By default, pings are not allowed and actually not recommended. Bu during a network debugging, it can be quite handy. In order to allow ping incoming on the pfSense WAN port, go to Firewall >> Rules >> WAN page and create a new rule by clicking on Add button (down arrow icon) and do as…
A OpenVPN server is useful if you want to safely connect to your house/office’s network from a remote place, say Disneyland or from abroad. In this article we are going to setup an OpenVPN server on your pfSense using LDAP for authentication based on Synology’s LDAP server. Getting ready A brief word on performance running…
For future posts, you will need to have at least one pair of public/private SSH keys installed on your devices for no password access to them. To do so, simply run ssh-keygen -t rsa -b 4096 to generate a 4096 bits RSA key. You will be asked to confirm the key name. Accept the default…
For future posts, we will need to have SSH enabled on the pfSense device, so let’s get this out of the way. Configuring SSH user I highly recommend not to use admin user for accessing pfSense through SSH. If you do it, you will face several constrains which will probably cost you hours to go…
In a previous post, I have described how to issue Let’s Encrypt certificates for free. SSL certificates have many applications, including replacing self-signed certificates that are not recognized by browsers. That is the goal of this post. Replace pfSense’s self-signed certificate by the one we have created using Let’s Encrypt API. Let’s Encrypt setup If…
This post is complementary to a previous POST protecting your network from malicious DNS. Here we are going to leverage a recent addition to pfBlockerNG: a brand new DoH feed! What is the big deal in allowing DNS over HTTPS (aka DoH) on your network?! Well, users can bypass the DNS over TLS of your…
The following instructions will detail how to install and configure pfBlockerNG to block the annoying ads and speedup your Internet connection. First, install pfBlockerNG through the System >> Package Manager >> Available Packages. A list of available packages will be loaded and all you have to do is click + Install button on the right…
Configuring pfSense DNS Resolver Many ISPs or other Internet service providers collect information for commercial reasons (selling your profile for directed advertisement) or otherwise. pfSense allows you to use DNS with TLS to encrypt your request in a way that only you and the DNS provider can see it. DNS over TLS is not supported…