• Hello,

    I am running pfsense 2 beta 4 and I have a specific need that i thnk pfsense might be able to handle.

    I live in the USA but want specific IP addresses on the internet to think I am in the UK. I only need this for specific IPs. My thoughts are to forward 212.58.0.0-212.58.255.255 Port 80 through the TOR network with a GB exit point and then all other IP's route as normal.

    Is such a config within the scope of pfsense - can TOR be installed on pfsense?

    Is there another way to achieve the same result using pfsense?

    Jon


  • You could set up a VPN tunnel as a second WAN, I have it running for months in a row without issues.

    Then you can use FW rules to achieve policy routing and have specific outbound traffic go through the VPN WAN.

    I'm actually working on a how-to for this but it's not finished yet.


  • Yeah - that was another route I was thinking of - we have an office in the UK so I could VPN into there - good to know I can route only certain traffic that way - this would actually be a better solution i guess as the traffic is not a concern whereas on TOR it can be. I will see about getting a Cisco VPN connection to the UK

    Let me know if you get any further with your how-to - I'm far from an expert when it comes to IP routing!

    Jon


  • @nojstevens:

    Yeah - that was another route I was thinking of - we have an office in the UK so I could VPN into there - good to know I can route only certain traffic that way - this would actually be a better solution i guess as the traffic is not a concern whereas on TOR it can be. I will see about getting a Cisco VPN connection to the UK

    Let me know if you get any further with your how-to - I'm far from an expert when it comes to IP routing!

    Jon

    I'm talking about setting the VPN tunnel up in pfSense itself, just so there are no misunderstandings.


  • Yep, understood - not done it before but been meaning to try it out. Had issues with Cisco on pfsense 1.x, but I understand the NAT issue is addressed in pfsense 2

    Jon


  • @nojstevens:

    Yep, understood - not done it before but been meaning to try it out. Had issues with Cisco on pfsense 1.x, but I understand the NAT issue is addressed in pfsense 2

    Jon

    And a few other notes :)
    I'm using 1.2.3-RELEASE and OpenVPN tunnels with certificates (from StrongVPN.com) to achieve this.

    Cheers,


  • Hey 0tt0,

    I would love to see the how-to on this as I too am using StrongVPN. I spent the whole day yesterday searching forums for how to setup StrongVPN or any other VPN service for that matter.

    Your help would be muchly appreciated.

    Thanks,
    Jesse


  • @jessewebb:

    Hey 0tt0,

    I would love to see the how-to on this as I too am using StrongVPN. I spent the whole day yesterday searching forums for how to setup StrongVPN or any other VPN service for that matter.

    Your help would be muchly appreciated.

    Thanks,
    Jesse

    Ok, I'll try to spend some time on this very soon.

    Cheers,


  • edit

    created a new topic here; for possible sticky.

    How to create an OpenVPN client to StrongVPN:
    http://forum.pfsense.org/index.php/topic,29944.0.html


  • Wow, thank you very much to both of you for your quick responses.

    ericab, the tutorial is fantastic, I know what I am doing tonight when I get home, :-)

    Jesse