Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    PfSense as a firewall only, plus other routers…does it make sense?

    General pfSense Questions
    2
    3
    810
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      brannysmith last edited by

      Hello All,

      I am contemplating setting up a pfSense box on my home network to serve as a firewall only. I currently have Verizon FiOS internet (and TV) service, which requires their ActionTec router to be the "first" device in the chain (and tech support needs to be able to hit it). Right now I have an Apple Airport Extreme wired to the ActionTec so that the Verizon box is just serving up DHCP and the Apple AP is serving up wireless. I'd like to insert a pfSense box between the Verizon box and the AP (as a pass through) to serve singularly as a firewall. Does that make sense?

      I'd be open to getting rid of the Apple AP if I can get a pfSense configured router with the same feature set (that I need) from the Apple AP. But this is a secondary thought to the first plan, above…unless the first one is unworkable or worthless. In that case I'd love to build a rocking pfSense router & firewall box.

      I'm looking for your experts thoughts/opinions before I move forward. Thanks!

      1 Reply Last reply Reply Quote 0
      • N
        nothing last edited by

        If NAT is done by the Verizon's router (and you have no DMZ forwarding) - pfsense behind it makes no sense as all the "attacks" will be carried by the first router.

        1 Reply Last reply Reply Quote 0
        • B
          brannysmith last edited by

          The FiOS router currently handles NAT, but I am pretty unhappy with it's performance overall. It's prone to crashing and needed hard restarts, its throughput seems pretty poor, and the user interface is a pain. Hence my idea to essentially bridge it so that the pfSense box servers as the DHCP server and is the "first line of defense."

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy