Many of us have more than one pfSense (maybe connecting our home and office, our home and our parents, etc) which would benefit with a direct connection between them. In this post I will describe how to create a routed tunnel that connects both ends, in a way that Site A can directly access Site…
Category: pfSense
Creating RFC1918 alias for Firewall rules
From time to time, I need to reference the use of a IP alias called RFC1918 to separate traffic from local network from other (aka “Internet”) traffic. RFC 1918 was published to “Address Allocation for Private Internets”, which is our local network. There is nobody on internet using any IP in the range described by…
Limiting bandwidth per Network Interface on your pfSense
On pfSense’s documentation own words, “the basic idea of traffic shaping is raising and lowering the priorities of packets or keeping them under a certain speed. This concept seems simple, however, the number of ways in which this concept can be applied is vast.” pfSense supports “Traffic shaper” and “Limiter” (and they can be used…
Configuring OpenVPN server on your pfSense
A OpenVPN server is useful if you want to safely connect to your house/office’s network from a remote place, say Disneyland or from abroad. In this article we are going to setup an OpenVPN server on your pfSense using pfSense Local Database for authentication. Getting ready A brief word on performance running VPN depends on…
How to configure NTP server on pfSense
Enabling NTP server can be a good idea to help keeping synchronized all clocks on your network! pfSense already includes a NTP daemon, so we need minimal configuration to get started! Verify your timezone Our first step should be double check our pfSense is set to the correct timezone. Go to System >> General setup,…
Isolating Wi-Fi networks using VLAN subnets through pfSense + Unifi switch and a little more…
A typical home network is a simple single network and if any of your devices is compromised or infected with malware, the attacker may be able to spread malware or compromise all of your other devices. You can better protect your home network by separating your home network into sub-networks (aka subnets). Devices in a subnet do…
How to setup UPS monitoring on your pfSense
In previous posts we have discussed how to enable SNMPv1 support on your APC UPS for remote monitoring. Here we are going to leverage this configuration to allow pfSense to monitor your UPS and protect it from outages! The first step is to install the nut package on pfSense, if it is not installed yet….
Isolating Wi-Fi networks using VLAN subnets through pfSense + UDM-Pro and a little more…
A typical home network is a composed of a single network and if any of your devices is compromised or infected with malware, the attacker is able to spread malware or compromise all devices. You can better protect your home network by separating your home network into sub-networks (aka subnets). Devices in a subnet do not have…
Setting-up Load balancing and Failover using pfSense Gateway Groups
Load balancing, as the name implies, is the act of distributing load (in this case network packages) to one or more interfaces, which can be WANs if you have more than one ISP service connected to your pfSense appliance and/or VPN connections over a single WAN. Failover is similar, but instead of distributing, it switches…
Setting up VPN client on your pfSense (Surfshark) with Kill switch
Surfshark provides a cheap VPN service that allows unlimited number of devices with ad blocking. In this tutorial we are going to configure pfSense with Surfshark and assign an interface to it so that we can route it to other services. Surfshark information The first step is getting your Surfshark credentials. Go to the login…










