• I am a new user to pfSense and have been looking for something to replace my Windows Wingate server with.
    Between the excess cost and limited connections (also based on cost), I am really looking forward to learning and using pfSense. I currently have a few issues with the new build I am testing and am now looking for a little assistance on understanding the software.

    While I am a Windows MCSE, I work in a FreeBSD environment (hay Scott U, Devin T said Hello). I cannot write code for it but I do read it and understand more than a little.
    I downloaded and installed to hard disk the current LiveCD, then installed the first update package. As of yesterday I have all the latest packages installed and am happy to see the FreeBSD 8.1.

    Currently the networks on the pfSense box are configured as
    Wan = built in nic = PPPoE = DynamicDNS with ZoneEdit = Had no issues configuring this.
    Lan = Intel 10/100 = 10.0.0 network (pfSense is at )

    All machines behind pfSense have had added to their Gateway listings.
    All machines within my network have no issues gaining access to the Internet. No proxy settings needed anywhere. There is a little more of a learning curve for this but so far… ok.

    WinGate has the nice feature of showing current connections (in and out bound) and the sub connections (web links) thru what they call Client Activity. Does the new version of pfSense have this ability? I have searched the forum’s and the Wiki and cannot seem to locate anything like this.

  • At (shell) command prompt type _pftop_to see active firewall states (connections). You can then type h to see options including sort options.

  • Netgate Administrator

    Welcome Aboard!  :)

    As you have already found out pfSense does not run a web proxy by default. Hence you don't need to enter any proxy settings at the clients. This means that it can't list urls in same way that Wingate is in your picture.
    You can see the firewall states as Wallabybob has suggested above. You can also access that information via the web GUI at Diagnostics >> pfTop.

    If you want/need a web proxy you need to install the Squid package. If you need to filter web traffic install the Squidguard package. You can then get far more detailed information from the logs.


  • Thanks for the reply and welcome.
    So far I like what I see….
    I will be installing the Squid products tonight or tomorrow.
    I have the firewall setup to forward port 80 to my web server and it is working great.

    When I install the Squid products, will I need to reastiblish the forward and or emove it to allow Squid to do it?

    I have read a lot of Forum, wiki and squid doc's and there is nothing I can find telling yes or no.

    Also, If I have a CDR/DVD writer giving errors in FBSD 8.1, where should I post that info?

    Thanks again and I look forward to getting this were I can turn off the Wingate server!  ;D

  • Netgate Administrator

    Squid is primarily an outgoing web proxy, it shouldn't affect your port forwards.

    If you need to proxy your incoming web connections for your web server (reverse proxy) you should look at the pound or varnish packages.


  • There does not seem to be a package available to these within pfSense packages list.

    I tried to go to the Pound site but it appears to be down. Using Google cache I can see it.
    I also went up to the Varnish site. Is downloading and installing the only option?

  • Netgate Administrator

    Hmmm, well I have to say reverse proxies are beyond my experience.
    Also I am running NanoBSD installs for which only a subset of the packages are available so I can't comment on what is available. Which version of pfSense are you running?


    Edit: I have HAProxy available.

  • I started with the Live Cd…
    Configured what was needed for my ppp0e and then let the system do the Firmware updates...

    Currnely I have
    2.0-RC3 (i386)
    Built on Sun Jul 31 05:05:32

    I will look up HAProxy....

  • Netgate Administrator

    So you did a full install to a HD then?
    There seem to be a number of other users running Varnish on 2.0. Search the forum.


    Edit: Doesn't seem to be in the package list though.  :-\