pfSense 2 Cookbook
3/5
()
About this ebook
Matt Williamson
Matt Williamson has over 20 years of experience of working in restaurants around the world, from 2* Michelin restaurants to gastropubs and London bistros. His restaurant Flinty Red in Bristol won accolades from Michelin, Good Food Guide and Observer Food. His cooking style has been influenced by his extensive travels and he now works on various culinary projects, acting as a consultant for restaurants, developing new products and in food education.
Related to pfSense 2 Cookbook
Related ebooks
Proxmox Cookbook Rating: 0 out of 5 stars0 ratingsCentOS 7 Server Deployment Cookbook Rating: 0 out of 5 stars0 ratingsUbuntu Server Cookbook Rating: 0 out of 5 stars0 ratingsCentOS 7 Linux Server Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsSQL Server 2014 with PowerShell v5 Cookbook Rating: 0 out of 5 stars0 ratingsCeph Cookbook Rating: 4 out of 5 stars4/5Zabbix Cookbook Rating: 0 out of 5 stars0 ratingsOpenVPN Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsWindows Server 2012 R2 Administrator Cookbook Rating: 5 out of 5 stars5/5Linux Networking Cookbook Rating: 0 out of 5 stars0 ratingsWindows Server 2012 Automation with PowerShell Cookbook Rating: 0 out of 5 stars0 ratingsMicrosoft Exchange 2010 PowerShell Cookbook Rating: 0 out of 5 stars0 ratingsOpenFlow Cookbook Rating: 5 out of 5 stars5/5Microsoft Exchange 2013 Cookbook Rating: 0 out of 5 stars0 ratingsMastering Proxmox - Second Edition Rating: 0 out of 5 stars0 ratingsMastering KVM Virtualization Rating: 5 out of 5 stars5/5FreeBSD Mastery: Jails: IT Mastery, #15 Rating: 5 out of 5 stars5/5Safer @ Home with pfSense® Rating: 0 out of 5 stars0 ratingsMastering Proxmox Rating: 5 out of 5 stars5/5Getting Started With Powershell for Office 365 Rating: 0 out of 5 stars0 ratingsPfsense A Complete Guide - 2020 Edition Rating: 0 out of 5 stars0 ratingsMastering Ubuntu Server Rating: 5 out of 5 stars5/5Proxmox High Availability Rating: 0 out of 5 stars0 ratingsNginx Essentials Rating: 0 out of 5 stars0 ratingsTroubleshooting OpenVPN Rating: 0 out of 5 stars0 ratingsWindows Performance Analysis Field Guide Rating: 4 out of 5 stars4/5SNMP Mastery: IT Mastery, #15 Rating: 0 out of 5 stars0 ratingsBorder Gateway Protocol Second Edition Rating: 0 out of 5 stars0 ratingsCentOS High Performance Rating: 0 out of 5 stars0 ratingsMastering Zabbix - Second Edition Rating: 0 out of 5 stars0 ratings
Information Technology For You
Summary of Super-Intelligence From Nick Bostrom Rating: 5 out of 5 stars5/5Creating Online Courses with ChatGPT | A Step-by-Step Guide with Prompt Templates Rating: 4 out of 5 stars4/5The Programmer's Brain: What every programmer needs to know about cognition Rating: 5 out of 5 stars5/5CompTIA Network+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Exam N10-008 Rating: 0 out of 5 stars0 ratingsHow to Write Effective Emails at Work Rating: 4 out of 5 stars4/5How To Use Chatgpt: Using Chatgpt To Make Money Online Has Never Been This Simple Rating: 0 out of 5 stars0 ratingsChatGPT: The Future of Intelligent Conversation Rating: 4 out of 5 stars4/5CompTIA A+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Core 1 Exam 220-1101 Rating: 0 out of 5 stars0 ratingsData Analytics for Beginners: Introduction to Data Analytics Rating: 4 out of 5 stars4/5Computer Organization and Design: The Hardware / Software Interface Rating: 4 out of 5 stars4/5An Ultimate Guide to Kali Linux for Beginners Rating: 3 out of 5 stars3/5Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1 Rating: 0 out of 5 stars0 ratingsSharePoint Designer Tutorial: Working with SharePoint Websites Rating: 1 out of 5 stars1/5Handbook of Digital Forensics and Investigation Rating: 4 out of 5 stars4/5Computer Science: A Concise Introduction Rating: 4 out of 5 stars4/5CompTIA ITF+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Exam FC0-U61 Rating: 0 out of 5 stars0 ratingsInkscape Beginner’s Guide Rating: 5 out of 5 stars5/5Practical Ethical Hacking from Scratch Rating: 5 out of 5 stars5/5The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy Rating: 4 out of 5 stars4/5AWS Certified Cloud Practitioner: Study Guide with Practice Questions and Labs Rating: 5 out of 5 stars5/5Supercommunicator: Explaining the Complicated So Anyone Can Understand Rating: 3 out of 5 stars3/5Data Governance For Dummies Rating: 0 out of 5 stars0 ratingsLinux Command Line and Shell Scripting Bible Rating: 3 out of 5 stars3/5Hacking Essentials - The Beginner's Guide To Ethical Hacking And Penetration Testing Rating: 3 out of 5 stars3/5CODING INTERVIEW: Advanced Methods to Learn and Excel in Coding Interview Rating: 0 out of 5 stars0 ratingsPanda3d 1.7 Game Developer's Cookbook Rating: 0 out of 5 stars0 ratings
Reviews for pfSense 2 Cookbook
1 rating0 reviews
Book preview
pfSense 2 Cookbook - Matt Williamson
Table of Contents
pfSense 2 Cookbook
Credits
About the Author
About the Reviewers
www.PacktPub.com
Support files, eBooks, discount offers and more
Why Subscribe?
Free Access for Packt account holders
Instant Updates on New Packt Books
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Errata
Piracy
Questions
1. Initial Configuration
Introduction
Applying basic settings in General Setup
Getting ready
How to do it...
See also
Identifying and assigning interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring the WAN interface
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring the LAN interface
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring optional interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Enabling the Secure Shell (SSH)
Getting ready
How to do it...
How it works...
There's more...
See also
Generating authorized RSA keys
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring SSH RSA key authentication
Getting ready
How to do it...
How it works...
There's more...
See also
Accessing the Secure Shell (SSH)
Getting ready
How to do it...
How it works...
See also
2. Essential Services
Introduction
Configuring the DHCP server
Getting ready
How to do it...
How it works...
There’s more...
Deny Unknown Clients
DNS Servers
Gateway
Domain Name
Default Lease Time
Maximum Lease Time
Failover Peer IP
Static ARP
Dynamic DNS
Additional BOOTP/DHCP Options
See also
Creating static DHCP mappings
Getting ready
How to do it...
How it works...
There’s more...
See also
Configuring the DHCP relay
Getting ready
How to do it...
How it works...
Append Circuit ID and Agent ID to Requests
Relay requests to the WAN DHCP server
See also
Specifying alternate DNS servers
Getting ready
How to do it...
How it works...
Using the DNS Forwarder
Using your WAN DNS servers
See also
Configuring the DNS Forwarder
Getting ready
How to do it...
How it works...
See also
Configuring a standalone DHCP/DNS server
How to do it...
How it works...
Register DHCP Leases in DNS Forwarder
See also
Configuring dynamic DNS
Getting ready
How to do it...
How it works...
Pre-configured service types (dynamic DNS providers)
Specifying an alternative service using RFC 2136
3. General Configuration
Introduction
Creating an alias
How to do it...
How it works...
There's more...
Host alias
Network alias
Port alias
OpenVPN Users alias
URL alias
URL Table alias
Using an alias
Editing an alias
Deleting an alias:
Bulk-importing aliases
See also
Creating a NAT port forward rule
Getting ready
How to do it...
How it works...
There's more...
Port redirection
See also
Creating a firewall rule
Getting ready
How to do it...
How it works...
There's more...
We rarely know the source port!
Ordering firewall rules
Duplicating a firewall rule
Advanced features
See also
Creating a schedule
Getting ready
How to do it...
How it works...
There's more...
Selecting days or days of the week
See also
Remote desktop access, a complete example
Getting ready
How to do it...
How it works...
There's more...
See also
4. Virtual Private Networking
Introduction
Creating an IPsec VPN tunnel
Getting ready
How to do it...
How it works...
See also
Configuring the L2TP VPN service
Getting ready
How to do it...
How it works...
Connecting from a Windows 7 client
See also
Configuring the OpenVPN service
How to do it...
How it works...
Encryption algorithms
OpenVPN Client Export
See also
Configuring the PPTP VPN service
How to do it...
How it works...
Connecting from a Windows 7 client
Connecting from a Ubuntu 10.10 client
Connect from an Apple Mac OSx Client
See also
5. Advanced Configuration
Introduction
Creating a virtual IP
Getting ready
How to do it...
How it works...
There's more...
Configuring a CARP virtual IP address
Configuring a Proxy ARP virtual IP address
Configuring an IP alias virtual IP address
See also
Configuring a 1:1 NAT rule
How to do it...
How it works...
There's more...
See also
Creating an outbound NAT rule
Getting ready
How to do it...
How it works...
See also
Creating a gateway
Getting ready
How to do it...
How it works...
There's more...
Gateway Groups
See also
Creating a static route
Getting ready
How to do it...
How it works...
See also
Configuring traffic-shaping (QoS, Quality of Service)
Getting ready
How to do it...
How it works...
Bridging interfaces
How to do it...
How it works...
There's more...
See also
Creating a virtual LAN
Getting ready
How to do it...
How it works...
See also
Creating a captive portal
Getting ready
How to do it...
How it works...
There's more...
6. Redundancy, Load Balancing, and Failover
Introduction
Configuring multiple WAN interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring multi-WAN load balancing
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring multi-WAN failover
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring a web server load balancer
Getting ready
How to do it...
How it works...
There's more
See also
Configuring a web server failover
Getting ready
How to do it...
How it works...
See also
Configuring CARP firewall failover
Getting ready
How to do it...
How it works...
See also
7. Services and Maintenance
Introduction
Enabling OLSR
How to do it...
How it works...
There's more...
Enabling PPPoE
How to do it...
How it works...
Enabling RIP
How to do it...
How it works...
Enabling SNMP
How to do it...
How it works...
There's more...
See also
Enabling UPnP and NAT-PMP
How to do it...
How it works...
There's more...
Security warning
See also
Enabling OpenNTPD
How to do it...
How it works...
See also
Enabling Wake On LAN (WOL)
How to do it...
How it works...
There's more...
Wake All
See also
Enabling external logging (syslog server)
Getting ready
How to do it...
How it works...
There's more...
See also
Using ping
How to do it...
How it works...
See also
Using traceroute
How to do it...
How it works...
See also
Backing up the configuration file
Getting ready...
How to do it...
How it works...
There's more...
Backup areas
See also
Restoring the configuration file
Getting ready...
How to do it...
How it works...
There's more...
Restore areas
See also
Configuring automatic configuration file backup
Getting ready
How to do it...
How it works...
There's more...
See also
Updating pfSense firmware
Getting ready
How to do it...
How it works...
There's more...
Upgrade in progress
System Dashboard shortcut
See also
A. Monitoring and Logging
Introduction
Customizing the Status Dashboard
How to do it...
How it works...
There's more...
Monitoring current traffic
How to do it...
How it works...
See also
Configuring SMTP e-mail notifications
Getting ready
How to do it...
How it works...
There's more...
Viewing system logs
How to do it...
How it works...
There's more...
Firewall log: Normal View
Firewall log: Dynamic View
Firewall log: Summary View
See also
Configuring an external syslog server
Getting ready
How to do it...
How it works...
Running a syslog service in Linux/Mac OS
Running a syslog service in Windows
See also
Viewing RRD graphs
How to do it...
How it works...
System
Traffic
Packets
Quality
VPN
Custom
See also
Viewing DHCP leases
How to do it...
How it works...
Adding a static DHCP mapping
Sending a wake on LAN mapping
See also
Managing services
How to do it...
How it works...
See also
Monitoring the packet filter with pfInfo
How to do it...
How it works...
See also
Monitoring traffic with pfTop
How to do it...
How it works...
See also
Monitoring system activity
How to do it...
How it works...
See also
B. Determining our Hardware Requirements
Introduction
Determining our deployment scenario
Getting ready
How to do it...
How it works...
There’s more...
Determining our throughput requirements
Getting ready
How to do it...
How it works...
There’s more...
List of available packages
See also
Determining our interface requirements
Getting ready
How to do it...
How it works...
There’s more...
pfSense 2.0: Minimum interface requirements
Choosing a standard or embedded Image
Getting ready
How to do it...
How it works...
There’s more...
See also
Choosing a Form Factor
Getting ready
How to do it…
How it works...
There’s more...
Installing the embedded platform on a desktop/server/laptop
Installing the standard platform on an appliance
See also
Index
pfSense 2 Cookbook
pfSense 2 Cookbook
Copyright © 2011 Packt Publishing
All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.
Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.
Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.
First published: March 2011
Production Reference: 1180311
Published by Packt Publishing Ltd.
32 Lincoln Road
Olton
Birmingham, B27 6PA, UK.
ISBN 978-1-849514-86-6
www.packtpub.com
Cover Image by Asher Wishkerman (<a.wishkerman@mpic.de>)
Credits
Author
Matt Williamson
Reviewers
Josh Brower
Jim Cheetham
Brad Hedlund
Mohd Izhar Bin Ali
Acquisition Editor
Tarun Singh
Development Editor
Alina Lewis
Technical Editor
Krutika V. Katelia
Indexer
Monica Ajmera Mehta
Rekha Nair
Editorial Team Leader
Akshara Aware
Project Team Leader
Priya Mukherji
Project Coordinator
Jovita Pinto
Proofreader
Kevin Mcgowan
Production Coordinator
Alwin Roy
Cover Work
Alwin Roy
About the Author
Matt Williamson is the founder of Blue Key Consulting, a software design and development firm located in the New York City area. Prior to starting his consulting business, Matt worked as a software developer for various insurance and financial companies in Chicago and New York. Matt can be reached through his personal website at