pfSense is an, open source customized distribution of FreeBSD tailored for use as a firewall and router, entirely managed in an easy to use web interface
In addition to being a powerful, flexible firewalling and routing platform, it includes a long list of related features and a package system allowing further expandability without adding bloat and potential security vulnerabilities to the base distribution
Common pfSense Deployments
Perimeter Firewall
The most common deployment of pfSense is as a perimeter firewall, with an Internet connection plugged into the WAN side, and the internal network on the LAN side.
pfSense accommodates networks with more complex needs, such as multiple Internet connections, multiple LAN networks, multiple DMZ networks, etc.
LAN or WAN Router
The second most common deployment of pfSense is as a LAN or WAN router. This is a separate role from the perimeter firewall in mid-sized to large networks, and can be integrated into the perimeter firewall in smaller environments.
Wireless Access Point
Many deploy pfSense strictly as a wireless access point. Wireless capabilities can also be added to any of the other types of deployments
Special Purpose Appliances
Many deploy pfSense as a special purpose appliance.
- VPN Appliance use as a VPN appliance behind an existing firewall, to add VPN capabilities without creating any disruption in the existing firewall infrastructure.
- DNS Server Appliance
- Sniffer Appliance
- DHCP Server Appliance
pfSense Services
The base install of pfSense includes fundamental services for routing and firewall configuration
IPv4/IPv6 DHCP Server
DNS Resolver
Dynamic DNS
UPnP & NAT-PMP
Wake on LAN
IGMP Proxy
DHCP/DHCPv6 Relay
DNS Forwarder
SNMP
NTPD
PPPoE Server
Ready to start your own project ?
Resources
