PFSense Firewall setup help needed!

d.k

Hello I installed of sense like this:

ISP (Modem) - PFSense - AP Mode Wifi Router - AIMesh Router

I want to be able to normal use all services like Netflix and daily stuff but want to be secure when port forward to a domain is there a way to set that only certain up adress can get access to the service in my local network that is forwarded to the domain?

I also had an entrance last year that a Russian server tried brute force attack to my home internet what can I do to enhance security with pfsense I used to use ASUS routers how used to be connected directly to isp modem!
But sind I need for a special service a domain to get it to work I thought best way would be with pfsense a firewall but I have barely knowledge about that networking stuff!

It would be nice if someone can help me!

JonathanLee

Check out Netgate docs for configuration recipes, they have many you are sure to find one to match your needs.

https://docs.netgate.com/pfsense/en/latest/recipes/example-basic-configuration.html

I got to tell you it has so many options and packages it’s like a Swiss Army knife. Pick one that suites your needs.

d.k

@JonathanLee Thank you for your reply ill look into it!

Gertjan

@d-k said in PFSense Firewall setup help needed!:

I want to be able to normal use all services like [whatever, like everybody else]

Good news : out of the box, you have to set up your WAN connection. If your WAN is using the default DHCP, you're in luck : there is nothing to do.
That is, not entirely true : you have to change the default password.

I'm not joking : that's it. Your good. Your save. Netgate wouldn't deliver you a pfSense that is not good and not safe out of the box. The next best safer solution would be : power down your ISP modem and pfSEnse, as that would give a an even more safer solution.
(as : don't go to to Internet if you want a max safe solution )

Out of the box, no "Internet initiated connections "can come in. and your LAN initiated connections can go out.

@d-k said in PFSense Firewall setup help needed!:

Russian server

Servers, where ever they are, do nothing.
People that control 'a device' can do things with this device.
But they will hit the "no Internet initiated connections can come in" rule.
The only thing that can happens is : your down stream Internet connection will get filled up to the max. Which means your connections doesn't seem to work anymore.
There are no other consequences.
Again : I'm not joking : that's it.

The 'server' that is attacking 'some one' like you or me, the ordinary people, don't worry about it, don't feel focused. It can happen. Although, we all, behind our ISP with thousands or millions other ISP clients, the bad guys are not interested in us. They will focus the computer that handles your
water supply, electricity supply, your bank, the government and the big companies.

This video shows you what to do, and what you shouldn't do : The man who angered anonymous and lived to regret it

d.k

@Gertjan thanks for the reply!