E-Book: pfSense – Free, professional Open Source Firewall for the enterprise

Some of my books i wrote for CTS GMBH (http://CTS.at) are published by them at DigitalBooks24. The full list of published books is available here.

pfSense – Free, professional Open Source Firewall for the enterprise

Available at DigitalBooks24 here

pfSense

Free, professional Open Source Firewall for the enterprise

The guide shows you how to install pfSense the easy way, optionally enabling GeoIP for country based rules, proxy server with virus scanner, high availability failover and syncing different firewalls with rules from a master firewall.

Easy understandable for beginners, helpful for professionals.

Best security based on FreeBSD

Easy maintainable

Scalable

Saves your company money

Introduction to security

In the past services offered on the Internet mostly was unprotected and traffic was sent in clear text between server and user. Firewalls was unknown to most users.

Times has changed now, spying on traffic and hacking is all around. Actually it needs less than a few minutes to have the first bots trying all of their exploit scripts against your IP address. Never think you are not important enough for hackers because in the first step bots operates on IP addresses without knowing who is behind this IP address. Things will be exploited pretty fast.

A modern firewall with strong security, combined with other prevention methods like transparent proxy servers scanning for viruses, using modern and state-of-the-art server technologies is a must for every system connected to the Internet.

After using this great solution a long time I finally wrote this e-book for you.

Setup of this guide – Our Goal

This guide will show you how to set up a pfSense firewall in a few minutes. We use a virtual machine setup, but you can use any new or old PC and embedded systems whatever suits you best.

Table of Contents

Introduction

Table of Contents

Legal Notes

Introduction to security

Setup of this guide – Our Goal

Base setup 10

Our final setup 10

Prepare to install

Download the software 11

Install pfSense

Prepare boot 12

Boot and setup the basics 12

First boot 16

Assign interfaces and IP addresses 17

Accessing the web interface

Continue basic settings 20

Complete the Wizard 20

Detailed Setup

System Advanced 23

System Advanced / Admin Access 23

System Advanced / Networking 23

System Advanced / Miscellaneous 24

System Advanced / Notifications 24

System / Certificate Manager 25

System / Certificate Manager / Certificates 25

System / General setup 26

System / High Availability Sync 27

pfsync protocoll / multicast 27

Synchronization Settings (XMLRPC Sync) 27

System / Routing Gateways 29

System / User Manager / Users 29

Interfaces 30

The Firewall

Firewall / Aliases 32

Firewall / NAT 34

Firewall NAT / Port Forward 34

Firewall NAT / 1:135

Firewall / NAT / Outbound 36

Firewall / Rules 37

Firewall / Rules / WAN 37

Firewall / Rules / LAN 38

Firewall / Rules / LAN / change default rules 38

Firewall / Schedules (time based rules) 40

Firewall / Virtual IPs 40

Services

Captive Portal 42

DHCP(46) Relay 42

DHCP(46) Server 42

DNS Resolver 45

Load Balancer 46

NTP 46

The updated rules 46

VPN

Ipsec 48

L2TP 48

OpenVPN 48

Proxy Server Setup

Install required packages 50

Proxy server settings 51

Local Cache 51

General 52

Antivirus settings 67

ACLs 68

Authentication / Users 68

Real Time 69

Sync to other servers 69

URL blocking settings 69

General Settings 69

Common ACL 70

XMLRPC Sync 71

Updated firewall rules 71

GeoIP blocking Setup

Install required packages 73

Setup Country Blocking 73

General Setup 73

Select countries / regions to block 74

System Backup and Restore

More Features

About The Author

Other Books By (Author)

Link List for this e-book

pfSense – Project 81

FreeBSD Project Page 81

CTS Solutions Website 81

7-Zip Website 81

Block Lists usable for URL blocking 81

Can I Ask A Favour?

About The Author

Karl M. Joch is founder of CTS GMBH with more than 30 years experience in national and international projects. He worked in over 15 countries.

A CTS Solutions IT-Pro Book