Resetting while connected to WAN (sg 2440) –> security risk?
-
I played around with my new pfsense box (sg 2440) and locked myself out of the web-ui. I tried to use the reset button but it did not work the first two attempts because I didn't pressed it long enough. I finally got it reset and working again. However, I cannot remember anymore whether I actually disconnected the pfsense box from the modem/wan while trying to reset the pfsense box(successfully and unsuccessfully).
So here is my question: Does playing around with the reset button (successful or unsuccessful reset) while being connected to the WAN (or LAN) put one at an increased risk of being hacked? I am talking about the pfsense box itself (vulnerabilities during the boot sequence?) and the internal network (pfsense not filtering traffic while resetting?)?
If so, should I rather consider installing pfsense from scratch?Any feedback is much appreciated
-
Not really, the WAN interface isn't activated until near the end of the boot sequence so it wont be connected to the Internet while booting. Same goes for the LAN, it wont be passing any traffic at all until pfSense has finished booting.
FYI this is how to perform a factory reset using the reset button:
-
And the default configuration of firewall rules on WAN is deny all inbound.
-
Thanks so much for the replies to both of you. Indeed I ended up watching the exact same youtube video which helped a lot ;-)
-
There is a period of time during the startup of pfSense, between when an interface is being activated, i.e. "Configuring *** Interface…" and when the firewall rules are applied, i.e. "Configuring firewall......done" in which the system is wide open.
