PfSense Installtion
-
If you dont know what a DHCP Server is i somehow have the feeling pfSense is the wrong router for you and you'd be better off with a standard router you can get for 20$ at almost every PC-shop.
Your LAN of the pfSense is a 10.x.x.x/8 subnet.
The WAN of your second router is a 192.168.1.x/24 subnet. -
I have a Zyxel-p334WT router but still failed to block someone hacking me.
Therefore, i really required a high end firewall such as pfsense.
This is a home network. I really a stupid guy. Please forgive me for know nothing.
Thanks for your help.
Your help is greatly appreciated by me and others.
-
I have the impression that you really should ask someone in your neighbourhood to help you configure your internet connection!
pfSense is a sharp weapon but unless you know what you are doing it is next to useless.
It's like cooking a good meal:
You bought all the tools required (knife, pots, etc), have shopped for grocery and meat and now you ask for help with cooking in the forum of the knife vendor. That's not going to work! They can tell you how to handle the knife safely but answering how to cook a delicious meal is out of the scope!Got the picture?
BTW: I seriously doubt that you have been hacked by your ISP. Maybe someone is trying to access your network through the internet connection you have with your ISP. And a request from a file sharing client to your IP address is far from being hacked…
-
I have a Zyxel-p334WT router but still failed to block someone hacking me.
You never answered what makes you think that you've been hacked.
What have you seen? Has someone controlled your PC remotely or changed a web site you host or what?Answer this before posting anything else!
-
This is a home network but i need to make as secure as corporate network because i 'm IT student from Malaysia and i would like to learn.
Besides that, the evidence of being hacked is the iptables firewall is being deleted. I used Fedora 7.
File which deleted
1. proc/net/ipv4/
2. /etc/sysconfig/iptables-config
3. IPtables contrack lib file
4. All the rules have been deleted.I don't know how the intruder can gain root access. Can i double encrypt
the /etc/passwd and /etc/shadow. As far as i know, hash is one way encrption where you cannot decrypt it.I feel upset because a lot of thing cannot be done. I always need to format my pc. FUCK the HACKER. I need to set up samba and ssh but i always need to format.(Don't bother this at the moment).
I hope you can guide me to set up the pfsense firewall.
My final network diagram is as below:
Modem(IP:192.168.1.100, Default Gateway: 192.168.1.254)->pfsense(WAN: 192.168.100, LAN: 10.0.0.1, Subnet Mask:255.0.0.0(8))->Router(Gateway:192.168.1.1, Subnet Mask:255.255.255.0)_PC && Laptop.
I have try this
Modem->Pfsense_>PC but the PC(XP) return limited or no connectivity.
The modem setting is bridge mode. Which one is the correct setting for modem
Dynamic IP, Bridge mode, PPPOE.I using D-LInk DFE-528TX which is a RealTek rtl-8139 chipset card.
Someone told me that the subnet mark cannot overlap in the IpCop forum. Hist nickname is ds531.
Therefore, i set up the pfsense in 255.0.0.0
My internet connection is PPOE(dynamic Ip) and current network diagram is as below:
Modem>Router>PC && Laptop where the router is responsible for the dialing the ppoe connection.
I hope you can help me out. I really need your help. I really suffered without a secure network. I think you also encounter before as like me.
I hope you can understand my feeling now. I will become mad if i cannot set this up.
A billion thanks for your help.
Your help is greatly appreciated by me and others.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks.
Thanks. -
All my time is wasted at format and install. I cannot upgrade my IT skills anymore because of this matter. BEEP Malaysia ISP.
I suspicious my ISP hacked. I know this is unbelievable but this is a true story.
I don't know the reasons. From the output of trend micro, someone has connected to your network, then display the ip address of my router.My router is suck because is not statefull firewall. My router is Zyxel-p334WT.
I hope you can help me out.
****NOTE: Edited by Admin. please keep the conversation civil.****
-
As an IT student you sure have fellow students around that can help you setup your network correctly.
Private subnets and netmasks seem to be a good starting point in your case.
And there are lectures about basic networking you should attend… -
This is a home network but i need to make as secure as corporate network because i 'm IT student from Malaysia and i would like to learn.
Besides that, the evidence of being hacked is the iptables firewall is being deleted. I used Fedora 7.
File which deleted
1. proc/net/ipv4/
2. /etc/sysconfig/iptables-config
3. IPtables contrack lib file
4. All the rules have been deleted.I don't know how the intruder can gain root access.
What services are you exposing to the Internet/untrusted networks (eg, web server)? I'm certain that one of those is the source of your problem, which as I've said elsewhere changing you firewall won't help.
I'll also second jahnoix's comments in his post above.
-
I don't have the resources(Money) to attend the class. Internet is the basic method where i can gain variety of resources.
I think i should put my knee in the floor to bag for help. We know that UNIX is a difficult job but you can guide me through such as links or book and step by step set up.
Thanks for your help.
Your help is greatly appreciated by me and others.
-
If you want to study online then this could be a start - among lots of other sources.
http://en.wikipedia.org/wiki/IP_address
http://en.wikipedia.org/wiki/Subnetwork
http://www.3com.com/other/pdfs/infra/corpinfo/en_US/501302.pdf (White paper about IP addressing)The links within the wikipedia articles might be worth visiting as well.
-
Thanks for your help.
By the way, i cannot even connect to webGUI. Therefore, i get limited or no connectivity.
I hope you can help me.
Please.
Please.
Please. -
I can get the ip from pfsense during live compact disc without connect the wide area network.
Why after installation i no longer can connect to the LAN interfaces and WebGUI ?
The xp saying limited or no connectivity.
I hope you all can help me.
Thanks
-
Generally "limited or no connectivity" in XP means I can't get an IP address.
So did you setup the DHCP server? if not you either need to set it up or assign your XP PC an IP manualy
PfSense is great but it is probably not a "My first firewall" type thing.
Setting up a good firewall badly won't help you not get hacked. -
You seem to be able to surf the net. Fine.
Go and read about IP networks, private subnets and netmasks way before trying to configure your firewall.Once you do this you will find that all your equipment has to be in the same private subnet with the same netmask. Then you can surf with your XP PC as well. There were at least half a dozen hints in this thread alone you didn't get…
Read and understand basic networking FIRST!
-
Do i need the DHCP server ? I worried this will weaken the firewall and outside can connect to my network.
I can connect to the internet without pfsense. This is a home network.
Thanks for your help.
Your help is greatly appreciated by me and others.
-
Do i need the DHCP server ?
No you can manually assign IPs to every box on the network
@Peter_APIIT:I worried this will weaken the firewall and outside can connect to my network.
Not if you don't break the normal setup. Your DHCP server will only respond on the interface you enable it on eg LAN
@Peter_APIIT:I can connect to the internet without pfsense. This is a home network.
Yes!!! use any home network router you can buy. Most have a firewall and default rules that will work and a support line for you to call and are used to answering the basic questions you keep asking.
Please read all the howstuffworks.com etc stuff on networking it will help (start here http://computer.howstuffworks.com/home-network1.htm )
-
Is it possible for me don't set up the dhcp server in pfsense and let the router do the job for me ?
The network diagram is as below:
Modem->Pfsense->Router->PC && Laptop.If i set up the dhcp in pfsense, i need to disable the dhcp server in router, then the problem is how can assign for the laptop ?
Any official pfsense guide to set up dhco server ?
-
It's become very apparent that you know little to nothing about networking. I would strongly suggest you learn that first, then come back and play with pfSense.
In your diagram each "->" is a separate network, with separate IP ranges. You can run DHCP on each without affecting the other (hint, your pfSense box already gets it's WAN address via DHCP).
As for pfSense related documentation on setting up DHCP servers - if you know basic networking then configuring DHCP is obvious.
-
I have configure the dhcp server through the pfsense box but still get limited or no connectivity.
I cannot click the system setup wizard during the pfsense live cd.
When i move down, pfsense display different menu.Please guide me to solve this problem.
Thanks for your help.
Your help is greatly appreciated by me and others.
-
I have configure the dhcp server through the pfsense box but still get limited or no connectivity.
Then you need to work out the cause. Without the full picture nobody can help you. If you want help you need to:
- Provide an accurate diagram showing how every device is connected
- List the network addresses, including subnet, for every network segment
- List the host addresses for every interface of every device
If you can't answer any of these questions then you're in far over your head.
I cannot click the system setup wizard during the pfsense live cd.
When i move down, pfsense display different menu.There is a well documented problem with using IE with pfSense - use Firefox. Heck, learn how to use the search function of this forum, which is far less complicated than pfSense.
