Part II – pfSense System setup and basic configuration

Part II

Step 1. Install pfSense.
You can download the latest version of pfSense here You can write the file to an usb-key and boot up on it.
If you are on windows you can use this program and i you are on a Linux system then you can use the dd command in the terminal to write the file to your USB-key.

I think i have to start with an apologize for the bad pictures with sunlight, but i must admit I didn’t have the time to wait until the sun was going down.

You should choose < Accept these Settings >  unless you know what you are doing! IMG_0629We are going to take the < Quick/Easy Install > just so we aren’t going to mess anything up or make it too complicated
IMG_0630Choose < OK >
IMG_0631I am going with the < Standard Kernel >
IMG_0632

And then < Reboot > the machine, remember to remove the installation media so you aren’t going to boot up on it again.
IMG_0633

So this is you home screen and the thing you always will see.
The thirst thing we are going to do is to assign our interfaces. go ahead and choose 1)
IMG_0634

You can see my interfaces are re0, em0, em1 and ath0.
You will be asked if you are going to use Vlans. if you know you are going to use Vlans
then press y (yes) and enter if you are not completely sure then press n (no) and then you can always use the webgui to setup the Vlans later.

IMG_0635I am going to use my re0 as my WAN
IMG_0636

and em0 as LAN and so on i think you get the point here.IMG_0637
to accept the settings we made press y (yes) and then enter
IMG_0640the next step is to give lan and wan an ip add. so choose 2) from the menu

IMG_0641We are going to start with WAN so i choose 1) if that is your WAN
IMG_0642i am going to use dhcp in this setup so just type y (yes) to ipv4 and ipv6
IMG_0644it is going to ask you if you want to use http as the webconfigurator protocol choose n (no) here to use https instead
IMG_0645Press < ENTER > to continueIMG_0647We are going to setup the lan as well. so choose 2) again.IMG_0648And as you can see LAN so i am going to choose 2)
IMG_0649it is going to ask for an IP address. The standard LAN IP is 192.168.1.1 but i am going with 10.0.0.1 because it is easier to remember ad quicker when you are using ssh.
IMG_0650We have to choose a subnet mask, i am going with 24 but you could easily choose 16 if you are on a private network and still have enough ip addresses to hand out
IMG_0651I am not going to use an ipv6 address. so i am going to hit < Enter >
IMG_0653Press y (yes) if you want to use dhcp for your LAN network. IMG_0654if you choose y (yes) to dhcp then you have to enter a start address for the dhcp server.
i am going to choose 10.0.1.50 because i have a better overview  when my static ip’s have a lower number and the dhcp clients are over the 50.
IMG_0655i could set it to 256 but i dont need all that ip addresses now so i am going with 150 so i can have 100 dhcp clients.
IMG_0657Press < Enter >IMG_0658Some network cards need a reboot to accept the changes. so hit 5) and < ENTER > to reboot.
You can disconnect your screen now and access the pfSense webgui on the LAN.
IMG_0659

 

A quick summary. We have installed Pfsense on our machine we have assigned the WAN and LAN interface to the right Ethernet ports and handed out a static IP address to the LAN and WAN is configured with DHCP. You should be able to connect to Pfsense web interface now, just insert your local ip address in the browser. mine is 10.0.0.1 and therefore the address is https://10.0.0.1 (if it dosn’t work then try to access it from the wan ip)

This is the login screen. Default login information is
Username : admin
Password : pfsense

Selection_002You can choose to follow the setup wizard or not, but i am going to go through the setup guide just to cover it all.

Selection_003I am going to leave the domain name as pfsense and set my hostname to localdomain
when we are done with the setup will i be able to connect to pfsense wiht pfsene.localdomain
Just leave the DNS fields blank if you dont know what you should insert here.

Selection_004

Just leve the DNS fields blank if you don’t know what you should insert here.

Selection_004

Make sure to choose the right time zone.
I live in Copenhagen and therefore i choose Copenhagen

Selection_005

Next step is to configure the Wan interface, but we already did that in the start so we will skip these steps.

Selection_006

Make sure these two are enabled in the bottom page of the WAN configuration

Selection_008This is the LAN configration and like the WAN interfaces we already have this configured
in the start of the guide. just make sure the two boxes in the bottom isn’t cheked like the WAN Interface.

Selection_009The last step is to choose a password for your user. I normally use this site to generate a strong and secure password and then store it on a encrypted USB drive.

Selection_010You should see this site, hit reload and you will enter the login window once again

Selection_011You wil see the dashboard and a box where the interfaces are presented, there is a LAN and WAN interface.
It should be up and running by now, and ready to configure.

Selection_016