Using OPNsense

OPNsense is an open-source operating system that was created from pfSense firewall software. You can use OPNsense template to create your own firewall.

1. Create the antlet

Create a new antlet based on the OPNsense template. If you don't know how to create antlets yet, please check out this article.

2. Set up access

To make sure your antlet and the site running on it is reachable, you will need to configure access. We recommend three different ways to do it. Choose the one that suits your needs best.

Using a bridged NIC

Using Port Forwarding

Configure a bridged network interface, to expose your antlet to your local network. By doing this, your antlet gets another IP address in the same network that your edgeLinux server is in (in addition to the 10.1.1.X address.) This method gives you full access to the antlet from your local network. You can find detailed instructions on how to configure a bridged NIC here.

1) Go to your antlet - Virtual Network. Click on +Virtual NIC. Select the interface and click on Create.

2) Click on Delete next to bblv (internal NIC). Click on "I understand, delete the default Virtual NIC!"

3) Start the antlet by pressing Start.

In this scenario, we will specify a port that gets redirected to port 443 on the antlet. Since antMan is being used on standard https port 443, we need to specify a different source port. In this example, we are using 1443 for source port and 443 for destination port.

You can specify a different port if you'd like. The source port should not be 3000 or 443 since these are being used by antMan.

If you have multiple antlets running web servers listening on the same port, then you must create port forward rules with different source port numbers.

You can find detailed instructions on how to setup port forwarding here.

3. Connect to OPNsense

f you used Bridged Networking above, then use this address in your browser to access OPNsense:

https://bridge-nic-ip

Where bridge-nic-ip is the private IP Address of your antlet that's on your network.

If you used Port Forwarding above, then use this address in your browser to access OPNsense:

https://myantsle.local:1443 https://antsle-private-ip:1443

Where myantsle is the host name of your antsle and antsle-private-ip is the private IP address of your antsle and port 1443 is the custom port we defined in Port Forwarding.

4. Logging into OPNsense

Use the following default credentials for Nextcloud:

Username: root Password: antsle

For using OPNsense, you can refer to their documentation here.