Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Possible attacks on Pfsense installed for Small Business office

    General pfSense Questions
    3
    5
    805
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      Dhruvin_Parmar
      last edited by

      I am trying to practicing to attack on pfsense using Kali Linux.Can any one help me what are the common attacks I can perform on pfsense.

      ISP->Pfsense->Lan1, Lan2->DMZ, Lan3

      NollipfSenseN 1 Reply Last reply Reply Quote 0
      • NollipfSenseN
        NollipfSense @Dhruvin_Parmar
        last edited by

        @dhruvin_parmar said in Possible attacks on Pfsense installed for Small Business office:

        practicing to attack on pfsense using Kali Linux

        If you're not confident of pfSense firewall, use others. BTW, there is no common attacks.

        pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
        pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

        D 1 Reply Last reply Reply Quote 1
        • D
          Dhruvin_Parmar @NollipfSense
          last edited by

          @nollipfsense thank you so much. But which are some examples of attacks ?

          NollipfSenseN 1 Reply Last reply Reply Quote 0
          • NollipfSenseN
            NollipfSense @Dhruvin_Parmar
            last edited by

            @dhruvin_parmar said in Possible attacks on Pfsense installed for Small Business office:

            @nollipfsense thank you so much. But which are some examples of attacks ?

            A properly configured firewall with IDS/IPS as well as pfBlockerNG mitigates attacks.

            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

            M 1 Reply Last reply Reply Quote 0
            • M
              mcury @NollipfSense
              last edited by mcury

              That depends a lot, you can play with kali linux attacking from inside..

              You could attack the dhcp server, like a dhcp starvation attack..
              In case you have Cisco, you could attack the CDP..
              You could attack the wifi network, especially those using WEP..
              These are just some examples of attacks in case you are already inside the network..
              ARP poisining and etc.. Rogue DHCP server, the list goes on...

              In case you are from outside the network, there is a block all rule in WAN.
              This block rule means that the firewall won't be accepting anything from outside.
              In the other hand, you may have a port forward in which your server could be vulnerable, and not pfsense.

              Also, as pfsense is a stateful firewall, it will allow the clients to go to the internet, and allow the packets to return automatically.
              Based on that there is a possibility that you have a host that has a malware, botnet, or this host has a CPU vulnerability (MDS, TAA, Spectre/Meltdown) and thus is vulnerable to code execution, which, according to Arch linux security wiki, this host could be remotely exploited just by accessing a website running JAVA..

              dead on arrival, nowhere to be found.

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.