{"id":118,"date":"2022-10-10T18:00:00","date_gmt":"2022-10-11T04:00:00","guid":{"rendered":"https:\/\/wroberts.me\/?p=118"},"modified":"2022-12-08T09:08:13","modified_gmt":"2022-12-08T19:08:13","slug":"creating-a-pfsense-firewall-for-homelab","status":"publish","type":"post","link":"https:\/\/wroberts.me\/?p=118","title":{"rendered":"Creating a pfSense Firewall"},"content":{"rendered":"<div class=\"pps-series-post-details pps-series-post-details-variant-classic pps-series-post-details-865\" data-series-id=\"14\"><div class=\"pps-series-meta-content\"><div class=\"pps-series-meta-text\">This entry is part 1 of 6 in the series <a href=\"https:\/\/wroberts.me\/?series=cyber-defense-monitoring-homelab\">Cyber Defense Monitoring Homelab<\/a><\/div><\/div><\/div>\n<h1 class=\"wp-block-heading\" id=\"bkmrk-page-title\"><span class=\"ez-toc-section\" id=\"Cybersecurity_Monitoring_Lab_%E2%80%93_Part_1_%E2%80%93_Installing_pfSense\"><\/span>Cybersecurity Monitoring Lab &#8211; Part 1 &#8211; Installing pfSense<span class=\"ez-toc-section-end\"><\/span><\/h1><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-transparent ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 eztoc-toggle-hide-by-default' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/wroberts.me\/?p=118\/#Cybersecurity_Monitoring_Lab_%E2%80%93_Part_1_%E2%80%93_Installing_pfSense\" >Cybersecurity Monitoring Lab &#8211; Part 1 &#8211; Installing pfSense<\/a><ul class='ez-toc-list-level-2' ><li class='ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/wroberts.me\/?p=118\/#Setting_Up_the_Environment\" >Setting Up the Environment<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/wroberts.me\/?p=118\/#Download_pfSense_Iso\" >Download pfSense Iso<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/wroberts.me\/?p=118\/#Setting_up_Open_vSwitch\" >Setting up Open vSwitch<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/wroberts.me\/?p=118\/#Remove_Linux_Bridge\" >Remove Linux Bridge<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/wroberts.me\/?p=118\/#Switch_Creation\" >Switch Creation<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/wroberts.me\/?p=118\/#Install_pfSense\" >Install pfSense<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/wroberts.me\/?p=118\/#VM_Creation\" >VM Creation<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/wroberts.me\/?p=118\/#Configure_Interfaces\" >Configure Interfaces<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/wroberts.me\/?p=118\/#Set_VLANs\" >Set VLANs<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/wroberts.me\/?p=118\/#Assign_IP_Address_Ranges\" >Assign IP Address Ranges<\/a><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n\n\n\n\n<p id=\"bkmrk-this-project-is-goin\">The goal of this project is to be on build a homelab in order to practice setting up I.T infrastructure for monitoring networks.<\/p>\n\n\n\n<p id=\"bkmrk-pfsense-firewall%2Frou\">For the first part of this series, we&#8217;re going to install pfSense. PfSense is an open source router and firewall software solution. It comes with more features out of the box compared to a standard home router including VLAN configuration, traffic monitoring, and the ability to download plugins for additional features.<\/p>\n\n\n\n<p id=\"bkmrk-%C2%A0for-this-homelab%2C-p\">&nbsp;For this homelab, pfSense will be installed as a VM (virtual machine) and is going to serve as a gateway and firewall to an internal network where we will be placing out test machines. Here&#8217;s how the lab will look by the end of this series:<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"851\" height=\"921\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/12\/image.png\" alt=\"\" class=\"wp-image-624\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/12\/image.png 851w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/12\/image-277x300.png 277w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/12\/image-768x831.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/12\/image-300x325.png 300w\" sizes=\"auto, (max-width: 851px) 100vw, 851px\" \/><\/figure>\n<\/div>\n\n\n<h2 class=\"wp-block-heading\" id=\"bkmrk-setting-up-the-envir\"><span class=\"ez-toc-section\" id=\"Setting_Up_the_Environment\"><\/span>Setting Up the Environment<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"bkmrk-download-pfsense-iso\"><span class=\"ez-toc-section\" id=\"Download_pfSense_Iso\"><\/span>Download pfSense Iso<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p id=\"bkmrk-download-community-e\">Download the community edition iso from the pfsense website.&nbsp;<a href=\"https:\/\/www.pfsense.org\/download\/\">https:\/\/www.pfsense.org\/download\/<\/a><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"532\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-7-1024x532.png\" alt=\"\" class=\"wp-image-127\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-7-1024x532.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-7-300x156.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-7-768x399.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-7.png 1413w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-can-unzip-on-windows\">Once downloaded, you can unzip on Windows 7zip (<a href=\"https:\/\/www.7-zip.org\/\">https:\/\/www.7-zip.org\/<\/a>) or on linux using:<\/p>\n\n\n\n<pre id=\"bkmrk-gzip--d-filename\" class=\"wp-block-code\"><code>gzip -d filename<\/code><\/pre>\n\n\n\n<p id=\"bkmrk-where-filename-is-th\">where filename is the name of the pfsense .gz file.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"650\" height=\"516\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-3.png\" alt=\"\" class=\"wp-image-123\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-3.png 650w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-3-300x238.png 300w\" sizes=\"auto, (max-width: 650px) 100vw, 650px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-upload-the-iso-to-yo\">Upload the iso to your Proxmox server. Click on local (pve) on the left menu bar, click ISO images, then on the window that pops up, click select file and go the path where the iso is located. Hit upload.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5-1024x555.png\" alt=\"\" class=\"wp-image-125\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-5.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"bkmrk-setting-up-open-vswi\"><span class=\"ez-toc-section\" id=\"Setting_up_Open_vSwitch\"><\/span>Setting up Open vSwitch<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"bkmrk-remove-linux-bridge\"><span class=\"ez-toc-section\" id=\"Remove_Linux_Bridge\"><\/span>Remove Linux Bridge<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p id=\"bkmrk-rather-than-using-th\">Rather than using the default Linux bridges, we&#8217;re going to use open vswitch instead for features needed later. One of these features is port mirroring so we can monitor the traffic of our lab networks.&nbsp;<\/p>\n\n\n\n<p id=\"bkmrk-if-open-vswitch-isn%27\">If open vswitch isn&#8217;t already installed on your Proxmox server, run the command:<\/p>\n\n\n\n<pre id=\"bkmrk-apt-install-ifupdown\" class=\"wp-block-code\"><code>apt install ifupdown2 openvswitch-switch -y<\/code><\/pre>\n\n\n\n<p id=\"bkmrk-in-the-proxmox-shell\">In the Proxmox shell, run the following command to save the current network setting in case something goes wrong:<\/p>\n\n\n\n<pre id=\"bkmrk-cp-%2Fetc%2Fnetwork%2Finte\" class=\"wp-block-code\"><code>cp \/etc\/network\/interfaces \/etc\/network\/interfaces.bak<\/code><\/pre>\n\n\n\n<p id=\"bkmrk-next%2C-remove-the-lin\">Next is to remove the Linux bridge. Click on your Proxmox node, click network, then click on vmbr0. Then click &#8220;Remove.&#8221; DO NOT hit &#8220;Apply Configuration&#8221; until these next setups are completed or you will lose access to the web interface.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"924\" height=\"192\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-2.png\" alt=\"\" class=\"wp-image-122\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-2.png 924w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-2-300x62.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-2-768x160.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-2-920x192.png 920w\" sizes=\"auto, (max-width: 924px) 100vw, 924px\" \/><\/figure>\n<\/div>\n\n\n<h4 class=\"wp-block-heading\" id=\"bkmrk-switch-creation\"><span class=\"ez-toc-section\" id=\"Switch_Creation\"><\/span>Switch Creation<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p id=\"bkmrk-on-your-proxmox-node\">We&#8217;re going to create two switches. One will be for our servers that we&#8217;ll access from our home\/production network. The other switch will be for our internal network behind our pfSense firewall.<\/p>\n\n\n\n<p id=\"bkmrk-make-note-of-the-nam\">Make note of the name of your network device, you&#8217;re going to need it for the next step. Enp0s25 is the name of my interface.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"226\" height=\"59\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-1.png\" alt=\"\" class=\"wp-image-121\"\/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-starting-with-the-pr\">Starting with the production switch, on your Proxmox node, click network, then create new OVS bridge.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"556\" height=\"219\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-6.png\" alt=\"\" class=\"wp-image-126\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-6.png 556w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-6-300x118.png 300w\" sizes=\"auto, (max-width: 556px) 100vw, 556px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-the-bridge-port-will\">The bridge port will be name of your physical network interface. No IP address is needed for this part. In the comment section, name it &#8220;LAN Switch&#8221; or something to differentiate from the pfSense switch we will be creating next.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"605\" height=\"299\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-4.png\" alt=\"\" class=\"wp-image-124\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-4.png 605w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-4-300x148.png 300w\" sizes=\"auto, (max-width: 605px) 100vw, 605px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-next%2C-hit-%22create%2C%22-\">Next, hit &#8220;Create,&#8221; then &#8220;OVS IntPort.&#8221; This step is to ensure we can log in to the web interface for Proxmox. The IP address and gateway will be for what is on your network.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"611\" height=\"297\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-9.png\" alt=\"\" class=\"wp-image-129\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-9.png 611w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-9-300x146.png 300w\" sizes=\"auto, (max-width: 611px) 100vw, 611px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-create-another-switc\">Create another switch. Name it &#8220;pfSense Internal Switch&#8221; or some other identifier. This switch won&#8217;t have a bridge port since it is going to be attach to our pfSense firewall.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"605\" height=\"298\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-10.png\" alt=\"\" class=\"wp-image-130\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-10.png 605w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-10-300x148.png 300w\" sizes=\"auto, (max-width: 605px) 100vw, 605px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-create-another-ovs-i\">Create another OVS IntPort. This port is going to host the VLAN of the Active Director network. Include the VLAN tag in the name. The OVS bridge will be the bridge of the pfSense internal switch which in my case is vmbr1. Make sure to include the VLAN tag.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"599\" height=\"287\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-11.png\" alt=\"\" class=\"wp-image-131\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-11.png 599w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-11-300x144.png 300w\" sizes=\"auto, (max-width: 599px) 100vw, 599px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-with-the-switches-cr\">With the switches created, we&#8217;re not going to install pfSense.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"bkmrk-install-pfsense\"><span class=\"ez-toc-section\" id=\"Install_pfSense\"><\/span>Install pfSense<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"bkmrk-vm-creation\"><span class=\"ez-toc-section\" id=\"VM_Creation\"><\/span>VM Creation<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p id=\"bkmrk-create-a-new-vm.-nam\">Create a new VM. Name it pfSense. Hit next.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14-1024x555.png\" alt=\"\" class=\"wp-image-134\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-14.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-choose-the-pfsense-i\">Choose the pfSense iso.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13-1024x555.png\" alt=\"\" class=\"wp-image-133\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-13.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-default-settings-are\">Default settings are fine.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12-1024x555.png\" alt=\"\" class=\"wp-image-132\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-12.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-we%27ll-give-it-15gb-o\">We&#8217;ll give it 15GB of memory. The minimum needed is only 8GB.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15-1024x555.png\" alt=\"\" class=\"wp-image-135\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-15.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-1-core-is-1-gb-is-en\">1 core is 1 GB is enough since extra plug-in\/services aren&#8217;t going to be installed for now.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16-1024x555.png\" alt=\"\" class=\"wp-image-136\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-16.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17-1024x555.png\" alt=\"\" class=\"wp-image-137\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-17.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-leave-the-network-se\">Leave the network settings as is, we&#8217;re going to modify it afterwards. Hit next, then hit finish. Make sure the &#8220;Start after created&#8221; box is not checked.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20-1024x555.png\" alt=\"\" class=\"wp-image-140\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-20.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19-1024x555.png\" alt=\"\" class=\"wp-image-139\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-19.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-repeat-this-process-\">Before starting the machine, we need to attach the other switch to this machine. Click on the pfSense node, then hardware.&nbsp;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"908\" height=\"226\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-18.png\" alt=\"\" class=\"wp-image-138\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-18.png 908w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-18-300x75.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-18-768x191.png 768w\" sizes=\"auto, (max-width: 908px) 100vw, 908px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-select-the-other-net\">Select the other network interface, vmbr1, as the bridge. Now our pfSense firewall is attached to both our internal home network so it can receive an IP address from our home router and the internal switch so it can act the router for the lab network.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"604\" height=\"257\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-21.png\" alt=\"\" class=\"wp-image-141\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-21.png 604w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-21-300x128.png 300w\" sizes=\"auto, (max-width: 604px) 100vw, 604px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-before-we-start%2C-tak\">Before we start, take a snapshot of our machine. Select &#8220;Snapshots&#8221;, the &#8220;Take Snapshot.&#8221; Name it something descriptive.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23-1024x555.png\" alt=\"\" class=\"wp-image-143\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-23.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-now%2C-we-can-start-ou\">Now, we can start our machine. Select &#8220;Console&#8221;, then select &#8220;Start.&#8221; Wait for the installation prompts.<\/p>\n\n\n\n<p id=\"bkmrk-click-%22accept.%22\">Click &#8220;Accept.&#8221;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22-1024x555.png\" alt=\"\" class=\"wp-image-142\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-22.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-make-sure-install-pf\">Make sure Install pfSense is highlighted, then hit OK.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24-1024x555.png\" alt=\"\" class=\"wp-image-144\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-24.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-leave-the-keymap-as-\">Leave the keymap as default if it doesn&#8217;t need to be changed.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25-1024x555.png\" alt=\"\" class=\"wp-image-145\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-25.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-choose-auto-%28zfs%29.\">Choose Auto (ZFS).<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26-1024x555.png\" alt=\"\" class=\"wp-image-146\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-26.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-choose-install.\">Choose Install.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27-1024x555.png\" alt=\"\" class=\"wp-image-147\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-27.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-choose-stripe%2C-we%27re\">Choose stripe, we&#8217;re not optimizing for performance or redundancy for this machine.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29-1024x555.png\" alt=\"\" class=\"wp-image-149\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-29.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-press-the-space-key-\">Press the space key to select the disk, then press enter.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28-1024x555.png\" alt=\"\" class=\"wp-image-148\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-28.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-hit-the-left-arrow-k\">Hit the left arrow key to highlight &#8220;yes&#8221;, then press enter to start the installation.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30-1024x555.png\" alt=\"\" class=\"wp-image-150\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-30.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-select-%22no%27-on-the-n\">Select &#8220;No&#8217; on the next screen asking for final manual changes. On the next screen, select &#8220;Reboot.&#8221;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31-1024x555.png\" alt=\"\" class=\"wp-image-151\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-31.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"555\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32-1024x555.png\" alt=\"\" class=\"wp-image-152\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32-1024x555.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32-300x163.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32-768x416.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32-1536x832.png 1536w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-32.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<h4 class=\"wp-block-heading\" id=\"bkmrk-configure-interfaces\"><span class=\"ez-toc-section\" id=\"Configure_Interfaces\"><\/span>Configure Interfaces<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<h4 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Set_VLANs\"><\/span>Set VLANs<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p id=\"bkmrk-we-should-see-all-si\">When the machine starts up, it will ask to configure VLANs. Type &#8220;y&#8221;, then enter.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-33-1024x243.png\" alt=\"\" class=\"wp-image-153\" width=\"45\" height=\"10\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-33-1024x243.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-33-300x71.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-33-768x183.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-33.png 1245w\" sizes=\"auto, (max-width: 45px) 100vw, 45px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-next%2C-you-will-be-as\">Next, you will be asked to enter parent interface of the VLAN. Type &#8220;vtnet1.&#8221; The VLAN tag is 100.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"192\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-34-1024x192.png\" alt=\"\" class=\"wp-image-154\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-34-1024x192.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-34-300x56.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-34-768x144.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-34.png 1252w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-press-%22enter%22-when-a\">Press &#8220;enter&#8221; when asked to enter another VLAN. Type in &#8220;vtnet0&#8221; for the WAN interface.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"247\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-35-1024x247.png\" alt=\"\" class=\"wp-image-155\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-35-1024x247.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-35-300x72.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-35-768x185.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-35.png 1246w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-enter-%22vtnet1%22-as-th\">Enter &#8220;vtnet1&#8221; as the LAN interface.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"74\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-36-1024x74.png\" alt=\"\" class=\"wp-image-156\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-36-1024x74.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-36-300x22.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-36-768x56.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-36.png 1244w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-enter-vtnet1.100-as-\">Enter vtnet1.100 as the optional interface. Type &#8220;y&#8221; to confirm the interface assignments.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"84\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-37-1024x84.png\" alt=\"\" class=\"wp-image-157\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-37-1024x84.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-37-300x25.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-37-768x63.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-37.png 1247w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"137\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-38-1024x137.png\" alt=\"\" class=\"wp-image-158\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-38-1024x137.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-38-300x40.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-38-768x103.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-38.png 1249w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<h4 class=\"wp-block-heading\" id=\"bkmrk-that-concludes-part-\"><span class=\"ez-toc-section\" id=\"Assign_IP_Address_Ranges\"><\/span>Assign IP Address Ranges<span class=\"ez-toc-section-end\"><\/span><\/h4>\n\n\n\n<p id=\"bkmrk-after-pfsense-finish\">After pfSense finishes initializing, type in &#8220;2&#8221; to start assigning the IP address ranges to our interaces.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"267\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-39-1024x267.png\" alt=\"\" class=\"wp-image-159\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-39-1024x267.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-39-300x78.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-39-768x201.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-39.png 1241w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-enter-10.0.10.1%2F29-a\">Enter 10.0.10.1\/29 as the IP address. Type enter for the IPv6 address (leave blank). Type &#8220;y&#8221; for the DHCP server. The address range will be 10.0.10.2 to 10.0.10.6. Type &#8220;n&#8221; for reverting to HTTP. Press &#8220;enter&#8221; to finish configuring this interface.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"560\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-40-1024x560.png\" alt=\"\" class=\"wp-image-160\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-40-1024x560.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-40-300x164.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-40-768x420.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-40.png 1250w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-back-at-the-main-men\">Back at the main menu, type &#8220;2&#8221; again. Type 3 to configure the OPT1 interface. The OPT1 IPv4 address is 10.0.20.1\/28. Hit &#8220;enter&#8221; for the upstream gateway and IPv6 address. Type &#8220;n&#8221; for DHCP server.&nbsp; On this network, our domain controller will be the DHCP server. Press enter when done.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"561\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-41-1024x561.png\" alt=\"\" class=\"wp-image-161\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-41-1024x561.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-41-300x164.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-41-768x420.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-41.png 1253w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<p id=\"bkmrk-and-with-that%2C-pfsen\">And with that, pfSense is installed. In next part, we&#8217;ll access the pfSense web interface to configure the firewall rules and make other adjustments.&nbsp;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"520\" src=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-42-1024x520.png\" alt=\"\" class=\"wp-image-162\" srcset=\"https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-42-1024x520.png 1024w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-42-300x152.png 300w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-42-768x390.png 768w, https:\/\/wroberts.me\/wp-content\/uploads\/2022\/11\/image-42.png 1247w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"pps-series-post-details pps-series-post-details-variant-classic pps-series-post-details-865 pps-series-meta-excerpt\" data-series-id=\"14\"><div class=\"pps-series-meta-content\"><div class=\"pps-series-meta-text\">This entry is part 1 of 6 in the series <a href=\"https:\/\/wroberts.me\/?series=cyber-defense-monitoring-homelab\">Cyber Defense Monitoring Homelab<\/a><\/div><\/div><\/div><p>Cybersecurity Monitoring Lab &#8211; Part 1 &#8211; Installing pfSense The goal of this project is to be on build a homelab in order to practice setting up I.T infrastructure for monitoring networks. For the first part of this series, we&#8217;re going to install pfSense. PfSense is an open source router and firewall software solution. It &#8230; <a href=\"https:\/\/wroberts.me\/?p=118\" class=\"more-link\">Read More<span class=\"screen-reader-text\"> &#8220;Creating a pfSense Firewall&#8221;<\/span> &raquo;<\/a><\/p>\n","protected":false},"author":1,"featured_media":567,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"series":[14],"class_list":["post-118","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-home-lab","series-cyber-defense-monitoring-homelab"],"_links":{"self":[{"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/posts\/118","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=118"}],"version-history":[{"count":15,"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/posts\/118\/revisions"}],"predecessor-version":[{"id":848,"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/posts\/118\/revisions\/848"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=\/wp\/v2\/media\/567"}],"wp:attachment":[{"href":"https:\/\/wroberts.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=118"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=118"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=118"},{"taxonomy":"series","embeddable":true,"href":"https:\/\/wroberts.me\/index.php?rest_route=%2Fwp%2Fv2%2Fseries&post=118"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}