Fire Wall setup - Oliver-Mustoe/Oliver-Mustoe-Tech-Journal GitHub Wiki

This section will detail the steps I took to configure the PfSense firewall.

Notes

Setup

First I made sure that the PfSense firewall had the correct settings in its "VM Hardware" section. Specifically that Network adapter 1 was selected as "DNE255-WAN" and Network adapter 2 was selected as "DNES-255-LAN-oliver.mustoe". With this configured correctly it should look something like this (The WAN and LAN sections might look different but those should be fixed in the next 2 steps):

pre-setup-picture1

Step 1: Interfaces

As a precautionary step I first double checked that the interfaces were assigned in the same order as they appear in the VMWare configuration, WAN with the first interface and LAN in the second.

In "VM Hardware" I looked in the dropdown section for the Network adapters and found the MAC address assigned to the ports. After recording these I went into the Firewall's console and Entered the option 1 to assign the interfaces.

  • em0 assigns to Network adapter 1's MAC address
  • em1 assigns to Network adapter 2's MAC address

Do not configure the VLANs, and if prompted for optional interface select "ENTER"

Step 2: Set interface IP

After checking that the interfaces were assigned in the same order as they appear in the VMWare configuration I set the interface IP Address selecting the option 2.
In the instructions it says to config the WAN interface, ignore this as it is already set, if you must set it though: enable DHCP > select no on everything else/press ENTER to skip
I selected option 2, the LAN interface - em1, and followed the following steps:

  1. Select no for DHCP
  2. Input the LAN IP address as 10.0.5.2
  3. Use a 24 bit subnet mask
  4. Leave the upstream gateway blank
  5. Leave IPv6 config blank
  6. Do not enable LAN DHCP server
  7. Do not revert to HTTP

After these two steps I completed the Windows setup: Windows 10 workstation setup

After setting up the Windows Workstation I used Internet explorer and searched up "10.0.5.2" and bypassed the certificate warning: Click "More information" > Click "Go on the webpage"

I then signed in with the account here and skipped the initial setup wizard (BUT not before leaving the setting to override the DNS server on PPP/WAN checked) by pressing on the pfsense logo.

I then click on the "System" dropdown and selected "General Setup" and filled in the following information:

  • Hostname: fw01-yourfirstname
  • Domain: yourfirstname.local
  • Primary DNS: 8.8.8.8

I then clicked on the "Interfaces" dropdown and selected "WAN" and Uncheck RFC1918 Networks: Uncheck "Block private networks from entering via WAN", It second from the bottom.

I then clicked on the "System" dropdown and selected "User Manager" where I set a root password. REMEBER THIS