Custom Setup Question

asphalt3

So, after installing pfsense on virtualbox I noticed that i will be exposed to a potential "hack" if I try to use the internet on the host machine or just leave it as is. I have the WNR3500L netgear router which i placed between the modem and the host pc which runs pfsense on a vm. Is there a specific mode i should put the router in? Same goes for the VM which is in bridge mode. I disabled wireless broadcasting for it as i have an Access point connected to a LAN port on the VM.

Thanks!

Gertjan

@asphalt3 said in Custom Setup Question:

installing pfsense on virtualbox I noticed that i will be exposed to a potential "hack"

Correct.
More general : it's the entire setup that will determine the weakest point.
When your host uses (accesses) the pfSense's WAN NIC it will bypass pfsense entirely. You are about to make your host hackable.

Your 'host' shouldn't be using the (pfSEnse physical ) WAN NIC, it should use it's (VM) LAN interface.

@asphalt3 said in Custom Setup Question:

WNR3500L netgear router which i placed between the modem and the host pc

A router in front of all this ? So you're fine after all.

asphalt3

thanks for your answer!

As you mentioned, I should connect the host to the LAN of pfsense.
That way I can get rid of the Netgear router.
Could you guide me through it? What settings do i have to change in the host's OS to not connect to the internet coming from the modem? Instead have it to connect to the LAN of the vm's pfsense.

thanks again

Gertjan

@asphalt3 said in Custom Setup Question:

settings do i have to change in the host's OS

A PC (device) can have many NIC's, like several physical RJ45, Wifi adapters and virtual NIC's. Up to you to choose the one you need.

I'm not using Virtual Box myself, but surely you could find some info on the net about how to set things up.
If not, there is a Hyper-V example in the pfSense doc, you could use it as a guide.

Removing the upstream router : you should analyse the WAN settings of this Netgear device. Use the same settings on the WAN interface of pfSense and you'll be fine.
For example, it is was DHCP, use the DHCP (client) on the pfSense WAN device.

asphalt3

@Gertjan said in Custom Setup Question:

@asphalt3 said in Custom Setup Question:

settings do i have to change in the host's OS

A PC (device) can have many NIC's, like several physical RJ45, Wifi adapters and virtual NIC's. Up to you to choose the one you need.

I'm not using Virtual Box myself, but surely you could find some info on the net about how to set things up.
If not, there is a Hyper-V example in the pfSense doc, you could use it as a guide.

Removing the upstream router : you should analyse the WAN settings of this Netgear device. Use the same settings on the WAN interface of pfSense and you'll be fine.
For example, it is was DHCP, use the DHCP (client) on the pfSense WAN device.

Okay,
thank you!