Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

838 questions
2
votes
0 answers

PFSense wildcard records for local hosts

PFSense 2.3.2-RELEASE-p1 I have a local server running Apache. www.office.lan resolves to this server's IP. I want to run multiple virtual hosts, each accessible by a unique subdomain, for example: www_a.office.lan www_b.office.lan ... What I want…
Craig Jacobs
  • 173
  • 1
  • 7
2
votes
1 answer

Redirect from 1 IPv4 local subnet to another in pfSense

I have an OpenVPN Server on pfSense. The tunnel is on a private network 10.21.4.0/24, but the LAN is on 10.21.1.0/24. How can I route the VPN clients from the tunnel to the LAN? My current setup includes: An Open VPN server (made with the…
David
  • 121
  • 1
  • 7
2
votes
1 answer

Failover setup of virtual machines using KVM

I have two physical servers each having: 2 CPUs (6 cores each), 4 network interfaces, 128GB RAM, 4 x 200GB SDD, 2 x 1TB SAS HDD and 1 configurable switch like Cisco Catalyst with support of vlans. I need to host a web application on these 2 servers…
Nurjan
  • 203
  • 5
  • 10
2
votes
1 answer

pfSense NAT to VPN address

I'm trying to setup NAT to an Address reachable through OpenVPN. Site A is the VPN server and has Public IP 1.1.1.1, network 192.168.5.0/24 and Site B is VPN Client and public IP 2.2.2.2, network 192.168.10.0/24. Goal is to have NAT Rule at Site A…
rgomez
  • 153
  • 1
  • 2
  • 10
2
votes
1 answer

Shrink FreeBSD root partition

I currently have a pfSense 2.3.2-RELEASE which was installed with too little RAM and, now I realized that the swap partition is too small (8GB) and I want to expand it. The problem is there's no free space to do that, so I need to shrink the UFS…
Maurício Mota
  • 199
  • 2
  • 9
2
votes
1 answer

PFSense not getting WAN IP but Ethernet Adapter has one (Hyper-V)

we have a Hyper-v machine running on WS2012R2 Datacenter Machine. Our modem is in bridge mode. Our office Mikrotik is currently getting a WAN IP address just fine. However, we want to move over to PFSense again since we had easier OpenVPN setup…
Jason
  • 3,931
  • 19
  • 66
  • 107
2
votes
2 answers

Allow pfSense to route from WAN to LAN

I have a pfSense instance with two network interfaces set up between a LAN and WAN: 192.168.1.0/24 (WAN) <-> (192.168.1.100) pfSense (10.0.1.100) <-> 10.0.1.1/24(LAN) For simplicity, I have allowed all traffic in the filtering rules. This works…
0x90
  • 186
  • 1
  • 1
  • 6
2
votes
2 answers

difference em0, em1, bge0 - pfsense

While assign interface in pfsense I found three interfaces em0, em1, bge0. I assigned bge0 for WAN and em1 for LAN. it worked. but honestly I don't know what is the exact difference between these three. is either or case? or each one have any…
Bilal Usean
  • 171
  • 1
  • 1
  • 14
2
votes
2 answers

pfSense on x64 hardware increased network performance?

Main server has 50x50 mbps dedicated fiber ISP. We currently have a Netgear FVS336Gv3 wired router with WAN to LAN throughput rating of 300 mbps. This device performs all routing to/from the internet to the openVPN server. openVPN server is running…
dan
  • 279
  • 1
  • 4
  • 15
2
votes
1 answer

Simulate massive network traffic

We want to stress test our pfsense box with a massive amount of connections and traffic. Right now we are using iperf, but reaching a number of more than ~300 parallel connections the test clients reach their limit regarding open tcp connections.…
Juke
  • 133
  • 1
  • 5
2
votes
1 answer

Can't connect to PFSense webconfig (virtual machine)

I've setup a new PFSense VM (version 2.2.2) in virtualbox, it's connected to three network interfaces, vboxnet6 and vboxnet7 (both host-only adapters) and eth0 (bridged). In this case vboxnet6 is setup as the lan interface, vboxnet7 is opt1 and…
Lieven Lagast
  • 21
  • 3
2
votes
1 answer

Can't connect to Ubuntu server on LAN from pfSense VPN

Quick summary pfSense server is connected to the WAN and LAN. This box also has an OpenVPN server running. The LAN clients use 192.168.20.0/24 OpenVPN clients use 192.168.30.0/24 On the LAN I have two servers, one running Ubuntu (15.10) and one…
josh
  • 21
  • 1
  • 4
2
votes
1 answer

PFSense IPSec and NAT

Due to bad design and hosting provider constraints I have a network where I don't control the router. Our network: 172.16.0.0/12 - LAN x.x.x.0/24 - WAN (Router is connected to the switches, we have no control over it) 192.168.253.0/24 - IPSec client…
Yoav
  • 93
  • 1
  • 1
  • 5
2
votes
0 answers

SquidGuard holding navigation

This is my first question within ServerFault. So I beg you pardon if the question here is a little out of context or too long. I haven't found anything on the internet so I'm recurring to you. I'm using a pfSense Firewall v2.2.4 in a virtual machine…
Bruno Andrade
  • 21
  • 1
2
votes
0 answers

Routing public IP addresses to customers in a WISP setup

We have a fibre leaseline with a /29 range for our pfSense WAN port 61.179.145.40/29 So the WAN of our pfSense box is 61.179.145.42 with a gateway of 61.179.145.41. Our ISP has also routed 61.179.144.128/25 with a next-hop of 61.179.145.42 (our…
dynamicuser
  • 137
  • 7
1 2 3
55 56