Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

838 questions
4
votes
4 answers

pfsense 2.0.2 racoon(ipsec vpn) unreliable

I'm having issues with racoon (ipsec VPN) on pFSense 2.0.2 (and 2.0.1). According to racoon all my tunnels are up (I have about 130 of them), but over time more and more of them won't pass traffic through. If I restart racoon the tunnels start…
cpuguy83
  • 202
  • 2
  • 8
4
votes
2 answers

Internal DNS server provide response to external requests?

I have a pfSense firewall and a Windows 2008 R2 DNS server. I'd really like my DNS server to respond to external queries for my subdomains. Right now, I'm using a 3rd party service for that. Is there a way that I can have my 2008 server respond to…
Andy
  • 195
  • 1
  • 1
  • 10
4
votes
3 answers

What are the security risks of using pfsense in a virtualised environment?

I am thinking of using pfsense on my ubuntu server box. I'd virtualise pfsense with virtualbox, and have it route and firewall all traffic both on and destined to my server as well as the the rest of the LAN. However, I've heard that using pfsense…
user120729
4
votes
1 answer

pfSense router on a LAN with two gateways

I have a LAN with an ADSL modem/router on it. We have just gained an alternative high-speed internet connection at our location, and I want to connect the LAN to it, eventually dropping the ADSL. I've chosen to use a small PFSense box to connect the…
JohnCC
  • 292
  • 1
  • 6
  • 14
4
votes
2 answers

Create a rule using shell in fresh pfSense installation to open up WAN access to WebConfigurator

I am in a situation where I require WAN access to be opened up to the WebConfigurator through pfSense because I do not have another node connected to the same network to access WebConfigurator from the inside. Ideally I would like to just do this in…
tacos_tacos_tacos
  • 3,250
  • 18
  • 63
  • 100
4
votes
3 answers

Suggestions for transitioning to new GW/private network

I am replacing a private T1 link with a new firewall device with an ipsec tunnel for a branch office. I am trying to figure out the right way to transition folks at the new site over to the new connection, so that they default to using the much…
Quinten
  • 1,076
  • 1
  • 11
  • 25
4
votes
1 answer

How to configure pfsense to use LAN ports as local switched ports?

I have a pfsense box with 6 LAN ports. I'd like to use one as the WAN port, and 5 as local LAN ports, just like a home gateway/router. How to setup the LAN ports so that they are all in the same subnet? It seems that the bridging function only…
James
  • 51
  • 1
  • 1
  • 5
4
votes
2 answers

How can I track down what part of pfsense is blocking website access?

I've got a PFSense firewall/gateway on our network. Everything works great except for the fact that I cannot access one specific website. Pfsense is running the following packages Country Block LightSquid nmap notes squid squidGuard Strikeback I…
Chase Florell
  • 580
  • 3
  • 14
  • 29
4
votes
1 answer

pfsense peer-to-peer OpenVPN not connecting

I'm trying to setup a peer-to-peer OpenVPN between two pfsense servers running 2.0.1-RELEASE, but the client keeps getting the connection dropped, with a status of "reconnecting; ping-restart" and nothing appears to be routing between them. Both…
John P
  • 1,679
  • 6
  • 38
  • 59
4
votes
2 answers

Local domain DNS resolution not working using OpenVPN on a pfSense box

I am currently trying to setup an OpenVPN server with the intention of linking several servers together in order to run the backup jobs over the VPN. For this example, this is what I have: A pfSense server running OpenVPN (pfsense.vpn) Two clients:…
Aron Rotteveel
  • 8,449
  • 17
  • 53
  • 64
4
votes
3 answers

Sizing requirements for 100 simultaneous VPN connections

I've been tasked with building out a firewall / VPN device that needs to support up to 100 simultaneous VPN connections as well as light routing (mostly custom NAT mappings). This will be fronting a 50M internet connection leading to 5 servers…
John P
  • 1,679
  • 6
  • 38
  • 59
4
votes
1 answer

pfSense setup recommendations

I want to setup a WAN, DMZ and private LAN. I want to do a Deny ALL and just open the 4-5 ports that I need to DMZ and a Deny all on the private LAN on the DMZ are a web web servers, all have public IP's. I have 3 NICS in this box. em1 = WAN and…
Jason
  • 41
  • 3
4
votes
1 answer

Setup 1:1 NAT using pfSense

pfSense box: Public IPs 208.43.30.118-.117 Private IP : 192.168.1.1 I need to provide 1:1 NAT mapping to a VM in the private network 192.168.1.5 I am unable to get 1:1 NAT working though it should be direct... The output of $ pfctl -s rules scrub…
siva2guru
  • 61
  • 1
  • 7
4
votes
2 answers

PFSense 2.0 RC 3 - Routing problem with PPTP VPN

I have configured a PPTP VPN on my PFSense 2.0 RC3 router. The internet traffic comes to my modem (10.0.0.0/24) and then through my router (192.168.100.0/24). My PPTP subnet is 192.168.101.0/24. I am able to connect to it from my IPad but then,…
Steve
  • 41
  • 1
  • 2
4
votes
3 answers

Forward UNIX syslog to Windows Event viewer

I'm running a pfSense firewall which runs syslog and can forward it's logs to a remote syslog server. I'd like to be able to view these on my SBS 2011 server's event viewer, via a subscription. I assume there has to be some middleware which…
carlpett
  • 926
  • 8
  • 18
  • 30
1 2 3
55 56