Assume the following base setup:
- OPNSense exclusively as WAN Gateway / Firewall
- Segmented Layer 3 / VLAN Setup
- Speeds > 1G -> Wirespeed Inter-VLAN Routing needed -> Big Enterprise Core Switch/Router that does Inter-VLAN Routing at Wirespeed
Let's say we have the following IPs / IP Ranges:
- 10.2.0.0/16 -> VLAN2 Service Range, e.g. DHCP, WAN Gateway are located here
- 10.2.1.2/16 -> opnsense LAN1, clients shall use this IP to access WAN. No management access via this IP!