Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pfsense]

pfsense is a customized FreeBSD+pf distribution designed for use as a firewall. It wraps many of the features of the pf firewall code in an easy-to-use web interface.

pfSense is an open-source firewall product built on top of FreeBSD and the OpenBSD pf firewall.
It provides a graphical (web-based) interface for configuring and managing firewall rules, as well as viewing traffic and firewall decisions (accept/reject).

pfsense is available as a pre-built applicance (such as OPNSense or StrongBochs) or as installable software directly from the pfSense project's site.

pfsense is similar in concept to m0n0wall, however as of this writing m0n0wall uses the ipfilter packet filter.

811 questions
0
votes
0 answers

pfSense - Port forward through site-to-site VPN

I'm trying to solve a problem on my setup, and kindly ask your help. This is the scenario. Site 1 Internet connection via 4G/LTE provider, with natted connection pfSense firewall 172.20.0.0/25 LAN subnet NAS server (172.20.0.10) Site 2 Internet…
Edo
  • 1
  • 1
0
votes
0 answers

How to connect 2 IPSec sites with each other via the "main site"

First of all, i'm originally a software engineer with some network knowledge so no network specialist. At my current job i'm also responsable for the network. I say this because it may be a bit stupid of obvious question for the real network experts…
CodeNinja
  • 265
  • 4
  • 15
0
votes
1 answer

Pfsense DNS port-forwarding

I've encountered a problem when port-forwarding a DNS server using PFSense. I've pf'd many services on this same firewall, only am I unable to port forward a DNS server. DIG dns using local address: root@hfr-nl-dns01:~# dig A a-domain.test…
Koen Vuurens
  • 31
  • 1
  • 6
0
votes
1 answer

Give internet Access to my local network users

I have local network 10.10.10.0/24 and have pfsense. I use the pfsense for OpenVPN. Users connecting servers via vpn but users server ip addresses from local area network (ex. 10.10.10.30) that is why do not have internet. How to give internet local…
user3406957
  • 23
  • 2
0
votes
1 answer

How to specify an IP range representing "any IP" within a Pfsense alias?

I've restricted the source IP of many rules to some alias, say Trusted_Sources. Now, for some reason, I want to open all these rules to the world without manually modifying each individual rule. How can I modify the Trusted_Sources alias to include…
user2798081
  • 41
  • 5
0
votes
1 answer

How to allow traffic only to the internet in pfSense?

Given the following network diagram: internet | | +--------+--------+ | | dmz2 ----+ +---- lan | | …
Georg Schölly
  • 260
  • 3
  • 13
0
votes
1 answer

Cannot ping a certain IP address from machine within certain IP range?

I am a bit new to networking so I have probably done something wrong that is a simple oversight. I used to use an normal TP-Link router/switch combo jobs and an internal network range of 10.0.0.0/22. I had a couple of assigned IP's, the rest was…
LTWood
  • 25
  • 3
0
votes
1 answer

Haproxy log file with pfsense

I am trying to read the /var/log/haproxy.log file with the command: clog -f haproxy.log but nothing happens. No window opens. How do I see my error log? I’m on pfsense.
Jean Mark Orfali
  • 1
  • 1
  • 4
0
votes
1 answer

How should certificates for multiple separate sub-domain servers be issued/renewed with Let's Encrypt?

Upgrading my home infrastructure to learn as well as be more secure, I have not been able to find out how best to get certificate(s) issues and installed across my servers, which comprise: Firewall (pfSense - FreeBSD): fw.example.com NAS…
andybjackson
  • 105
  • 4
0
votes
1 answer

pfsense OpenVPN client address issue

First VPN client works like a charm (tunnel is 192.168.104.0/24 -> 192.168.104.2 assigned). But once another client logs on an identical IP is assigned. It looks there is no address pool to be defined!? pfsense 2.4.5 Windows 7 Client
Reiny
  • 1
0
votes
1 answer

BIND9/DNS lookups stopped working after upgrading our Comcast modem/gateway

OK here's our setup, we're running pfSense as our firewall/router. We have a dual-WAN with a Comcast Business Gateway and another local ISP. We're running Samba as the domain controller & Bind9/Named for DNS. Here's the issue, we just upgraded our…
Barry Ralphs
  • 181
  • 1
  • 10
0
votes
1 answer

ESXi vmkernel web gui issue

I have ESXi 6.7 running with pfSense on it as a virtualised router. pfSense, ESXi and other devices are on management VLAN 10. User devices are on different VLANs (lets assume 20 for now). pfSense has several interfaces, all with their own DHCP…
wlamers
  • 23
  • 3
0
votes
1 answer

Pfsense and Dns Resolver - SSL/TLS for internal access?

I have a Pfsense box that is able to issue/renew acme certificates, with haproxy installed, that has two backend servers that use the generated acme certificate that works fine. (email and nextcloud servers) From outside my local network, going to…
JCTechie
  • 101
  • 3
0
votes
1 answer

freebsd packet filter match last digit of IP address

On my freebsd system I want to use port forwarding to distribute incoming traffic, based on the last digit of the source IP. The following works on linux with iptables: iptables -t nat -A PREROUTING -p tcp -s 0.0.0.0/0.0.0.7 -d w.x.y.z --dport 443…
memyself
  • 295
  • 5
  • 13
0
votes
1 answer

Reverse proxy using haproxy redirection of node-red dashboard

I have multiple node-red servers running behind a HAProxy reverse proxy which runs as apart of a pfSense box. I want to access different node-red instances by accessing the pfSense box at different path. For example: http://example.com/node-red1…
Lefteris
  • 121
  • 5
1 2 3
54 55