Opnsense Transparent Filtering Bridge
Transparent Filtering Bridge
Netplan
- Wir bauen eine transparente Bridge mit einem MGMT Port
- WAN und LAN haben keine IP
![Bearbeiten](javascript:editDrawio("2080631254", "trans-bridge-1.drawio.png", "png", false, false, false, true, "https://embed.diagrams.net")){kind=link}
Virtualbox
Interfaces
MGMT
WAN
LAN
Disable Outbound NAT rule generation
- To disable outbound NAT, go to Firewall ‣ NAT ‣ Outbound and select “Disable Outbound NAT rule generation”.
Change system tuneables
- Enable filtering bridge by changing net.link.bridge.pfil_bridge from default to 1 in System ‣ Settings ‣ System Tuneables.
net.link.bridge.pfil_bridge =1
net.link.bridge.pfil_member = 0
Create the bridge
- Create a bridge of LAN and WAN, go to Interfaces ‣ Other Types ‣ Bridge. Add Select LAN and WAN.
Assign a management IP/Interface
- To be able to configure and manage the filtering bridge (OPNsense) afterwards, we will need to assign a new interface to the bridge and setup an IP address.
Traffic is now controlled by BRIDGE Interface
