• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Pfsense as proxy server on an existing VPN network

Scheduled Pinned Locked Moved General pfSense Questions
5 Posts 2 Posters 1.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • J
    jamhulk
    last edited by Jan 15, 2015, 8:57 PM

    Hi guys,

    Good day!

    I've been searching since last month on how to configure my pfsense box that will work as a proxy server.

    Im working on a small company that has an existing VPN lease line provided by the ISP.

    Heres the story.
    The current setup is that the cable from ISPs modem is directly inserted to our internal switch (currently we don't have firewall),so they have all the control of in/out of our network. So everytime we control internet access (giving internet access to specific IP, blocking websites etc.) we always call our ISP to perform the task. And this is very tedious on our part.
    So i decided to explore pfsense installed on an i7 PC with 2 NIC.
    Since I cant modify the current physical setup (as what is advised by my superior) what I did is put the other end of the 2 NICs (LAN&WAN) from pfsense box to our internal switch.
    Everything is ok, I can access the webGui and even install packages including 'squid' (proxy server). Except when after configuring the proxy settings of the client PC it cant connect to the internet and it only return the page " DNS rebinding". I been searching google for the solution but still no luck.

    Hope somebody could assist me in configuring my first pfsense box.

    Here is the additional settings for reference.
    WAN IP - 192.168.0.251 - static (provided by the ISP; with internet access)
    LAN IP - 192.168.0.250
    WAN Gateway - 192.168.0.6 - static (provided by ISP)
    Lan gateway - none

    Thanks in advance for the help guys.

    1 Reply Last reply Reply Quote 0
    • D
      doktornotor Banned
      last edited by Jan 15, 2015, 8:58 PM

      This is completely broken. You cannot have LAN on the same subnet as WAN.

      1 Reply Last reply Reply Quote 0
      • J
        jamhulk
        last edited by Jan 16, 2015, 11:36 PM

        Hi sir dok,

        Thanks for your quick reply.

        I tried to change my LAN to 192.168.7.1 but still same error when i try to connect the client pc.
        Any advice on what should I do with my setup sir?.

        Thanks in advance again.

        1 Reply Last reply Reply Quote 0
        • J
          jamhulk
          last edited by Jan 17, 2015, 7:49 AM

          Hi Sir Dok,

          Good Day!

          I am providing here with a simple diagram for your reference.
          Hope this will help in figuring out on how to correctly setup my pfsense box.

          Thank you again in advance.

          ![current setup.jpg](/public/imported_attachments/1/current setup.jpg)
          ![current setup.jpg_thumb](/public/imported_attachments/1/current setup.jpg_thumb)

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned
            last edited by Jan 17, 2015, 8:06 AM

            Does not make any sense whatsoever unless it's a managed switch with VLANs. Cannot even see how does that fix the "everytime we control internet access (giving internet access to specific IP, blocking websites etc.) we always call our ISP to perform the task" issue.

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received