PFSENSE FIREWALL INSTALLATION AND SETUP.
What is pfsense thats why im here to explain and and guide you through the steps i also walked through to understanding pfsense and how to use it here's where we're going to start from, Pfsense is a free open-source software used to manage and secure network traffic. It turns a computer or device into a powerful firewall and router.
In this project i'll be using pfsense as a firewall which acts as a gatekeeper for my network it will be used to monitor incoming and outgoing traffic either by allowing it or blocking traffic based on the rules which you set to keep your network safe from threats like hackers or malware.
Now let's start with step 1 which is installing it. download pfsense with the link belows its very easy to download sign up and download the .iso if you have and issues downloading pfsense feel free to leave a comment or send a message to me on twitter (x).
Here's how you should set it up if you're setting it up like i did in vm the type should be a BSD and version FreeBSD 64-bits not 32-bits.
Pfsense doesn't require a lot of storage so i used this to set up mine.
Pfsense doesn't require the use of audio so disable that function.
This part is where my networking basic knowledge came to use cause you have to understand what you are doing in this section, so let me break things down we're creating two internal networks. by setting up LAN0 and LAN1 as internal networks we will create two separate network segments within the VM environment these segmented networks are isolated from each other and the external network unless we configure pfsense to allow such rule, This a valid way to achieve network segmentation.
Paravirtualized: Using VirtlO optimizes performance in the virtual environment but does not affect the network or segmentation type.
Adapter 1( Bridged, Paravirtualized): This connects pfsense vm to the physical network, allowing it to communicate with external devices(e.g router,internet,or other devices) it servers as the WAN interface adapter 1 WAN will provides internet access for the two segmented networks we will create as we go on in this project.
Enable network in adapter 2,
Adapter 2 (LAN0, Internal Network, Paravirtualized): Set the "attached to", as Internal Network and name it LAN0 or whatever you prefer and in advanced set adapter type as paravirtualized this creates a virtual network that is isolated within the hypervisor. Only virtual machines connected to the same "internal network" (LAN0) can communicate with each other. I hope this gave you a quick but direct explanation of what is being done as shown in the image below.
Adapter 3 (LAN1, Internal Network,Paravirtualized) very similar to what we did in adapter 1 this also creates a virtual network (LAN1) seperate from LAN0 for other vm's or devices connected to this internal network.
Next you want to start the Pfsense you should see the image below if you've been following go ahead click enter on "Accept".
The installation of pfsense is complete click reboot the system for the next step we will be configuring the segmented networks LAN0 and LAN1 on network adapter 2 and 3. Once pfsense reboots you should see the below image, write "NO" and press the enter key.
After that you want to assign the adapters to the networks in pfsense WAN is vtnet0, LAN0 is vtnet1 LAN1 is vtnet2. Follow the steps in the image below till you assign them to the network interfaces in pfsense at the end you will be prompted "do you wish to process you want to select "Y" and click enter.
The next step is assigning IP addresses to the internal network we just created LAN0 and LAN1 so what you want to do is select option 2 which is set interfaces IP address.
Go ahead and select option 2 we want to assign an ip address to LAN which is vtnet on the pfsense interface.
Next you want to select "Y" to configure IPv4 DHCP for the LAN interface
Select NO for IPV6 DHCP configuration
Click Enter we don't want to assign an ip address to IPv6.
Okay what we just did was to assign an ip address for LAN0 and also gate it a subnet mask and also the start and end range of the ip address in the DHCP lease pool when assigning an ip address to any other devices connected to the LAN0 network.
Click Enter we don't want to assign an ip address to IPv6.
Next is to assign an address for LAN0 IPv4 i am assigning 93.0.5.31 as the ip address and the subnet mask as 255.255.255.0 a /24 CIDR enter 24.
Click Enter as none you want to leave the default gateway address and Click enter as none for IPv6 we will not be assigning an ip address for ipv6 and leaving the default gateway for ipv6.
OK next we want to set the range of the ip address we just assigned for LAN0 which as the ip address 93.0.5.31, setting the start range of the ip address from 93.0.5.40 and ending at 93.0.5.243
You want to assign an IP address for LAN1 which is OPT1 vtnet in the pfsense interface if you look at the image below i already set it as 93.0.4.1 and set the subnet mask as 255.255.255.0 a /24 CIDR also setting the start range from 93.0.4.11 and ending at 93.0.4.243, i want you to follows the steps i took while setting up LAN0 and set yours up let me know if you encounter any errors.
After you're done setting that up we will go on to select 6 among the list of options in the terminal which halts the system go ahead and select "Y" when prompted if you want to proceed
That's the end of pfsense installation set up i'm adding a little more to make sure when you start pfsense i doesn't try to reinstall from start.
As you can see in the image below before we want to start pfsense g to settings and lets make a little adjustments enter the Storage section select the disk in the attributes select the disk on the top right corner and select remove disk from virtual disk. That's all the set up for know go ahead and start pfsense.
I hope this project was helpful to you aas it was to me learning how to configure and install pfsense thanks for being here and actually trying all best.
Comments
Post a Comment