Hello, has anyone on here run a separate external firewall along side the internal one that comes with Openwrt?, Just wondering if it is redundant to have opnsense as the external firewall in front of my Openwrt router & then use the openwrt firewall as an internal one?
Seems redundant to me - what are you trying to achieve?
Not now but in the future i want to run internet facing servers and services that i can access while im away or etc. having a physical firewall would help with security also. But from my understanding its better to have just one either opensense or openwrt. Im was wondering was there anyone that ran both.
Just put *sense as Your main gateway with firewall, no need for second openwrt router.
1 Like
Agree, I would use only one of the two - also saves you from double NAT or weird routing setups...
1 Like
Openwrt can work like this
You can have multiple zones in opensense mapped to trunked vlans and wifi APs attaching to them on OpenWrt.
OpenWrt firewall will only protect its management interface on management network, others will be pased as is to radio waves.
Fair enough (and what I use but with OpenWRT as border, too) but he wanted an internal firewall (for whatever reason) so no bridging I would assume. I guess one could route around (pun intended) double NAT though.