Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering pfSense
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering pfSense

Mastering pfSense

By : David Zientara
3.3 (4)
Buy this Book
close
close
Mastering pfSense

Mastering pfSense

3.3 (4)
By: David Zientara

Overview of this book

pfSense has the same reliability and stability as even the most popular commercial firewall offerings on the market – but, like the very best open-source software, it doesn’t limit you. You’re in control – you can exploit and customize pfSense around your security needs. Mastering pfSense - Second Edition, covers features that have long been part of pfSense such as captive portal, VLANs, traffic shaping, VPNs, load balancing, Common Address Redundancy Protocol (CARP), multi-WAN, and routing. It also covers features that have been added with the release of 2.4, such as support for ZFS partitions and OpenVPN 2.4. This book takes into account the fact that, in order to support increased cryptographic loads, pfSense version 2.5 will require a CPU that supports AES-NI. The second edition of this book places more of an emphasis on the practical side of utilizing pfSense than the previous edition, and, as a result, more examples are provided which show in step-by-step fashion how to implement many features.
Table of Contents (15 chapters)
close
close
close
Preface
chevron up
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Revisiting pfSense Basics
Revisiting pfSense Basics
Technical requirements
pfSense project overview
Possible deployment scenarios
Hardware requirements and sizing guidelines
Hardware sizing guidelines
The best practices for installation and configuration
pfSense configuration
Summary
Questions
Further reading
2
Advanced pfSense Configuration
Advanced pfSense Configuration
Technical requirements
SSH login
DHCP
DNS
DDNS
Captive portal
NTP
SNMP
Summary
Questions
3
VLANs
VLANs
Technical requirements
Basic VLAN concepts
VLAN configuration at the console
VLAN configuration in the web GUI
Configuration at the switch
Troubleshooting VLANs
Summary
Questions
4
Using pfSense as a Firewall
Using pfSense as a Firewall
Technical requirements
An example network
Firewall fundamentals
Firewall best practices
Creating and editing firewall rules
Scheduling
Aliases
Virtual IPs
Troubleshooting firewall rules
Summary
Questions
5
Network Address Translation
Network Address Translation
Technical requirements
NAT essentials
Outbound NAT
1:1 NAT
Port forwarding
Network Prefix Translation
Troubleshooting
Summary
Questions
6
Traffic Shaping
Traffic Shaping
Technical requirements
Traffic shaping essentials
Configuring traffic shaping in pfSense
Advanced traffic shaping configuration
Traffic shaping examples
Using Snort for traffic shaping
Troubleshooting traffic shaping
Summary
Questions
Further reading
7
Virtual Private Networks
Virtual Private Networks
Technical requirements
VPN fundamentals
Configuring a VPN tunnel
Troubleshooting
Summary
Questions
8
Redundancy and High Availability
Redundancy and High Availability
Technical requirements
Basic concepts
Server load balancing
CARP configuration
An example of both load balancing and CARP
Troubleshooting
Summary
Questions
Further reading
9
Multiple WANs
Multiple WANs
Technical requirements
Basic concepts
Multi-WAN configuration
Example – multi-WAN and CARP
Troubleshooting
Summary
Questions
10
Routing and Bridging
Routing and Bridging
Technical requirements
Basic concepts
Routing
Bridging
Troubleshooting
Summary
Questions
11
Extending pfSense with Packages
Extending pfSense with Packages
Technical requirements
Basic considerations
Installing packages
Important packages
Other packages
Summary
Questions
Further reading
12
Diagnostics and Troubleshooting
Diagnostics and Troubleshooting
Technical requirements
Troubleshooting basics
pfSense troubleshooting tools
Troubleshooting scenarios
Summary
Questions
13
Assessments
Assessments
Chapter 1 – Revisiting pfSense Basics
Chapter 2 – Advanced pfSense Configuration
Chapter 3 – VLANs
Chapter 4 – Using pfSense as a Firewall
Chapter 5 – Network Address Translation
Chapter 6 – Traffic Shaping
Chapter 7 – Virtual Private Networks
Chapter 8 – Redundancy and High Availability
Chapter 9 – Multiple WANs
Chapter 10 – Routing and Bridging
Chapter 11 – Extending pfSense with Packages
Chapter 12 – Diagnostics and Troubleshooting
14
Another Book You May Enjoy
Another Book You May Enjoy
Leave a review - let other readers know what you think

What this book covers

Chapter 1, Revisiting pfSense Basics, covers deployment scenarios for pfSense, hardware requirements, sizing and installation options, and it guides the user through the initial installation and configuration.

Chapter 2, Advanced pfSense Configuration, covers some of the commonly used pfSense services, such as DHCP, DNS, Dynamic DNS (DDNS), captive portal, Network Time Protocol (NTP), and Simple Network Management Protocol (SNMP).

Chapter 3, VLANs, covers how to set up a virtual LAN in pfSense, both from the command line and the web GUI, and provides examples showing how to configure some commercially available managed switches.

Chapter 4, Using pfSense as a Firewall, covers how to implement rules to block, pass, or divert network traffic, as well as virtual IPs, aliases, and scheduling.

Chapter 5, Network Address Translation, covers Network Address Translation (NAT) in depth, including outbound NAT, port forwarding, 1:1 NAT, and Network Prefix Translation (NPt).

Chapter 6, Traffic Shaping, covers how to use the pfSense's traffic shaping capabilities, using the traffic shaping wizard, by manually adjusting queues, and by creating custom floating rules.

Chapter 7, Virtual Private Networks (VPNs), covers the advantages and disadvantages of VPNs and explains how to use pfSense to set up an IPsec, L2TP, or OpenVPN tunnel. Client-server and peer-to-peer options are covered.

Chapter 8, Redundancy and High Availability, covers load balancing, failover, and implementing redundancy via Common Address Redundancy Protocol (CARP), which allows the user to add one or more backup firewalls.

Chapter 9, Multiple WANs, covers ways to implement redundancy and high availability into internet connections by having multiple internet connections for failover, load balancing, and bandwidth aggregation. This chapter shows how to set up gateways and gateway groups.

Chapter 10, Routing and Bridging, covers bridging and static/dynamic routing, including when bridging network adapters is appropriate, as well when it is necessary to configure static routes and how to do it, and discusses the dynamic routing protocols available for pfSense.

Chapter 11, Extending pfSense with Packages, covers the most significant packages available for pfSense, such as Snort, Squid, HAProxy, and many others.

Chapter 12, Diagnostics and Troubleshooting, covers what to do when things go wrong. A problem-solving methodology is outlined, and common problems and available troubleshooting tools are discussed. A real-world example of troubleshooting is provided.

Appendix A, Assessments, answers to the questions mentioned in the chapters.

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
Next Section
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY