PfSense is a FreeBSD-based open source router and firewall software. It can be used as a unified treat management gateway solution for your small and large scale enterprise.
We will dive deep in later steps to completely use pfsense for the various functions that routers perform in an enterprise like firewalling, vpn, webfilter, routing, ssh, and a host of other function. So please keep in touch!
If you will like to follow along in our guide on how to achieve these functions using vyos router, click here.
If you will prefer to carry out all these functions and more in your corporate environment using Linux, click here.
We will begin by installing pfsense onto our computer.
Place your pfsense cd into the cd rom or boot using the pfsense .iso file. During boot, pay close attention to an instruction to press r to enter recovery mode or press i to launch the installer.
We want to launch the installer, so we will press i . This takes us to the configuration console as shown.
Select “accept these settings”, and in the next screen select quick and easy install and then hit enter.
In the “are you sure?” screen, hit OK to confirm.
Also select standard kernel and hit enter.
After the install finishes, press reboot and remove the cd or .iso file to allow pfsense boot from hard drive.
On reboot, you will be presented with the screen. Do you want to configure vlan? If you know you do not want to configure vlan at this point, type n(no) and hit enter
in the welcome to pfsense page, type 2 to configure interfaces. Then type the number for the interface to be configured.
In my case, i will enter 1 to assign static interface to the wan leg.
Type n to not use dhcp. Enter the wan ip address, the subnet mask and the gateway as shown in the diagram(replace with your own ip address scheme)
Press n to not configure ipv6, except if you want to use ipv6. Follow the onscreen instruction and use https instead of http for your web configurator.
Repeat the process, but this time, we want to configure the LAN interface.
Enter 2 to select interfaces. Then press 2 to configure LAN interface. Enter in the LAN IP address and subnet mask. Hit enter for none in the gateway address field. Type y to enable DHCP on the interface.
Enter in the start and stop ip address range and use https for the web configurator.
At this point, you have successfully installed and configured very basic setting for pfsense. What is remaining, is to test if our configuration is working.
TESTING IF OUR CONFIGURATION WORKS.
Connect computers to the lan segment of your network via your switch. Open up their network settings and verify that they have received dynamic ip address from the router.
Now point your browser to https://ip address of pfsense/ You should get the login screen as shown below
Enter in admin as username and pfsense as password. Do yourself some good and change these defaults as soon as possible.
Click next after login to allow wizard work you through the process of configuring pfsense.
On the “set general parameter” for your pfsense router, enter in the hostname and domain name of your choice and enter in your primary/secondary dns server. In this guide, we will use google dns servers as primary and secondary servers and click next.
Accept the network time server given and enter in your timezonee e.g Africa/Lagos.
Click next a couple of times and in the set admin password screen, enter in a strong password for the admin user. This will be used for your webgui login and for ssh access should you need it.
Click next and then click reload. You should now get a congratulations message showing that pfsense has been configured.
Click the word “here” in the diagram above, to get to the pfsense dashboard.
So far, so good.
Next: SSH, PROXY SETUP IN PFSENSE