Unifi Dream Machine Pro (aka UDM Pro) is a nice appliance for acting as Unifi controller for your Access points (APs), while it also offers a 8-port managed switch using low power, noise and heat. It is an average router, and a lousy security appliance (hopefully they will improve a lot in this area). This…
For future posts, we will need to have SSH enabled on the pfSense device, so let’s get this out of the way. Configuring SSH user I highly recommend not to use admin user for accessing pfSense through SSH. If you do it, you will face several constrains which will probably cost you hours to go…
In a previous post, I have described how to issue Let’s Encrypt certificates for free. SSL certificates have many applications, including replacing self-signed certificates that are not recognized by browsers. That is the goal of this post. Replace pfSense’s self-signed certificate by the one we have created using Let’s Encrypt API. Let’s Encrypt setup If…
In a previous post, we have been through the steps to setup DuckDNS DDNS on your pfSense. However, if you are using CloudFlare as your DNS provider, it makes sense to configure it to also provide a Dynamic DNS for your domain. It is worth remembering that CloudFlare has a free version to manage your…
DuckDNS is a simple and free Dynamic DNS (aka DDNS) service that is supported as a custom configuration on your pfSense, but still very stable and easy to get it running with the right steps. DuckDNS account Go to duckdns.org and sign-up using one of the many supported authentication methods. In particular, I find it…
If you are like me and don’t want unencrypted data flowing on your network or maybe even on Internet, than this post is for you! I will adopt CloudFlare DNS as it has API to integrate with Let’s Encrypt SSL services through the ACME plugin. Both CloudFlare and Let’s Encrypt are free, so that is…
This post is complementary to a previous POST protecting your network from malicious DNS. Here we are going to leverage a recent addition to pfBlockerNG: a brand new DoH feed! What is the big deal in allowing DNS over HTTPS (aka DoH) on your network?! Well, users can bypass the DNS over TLS of your…
The following instructions will detail how to install and configure pfBlockerNG to block the annoying ads and speedup your Internet connection. First, install pfBlockerNG through the System >> Package Manager >> Available Packages. A list of available packages will be loaded and all you have to do is click + Install button on the right…
Configuring pfSense DNS Resolver Many ISPs or other Internet service providers collect information for commercial reasons (selling your profile for directed advertisement) or otherwise. pfSense allows you to use DNS with TLS to encrypt your request in a way that only you and the DNS provider can see it. DNS over TLS is not supported…
Having email notification on pfSense or any other service is a great thing because we can react faster to an issue that can quickly escalate due to its severity or because everybody start complaining at the same time. In this post, first you have to configure your Goggle account to allow external access and second…