Change Float IP in the External LB and Sync State between OPNSense in HA Scenario
Welasco opened this issue · comments
Here is the list of items that needs to be changed:
- Setup State Sync between both firewalls for HA Scenario
- Add External IP of External Load Balancer as a Virtual IP associated with WAN Nic in both Firewalls
- Add NAT Rule to allow independent access to both firewalls
- Add JumbBox (Windows11) VM in a dedicated Subnet
- Change NAT mode to Hybrid
- Add a Network Alias to JumpBox VM
- Add a NAT rule to JumpBox Network Alias to NAT from WAN Address
In the other scenarios consider add the following items:
- Add JumbBox (Windows11) VM in a dedicated Subnet
- Change NAT mode to Hybrid
- Add a Network Alias to JumpBox VM
- Add a NAT rule to JumpBox Network Alias to NAT from WAN Address
For Windows 11 VM:
- Create a dedicated subnet so we can use UDRs avoiding routing loops
- Since it will be in a different subnet it's required to have NAT Rule and change to use Hybrid
Done