Book Image

Learn pfSense 2.4

By : David Zientara
Book Image

Learn pfSense 2.4

By: David Zientara

Overview of this book

As computer networks become ubiquitous, it has become increasingly important to both secure and optimize our networks. pfSense, an open-source router/firewall, provides an easy, cost-effective way of achieving this – and this book explains how to install and configure pfSense in such a way that even a networking beginner can successfully deploy and use pfSense. This book begins by covering networking fundamentals, deployment scenarios, and hardware sizing guidelines, as well as how to install pfSense. The book then covers configuration of basic services such as DHCP, DNS, and captive portal and VLAN configuration. Careful consideration is given to the core firewall functionality of pfSense, and how to set up firewall rules and traffic shaping. Finally, the book covers the basics of VPNs, multi-WAN setups, routing and bridging, and how to perform diagnostics and troubleshooting on a network.

Related Content you might be interested in

Current Title:

Small book image
Learn pfSense 2.4
David Zientara
Jul, 2018 | 346 pages
Small book image
Network Security with pfSense
Manuj Aggarwal
Jul, 2018 | 152 pages
Small book image
OPNsense Beginner to Professional
Julio Cesar Bueno de Camargo
Jun, 2022 | 464 pages
Small book image
Networking Fundamentals
Gordon Davies
Dec, 2019 | 510 pages
Table of Contents (14 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Getting Started with pfSense
Getting Started with pfSense
Technical requirements
The pfSense project
What pfSense can do
The pfSense community
Objectives of this book
Summary
Questions
Further reading
2
Installing pfSense
Installing pfSense
Technical requirements
Networking fundamentals
Typical pfSense deployment scenarios
Hardware requirements and sizing guidelines
Installing pfSense
Initial pfSense configuration
Summary
Questions
Further reading
3
Configuring pfSense
Configuring pfSense
Technical requirements
IPv4 and IPv6 addressing
Additional setup options
SSH login
Adding interfaces
Adding a DHCP server
VLAN configuration
Summary
Questions
Further reading
4
Captive Portal
Captive Portal
Technical requirements
Captive portal basics
Captive portal best practices
Enabling a captive portal
Captive portal examples
Troubleshooting captive portals
Summary
Questions
Further reading
5
Additional pfSense Services
Additional pfSense Services
Technical requirements
Introduction to DNS
Configuring DNS
DDNS
NTP
SNMP
Summary
Questions
Further reading
6
Firewall and NAT
Firewall and NAT
Technical requirements
Firewall fundamentals
Firewall best practices
Creating firewall rules
Scheduling
Aliases and virtual IPs
NAT
Troubleshooting
Summary
Questions
Further reading
7
Traffic Shaping
Traffic Shaping
Technical requirements
Traffic shaping fundamentals
Configuring traffic shaping
Manual rule configuration
Using Snort for traffic shaping
Troubleshooting
Summary
Questions
Further reading
8
Virtual Private Networks
Virtual Private Networks
Technical requirements
VPN fundamentals
Configuring a VPN tunnel
Troubleshooting VPNs
Summary
Questions
Further reading
9
Multiple WANs
Multiple WANs
Technical requirements
Multi-WAN fundamentals
Configuring multiple WANs
Troubleshooting
Summary
Questions
Further reading
10
Routing and Bridging
Routing and Bridging
Technical requirements
Routing and bridging fundamentals
Routing
Bridging
Troubleshooting
Summary
Questions
Further reading
11
Diagnostics and Troubleshooting
Diagnostics and Troubleshooting
Technical requirements
Troubleshooting fundamentals
pfSense troubleshooting tools
A troubleshooting scenario
Summary
Questions
Further Reading
12
Assessments
Assessments
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Chapter 6
Chapter 7
Chapter 8
Chapter 9
Chapter 10
Chapter 11
13
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Firewall fundamentals

On a fundamental level, the purpose of a network firewall is to act as a packet filter. A firewall is placed on the boundary between trusted (internal) networks and untrusted (external) networks. When packets coming from the external network to the internal network do not match the packet filter’s set of rules (ruleset), the packets are either silently discarded (in other words, dropped) or an Internet Control Message Protocol (ICMP) message is returned to the sender (in which case we say the packet was rejected). If the packets match the ruleset, they are allowed through the firewall (in which case we say the packet passes through).

As you might have deduced, a good default firewall policy is to block all traffic not explicitly allowed. This is generally the policy that pfSense follows. In addition, the following two rules are in place when pfSense...

Previous Section
End of Section 3
Next Section