add: Guest VLAN access to Jellyfin and Jellyseerr
Added OPNsense firewall rules allowing Guest VLAN (10.4.30.0/24) to access media services: - Jellyseerr: 10.4.2.25 - Jellyfin: 10.4.2.26 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
@@ -4,6 +4,10 @@
|
|||||||
|
|
||||||
## 2025-12-28
|
## 2025-12-28
|
||||||
|
|
||||||
|
### Guest VLAN Media Access
|
||||||
|
- Added firewall rules allowing Guest VLAN to access Jellyseerr (10.4.2.25) and Jellyfin (10.4.2.26)
|
||||||
|
- Rules inserted before "Block Guest to LAN" to allow media streaming for guests
|
||||||
|
|
||||||
### Guest VLAN Internet Fix
|
### Guest VLAN Internet Fix
|
||||||
- Fixed Guest VLAN (10.4.30.0/24) having no internet access
|
- Fixed Guest VLAN (10.4.30.0/24) having no internet access
|
||||||
- Root cause: OPNsense DHCP and firewall rules referenced non-existent 10.4.2.129 for DNS
|
- Root cause: OPNsense DHCP and firewall rules referenced non-existent 10.4.2.129 for DNS
|
||||||
|
|||||||
@@ -117,6 +117,7 @@ All DHCP served by OPNsense:
|
|||||||
| Rule | Source | Destination | Action |
|
| Rule | Source | Destination | Action |
|
||||||
|------|--------|-------------|--------|
|
|------|--------|-------------|--------|
|
||||||
| Allow DNS | IoT/Guest | 10.4.2.11:53 | Pass |
|
| Allow DNS | IoT/Guest | 10.4.2.11:53 | Pass |
|
||||||
|
| Allow Guest→Media | 10.4.30.0/24 | 10.4.2.25, 10.4.2.26 | Pass |
|
||||||
| Block IoT→LAN | 10.4.20.0/24 | 10.4.2.0/24 | Block |
|
| Block IoT→LAN | 10.4.20.0/24 | 10.4.2.0/24 | Block |
|
||||||
| Block Guest→LAN | 10.4.30.0/24 | 10.4.2.0/24 | Block |
|
| Block Guest→LAN | 10.4.30.0/24 | 10.4.2.0/24 | Block |
|
||||||
| Block Guest→IoT | 10.4.30.0/24 | 10.4.20.0/24 | Block |
|
| Block Guest→IoT | 10.4.30.0/24 | 10.4.20.0/24 | Block |
|
||||||
|
|||||||
Reference in New Issue
Block a user