Step by step configuration of pfsense router part 2

In my previous post I covered deployment of pfSense virtual router, now in this post I will continue with the basic configuration which is needed for our nested lab to function as a real datacenter.

pfSense is a software-based routing solution that enables multiple virtual networks to be created on a single physical network. To configure a virtual router using pfsense, a popular open-source firewall platform, you can use the pfsense firewall GUI to create virtual network interfaces and assign them to different nested VLANs. This allows for the creation of distinct subnets with their own IP ranges and routing tables. Pfsense also supports gateway firewall functionality, which allows for fine-grained control over traffic flow between virtual networks and the Internet. Additionally, dynamic routing protocol BGP can be configured on pfsense to automate network topology discovery and route selection.

Assign management or WAN address.

After successfully deploying the pfSense virtual router virtual appliance its time we add a management address, as my environment has a DHCP running, this appliance received an IP.

When we do not have DHCP, we should be assigning WAN or management IP manually.

Choose option 2. and press enter/return key.

Set the ip address to static.

Now enter the desired IP address and press enter/return key.

Provide the mask address as suggested in the prompt on the screen and hit enter/return.

Now enter the gateway address and hit enter/return.

If you want you can enable DHCP function on your pfSense router you can choose to do so, but I didnt as I already have a DHCP.

Do not go back to http protocol as its better to use HTTPS from security stand point.

Once done we are ready to access pfSense router GUI using assigned IP address.

Assign LAN Interfaces.

 interfaces from each vlan we are going to use, as per our plan we laid down in our post Home Lab Step-by-Step Part-3-Networking.

Login to ESXi host and navigate to virtual machine view.

Right click on the PFsense VM and select option Edit Settings.

Now on the edit settings wizard choose option "Add network adapter".

Now choose the port group we want the traffic to be routed with other networks.

Follow same steps for all the networks to add an interface to the router.

Configure LAN Interfaces.

Once done open browser and access the public interface of the PFsense router which we configured initially on this blog post and Login.

Now click on Interfaces.

Click on assignments.

Newly added Interfaces will be listed as Available network ports.

Click on +Add icon.

Once you click on Add it will add the interface as a LAN interface.

Now navigate to LAN interface. Click on Assignments and choose LAN.

Now here you can change description of the network which will help you identify the interface and its network. Along with make sure you enable the interface.

Scroll down to configure static IP of the interface, which will be your gateway for this network. Once configured, save configuration.

After saving configuration, apply changes.

Once you apply changes this interface is enabled and packets are routed with other enabled interfaces. Make sure you have configured all added interfaces to route traffic between them.

Please be aware once you enable LAN your management firewall rule will shift to LAN interface, hence access the GUI with LAN interface IP.

I have added an any any rule for WAN interface.

And final step is to add a Gateway IP for WAN.

I hope I was able to add value, if your answer is yes, then don't forget to share and follow. 😊

If you want me to write on specific content or you have any feedback on this post, kindly comment below.

If you want, you can connect with me on Linkedin, and please like and subscribe my YouTube channel VMwareNSXCloud for step by step technical videos.