pfSense 2 Cookbook
3/5
()
About this ebook
Matt Williamson
Matt Williamson has over 20 years of experience of working in restaurants around the world, from 2* Michelin restaurants to gastropubs and London bistros. His restaurant Flinty Red in Bristol won accolades from Michelin, Good Food Guide and Observer Food. His cooking style has been influenced by his extensive travels and he now works on various culinary projects, acting as a consultant for restaurants, developing new products and in food education.
Related to pfSense 2 Cookbook
Related ebooks
Ubuntu Server Cookbook Rating: 0 out of 5 stars0 ratingsCentOS 7 Linux Server Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsLinux Networking Cookbook Rating: 0 out of 5 stars0 ratingsPostgreSQL High Performance Cookbook Rating: 0 out of 5 stars0 ratingsCeph Cookbook Rating: 4 out of 5 stars4/5SQL Server 2014 with PowerShell v5 Cookbook Rating: 0 out of 5 stars0 ratingsOpenVPN Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsProxmox Cookbook Rating: 0 out of 5 stars0 ratingsCentOS 7 Server Deployment Cookbook Rating: 0 out of 5 stars0 ratingsMicrosoft Exchange 2013 Cookbook Rating: 0 out of 5 stars0 ratingsZabbix Cookbook Rating: 0 out of 5 stars0 ratingsRaspberry Pi Cookbook for Python Programmers Rating: 0 out of 5 stars0 ratingsOpenFlow Cookbook Rating: 5 out of 5 stars5/5VMware vRealize Orchestrator Cookbook - Second Edition Rating: 5 out of 5 stars5/5Red Hat Enterprise Linux Server Cookbook Rating: 2 out of 5 stars2/5Puppet Cookbook - Third Edition Rating: 5 out of 5 stars5/5Mastering Ubuntu Server Rating: 5 out of 5 stars5/5Safer @ Home with pfSense® Rating: 0 out of 5 stars0 ratingsMastering OpenLDAP: Configuring, Securing and Integrating Directory Services Rating: 0 out of 5 stars0 ratingsMastering KVM Virtualization Rating: 5 out of 5 stars5/5FreeBSD Mastery: Jails: IT Mastery, #15 Rating: 5 out of 5 stars5/5Mastering Proxmox - Second Edition Rating: 0 out of 5 stars0 ratingsSoftware-Defined Networking (SDN) with OpenStack Rating: 0 out of 5 stars0 ratingsNginx Essentials Rating: 0 out of 5 stars0 ratingsMastering Zabbix - Second Edition Rating: 0 out of 5 stars0 ratingsSNMP Mastery: IT Mastery, #15 Rating: 0 out of 5 stars0 ratingsPostgreSQL Administration Cookbook, 9.5/9.6 Edition Rating: 0 out of 5 stars0 ratingsPostgreSQL Server Programming Rating: 0 out of 5 stars0 ratingsTroubleshooting OpenVPN Rating: 0 out of 5 stars0 ratingsLearn Docker in a Month of Lunches Rating: 0 out of 5 stars0 ratings
Information Technology For You
How to Write Effective Emails at Work Rating: 4 out of 5 stars4/5Creating Online Courses with ChatGPT | A Step-by-Step Guide with Prompt Templates Rating: 4 out of 5 stars4/5Summary of Super-Intelligence From Nick Bostrom Rating: 5 out of 5 stars5/5An Ultimate Guide to Kali Linux for Beginners Rating: 3 out of 5 stars3/5How To Use Chatgpt: Using Chatgpt To Make Money Online Has Never Been This Simple Rating: 0 out of 5 stars0 ratingsHandbook of Digital Forensics and Investigation Rating: 4 out of 5 stars4/5Computer Science: A Concise Introduction Rating: 4 out of 5 stars4/5CompTIA A+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Core 1 Exam 220-1101 Rating: 0 out of 5 stars0 ratingsChatGPT: The Future of Intelligent Conversation Rating: 4 out of 5 stars4/5Linux Command Line and Shell Scripting Bible Rating: 3 out of 5 stars3/5Panda3d 1.7 Game Developer's Cookbook Rating: 0 out of 5 stars0 ratingsSupercommunicator: Explaining the Complicated So Anyone Can Understand Rating: 3 out of 5 stars3/5Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1 Rating: 0 out of 5 stars0 ratingsHow to Find a Wolf in Siberia (or, How to Troubleshoot Almost Anything) Rating: 0 out of 5 stars0 ratingsPractical Ethical Hacking from Scratch Rating: 5 out of 5 stars5/5Health Informatics: Practical Guide Rating: 0 out of 5 stars0 ratingsCompTIA ITF+ CertMike: Prepare. Practice. Pass the Test! Get Certified!: Exam FC0-U61 Rating: 0 out of 5 stars0 ratingsWindows Registry Forensics: Advanced Digital Forensic Analysis of the Windows Registry Rating: 4 out of 5 stars4/5Visual Studio Code for Python Programmers Rating: 0 out of 5 stars0 ratingsBeginner's Guide to Information Security Rating: 0 out of 5 stars0 ratingsData Governance For Dummies Rating: 0 out of 5 stars0 ratingsEleventh Hour Linux+: Exam XK0-003 Study Guide Rating: 4 out of 5 stars4/5Data Analytics for Beginners: Introduction to Data Analytics Rating: 4 out of 5 stars4/5AWS Certified Cloud Practitioner: Study Guide with Practice Questions and Labs Rating: 5 out of 5 stars5/5The Programmer's Brain: What every programmer needs to know about cognition Rating: 5 out of 5 stars5/5Information Security Best Practices: 205 Basic Rules Rating: 0 out of 5 stars0 ratings
Reviews for pfSense 2 Cookbook
1 rating0 reviews
Book preview
pfSense 2 Cookbook - Matt Williamson
Table of Contents
pfSense 2 Cookbook
Credits
About the Author
About the Reviewers
www.PacktPub.com
Support files, eBooks, discount offers and more
Why Subscribe?
Free Access for Packt account holders
Instant Updates on New Packt Books
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Errata
Piracy
Questions
1. Initial Configuration
Introduction
Applying basic settings in General Setup
Getting ready
How to do it...
See also
Identifying and assigning interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring the WAN interface
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring the LAN interface
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring optional interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Enabling the Secure Shell (SSH)
Getting ready
How to do it...
How it works...
There's more...
See also
Generating authorized RSA keys
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring SSH RSA key authentication
Getting ready
How to do it...
How it works...
There's more...
See also
Accessing the Secure Shell (SSH)
Getting ready
How to do it...
How it works...
See also
2. Essential Services
Introduction
Configuring the DHCP server
Getting ready
How to do it...
How it works...
There’s more...
Deny Unknown Clients
DNS Servers
Gateway
Domain Name
Default Lease Time
Maximum Lease Time
Failover Peer IP
Static ARP
Dynamic DNS
Additional BOOTP/DHCP Options
See also
Creating static DHCP mappings
Getting ready
How to do it...
How it works...
There’s more...
See also
Configuring the DHCP relay
Getting ready
How to do it...
How it works...
Append Circuit ID and Agent ID to Requests
Relay requests to the WAN DHCP server
See also
Specifying alternate DNS servers
Getting ready
How to do it...
How it works...
Using the DNS Forwarder
Using your WAN DNS servers
See also
Configuring the DNS Forwarder
Getting ready
How to do it...
How it works...
See also
Configuring a standalone DHCP/DNS server
How to do it...
How it works...
Register DHCP Leases in DNS Forwarder
See also
Configuring dynamic DNS
Getting ready
How to do it...
How it works...
Pre-configured service types (dynamic DNS providers)
Specifying an alternative service using RFC 2136
3. General Configuration
Introduction
Creating an alias
How to do it...
How it works...
There's more...
Host alias
Network alias
Port alias
OpenVPN Users alias
URL alias
URL Table alias
Using an alias
Editing an alias
Deleting an alias:
Bulk-importing aliases
See also
Creating a NAT port forward rule
Getting ready
How to do it...
How it works...
There's more...
Port redirection
See also
Creating a firewall rule
Getting ready
How to do it...
How it works...
There's more...
We rarely know the source port!
Ordering firewall rules
Duplicating a firewall rule
Advanced features
See also
Creating a schedule
Getting ready
How to do it...
How it works...
There's more...
Selecting days or days of the week
See also
Remote desktop access, a complete example
Getting ready
How to do it...
How it works...
There's more...
See also
4. Virtual Private Networking
Introduction
Creating an IPsec VPN tunnel
Getting ready
How to do it...
How it works...
See also
Configuring the L2TP VPN service
Getting ready
How to do it...
How it works...
Connecting from a Windows 7 client
See also
Configuring the OpenVPN service
How to do it...
How it works...
Encryption algorithms
OpenVPN Client Export
See also
Configuring the PPTP VPN service
How to do it...
How it works...
Connecting from a Windows 7 client
Connecting from a Ubuntu 10.10 client
Connect from an Apple Mac OSx Client
See also
5. Advanced Configuration
Introduction
Creating a virtual IP
Getting ready
How to do it...
How it works...
There's more...
Configuring a CARP virtual IP address
Configuring a Proxy ARP virtual IP address
Configuring an IP alias virtual IP address
See also
Configuring a 1:1 NAT rule
How to do it...
How it works...
There's more...
See also
Creating an outbound NAT rule
Getting ready
How to do it...
How it works...
See also
Creating a gateway
Getting ready
How to do it...
How it works...
There's more...
Gateway Groups
See also
Creating a static route
Getting ready
How to do it...
How it works...
See also
Configuring traffic-shaping (QoS, Quality of Service)
Getting ready
How to do it...
How it works...
Bridging interfaces
How to do it...
How it works...
There's more...
See also
Creating a virtual LAN
Getting ready
How to do it...
How it works...
See also
Creating a captive portal
Getting ready
How to do it...
How it works...
There's more...
6. Redundancy, Load Balancing, and Failover
Introduction
Configuring multiple WAN interfaces
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring multi-WAN load balancing
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring multi-WAN failover
Getting ready
How to do it...
How it works...
There's more...
See also
Configuring a web server load balancer
Getting ready
How to do it...
How it works...
There's more
See also
Configuring a web server failover
Getting ready
How to do it...
How it works...
See also
Configuring CARP firewall failover
Getting ready
How to do it...
How it works...
See also
7. Services and Maintenance
Introduction
Enabling OLSR
How to do it...
How it works...
There's more...
Enabling PPPoE
How to do it...
How it works...
Enabling RIP
How to do it...
How it works...
Enabling SNMP
How to do it...
How it works...
There's more...
See also
Enabling UPnP and NAT-PMP
How to do it...
How it works...
There's more...
Security warning
See also
Enabling OpenNTPD
How to do it...
How it works...
See also
Enabling Wake On LAN (WOL)
How to do it...
How it works...
There's more...
Wake All
See also
Enabling external logging (syslog server)
Getting ready
How to do it...
How it works...
There's more...
See also
Using ping
How to do it...
How it works...
See also
Using traceroute
How to do it...
How it works...
See also
Backing up the configuration file
Getting ready...
How to do it...
How it works...
There's more...
Backup areas
See also
Restoring the configuration file
Getting ready...
How to do it...
How it works...
There's more...
Restore areas
See also
Configuring automatic configuration file backup
Getting ready
How to do it...
How it works...
There's more...
See also
Updating pfSense firmware
Getting ready
How to do it...
How it works...
There's more...
Upgrade in progress
System Dashboard shortcut
See also
A. Monitoring and Logging
Introduction
Customizing the Status Dashboard
How to do it...
How it works...
There's more...
Monitoring current traffic
How to do it...
How it works...
See also
Configuring SMTP e-mail notifications
Getting ready
How to do it...
How it works...
There's more...
Viewing system logs
How to do it...
How it works...
There's more...
Firewall log: Normal View
Firewall log: Dynamic View
Firewall log: Summary View
See also
Configuring an external syslog server
Getting ready
How to do it...
How it works...
Running a syslog service in Linux/Mac OS
Running a syslog service in Windows
See also
Viewing RRD graphs
How to do it...
How it works...
System
Traffic
Packets
Quality
VPN
Custom
See also
Viewing DHCP leases
How to do it...
How it works...
Adding a static DHCP mapping
Sending a wake on LAN mapping
See also
Managing services
How to do it...
How it works...
See also
Monitoring the packet filter with pfInfo
How to do it...
How it works...
See also
Monitoring traffic with pfTop
How to do it...
How it works...
See also
Monitoring system activity
How to do it...
How it works...
See also
B. Determining our Hardware Requirements
Introduction
Determining our deployment scenario
Getting ready
How to do it...
How it works...
There’s more...
Determining our throughput requirements
Getting ready
How to do it...
How it works...
There’s more...
List of available packages
See also
Determining our interface requirements
Getting ready
How to do it...
How it works...
There’s more...
pfSense 2.0: Minimum interface requirements
Choosing a standard or embedded Image
Getting ready
How to do it...
How it works...
There’s more...
See also
Choosing a Form Factor
Getting ready
How to do it…
How it works...
There’s more...
Installing the embedded platform on a desktop/server/laptop
Installing the standard platform on an appliance
See also
Index
pfSense 2 Cookbook
pfSense 2 Cookbook
Copyright © 2011 Packt Publishing
All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.
Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.
Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.
First published: March 2011
Production Reference: 1180311
Published by Packt Publishing Ltd.
32 Lincoln Road
Olton
Birmingham, B27 6PA, UK.
ISBN 978-1-849514-86-6
www.packtpub.com
Cover Image by Asher Wishkerman (<a.wishkerman@mpic.de>)
Credits
Author
Matt Williamson
Reviewers
Josh Brower
Jim Cheetham
Brad Hedlund
Mohd Izhar Bin Ali
Acquisition Editor
Tarun Singh
Development Editor
Alina Lewis
Technical Editor
Krutika V. Katelia
Indexer
Monica Ajmera Mehta
Rekha Nair
Editorial Team Leader
Akshara Aware
Project Team Leader
Priya Mukherji
Project Coordinator
Jovita Pinto
Proofreader
Kevin Mcgowan
Production Coordinator
Alwin Roy
Cover Work
Alwin Roy
About the Author
Matt Williamson is the founder of Blue Key Consulting, a software design and development firm located in the New York City area. Prior to starting his consulting business, Matt worked as a software developer for various insurance and financial companies in Chicago and New York. Matt can be reached through his personal website at