software:pfsense
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
software:pfsense [2015/10/19 18:56] – superwizard | software:pfsense [2017/12/22 18:26] – superwizard | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== Firewall Rule Basics ====== | ||
+ | |||
+ | From: https:// | ||
+ | |||
+ | < | ||
+ | any - 0.0.0.0 to 255.255.255.255, | ||
+ | Single host or alias - Select this and enter one IP address (1.2.3.4, aa: | ||
+ | Network - Select this and enter a network and mask (10.99.0.0/ | ||
+ | LAN net - The subnet configured on the LAN interface under Interfaces > LAN. On pfSense 2.2+, this also includes IP alias networks on that interface. | ||
+ | LAN address - The IP address configured on the LAN interface under Interfaces > LAN | ||
+ | zzz Net / zzz address - Works the same as LAN above but for other interfaces (WAN, OPT1, OPT2, etc.) | ||
+ | PPTP clients - Automatically locate and use the addresses of PPTP clients | ||
+ | L2TP clients - Automatically locate and use the addresses of L2TP clients | ||
+ | This Firewall (self) - Any IP address assigned to any interface on this firewall (pfSense 2.2+) | ||
+ | </ | ||
+ | |||
+ | ====== Installing the Ubiquiti UniFi Controller Software on pfSense 2.2 ====== | ||
+ | |||
+ | From: http:// | ||
+ | |||
+ | < | ||
+ | Note: I am leaving this here for the reference and posterity, but for a variety of reasons, | ||
+ | I no longer recommend doing this. It is a neat hack, but tends to be a bit of a pain to live | ||
+ | with as you end up having to troubleshoot or reinstall it every time you update pfSense or | ||
+ | Unifi. When you can install it on a Raspberry Pi for less than $50, there' | ||
+ | to do this. | ||
+ | </ | ||
+ | |||
+ | |||
+ | ====== Automatically backup Pfsense configuration files ====== | ||
+ | |||
+ | From: https:// | ||
+ | |||
+ | < | ||
+ | The script is secure and will only connect via SSH using SSH key authentication instead of passwords. | ||
+ | We use pfMb on Mac and Linux but it should work on any *nix under bash. | ||
+ | </ | ||
+ | |||
+ | From: https:// | ||
+ | |||
+ | < | ||
+ | It is very lightweight and easy to use this tool. It requires the Microsoft .NET framework 2.0 to be | ||
+ | installed on the machine from which you are running it. Extract the executable in the ZIP and run it | ||
+ | without parameters to see the help text which explains the options you have to run it:</ | ||
+ | |||
+ | |||
+ | From: https:// | ||
+ | |||
+ | < | ||
+ | pfSense keeps its configuration in one convenient XML document. A backup of this document can be saved | ||
+ | by going to Diagnostics > Backup/ | ||
+ | Before downloading, | ||
+ | RRD data from the backup file. | ||
+ | Restoring a configuration is just as easy, click Browse, locate the backup configuration file, then click | ||
+ | Restore Configuration | ||
+ | </ | ||
+ | |||
+ | From: https:// | ||
+ | |||
+ | |||
+ | From: http:// | ||
+ | |||
+ | |||
+ | From: | ||
====== PFSENSE BEHIND A ROUTER ====== | ====== PFSENSE BEHIND A ROUTER ====== | ||
Line 153: | Line 217: | ||
http:// | http:// | ||
====== Squid Configuration ====== | ====== Squid Configuration ====== | ||
- | |||
=== Cache management page === | === Cache management page === |
software/pfsense.txt · Last modified: 2018/01/06 04:12 by superwizard