Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Newb alert: Can I run 2 pfsense firewalls

    General pfSense Questions
    2
    3
    868
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      silvershark78
      last edited by

      Hello,

      I am a basic home user that has done some upgrades like processors and such. I know the basics about computing. But beyond that I am a newb…sorry.
      I was a victim of some fraud and account hacking. Looked up firewall software and stumbled upon this software and it is great. Bought the book and have started reading.
      I have a pretty serious investment in my alienware with upgrades and such, and have put up the newest version of pfSense on a basic OptiPlex with a Pentium and 2 gigs of ram. Running an Intel dual nic. Everything is working fine.
      Here is my question.
      The alienware is inside the firewall. I did not want the wireless router inside the firewall with that pc. So due to this, anything wireless is outside of pfSense. Can I run a second pfSense firewall before the router to protect those pc's and tablets? So to be clear my configuration is -

      Modem with 105mbps down - wireless router - dedicated firewall pc - main pc

      I would like to know if I can run

      modem - dedicated firewall pc - wireless router - dedicated firewall pc - main pc

      I have done some searching and this stuff is obviously way over my head. And the simple question I am asking, I believe, would be buried in hours and hours of reading. If the admins see fit to delete the post, I will understand completely. I simply would like to know if there will be conflicts before I buy another refurbished OptiPlex and nic.

      -Mike

      Oh and it's cool you guys are using simplemachines. I use it for my forum.

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        A better way would be another network interface for the wireless with firewall rules to block connections to LAN but allowing connections to the internet.

        But a wireless access point with WPA2 AES and a nice, strong passphrase is probably good enough even on the same LAN.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • S
          silvershark78
          last edited by

          OK. Gotcha. Thank you. I look into it

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.