Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

811 questions
0
votes
1 answer

VPN Connection pooling?

I'm having a problem on PFSense https://forum.pfsense.org/index.php?topic=23914.0 where I can only connect one client with a PPTP VPN to a VPN Server outside out network. PFsense is our firewall and it only allows one PPTP connection from a single…
Mr Anderson
  • 1
  • 1
0
votes
0 answers

pfSense LAN network unable to communicate with remote network on OpenVPN TAP connection

I set up pfSense to connect to a remote network (192.168.122.0/24) that only accepts tap connections. The connection is being initiated successfully. pfSense (192.168.1.1/24) itself can connect to remote hosts: pfsense# traceroute -n…
user569825
  • 331
  • 3
  • 5
  • 12
0
votes
2 answers

pfSense CARP - WAN failure on firewall

I have recently configured 2 firewalls (on 2 DELL PowerEdge R210II with ESXI 5.1) with pfSense. We have several LANs and 2 WANs. Everything is running fine but I have a strange behavior: I can access the internet from all LANs but not from the…
eldblz
  • 375
  • 2
  • 11
  • 21
0
votes
1 answer

What "traffic flow" would be right in a transparent "squid + dansguardian" pfsense setup?

My thought (I'm not sure if it's right): LAN interface traffic comes into port 80 Destination port is redirected to 8080 (dans guardian) dansguardian outputs traffic to port 3128 (Squid) Squid outputs traffic out in WAN interface to port 80
Rodrigo Recio
  • 101
  • 1
  • 2
0
votes
1 answer

find static defined device on network

I have a 'simple share nas' that I am unable to discover on my network. It will not show up on the client list of my router, but I believe it is statically set to an adress for the auto discover application that will not run. Is there a way to plug…
h8a
  • 3
  • 2
0
votes
2 answers

Active Directory: pfSense failing?

I have set up PfSense as a router and I have linked two Windows Servers to it. I can ping from SERVER01 to SERVER02 and PfSense can also ping to them. The problem is, on SERVER01 I have set up the Active Directory with domain johann.nl, now I want…
user3239713
  • 121
  • 1
  • 3
0
votes
1 answer

How to import users (openvpn) into PFsense

I have a OpenVPN setup from an barebone server with ~60 users, and searching for a way to import those users with certificates into a new PFsense setup. They don't have passwords, because we use ldap as authentication for openvpn. It would be nice…
Jesper Grann Laursen
  • 276
  • 1
  • 4
  • 10
0
votes
2 answers

Firewall high availability

Context: My company is on the verge of a major network improvement, we will expand our network to remote offices via radio bridges. The firewall will be handling: 3 mission critical networks 3 non mission critical networks 3 mission critical…
eldblz
  • 375
  • 2
  • 11
  • 21
0
votes
1 answer

Vlan between Pfsense and Proxim hotspots

We want to plugin some hotspots to an existing network. Because we will account the hotspot traffic, it is important to route all traffic from the hotspots to the hotspot router. I tried to do the routing on ip base. This works but is also very…
het.oosten
  • 145
  • 5
0
votes
2 answers

How can I configure access to pfSense on Xen

I have a new Xen installation on which I want to run virtual machines. My hoster provided me two separate IPs in different subnets, say x.x.x.x and y.y.y.y. I want to set up pfSense on Xen and assign y.y.y.y to it so that it would serve as a router…
flashnik
  • 121
  • 2
  • 10
0
votes
1 answer

pfSense on failover won't route with GW on a completely different subnet

I'm trying to install a pfSense with an IP failover (requirement from online.net) but I can't get the server to route the requests. Last time I got it working with the following commands: route add -inet 62.210.137.1/32 -link -iface em0 route…
JeanneD4RK
  • 177
  • 1
  • 10
0
votes
1 answer

pf not execute udp port specific block rule

The traffic I want to block can be sniffed as below with tcpdump: 19:16:22.391164 IP 95.95.95.95.2036 > 10.10.10.10.443: UDP, length 8192 So I wanted to write a rule block any udp destination port 443 traffic. block drop quick on igb3 inet proto…
seaquest
  • 668
  • 2
  • 11
  • 25
0
votes
1 answer

block http forwarded traffic using pfsense

I have an external varnish server which is passing requests to a backend server which sits behind a pfsense 2.0.3 firewall. Does pfSense do any kind of packet inspection that could block traffic from a specific ip going through that proxy? Of course…
DiverseAndRemote.com
  • 2,011
  • 3
  • 15
  • 16
0
votes
1 answer

How to NAT behind public IP on pFsense before IPSEC to Cisco ASA?

I have two networks: Local 192.168.1.0/24 and Remote 10.8.8.8/24. On the local network I have installed pFsense as gateway. On the remote network there is a Cisco ASA that I don't have control over. (It's a hosting company's.) They're saying that…
WarP
  • 41
  • 1
  • 7
0
votes
1 answer

Troubleshooting PFSense WebGui?

I am running pfsense 2.0.3 nanobsd 4g i386 on virtualbox. VM configured with 4gb ram, there's 8 gb total on host system, with two net interfaces configured as host only. This will go on an SSD mini atx box, but for now I am just running on VM for…
AaronLS
  • 955
  • 1
  • 10
  • 22
1 2 3
54 55