Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ambitious first deployment

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 3 Posters 380 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SK711G
      last edited by

      I have attached a network map of how I would like to setup a new network. I believe I have all the requisite hardware. This is my first go with PFsense so i am sure that there are quite a few unknown hurdles. There is currently a working network in place. Everything is currently running from a cable modem / WiFi router combo and a 5 port switch. Currently no VPN is in use. To avoid noticeable network downtime I'm planning on deploying the outlined network 1st for IoT devices followed by moving on to the VPN segment then finally the final remaining leg.
      My limited working knowledge from YouTube channel Lawrence Systems / PC Pickup

      Network1.jpg
      Please don't slaughter me.
      Thx in advance.

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Diagram is tiny and unreadable.

        And I fail to see a question in your post.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          Yeah, both those things^ 😉

          Doing this in stages may introduce further issues. If you start out with pfSense behind your existing router and move your IoT devices onto a new subnet behind that you would not be able to reach them from devices on the original LAN for example.
          That may not be a problem.

          You could do it the way around and start out by putting pfSense in place with your existing router behind it but there will be down time. If you don't have separate wifi access points you might want to do this:
          https://docs.netgate.com/pfsense/en/latest/wireless/use-an-existing-wireless-router-with-pfsense.html

          What sort of VPN will this be? For accessing resources behind the firewall when you are remote?

          Steve

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.