Proxy Support ?

netfly

Hello Guys, Could someone tell me how this works? I can't find any information on google about it.

I also take the opportunity to report this problem, it does not allow me to place my domain to synchronize.

Thank you!!

stephenw10

If you have an upstream proxy that pfSense needs to use to get external access you enter it there.
https://docs.netgate.com/pfsense/en/latest/config/advanced-misc.html#proxy-support

In an HA setup you have to use a fixed IP to synchronise to. It cannot be an FQDN.

Steve

netfly

@stephenw10 said in Proxy Support ?:

In an HA setup you have to use a fixed IP to synchronise to. It cannot be an FQDN.

But I don't have a fixed IP, I use DynDns

And regarding the proxy, I'll explain, I'm trying to send the traffic of one of my pfsense lans to a tor proxy (but I still can't find a way to do it, any suggestions)?

stephenw10

To use an HA pair you must have at least one static IP, the CARP IP can only be static. To set it up correctly you should have 3 static IPs so usually a /29.
The sync IP though is the internal IP used to sync between the nodes so that's usually a dedicated interface but can also be using a VLAN or an internal interface directly. Those will all be static IPs though.

That proxy setting is nothing to do with Tor. There is no support for Tor included in pfSense, to get that working would require a custom setup. There are some guides for doing that I believe though I have never tried it personally.

Steve

netfly

@stephenw10 said in Proxy Support ?:

To use an HA pair you must have at least one static IP, the CARP IP can only be static. To set it up correctly you should have 3 static IPs so usually a /29.
The sync IP though is the internal IP used to sync between the nodes so that's usually a dedicated interface but can also be using a VLAN or an internal interface directly. Those will all be static IPs though.
That proxy setting is nothing to do with Tor. There is no support for Tor included in pfSense, to get that working would require a custom setup. There are some guides for doing that I believe though I have never tried it personally.
Steve

thanks for getting me out of doubt with HA setup.

Talk about tor for an example, but I mean any proxy, what I need is that my lan navigates with another ip address

That's why I thought to use a proxy in pfsense so that pfsense sends all my lan traffic to that proxy but I have no idea where to start. Help me?

stephenw10

That proxy setting is for traffic from pfSense itself, to check for updates etc, so not what you want here.

The easiest way to obscure your source IP is to use a VPN and route the traffic you need across it.

Steve

netfly

@stephenw10 said in Proxy Support ?:

That proxy setting is for traffic from pfSense itself, to check for updates etc, so not what you want here.
The easiest way to obscure your source IP is to use a VPN and route the traffic you need across it.
Steve

when it says to use a vpn (you mean connect pfsense to a vpn) and then use nat to get traffic from xx ip to the vpn ip?

or do you mean to connect my client within the lan network to a vpn?

stephenw10

I mean connect pfSense to the VPN and then use policy routing to send whatever traffic you need across it. That could be all traffic from a particular internal interface.

Steve

netfly

@stephenw10 said in Proxy Support ?:

I mean connect pfSense to the VPN and then use policy routing to send whatever traffic you need across it. That could be all traffic from a particular internal interface.

Thanks for the help, I already have it!