I am running TrueNAS version 25.04.2.4
I have tried to search for the error the last few days with the help of AI, but it has finally tossed the towel in the ring, and I don’t know what do do from here.
Basically, I have installed apps and I want to make them available with my reverse proxy, Caddy, which is running on my OPNsense firewall. This does not work
Clients on my LAN can access my apps (and TrueNAS webui itself) directly via ip:port, but my reverse proxy running on my OPNsense gateway (192.168.1.1) cannot. If I try to curl my truenas ip from my firewall I get no response. Curl works fine from devices on my LAN.
I have tailscale enabled on both my OPNsense firewall and my TrueNAS server, and if I try to curl the TrueNAS tailscale ip it works as it should
My OPNsense firewall log shows it is passing the traffic.
My TrueNAS iptables rules show a default policy of ACCEPT.
My TrueNAS netstat -rn shows the correct gateway.
A tcpdump run on the TrueNAS host shows the incoming SYN packets from the gateway arriving, but no reply is ever sent.
I need help with my next steps in this situation.
tcpdump -i enp3s0 host 192.168.1.1
tcpdump: verbose output suppressed, use -v[v]… for full protocol decode
listening on enp3s0, link-type EN10MB (Ethernet), snapshot length 262144 bytes
14:15:43.206787 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17156, length 9
14:15:44.208051 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17157, length 9
14:15:45.223544 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17158, length 9
14:15:46.174827 IP _gateway.incus.33500 > truenas.incus.30013: Flags [S], seq 3222564470, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 318935084 ecr 0], length 0
14:15:46.224513 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17159, length 9
14:15:47.176229 IP _gateway.incus.33500 > truenas.incus.30013: Flags [S], seq 3222564470, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 318936085 ecr 0], length 0
14:15:47.229608 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17160, length 9
14:15:48.231243 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17161, length 9
14:15:49.232617 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17162, length 9
14:15:49.394155 IP _gateway.incus.33500 > truenas.incus.30013: Flags [S], seq 3222564470, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 318938303 ecr 0], length 0
14:15:50.238335 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17163, length 9
14:15:51.239624 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17164, length 9
14:15:52.241834 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17165, length 9
14:15:53.263801 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17166, length 9
14:15:53.594019 IP _gateway.incus.33500 > truenas.incus.30013: Flags [S], seq 3222564470, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 318942503 ecr 0], length 0
14:15:54.269823 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17167, length 9
14:15:55.270809 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17168, length 9
14:15:56.273608 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17169, length 9
14:15:57.275477 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17170, length 9
14:15:58.279487 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17171, length 9
14:15:58.990568 IP _gateway.incus.16015 > truenas.incus.30013: Flags [S], seq 1203703389, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 3024121961 ecr 0], length 0
14:15:59.281342 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17172, length 9
14:15:59.994430 IP _gateway.incus.16015 > truenas.incus.30013: Flags [S], seq 1203703389, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 3024122965 ecr 0], length 0
14:16:00.282390 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17173, length 9
14:16:01.282880 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17174, length 9
14:16:02.202967 IP _gateway.incus.16015 > truenas.incus.30013: Flags [S], seq 1203703389, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 3024125174 ecr 0], length 0
14:16:02.283361 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17175, length 9
14:16:03.299720 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17176, length 9
14:16:04.301748 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17177, length 9
14:16:05.303458 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17178, length 9
14:16:06.304726 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17179, length 9
14:16:06.402531 IP _gateway.incus.16015 > truenas.incus.30013: Flags [S], seq 1203703389, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 3024129374 ecr 0], length 0
14:16:07.305763 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17180, length 9
14:16:08.321848 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17181, length 9
14:16:09.329528 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17182, length 9
14:16:10.335610 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17183, length 9
14:16:11.337500 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17184, length 9
14:16:12.342948 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17185, length 9
14:16:13.346474 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17186, length 9
14:16:14.347730 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17187, length 9
14:16:14.604782 IP _gateway.incus.16015 > truenas.incus.30013: Flags [S], seq 1203703389, win 65228, options [mss 1460,nop,wscale 7,sackOK,TS val 3024137576 ecr 0], length 0
14:16:15.348694 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17188, length 9
14:16:16.360697 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17189, length 9
14:16:17.378163 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17190, length 9
14:16:18.379855 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17191, length 9
14:16:19.384380 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17192, length 9
14:16:20.385005 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17193, length 9
14:16:21.397294 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17194, length 9
14:16:22.398462 IP _gateway.incus > truenas.incus: ICMP echo request, id 384, seq 17195, length 9