Installing pfsense without ISP router on Bridge-Mode
-
@johnytb Just make sure that your LAN address of the two devices are not the same subnet.
pfSense default LAN subnet is 192.168.1.0/24 therefore the WAN address cannot be within that subnet.
-
@viragomann
How do i make sure or know that im leaving with double NAT ?
And is it better to set the pfsense as a DMZ in my isp router instead of just recieving traffic from isp router ? -
@johnytb You dont have options regarding double nat (and you will barely notice it too), especially if you have to ask.
You don't need dmz either.
-
@netblues
So you're saying that using pfsense for just an extra firewall layer, and without DMZ or bridge mode on the home router, it will work just fine? -
@johnytb Yes it will.
It will be protecting you from elderly people who are known intruders too. -
@johnytb said in Installing pfsense without ISP router on Bridge-Mode:
So you're saying that using pfsense for just an extra firewall layer, and without DMZ or bridge mode on the home router, it will work just fine?
However, if you want to host some service accessible from the internet, or play some online games, you probably want to place your pfsense in DMZ.
-
@Gblenn Not without access to the main router and changing things, so... no, it won't fly
-
@netblues said in Installing pfsense without ISP router on Bridge-Mode:
Not without access to the main router and changing things, so... no, it won't fly
Well, if you are not permitted to make even such a small change, I guess you are stuck.
-
@Gblenn Hosting services isn't exactly for beginners, and as for gaming, the op would probably be better off without pf, especially if the elders utilize upnp, as is usually the default.
-
If the OP needs remote access or host services, they should be using a VPN like Tailscale, which will traverse any level of NAT, including CGNAT
