Thanks. I have been using pfSense since 2016 and the the Netgate SG-2440. Still have the SG-2440, but using it as my LAB firewall. Using a 6 NIC port mini PC now. I have multiple VLANS and have 2 port LAGG with LACP. I want to have HA as my next project. I have a second unit that is the same PC model. Just want to have failover if one fails or if an update takes longer than usual. The only issue I ever had was one update that kept on failing. It was due to a small partition and had to be increased. Was going to play with OPNSense at one time just to have a look. Still might one day, just for fun. pfSense just works.
Thank you for the video! I installed pfsense a few weeks ago and will be following you for upcoming pfsense content. One thing I have been looking for, is how to create a certificate for free, without cloud flare or purchasing a domain name to remove the Not secure warning on the address bar. Keep up the good work!
Very, very helpful. I sure plan to install Pfsense in a virtual lab. I want to move away from Xfinity's internet cable modem / router, and I'll have mine right behind it. Thanks for teaching us.
Please remember that old PCs are more power intensive than a dedicated piece of hardware. A PC using 100W that runs 24/7 will use 876 kWh/year, while a dedicated 15 W device will use 131 kWh/year. In Denmark that's an extra cost of 200 euro/year.
Great video for anyone starting out covers all the basics and gets it up and running perfect. Interestingly I looked at some of the n100 firewalls with 10gb but then found out between the chip they use and the n100 max throughput for 2x10gb would have been 16gbe (not enough lanes). Would be interested in if your cover the pros and cons to having a firewall with more than one LAN? Most consumers would be going from a multi port firewall from ISP to just a single one. I found mixed views some say no more than 1 LAN whiles others have said its fine if your using a modern CPU it can handle the throughput.
@@solarhomelab before I learned vLANs my firewall had 8 physical Lan ports haha, no issues. In a purest security sense, physical is more secure than virtual. There's absolutely no reason not to have more, you could even lagg them.
I am trying to do an offline intial install the same as you, and everytime I select install after accepting the terms of service, it prompts me to setup network connection rather than letting me install?
As much as I enjoy your videos; it seems there hasn’t been an update for the CE version for quite a while. Would it still make sense to switching or installing Pfsense Ce at this point. Would really appreciate if you could talk about this.
Hi I followed your instructions. I used a router with 4 ports. I want to segment . I want one port for Management purpose. One port for managing vm's inside proxmox and one port for lxc containers . Could you please show this in one of your next video's. Segment using ports and later vlan. Cannot wait
@@luisicomur I really like Sophos xg but it doesn't support WireGuard unfortunately. As for PfSense it looks promising but I've almost no long term experience of using it (hence taking a look). I hear the community edition is as well looked after but I'm not sure how true that is
@@Jims-GarageI’m looking at v21 XG atm, I agree re wireguard, so looking at spinning up a VM for wireguard concentrator. Still got a pfsense + install. Sophos on my spare xg230r2 atm.
Hi Bro thanks for the tutorial much appreciate it. Can you also make a step by step tutorial video on split tunnel OpenVPN configuration on pfSense & the client side configuration preferably on Ubuntu please its a request, do reply
I have been looking forward to this for a long while. Thanks Jim!
You're welcome 😁
Thanks. I have been using pfSense since 2016 and the the Netgate SG-2440. Still have the SG-2440, but using it as my LAB firewall. Using a 6 NIC port mini PC now. I have multiple VLANS and have 2 port LAGG with LACP. I want to have HA as my next project. I have a second unit that is the same PC model. Just want to have failover if one fails or if an update takes longer than usual. The only issue I ever had was one update that kept on failing. It was due to a small partition and had to be increased. Was going to play with OPNSense at one time just to have a look. Still might one day, just for fun. pfSense just works.
Thank you for the video! I installed pfsense a few weeks ago and will be following you for upcoming pfsense content.
One thing I have been looking for, is how to create a certificate for free, without cloud flare or purchasing a domain name to remove the Not secure warning on the address bar.
Keep up the good work!
@@JasonJaX-x2d check my Traefik video and use letsencrypt
@@Jims-Garage Thank you, I’ll check it out
God bless you, sir. Very Useful!
Glad it was helpful!
Hi Jim, thanks for your videos. They're great and extremely helpful 😁👍
Very welcome, thanks for commenting
Very, very helpful. I sure plan to install Pfsense in a virtual lab. I want to move away from Xfinity's internet cable modem / router, and I'll have mine right behind it. Thanks for teaching us.
thanks man
@@Nerasgame24 you're welcome
Thanks.
@@kristof9497 you're welcome
Hi
This amazing.
@@simo47768 thanks 👍
are you planning on running dual stack v4 and v6? would love to see a video on going through that setup as well as the vlan configuration!
@@elocontol I'll only be doing ipv4 but can touch on 6 when I learn it haha (hard to test as I don't have it from my ISP). I'll be doing vLANs
@@Jims-Garage ah shame. my ISP gave me ipv6 but they only give /64 so i cant do VLAN-ing. unlucky i guess
Please remember that old PCs are more power intensive than a dedicated piece of hardware. A PC using 100W that runs 24/7 will use 876 kWh/year, while a dedicated 15 W device will use 131 kWh/year. In Denmark that's an extra cost of 200 euro/year.
@@taumus1 true, but you need to consider the price of the new device. For people starting out that's often a barrier to entry.
Danmark har også de dyreste afgifter, men helt enig - vi må være grønne og købe nyere energi venlige hardwares 😭💸
Great video for anyone starting out covers all the basics and gets it up and running perfect. Interestingly I looked at some of the n100 firewalls with 10gb but then found out between the chip they use and the n100 max throughput for 2x10gb would have been 16gbe (not enough lanes). Would be interested in if your cover the pros and cons to having a firewall with more than one LAN? Most consumers would be going from a multi port firewall from ISP to just a single one. I found mixed views some say no more than 1 LAN whiles others have said its fine if your using a modern CPU it can handle the throughput.
@@solarhomelab before I learned vLANs my firewall had 8 physical Lan ports haha, no issues. In a purest security sense, physical is more secure than virtual. There's absolutely no reason not to have more, you could even lagg them.
Thanks for the video. I can’t use this with wireless devices right only wired? How do I integrate wireless devices? Buy a separate wifi NIC?
Yes, exactly. You'd need a wireless access point or a wireless card in the firewall. I use unifi access points, they're great.
I am trying to do an offline intial install the same as you, and everytime I select install after accepting the terms of service, it prompts me to setup network connection rather than letting me install?
As much as I enjoy your videos; it seems there hasn’t been an update for the CE version for quite a while. Would it still make sense to switching or installing Pfsense Ce at this point. Would really appreciate if you could talk about this.
The version hasn't been updated but modules are, so it still does what it's supposed to. I will go going paid longer term.
H Jim, any recommendation so far between OPN and PF?
Leaning on pfSense due to WireGuard speed
Hi
I followed your instructions. I used a router with 4 ports. I want to segment . I want one port for Management purpose. One port for managing vm's inside proxmox and one port for lxc containers . Could you please show this in one of your next video's. Segment using ports and later vlan. Cannot wait
@@simo47768 sure 👍
I'm in doubt between pf or sophos xg home free license. Which one do you recommend and why?
@@luisicomur I really like Sophos xg but it doesn't support WireGuard unfortunately. As for PfSense it looks promising but I've almost no long term experience of using it (hence taking a look). I hear the community edition is as well looked after but I'm not sure how true that is
@@Jims-GarageI’m looking at v21 XG atm, I agree re wireguard, so looking at spinning up a VM for wireguard concentrator. Still got a pfsense + install. Sophos on my spare xg230r2 atm.
Hi Bro thanks for the tutorial much appreciate it. Can you also make a step by step tutorial video on split tunnel OpenVPN configuration on pfSense & the client side configuration preferably on Ubuntu please its a request, do reply
@@anand-nb4bb I'll cover VPN, and likely do this as an option.
@@Jims-Garage Thanks Bro for considering my request. 🙂 & continuing the series
everytime i add a lan interface, I can't connect
@@laser_yomishido do you receive an IP address when you connect to the LAN port? If not manually assign one.
Thought you're a Opnsense guy
I'm a curious guy (currently using OPNSense and long time user of Sophos). Makes sense to check everything out and also make demos for others.
@@Jims-Garage makes sense
Very cool! But that BBC news page was cringe. Such lefty drivel. Thanks for the vid!