Looking for some help from people here (esp @kapone you've been amazing in the past!).
I've gotten the standard Opnsense and ICX6610 setup working where all my local traffic between my 3 VLANs are routed internally, anything going to the internet is routed to OpnSense.
However, I just got a Reolink doorbell and very annoyingly, it will not allow local connections unless they appear to come from the same VLAN. The Reolink doorbell is on the IOT VLAN, and client devices connecting to the doorbell are usually on the "STANDARD" or "ADMIN" VLANs.
On the Reolink forums, the solution given was to Source NAT the client IP so that it appears to be coming from the same VLAN as the doorbell.
ICX switches cannot SNAT. So conceptually i think i have to route any traffic from the STANDARD or ADMIN VLANs directed to the Reolink Doorbell IP out to Opnsense for Opnsense to SNAT and send back into the IOT VLAN.
Before I start messing around blindly, I'm guessing i'd have to add an entry to the ICX6610 routing table and also some routing rules/SNAT rules in Opnsense.
Not sure of the exact details.
If someone could guide me on routing table modifications in the ICX6610 to achieve the above that would be great!
Thanks!!
I've gotten the standard Opnsense and ICX6610 setup working where all my local traffic between my 3 VLANs are routed internally, anything going to the internet is routed to OpnSense.
However, I just got a Reolink doorbell and very annoyingly, it will not allow local connections unless they appear to come from the same VLAN. The Reolink doorbell is on the IOT VLAN, and client devices connecting to the doorbell are usually on the "STANDARD" or "ADMIN" VLANs.
On the Reolink forums, the solution given was to Source NAT the client IP so that it appears to be coming from the same VLAN as the doorbell.
ICX switches cannot SNAT. So conceptually i think i have to route any traffic from the STANDARD or ADMIN VLANs directed to the Reolink Doorbell IP out to Opnsense for Opnsense to SNAT and send back into the IOT VLAN.
Before I start messing around blindly, I'm guessing i'd have to add an entry to the ICX6610 routing table and also some routing rules/SNAT rules in Opnsense.
Not sure of the exact details.
If someone could guide me on routing table modifications in the ICX6610 to achieve the above that would be great!
Thanks!!