Changes between Version 3 and Version 4 of Cnbp2022/Agenda/pfSenseSetup


Ignore:
Timestamp:
Mar 13, 2022, 3:57:45 PM (3 years ago)
Author:
geethike
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • Cnbp2022/Agenda/pfSenseSetup

    v3 v4  
    3535    • To change the interface IP address press '''2''' and '''enter'''
    3636    • To change the LAN interface IP Address press '''2''' and '''enter'''.
    37     • Enter the LAN IP address as '''192.168.XY.254'''. Enter the subnet mask as '''24'''. We are going to have this IP address as our DMZ's gateway IP. Do not give any parameters to the gateway on LAN. Just press enter.
     37    • Enter the LAN IP address as '''172.30.1.1'''. Enter the subnet mask as '''24'''. We are going to have this IP address as our DMZ's gateway IP. Do not give any parameters to the gateway on LAN. Just press enter.
    3838    • Enter the LAN IPv6 address as '''2401:DD00:20XY:0::FFFF'''. Enter the subnet mask as 64. We are going to have this IP address as our LAN's gateway IPv6. Do not give any parameters to the gateway on LAN. Just press enter.
    3939    • To enable DHCP server on DMZ press '''y''' and press enter
    40     • For this workshop, our DMZ DHCP range is '''192.168.XY.10 to 192.168.XY.50'''. Give start and end IP addresses in the next steps.
     40    • For this workshop, our DMZ DHCP range is '''172.30.1.10 to 172.30.1.50'''. Give start and end IP addresses in the next steps.
    4141    • When it asks to enable DHCP for IPv6 press '''n''' as we are not to enable dhcpv6 at this time
    4242    • Press '''n''' and enter to disable http on WAN interface
     
    6363   * Hostname: pfsense
    6464   * Domain: instXY.ac.lk
    65    * Primary DNS Server: 192.248.7.254
     65   * Primary DNS Server: 8.8.8.8
    6666   * unset Overide DNS option
    6767* Step 3:
     
    7777After that, you will be directed to the Dashboard.
    7878
    79 === Adding Firewall rule to allow connectivity from Lab ===
    80 By default only hosts from pfSense LAN connected network is allowed to connect pfSense Web configurator. No connections will be allowed from any other interface. To allow connections from our Lab network (WAN side) we will add the below firewall rule.
    81 
    82 go to Firewall > Rules > WAN > Add to end
    83     • Action: pass
    84     • Interface: WAN
    85     • Address Family: IPv4
    86     • Protocol: TCP
    87     • Source: Network : 192.248.7.0/24
    88     • Destination: WAN address
    89     • Destination Port: Any, Any
    90     • Log: ticked
    91     • Description: Allow pfSense access from lab
    92 
    93 Save and Apply Changes
    94 
    95 Now you can use your host machine's web browser to log in to your pfSense web configurator using its WAN address.
    96 
    9779
    9880=== Switch the LAN interface to back to DMZ ===