New to PFSense. Need Help ..



  • Hello everyone and thats for taking the time too read this.

    I've installed PFSEnse the latest Ver, on my Rack Mount. Last time I posted I was trying too reuse old hardware as the posts will be available some were on the boards. I am very much new to this and the whole and bigger of what PFSense is capable of achieving and what it can do.

    I'm looking for more control over my home network and the possibility of routing threw the OpenVPN. I have a good understanding of how VPNs but I have too admit when I loaded up the Web-GUI Via my browser my mind was blown at the over all possibilities of what this can do.

    My question is, when setting up the wizard after the first log in Via. the GUI were do I start. Do I enter my ISPs DNS for example in the wizard or something like Google's , or even my VPN providers.

    When I looked at the configuration options available under OpenVPN I was baffled by some of the complex things I read with the configuration options.

    I have managed too assign an IP Address to the Local LAN but I'm unsure how to connect the actual WAN, as I'm not sure if I should connect the WAN too the Switch I have or have that connection running from my ISP Router \ Modem.

    At the minute I'm currently using a 24 Port Netgear Unmanaged switch and have my internet connection coming from my router in too the switch and everything else connected too the switch Via. the Ethernet ports.

    I'm hoping this thread is in the rite sub menu  so thanks for helping out if you can.



  • i would start by having the internet go from the cable modem into the PFsense box's wan port, then have a LAN port as well and hook that up to the switch.  I would think you would want to make sure the ISP box is in bridged mode or something similar, you wouldn't want to double nat.



  • Hey,

    I've managed too get access too the Web Configuration and I've assigned an internal address too my LAN but I'm having problems with the WAN.

    I'm getting an internal address for the WAN port being 192.168.x.x .

    I've booted my PFSense Box and I've assigned interfaces using option 1) and then option 2) too set interfaces. I've selected DHCP Ver.4 for WAN and I have also connected using Ethernet to my ISP Box. My LAN connection goes to the Switch I have what all my computers are connected too.

    I'm trying to get on line after routing my Ethernet connection threw WAN and having no luck. I'm having too directly connect to the Switch to get access.

    What would you recommend doing.



  • My question is, when setting up the wizard after the first log in Via. the GUI were do I start. Do I enter my ISPs DNS for example in the wizard or something like Google's , or even my VPN providers.

    It all depends on what you're trying to do, but assuming you have a typical home setup, you shouldn't need to enter anything for DNS, it will be provided via DHCP from your ISP.

    I have managed too assign an IP Address to the Local LAN but I'm unsure how to connect the actual WAN, as I'm not sure if I should connect the WAN too the Switch I have or have that connection running from my ISP Router \ Modem.

    PFsense allows all outgoing traffic by default, so once the LAN IP is assigned and DHCP is activated, it should all just work.  A typical home setup is:

    ISP Modem (in bridge mode) –--> (WAN interface) PFsense (LAN interface) ----> Switch

    I'm trying to get online after routing my Ethernet connection threw WAN and having no luck. I'm having too directly connect to the Switch to get access.

    Once connected like I've shown above, all of your devices should be connected to the switch.  At this point, your devices will be getting their configuration via DHCP and will be using the PFsense LAN IP as the default gateway and DNS… and should be online.



  • I'm having some serious problems hear. I've left the PC for 10 too do something & I've come back too the main computer I use.

    I'm unable to get online at all. I'm logged in too these forums on my tablet device. Even my two desjtops what have been shut down for two weeks are not getting online.

    I've connected directly too the switch & then my ISP Router \ Modem & all system are not connecting to the internet. Example is Googles homes page. I've disconnected PFSense on the WAN & LAN. & have taken it out the loop.

    Either I've been hacked or their is something wrong with the switch or Router.

    I've contacted my ISP & they say everything is up & running okay & is working on their end.

    But I'm connected too the wireless on my ISP Box with this tablet & its working. Just my three ststems are not.

    Any help please.



  • @TheHermit:

    I'm having some serious problems hear. I've left the PC for 10 too do something & I've come back too the main computer I use.
    I'm unable to get online at all. I'm logged in too these forums on my tablet device. Even my two desjtops what have been shut down for two weeks are not getting online.
    I've connected directly too the switch & then my ISP Router \ Modem & all system are not connecting to the internet. Example is Googles homes page. I've disconnected PFSense on the WAN & LAN. & have taken it out the loop.

    As usual, how did you setup LAN ? [ do not omit details ]
    WAN : same thing.

    Activating pfSense takes something between 2 and 5 minutes. For fast systems this might include the installation.

    @TheHermit:

    I've contacted my ISP & they say everything is up & running okay & is working on their end.
    But I'm connected too the wireless on my ISP Box with this tablet & its working. Just my three ststems are not.

    So, there you have your solid proof that your Internet connection (ISP) is fine.

    @TheHermit:

    Either I've been hacked or their is something wrong with the switch or Router.

    pfSense just installed, using a faulty setup which means none of the two interfaces work, and its hacked ?
    How ?
    Good news and bad news for you : your main problem is seated between the chair and keyboard. Talk to this guy, let him describe what he did to set up pfSense - make it a detailed description, ans we tell you what went wrong, and even why.
    Remember : routers (firewall) are like cars, ones you drove one ones, you drive them all (except for Ciscos, these are cars with wings, so they could be called planes).


  • LAYER 8 Global Moderator

    "you shouldn't need to enter anything for DNS, it will be provided via DHCP from your ISP."

    You don't need to enter anything for dns because out of the box pfsense resolves and doesn't forward.. But anything here is just pointless unless your going to either enable forwarder mode in unbound after you finish the setup or are going to run the forwarder and not the default resolver unbound.



  • @Gertjan:

    @TheHermit:

    I'm having some serious problems hear. I've left the PC for 10 too do something & I've come back too the main computer I use.
    I'm unable to get online at all. I'm logged in too these forums on my tablet device. Even my two desjtops what have been shut down for two weeks are not getting online.
    I've connected directly too the switch & then my ISP Router \ Modem & all system are not connecting to the internet. Example is Googles homes page. I've disconnected PFSense on the WAN & LAN. & have taken it out the loop.

    As usual, how did you setup LAN ? [ do not omit details ]
    WAN : same thing.

    Activating pfSense takes something between 2 and 5 minutes. For fast systems this might include the installation.

    @TheHermit:

    I've contacted my ISP & they say everything is up & running okay & is working on their end.
    But I'm connected too the wireless on my ISP Box with this tablet & its working. Just my three ststems are not.

    So, there you have your solid proof that your Internet connection (ISP) is fine.

    @TheHermit:

    Either I've been hacked or their is something wrong with the switch or Router.

    pfSense just installed, using a faulty setup which means none of the two interfaces work, and its hacked ?
    How ?
    Good news and bad news for you : your main problem is seated between the chair and keyboard. Talk to this guy, let him describe what he did to set up pfSense - make it a detailed description, ans we tell you what went wrong, and even why.
    Remember : routers (firewall) are like cars, ones you drove one ones, you drive them all (except for Ciscos, these are cars with wings, so they could be called planes).

    Hey I must apologize for the drama. When you said it takes a absolute minimum amount of time too set up; between 3 too 5 minutes It got me thinking what am I doing wrong. Because I have grappled with this for ages now and my head is spinning and still is to an extent.

    I must explain. When I contacted my ISP this afternoon I contacted them and found their had been a temporary suspension put on my line so I spoke to them and they explained that the Direct Debit (DD) recently had not went threw for my monthly payment. I spoke to them and resolved the issue and have made sure my account is up too date with all payments. Thats why I had a temporary suspension put on my line.

    It took about 20 minutes to get reconnected on line after they lifted the suspension but an hour later even tho my bill was paid my Router LED was flashing Red on my ISP Box.

    I have left it several hours and come back to it.

    I have booted the desktops and have had Internet connectivity on my main PC. I have connected my Ethernet too my PFSense Box from my ISP Box and my LAN too my switch from my PFSense Box.

    I am typing this reply as I have my connection routed threw my PFSense Box and I believe that my ISP Router Box is in bridge mode now. I done some on line research and found that other people had issues when logging in too the ISP Box Model I have got and that a hard reset while connected too my PFSense has put the ISP Box Router in Bridge Mode.

    That was another problem I was having was putting it in Bridge Mode as their were no manual configuration option but while being connected; a hard reset has done the job. I just have no way of logging in too the ISP Box too check but the connection did say when I checked it would automatically be detected.

    Also another thing was when in System > General Set-Up I have entered two Publicly available DNS for for > System > General Set-Up .

    I have set these as DHCP_WAN - 192.168.1.1 in regards to the actual publicly available DNS I am using.

    I have selected the "Allow DNS List to be over ridden by DHCP/PPP on WAN" .

    Does that sound Okay? Or have I done something wrong.

    I am still very much new to this and learning a lot about DHCP, DNS, and IP Addresses  in general .

    Thanks.


  • LAYER 8 Global Moderator

    Pfsense out of the box uses unbound in resolver mode - it makes ZERO point to put anything for dns or let your isp provide dns via dhcp since pfsense out of the box will be resolving - it doesn't forward any dns requests anywhere..

    A resolver walks down from roots and talks directly to an authoritative name server for whatever.domain.tld your looking for..

    It also out of the box has dnssec enabled, which is a good thing.  All you should have in your system widget on your dashboard for dns is 127.0.0.1 this is pfsense asking itself, which gets resolved for anything pfsense might need to lookup.. Like checking for packages or updates to itself, or when you click on resolve an IP in the the firewall log..



  • Hey Gyes, I hope you don't mind me posting back on this thread but I have been playing around with PFSense and managed too take two steps back and one step forward.

    I apologize for my stupidity but I'm still learning a lot about DHCP, DNSs, and the like of IP Addresses ..

    So in connection with this thread update I have my ISP Box what I was able to get in too the configuration and set the ISP Box Router too Bridge Mode. I selected to disable an option as following the guide available on line I found on my ISPs Web-Site. It was a little check box next too Bridge Mode.  Disable TR069 . I also disabled DHCP on LAN .

    Ever since my LED has been RED and my Internet connection not working and that was after I rebooted the system and my PFSEnse Server Box.

    A big problem I have also had was my KB & M totally died on me. When I plugged the Wireless Dongle in too PFSense Box I was able to see it connected as it showed up and in the main terminal were you have the options of 0) too 16) ..
    But when trying to enter something it just wouldn't input any commands. My KB & M totally crapped out and died on me.

    I've been too the supermarket for a replacement for now and I have full connectivity for the time being but my Router is still flashing up Red with the "Internet" Icon.

    I have managed to get my public WAN Internet facing IP Address.

    I'm able to connect too this on-line session threw the use of a VPN. I'm not sure because of that if its a problem with my ISP as I contacted them and when they lifted the suspension on my account it took a couple of hours for everything to go back too normal.

    Why would my ISP not block Encrypted Traffic but regularly connecting too the Internet Via. normal means is not working.

    This connection at the minute is routed threw PFSense. The server is up and running with an internal LAN Address and an external WAN Address.

    When configuration PFSense threw the main terminal I have selected LAN to use DHCP Ver.4 .

    I not 100% sure what DHCP means and how it works or DNS s for that matter but I'm slowly figuring it out.

    Can anyone help on this topic.

    Thanks.



  • i would at least unplug the cable modem for a few minutes or so.  You might need to call your ISP to make sure it is in bridge mode, sometimes they need to flag your account that it is in bridge mode.  You have to make sure your internet is working correctly before you go any further or you are just wasting your time.


Log in to reply