F5F Stay Refreshed Power Users Networks pfSence operates within a network infrastructure designed for connectivity and performance.

pfSence operates within a network infrastructure designed for connectivity and performance.

pfSence operates within a network infrastructure designed for connectivity and performance.

Pages (2): 1 2 Next
D
derbydestroyer
Member
Find
63
11-21-2021, 06:18 PM
#1
Hello everyone. I own an HP Server with a built-in 2 gigabit LAN and a PCI-X card that supports 2 gigabit connections. I understand I can install pfSense on the card for additional firewall protection, but I’m wondering if its placement affects things. Right now, the phone cable connects to a router, which in turn powers Wi-Fi for phones and a wife’s laptop, while the LAN is routed through a Netgear switch that hosts my PC, FreeNAS Server, Playstation, and security camera. I know running the cable from the router to the switch via pfSense would secure the server and its devices, but not the Wi-Fi network itself. Is there another configuration option that could safeguard everything? Any advice would be greatly appreciated.
Reply
Reply
D
derbydestroyer
11-21-2021, 06:18 PM #1

Hello everyone. I own an HP Server with a built-in 2 gigabit LAN and a PCI-X card that supports 2 gigabit connections. I understand I can install pfSense on the card for additional firewall protection, but I’m wondering if its placement affects things. Right now, the phone cable connects to a router, which in turn powers Wi-Fi for phones and a wife’s laptop, while the LAN is routed through a Netgear switch that hosts my PC, FreeNAS Server, Playstation, and security camera. I know running the cable from the router to the switch via pfSense would secure the server and its devices, but not the Wi-Fi network itself. Is there another configuration option that could safeguard everything? Any advice would be greatly appreciated.

Reply
Reply
J
josi1711
Junior Member
Find
42
11-23-2021, 05:03 AM
#2
The optimal solution is to purchase a dedicated wireless access point. The Ubiquiti AC lite make excellent selections without high costs, providing strong coverage and rapid speeds. Next, switch off WiFi on your router and configure it solely as a modem. Link the PfSense firewall to a LAN port on the router, then run a separate LAN cable from the pfSense unit to the switch. If your router lacks modem-only functionality, assign the pfSense box's static IP for WAN into its DMZ area. Feel free to ask if you need more details. Corban
Reply
Reply
J
josi1711
11-23-2021, 05:03 AM #2

The optimal solution is to purchase a dedicated wireless access point. The Ubiquiti AC lite make excellent selections without high costs, providing strong coverage and rapid speeds. Next, switch off WiFi on your router and configure it solely as a modem. Link the PfSense firewall to a LAN port on the router, then run a separate LAN cable from the pfSense unit to the switch. If your router lacks modem-only functionality, assign the pfSense box's static IP for WAN into its DMZ area. Feel free to ask if you need more details. Corban

Reply
Reply
V
vuro
Member
Find
244
12-13-2021, 04:14 PM
#3
Great suggestion, this might also function with a different router, right? Either way, routing all traffic through the router firewall and the pfSense firewall would help secure the freeNAS server.
Reply
Reply
V
vuro
12-13-2021, 04:14 PM #3

Great suggestion, this might also function with a different router, right? Either way, routing all traffic through the router firewall and the pfSense firewall would help secure the freeNAS server.

Reply
Reply
I
iiSweeTzz
Posting Freak
Find
862
12-18-2021, 10:46 PM
#4
Sure, any router would suffice. I set up my network two years ago using an ISP modem connected via LAN to an old PC running pfSense, then a switch linked to it. I couldn't replace the ISP router because they restrict that (Sky UK) and lack a dedicated modem-only configuration, so I used the DMZ instead—it functioned smoothly, so you should be fine too.
Reply
Reply
I
iiSweeTzz
12-18-2021, 10:46 PM #4

Sure, any router would suffice. I set up my network two years ago using an ISP modem connected via LAN to an old PC running pfSense, then a switch linked to it. I couldn't replace the ISP router because they restrict that (Sky UK) and lack a dedicated modem-only configuration, so I used the DMZ instead—it functioned smoothly, so you should be fine too.

Reply
Reply
L
Lenranders
Member
Find
55
12-20-2021, 04:42 PM
#5
Thank you.
Reply
Reply
L
Lenranders
12-20-2021, 04:42 PM #5

Thank you.

Reply
Reply
X
xXCoolIceBoyXx
Member
Find
215
12-21-2021, 04:33 PM
#6
Reply
Reply
X
xXCoolIceBoyXx
12-21-2021, 04:33 PM #6

Reply
Reply
I
iPeque
Member
Find
227
12-28-2021, 06:54 PM
#7
consider setting up virtual machines so the servers run together. Convert the actual hardware into a host—options include VMware ESXi (free) or Microsoft Hyper-V. This lets you allocate specific resources to each setup.
Reply
Reply
I
iPeque
12-28-2021, 06:54 PM #7

consider setting up virtual machines so the servers run together. Convert the actual hardware into a host—options include VMware ESXi (free) or Microsoft Hyper-V. This lets you allocate specific resources to each setup.

Reply
Reply
D
Deneth_
Member
Find
175
12-28-2021, 08:10 PM
#8
FreeNAS runs on a jail with a VM-like environment for applications. With 2GB RAM, a 3GHz CPU, and 5GB HDD, it should work but performance may vary.
Reply
Reply
D
Deneth_
12-28-2021, 08:10 PM #8

FreeNAS runs on a jail with a VM-like environment for applications. With 2GB RAM, a 3GHz CPU, and 5GB HDD, it should work but performance may vary.

Reply
Reply
V
Vukmil
Member
Find
94
12-28-2021, 11:08 PM
#9
That would be sufficient if you begin exceeding 20 devices or more, possibly adding extra RAM. PfSense operates as its own OS built on FreeBSD, meaning you'd need to configure a complete virtual machine. It's also conceivable that an update I'm not aware of could resolve this issue.
Reply
Reply
V
Vukmil
12-28-2021, 11:08 PM #9

That would be sufficient if you begin exceeding 20 devices or more, possibly adding extra RAM. PfSense operates as its own OS built on FreeBSD, meaning you'd need to configure a complete virtual machine. It's also conceivable that an update I'm not aware of could resolve this issue.

Reply
Reply
S
speedgling
Junior Member
Find
2
12-29-2021, 03:49 AM
#10
Sure, I'll start the VM and use the Gigabit card. Appreciate the help!
Reply
Reply
S
speedgling
12-29-2021, 03:49 AM #10

Sure, I'll start the VM and use the Gigabit card. Appreciate the help!

Reply
Reply
Pages (2): 1 2 Next