Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

838 questions
2
votes
1 answer

Azure S2S VPN: Egress Packets Dropped due to Traffic Selector Mismatch

I have set up a S2S VPN in Azure to connect to an on-prem device (PfSense) of a 3rd Party. We have managed to establish the VPN tunnel, and I can see the status of the connection in the Azure Portal is 'Connected', but when I try a telnet…
Kevin
  • 21
  • 1
  • 3
2
votes
1 answer

Is it possible to give static IP to clients in pfsense

I am using pfsense and it provides an IP address to all clients. Is there any option in there so that I can define the client IP address based upon their MAC address, so that I can measure how much they have downloaded.
John
2
votes
1 answer

Subnet routing with pfSense

I have a public IP and and a public /29 subnet assigned to the same NIC in a server running ESXi. I have installed pfSense, as a virtual machine on this ESXi. I gave three virtual NICs to the pfSense: One is attached to the vSwitch connected with…
JC-
  • 73
  • 1
  • 7
2
votes
1 answer

pfSense - NAT not working

I have a pfSense on Proxmox VM. I have two IP addreses configured: WAN: xx.xx.88.24 -> public IP accesible from internet LAN: 192.168.1.100 -> corporate intranet I want to access an internal server from WAN. For example, I have a server with…
xavi.dive.kite
  • 33
  • 2
  • 5
2
votes
0 answers

Changing VMware Network Configuration

I am in an apartment that PavlovMedia provides DHCP; however, I'm trying to configure my own private network with a pfSense virtual machine as a gateway. Mainly, I just want to use DHCP from my Windows Server instead of Pavlov Media's without going…
Joe
  • 41
  • 1
2
votes
0 answers

Reverse proxy on pfSense 2.1.5 with Squid

I installed Squid on my pfSense and I am trying to reach 192.168.1.41 when the request is for sub1.dom.it, and I am trying to reach 192.168.1.42 when the request is for sub2.dom.it. I used to have all traffic to dom.it going to 192.168.1.25 with the…
Manu
  • 115
  • 1
  • 12
2
votes
0 answers

What are the pros and cons of using PfSense DNS Forwarder or Resolver?

I am looking for a clean set of pros and cons for two mutually exclusive DNS configurations for pfsense router: Forwarder and Resolver. The configuration that I have in mind is a complex home-office setup with VPN to office, dial-in VPN and two…
sorin
  • 8,016
  • 24
  • 79
  • 103
2
votes
1 answer

How can I verify the type of memory that my freebsd box supports?

I have an old pfsense router and want to see what type of memory it supports (e.g. DDR2 240 pin... PC100... DDR... etc). Is there a command that will show me this? I know I could just open the box to look but I don't want to introduce downtime…
Mike B
  • 11,871
  • 42
  • 107
  • 168
2
votes
0 answers

IKEv2 with EAP-MSCHAPv2 with static IP for each client

I've successfully created an IKEv2 with EAP-MSCHAPv2 VPN for Windows 10 clients using PFSense. This is the link that I followed for doing so: https://doc.pfsense.org/index.php/IKEv2_with_EAP-MSCHAPv2 The VPN works great but I need to assign to each…
f0rb1dd3n403
  • 21
  • 2
2
votes
1 answer

pfSense and ESXI WAN

I have a dedicated server which came with ESXI 6.5 pre-installed. There is just one IP dedicated to this, the management IP: 62.121.90.xx/27 from where I can log to ESXI. This instance had just one NIC installed at this IP. No NAT. I asked from my…
Andy
  • 59
  • 4
2
votes
0 answers

NAT Port Forward to VCSA Web Client not working

tldr; VCSA won't load upon external NAT port forward connection. I am trying to login to the vSphere Web Client (VCSA web client) from an external IP address. I have a functioning NAT port forward from the URL to the VCSA web client. I am able to…
Zamanry
  • 21
  • 5
2
votes
3 answers

pfSense - Traffic to subnet not being routed by static route

pfSense version: 2.3.4-RELEASE We recently converted over from a WatchGuard firewall to use pfSense. We've almost got everything working the way that we want it but there's this small thing that we can't seem to get working. We've basically got…
greyseal96
  • 143
  • 1
  • 7
2
votes
1 answer

Publish different sites using a single IP and pfSense - Squid

I'm fairly new to pfSense, so bear with me please. To summarize, I have: A network with split DNS enabled. A single IIS web server with a single IP, different sites running using different host header binding over port 80, all sites working fine…
Noor Khaldi
  • 3,869
  • 3
  • 19
  • 28
2
votes
1 answer

Cisco ASA v.s. pfSense - How packet inspection works with VPNs

We have a small office, about 75% of our infrastructure is cloud based including a pfSense deployment we use for remote access and site to site connections which is currently public facing. We've decided to deploy a Cisco ASA with Firepower support…
dcd018
  • 131
  • 4
2
votes
1 answer

Firewall aliases mapped on DNS entries in pfsense

Is there a way, in PfSense, to add aliases to the firewall, based on hostnames registered in the DNS server? What I want to achieve is to setup a port forwarding rule, using pure NAT, to PC1.example.com, but PfSense says (same with only PC1 in the…
Taz8du29
  • 96
  • 9
1 2 3
55 56