Skip to content

OPNsense

OPNsense is the router and firewall for my network. It handles DHCP, DNS, VLANs, NAT, firewall rules, and Tailscale. Managed switches and APs are TP-Link Omada.

  • DNS Stack

    AdGuard Home, Unbound, and dnsmasq chained together for filtering, recursive resolution, and local hostname registration.

  • VLANs with Omada

    VLAN setup on OPNsense and TP-Link Omada — interfaces, DHCP, firewall rules, and switch port profiles.

  • AdGuard Home

    Network-wide ad and tracker filtering. Sits in front of Unbound as the client-facing DNS server.

  • Tailscale

    Subnet routing and split DNS over Tailscale, with OPNsense as the exit node.

  • Macvlan

    Giving containers their own IP and MAC address so they appear as distinct devices on the network.