Wrong network configuration - pfSense.
-
Well looks like the wan is your network 192.168.0/24 that your PC is on - so enable gui on wan
Done, does not work.
Why would you set pfsense lan to 192.168.56.1
pfSense configurator suggestion - http://imgur.com/a/MSzvE
do you want to use pfsense as the box that is running vb firewall?? Or for your whole network?
Whole network.
-
Your lan got that via dhcp.. That is not something lan is normal gotten from anyway because normally you run dhcpd on pfsense, etc. etc.. and it needs to be static.
If you want to run this for your whole network then do this.. Your box needs 2 interfaces min or smart switch and vlans but then gets way more complicated.
Interface your going to connect to your internet - wan, would be bridge in VB. Your Lan side interface in PC would be bridged in VB.
In your PC that is running vb you would not have any binding to the wan nic.
Your PC would have an IP on the lan side bridge interface in vb..Your pfsense vm in vb would have virt nic connected to your phy wan interface that is bridged and get your public IP from your ISP or if behind nat some rfc1918 from your gateway/router from your ISP. Your lan side network or lan interface in vb would be some different network that is bridged to your lan side PC interface. This would be connected to your phy switching setup. All other devices would be connected here, wireless AP would be connected here.
Your PC would have IP on this network.. This is what it would use for internet access.
There you go realistic this takes 5 minutes to setup..
-
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/030415_0147_SettingUpaP1.png
My router - 192.168.0.1
My host - 192.168.0.182
VM-VB :- Networks:
- NatNetwork - 192.168.0.0
- Host-nly (vboxnet0) - 10.0.2.0/24
DHCP - 10.0.2.1
- lower - 10.0.2.0
- upper - 10.0.2.20 - Adapters:
- Ad1 - eth0 - bridged
- Ad2 - intnet - internal
pfSense: - interface em0 (WAN) -DHCP4: 192.168.0.48
- interface em1 (LAN) - 10.0.2.15
Typing 10.0.2.15 in browser the webConfiguration window does not open.
http://imgur.com/a/02Jyw
http://imgur.com/a/lYsOI
How would you setup the ip addressing?
- Networks:
-
My router - 192.168.0.1
My host - 192.168.0.182Well your host is on the pfsense WAN.. As I showed in the my setup your PC running vm IP should be on the interface that is bridged to pfsense lan and your network - can not be connected to your routers network. Do this your going to need another switch. Can not just have 1 router as your only connection.
-
I am still working on configuration filtering firewall with 2 interfaces for entire network (Host with Debian Jessie - in this case) with virtual pfSense.
Despite the fact that you explained the configuration, I made many different efforts to resolve this issue, I still do not have access to pfSense webConfigurator.
I,am really not proud of me, but if I could ask you for favor.
I still have to make the some mistake, and loose only my time.
Please, send me working config, so I could learn from it, and avoid my mistakes.
If I could ask…Ps.Similar situation: https://i.stack.imgur.com/UPzpu.png
-
Dude do you have another switch? You can not setup your whole network to be behind pfsense if you only have 1 switch that is your router…
Exactly - this same drawing I already gave you.. But in that case they don't put any IP on the host.. If you want the host behind then enp3s0 there would be a 192.168.1.x IP..
-
I will buy smart switch, this week.
My idea was to defend Host only with virtual pfSense, but it seems to be unrealistic. -
If all you want to do is protect the machine that is running VB and pfsense - you can do that sure.
Your host machine can use the IP that is your host only network. Ie the 192.168.56 address that is the lan IP of your pfsense..
edit.. Here I downloaded VB took all of 2 minutes to move my machine behind pfsense..
So installed pfsense as vm with its wan on my normal network (behind your router) mine is 192.168.9/24.. I then put pfsense vm lan on the host only network on VB..
See fist attached image. vbnetwork So you can see the pfsense wan got a IP from my network (ie your router) 192.168.9.214 from dhcp.
I then set the VB host only interface on my machine to be on this 192.168.56 network.. So gave it 192.168.56.99 and set it to use pfsense lan IP 192.168.56.100 in my case as the gateway and dns.
You can then see I can ping this from my host running VB and I can access pfsense lan web gui and run the wizard..
Once I run through the wizard you see I am on the pfsense dashboard via the 192.168.56.100 IP..
I then turn off my IP On my physical interface.. Last attachment you can see I only have the 192.168.56.99 IP on my host machine. And when I traceroute to the internet you can see it hits my pfsense VM lan IP 192.168.56.100, then it hits what wold be your router 192.168.9.253, in my case that is pfsense running as vm on a esxi host.
So there you go step by step instructions - all of 2 minutes to setup. Actually posting this from behind my pfsense running on vb on my host..
-
This means in practice:
My router - 192.168.0.1
My host - 192.168.0.182VM VB - adapters,
- Ad1 - eth0 - bridged
- Ad2 - vbox0 -host-only
VM pfSense,
- interface em0(WAN) - DHCPv4 - IPaddress: 192.168.0.150
- interface em1(LAN) - static - IPaddress: 192.168.56.10
Please correct me if wrong.
@johnpoz
You are Great !
It works.
I have pfSense webconfigurator.
Now when I understand it seems simple and easy.
Thanks to your fantastic help and patience ;) -
