Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

838 questions
3
votes
2 answers

pfSense with two WANs, routing Skype traffic over a specific WAN

I have a pfSense setup with two WANs (WAN1 and WAN2) and one LAN network. The two WANs are setup for failover. However, QoS has recently been an issue for Skype calls in our office (about 30 people) so we want to dedicate WAN2 for Skype traffic (we…
Eric
  • 31
  • 1
  • 1
  • 3
3
votes
2 answers

reason not use pfsense as transparent firewall?

Our office is using a multi-wan router as dhcp/router/firewall. but now I want to put a pc with pfsense between that router and switch, so I can do more advanced firewall task like traffic monitor and content filtering. after reading I found that…
Yichaoz
  • 381
  • 4
  • 8
  • 20
3
votes
1 answer

How to choose an open source, Asterisk friendly firewall?

I'm in pain. We are moving to a SIP based VOIP system and for whatever reason, we could not get our hosted Asterisk solution to work with our Sonicwall. Our VOIP provider gave up and is recommending an open source vendor, pfSense. A little…
Lucas
  • 133
  • 6
3
votes
0 answers

Redundant Firewalls And Switches HSRP and CARP

I currently have planned 2 x uplinks (HSRP Active/Standby) 2 x pfsense firewalls (Carp Enabled) 2 x layer2 switches Please criticize or offer help on the correct way to do this. I have a feeling im missing a valid point of simple networking. The…
Arenstar
  • 3,602
  • 2
  • 25
  • 34
3
votes
2 answers

Traffic shaping HTTP downloads with l7-filter

Given the following: A small, remote office has only a few users and a 1.5 Mbps DSL connection via a ZyXEL 660R. Users experience unacceptable latency and packet loss when even one large file is being downloaded, by any user, causing the…
Skyhawk
  • 14,200
  • 4
  • 53
  • 95
3
votes
1 answer

How to configure BIND to allow RFC2136-style updates for 1 host for Dynamic DNS?

I am using Debian on a VPS with static IP and my home network behind PPP with dynamic IP. My pfSense router/firewall shall update my host home.mydomain.tld via RFC2136 style updates. After lots of reading through different tutorials I still have no…
Daniel
  • 61
  • 1
  • 7
3
votes
2 answers

How can I disable NTP in pfsense?

I am running my pfSense gateway in a ESXi server. right now the server gets its time from the NTP server specified in the general settings section of the WebGUI. I want to disable this so pfSense will only get its time from the local system which is…
AtomicPorkchop
  • 1,975
  • 8
  • 34
  • 55
3
votes
1 answer

How can I setup a Wilcard DNS Entry on pfSense?

How can I set up Wildcard DNS on a pfSense embedded device running pfSense 2.0? Details: pfSense uses dnsmasq as a DNS forwarder Running the current pfSense release, 2.0 Running on a Netgate M1n1wall embedded firewall. I have root access via ssh…
Scott
  • 394
  • 2
  • 7
  • 18
3
votes
1 answer

blocking packets larger then specific size with pf

Is there a way with pf to block specific type of packets larger than specific size?
seaquest
  • 698
  • 2
  • 12
  • 25
3
votes
5 answers

Apache DDoS Protection in router (pFsense)

I'm soon going to change my infrastructure when I buy a new server. I'm going to replace my D-Link DIR-655 router with an pFsense router (and probably use the 655 as an AP) using my old server hardware (Intel Atom 330, 1GB ram, Intel Pro Server MT…
Hultner
  • 107
  • 2
  • 9
3
votes
2 answers

reverse proxy on PFsense, squid or otherwise

I've been trying to get this to work for days now and its not working. After bashing my head against the desk enough times, I've decided to man up and ask. I'm desperately trying to set up a reverse proxy on the pfsense box itself. One because its a…
Mustafa Ismail Mustafa
  • 107
  • 1
  • 3
  • 13
3
votes
1 answer

Ierrs on Network Interface - Pfsense/Freebsd

We're using PfSense as an internal router/firewall (no connection to WAN). Using the Web-GUI, under Status ---> Interfaces, there's one particular interface where I have some errors: In/out errors 3513/0 I then SSHed to the firewall to…
JFA
3
votes
2 answers

Route specific HTTP requests through pfSense OpenVPN

to start, I have very little knowledge on routes, iptables, etc. That said, here's what I'm trying to accomplish and where I think I'm stumped: Problem: We have an external website which we recently firewalled so it only accepts traffic from our…
DennisQ
  • 61
  • 1
  • 4
2
votes
1 answer

Expose Kubernetes cluster behind a pfSense

I installed a Kubernetes cluster on a Bare-metal sever. This server contains a Proxmox hypervisor, I have the following virtual machines a pfSense (192.168.9.254) two masters for the Kubernetes cluster (192.168.9.11, 192.168.9.12) two nodes for the…
sylflo
  • 21
  • 2
2
votes
0 answers

pfSense: config with daloRadius (freeRadius) to setup download quota limitation

I have pfsense and daloRadius(running freeRadius inside) up and running, I successfully configured radius parameters on pfSense and the NAS on daloRadius and they can talk to each other. I am able to create users from daloRadius and authenticate…
Xsmael
  • 171
  • 1
  • 10
1 2 3
55 56