ZeroTier Web GUI

192.168.2.0/24 via 192.168.4.2
192.168.3.0/24 via 192.168.4.3

SITE A: 192.168.2.0/24 Network
192.168.2.1/24 - 192.168.4.2/24 Router
192.168.2.5/24 NAS
Internet Connection via 4G modem (CGT NAT)

Firewall Rules created:Firewall/Rules/Zerotier
1) Interface: Zerotier
Direction: IN
Protocol: Any
Source: Any
Destination Any

                  2) Interface: Zerotier
                     Direction: OUT
                     Protocol: Any
                     Source: Any
                     Destination Any

Routes Satus:
Destination 192.168.3.0/24 → Gateway 192.168.4.3

SITE B: 192.168.3.0/24 Network
192.168.3.1/24 - 192.168.4.3/24 Router
192.168.3.5/24 NAS
Internet Connection via Cable, static IP

Firewall Rules created:Firewall/Rules/Zerotier
1) Interface: Zerotier
Direction: IN
Protocol: Any
Source: Any
Destination Any

                  2) Interface: Zerotier
                     Direction: OUT
                     Protocol: Any
                     Source: Any
                     Destination Any

Routes Satus:
Destination 192.168.2.0/24 → Gateway 192.168.4.2

LAPTOP: Linux OS -Internet Connection via WiFi (Outside LAN of SITE A & SITE B)
Connected to the Zerotier network: 192.168.4.110/24

Some ping test that I did:

LAPTOP can PING local area network of SITE A & SITE B (including router IP)
SITE A & B can PING laptop ZT address (192.168.4.110)
Try to ping from SITE B the router on SITE A (using local are network and ZT IP)

ping 192.168.2.1
PING 192.168.2.1 (192.168.2.1) 56(84) bytes of data.
64 bytes from 192.168.2.1: icmp_seq=13 ttl=63 time=451 ms
^C
— 192.168.2.1 ping statistics —
27 packets transmitted, 1 received, 96.2963% packet loss, time 26586ms
rtt min/avg/max/mdev = 451.019/451.019/451.019/0.000 ms

ping 192.168.4.2
PING 192.168.4.2 (192.168.4.2) 56(84) bytes of data.
64 bytes from 192.168.4.2: icmp_seq=29 ttl=63 time=363 ms
64 bytes from 192.168.4.2: icmp_seq=30 ttl=63 time=370 ms
64 bytes from 192.168.4.2: icmp_seq=31 ttl=63 time=353 ms
64 bytes from 192.168.4.2: icmp_seq=32 ttl=63 time=349 ms
64 bytes from 192.168.4.2: icmp_seq=33 ttl=63 time=349 ms
^C
— 192.168.4.2 ping statistics —
34 packets transmitted, 5 received, 85.2941% packet loss, time 33661ms
rtt min/avg/max/mdev = 348.801/356.935/370.135/8.415 ms

Looking at the last example, the link is not stable and if I try to login on the GUI of SITE A via LAN B is not working.

Is the issue describe here : OPNsense | ZeroTier Documentation is what I am experience?

Thanks

system · January 23, 2024, 1:35am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.