Questions tagged [pfsense]
A free firewall based on Packet Filter (pf) and FreeBSD 6.
323
questions
56
votes
3
answers
7k
views
How can I turn off internet for roommates that haven't paid the bill this month?
I have several roommates who split my internet bill with me each month. On occasion they forget to pay me, and I have to pester them for the money.
If after 3 days of pestering they still haven't ...
- 10k
17
votes
7
answers
46k
views
PFSense Stuck At "Please wait while the update system initializes" while uninstaling or upgrading any package
I just had this weird problem on my PFSense VM. It neither can upgrade nor uninstall any package and is always stuck at Please wait while the update system initializes.
I tried rebooting. Still no ...
- 173
7
votes
1
answer
61k
views
pfSense to route between multiple subnets on same LAN
I started with a fairly standard pfSense setup: one WAN and one LAN interface, LAN-to-WAN access via NAT.
Now I needed a second logical subnet on the LAN, which I set up in the following way:
...
- 1,100
6
votes
1
answer
14k
views
How to limit bandwidth used by an IP in the penalty box in pfSense
We're trying to use the pfSense traffic shaping feature known as the Penalty Box. We are interested in limiting the bandwidth of a particular IP to 2%.
Note: There is a four-year-old bug in pfSense ...
- 22.4k
5
votes
1
answer
8k
views
pfSense DNS Resolver does not resolve local hostnames from DHCP static mappings
I'm on pfSense Community Edition 2.4.5-RELEASE-p1
I assigned some static DHCP mappings on one of my LAN interfaces
If I try to reach any one of those static mapped hosts by its Hostname (or by Client ...
- 261
5
votes
5
answers
38k
views
pfSense: How to route traffic out the WAN port?
Expert version
i want to create a route in pfSense that will send traffic out the physical WAN port, not the PPPoE WAN port. i want to talk to the web-server on my DSL modem; letting me see the ...
- 22.4k
5
votes
2
answers
7k
views
Can't add static lease from inside DHCP range in pfSense
When trying to add my computer to static lease, I get the following error
I don't understand the reason for this. If I would want to assign IP from outside DHCP range, I would assign it statically ...
- 12.8k
5
votes
1
answer
12k
views
pfsense 2.0 traffic priority - set full priority for single host
I have a network with several computers all on the same network and since I have very limited bandwidth I would like to prioritize traffic almost like a CPU scheduler prioritize processes.
Example: ...
- 1,260
4
votes
4
answers
36k
views
Using pfSense, OpenVPN Connects but Still Can't See the Network
I am having an OpenVPN issue. I have a pfSense box at home configured to allow traffic through a VPN tunnel. The client computer is Windows XP Home, behind a standard Comcast connection and a ...
- 6,725
4
votes
1
answer
5k
views
Road warrior with pfSense
Currently I have a server running pfSense. It's on another network and I only access it via remote login. What I want to do is setup some sort of road warrior scheme that allows to me access behind ...
- 43
4
votes
2
answers
1k
views
In pf, why can IPv6 be specified as a 'protocol' as well as an address family?
In the pf firewall, the pf.conf man page 'parameters' section states that "protocol" is anything from /etc/protocols, and that it's distinct from "address family" ("<af>") which is inet or inet6....
- 1,735
4
votes
2
answers
26k
views
How to fix timezone data in pfSense/freeBSD?
We have special situation with timezones here in Russia. Recently government had cancelled timesave shifting and it was no timeshifts for some time, but recently they decided to make one "last" ...
- 12.8k
4
votes
2
answers
6k
views
pfSense 2.0 - Can PPP L2TP be used to be an L2TP tunnel?
i noticed in pfSense 2.0 (RC3) that my PPPoE interface is now a PPPoE tunnel assigned to my WAN NIC (Network Interface Card):
where the PPPOE0(xl0) - [email protected] network port is defined on ...
- 22.4k
4
votes
1
answer
101
views
iPhone states it has IP address A. Access point says iPhone has IP address B. What gives?
I have an iphone, a unifi AP and a pfsense router. I set pfsense to give out static IP addresses. My iPhone is supposed to receive 10.12.1.144.
Well according to my iPhone, the Ip address it ...
- 41
3
votes
2
answers
71k
views
Reset pfSense web interface password through main console
I'm (temporarily) in charge of a network where pfSense 2.0.1 is basically running the whole routing operation. Unfortunately, the network manager before me did not bother to write down what the ...
- 227
3
votes
2
answers
12k
views
How do you properly allow two devices on separate subnets to communicate (PFSense)?
I'm trying to figure out how to get 192.168.0.22 to properly ping/be able to transfer files with 192.168.77.10. Firstly, is this a dumb setup? I'm mainly using it right now just for educational ...
- 53
3
votes
1
answer
5k
views
pfSense and DD-WRT, Single WAP with multiple SSIDs and separate networks
I have a ASUS RT-AC66U with DD-WRT loaded and I'm trying to use it as a WAP connected to a PFSense box. The ASUS router has the option to setup multiple SSID's (guestAP_SSID, mainAP_SSID) and separate ...
- 402
3
votes
1
answer
632
views
is pfSense suited for my setup?
I have a fairly large home network that consists of:
2 wired PCs,
3 Smartphones,
1 Tablet,
2 wireless PCs
2 wired gaming consoles
2 wireless gaming consoles
The problem is that I think that my ...
- 33
3
votes
1
answer
1k
views
pfSense and OpenVPN client but traffic exits through the WAN interface
My goal is to have my internal network traffic go out to the internet through a VPN tunnel.
I checked all previous questions but none of them had the same problem as I am facing, and none of the ...
- 270
3
votes
1
answer
43k
views
How can I configure pfSense to allow traffic from LAN to WAN?
My topology is as the picture above.
I've configure to allow incoming traffic into each pfSense interface, include 3 LAN and 1 WAN.
Ex: I can ping from DC to pfSense interface in the same network.
I ...
- 31
3
votes
3
answers
2k
views
Give a VM internet access, but not access to other systems within the network?
Scenario: I have Ubuntu desktop with a Windows 8.1 vm via virtualbox.
It has internet access and is currently set to NAT with it's own IP range. Putting it into bridged mode gives it an IP address ...
- 212
3
votes
1
answer
10k
views
IPV6 at home: my ISP delegates me a static IPV6 /56 subnet, how can I set up an IP scheme & DHCP6 for my network?
My network looks like this:
(Cable Modem/Router) <-> (PfSense Router) <-> (Internal Hosts)
The IP (changed for security) of my cable modem is:
IPv6 Address 2001:1:a481:300:6eb0:ceff:...
- 230
3
votes
2
answers
3k
views
Port forwarding remote traffic through physical router to go through pfsense VM, then to centos VM web server
I hope this makes sense, I'm completely self taught and planning on going for formal instruction. As I understand this is possible, however I haven't been able to find definitive answers to my ...
- 33
3
votes
4
answers
3k
views
Wireless DHCP doesn't work until wired Ethernet plugged in
A client of mine has an Asus R1F tablet running Windows XP Tablet SP3. It has an Intel 3945ABG wireless card; wired Ethernet is a Realtek something-or-other. In the past few days, it's developed an ...
- 1,016
3
votes
0
answers
5k
views
pfSense, nginx reverse proxy and letsencrypt
I need help configuring letsencrypt to work with an nginx reverse proxy and pfSense firewall / gateway.
Setup is as follows:
-> 192.168.0.4 ...
- 56
3
votes
0
answers
1k
views
VMWare VM as router for windows host
Goal - use virtual machine as router/firewall for host VM is running on.
I created VMWare VM and installed pfSense. Configured two network adapters for WAN (bridged, VMNet0) and LAN (host-only, ...
- 131
2
votes
2
answers
3k
views
Bridge-Mode to prevent double NAT/Firewall advantages?
In my network I currently have a cable connection with an ISP provided (consumer grade) modem/router combo device. Behind this modem there is a pfSense box. The pfSense box is acting as firewall and ...
- 123
2
votes
1
answer
3k
views
Why different IPs required to monitor multi-WAN in pfSense?
I was wishing to set all monitoring IPs to Google, 8.8.8.8, but on second WAN it said, that this IP is already used for monitoring.
Why is this limitation exist?
This causes suspicion that ...
- 12.8k
2
votes
1
answer
881
views
Securing a webapp with nginx, modSecurity and pfsense
As a hobby project, I started a website on my PC. I built it with nginx and everything worked fine.
Now, trying to secure it, things get complicated.
Im trying to setup a firewall/waf physically on ...
- 41
2
votes
1
answer
1k
views
Why is iperf3 faster in one direction than the other?
I've got a Windows 10 PC with Realtek RTL8125b 2.5GbE interface and I have a Debian Linux 5.10 server with an Intel I225-LM (rev 3) 2.5GbE interface. Running iperf3 -s on the server I get 1.14Gbit/s. ...
- 300
2
votes
1
answer
206
views
Is my wireless router throttling?
I've got a cable modem (wan) --> dell laptop (lan with pfsense installed) --> wireless router (opt1, bridged). When pinging from the laptop I am getting:
PING 8.8.8.8 (8.8.8.8): 56 data bytes
64 ...
- 733
2
votes
2
answers
2k
views
Can't update pfSense
If trying to update pfSense I get an error
Could not contact pfSense update server https://updates.pfsense.org/_updaters/amd64
Proof:
The same address is downloadable from command line of pfSense:
...
- 12.8k
2
votes
1
answer
4k
views
Why can the AckQueue not be the same as the Queue?
What should i choose for AckQueue?
I'm trying to do traffic shaping in pfSense. Traffic shaping in pfSense involves things called queues.
Some queues have higher priority than others.
I understand ...
- 22.4k
2
votes
1
answer
634
views
Translate port for two clients accessing the same resource on a remote network using pfsense
I have two client PCs which need to access the same remote resource. They are both connected to a pfsense device. The problem is, both clients try to connect to the remote device using the same port. ...
- 71
2
votes
1
answer
5k
views
Install pfSense via KVM in Ubuntu 18.04 w/ netplan
I am trying to set up a virtualized firewall for my home network. Architecture looks like: Internet -> virtualized pfSense -> lan. There are plenty of examples of how to do this using the old network ...
- 31
2
votes
1
answer
1k
views
HP Procurve 2920 - pfSense - VLAN has no Internet
I finally managed to setup my pfSense connected over WAN interface to a ISP router, which in turn is DMZing to pfSense. I added VLANs for different tasks following this tutorial, where DHCP on each ...
- 21
2
votes
1
answer
7k
views
pfsense with 4 WAN IP and outgoing NAT
I have a pfsense with a single wan ip, i want to assign multiple wan ip's. The pfsense machine is located on a vm machine with the other servers i wish to NAT forward. I want to give each server a wan ...
- 147
2
votes
1
answer
1k
views
How to setup a Windows server 2012 R2 (fileserver+DC) machine witch Hyper-V virtual router (pfSense)
I am trying to setup a Windows Server 2012 R2 machine, primarily DC and fileserver roles, in such a way that I would not need an extra router in our network, because I would like to have it inside ...
- 822
2
votes
1
answer
6k
views
Internal network issues between pfSense and Windows in VirtualBox
I have three virtual machines running on Virtual Box. First one is Linux (pfsense) that's acting as a router with two network adapters one bridged and one set to the internal network. The other two ...
- 88
2
votes
1
answer
542
views
dnsmasq circular loop error
I know I am missing a configuration somewhere, but I just can't find it. I have two routers, A is upstream of B, both running dnsmasq.
A has domain A.com
B has domain B.A.com
A has in dnsmasq.conf
...
- 33
2
votes
0
answers
131
views
Switch between TWO different WAN providers on schedule
I have two internet providers at home, the one offers an uncapped service from 23H00 to 18H00 the following day, and the other provider is an LTE provider to use between 18H00 to 23H00 daily
I'm ...
2
votes
0
answers
164
views
Control Port Forwarding on Second Router
Basically, I want my WAN 1 connection port forwarding to be managed entirely by PfSense. Please note there is no option/possibility for me to remove the ISP router for WAN 1. Will it be possible if I ...
- 21
2
votes
2
answers
300
views
Client side ip6 address shows up as ip4:port address on firewall
I setup access to my family's home server over VPN, restricted by ip address. Sometimes a family member would have an ip6 address (they Google "ip") from their location. My firewall (pfsense) accepts ...
- 755
2
votes
0
answers
249
views
Pass port traffic from home router > pfsense VM > gaming server
I want to setup a gaming server on a physical host I have at home. I am having trouble passing traffic through my home router to the pfsense VM, to the gaming host.
My network looks like this:
Home ...
- 21
2
votes
1
answer
6k
views
New to Active Domain/Windows DNS, using pfSense resolver for external DNS and routing?
I have some questions about setting up Active Domain with pfSense. I'm pretty new to this and I haven't found any posts specifically dealing with these questions, and I've been scouring for hours.
...
- 215
2
votes
1
answer
9k
views
How do I get pfsense WAN IP after I set it up on DHCP?
I just installed a FreeBSD 64-bit virtual machine with pfSense 2.3.2 with VMware Workstation 12, but with VMware Workstation 11 hardware compatibility.
I booted and standard-installed pfSense and got ...
2
votes
1
answer
787
views
Remote host not reachable from LAN, but accessible from WAN
I am in a local area network that communicates to the web through a pfSense router/firewall. I have two remote debian servers, where I should be able to access ports 22 (SSH), 80 (HTTP), 8080 (HTTP), ...
2
votes
0
answers
600
views
Squid3 Reverse Proxy - Force Cache and Suppress Version
I have been using pfSense for about 2 years now and I love it. One of my favorite features has come to be Squid2 and Squid3. Right now I am using Squid3 to run both proxy and reverse proxy.
There are ...
- 145
2
votes
1
answer
2k
views
Block other workstations on WAN network accessing LAN of pfSense
I am using VMware ESXi to create a network with a test domain running Exchange 2007.
I'm using pfSense as the firewall between my physical network (which I am using as the WAN) and the VM internal ...
- 519
2
votes
0
answers
2k
views
How to setup pfSense 2.0 for TunnelBroker.net?
What is the procedure to create an IPv6 tunnel in pfSense 2.0?
pfSense 2.0 (RC3) supports creation of a GIF tunnels:
The help is pretty generic, and pretty unhelpful:
In pfSense 2.0, GIF ...
- 22.4k