-
Amazon Deals - ToS - Warp
Pfsense/OPNsense with Airtel?
- Thread starter Ashbro
- Start date
- Replies 33
- Views 5,668
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
@Ashbro I am dual booting both. They are simple to set up with just the basic functions, in case you are not familiar with router setup process there's a wizard that guides you through the basics. If you have specific question(s) please ask.
I do not believe there's a step by step procedude detailed on this forum that helps noobs. But you can visit either pfSense and OPNSense documentation on their website for details on basic and advanced options. The firewall software is powerful and flexible too, way more so than the normal household WiFi routers that most use.
PS - I am running it on a spare old PC but I am thinking of alternatives that use less power.
I do not believe there's a step by step procedude detailed on this forum that helps noobs. But you can visit either pfSense and OPNSense documentation on their website for details on basic and advanced options. The firewall software is powerful and flexible too, way more so than the normal household WiFi routers that most use.
PS - I am running it on a spare old PC but I am thinking of alternatives that use less power.
Last edited:
Thank you for your response!
Configuration of pfsense/opnsense I can handle with the documentation and YT tutorials.
I was also thinking how my overall setup would look like?
I suppose it would be ISP Router (which would now act as a modem only) -> OPNSense -> external router (TP-Link in my case, to broadcast the wifi network). Is my understading right or am I missing/wrong about seomthing?
Also, will it be possible to discuss this with you on a phone call or probably on discord?
Configuration of pfsense/opnsense I can handle with the documentation and YT tutorials.
I was also thinking how my overall setup would look like?
I suppose it would be ISP Router (which would now act as a modem only) -> OPNSense -> external router (TP-Link in my case, to broadcast the wifi network). Is my understading right or am I missing/wrong about seomthing?
Also, will it be possible to discuss this with you on a phone call or probably on discord?
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
@Ashbro the way I have configured my network (with CAT6 cabling as a "back haul" in the home) is as follows:
Airtel/TPBB -->pfSense/OPNSense -->LAN switch/WiFi APs-->LAN or WiFi Clients
pfSense WAN connections are set for load balancing and fail over functions. In addition I have installed Snort and Suricata on pfSense and OPNSense respectively. There are plenty of setup instructions available on YT and on other sites, but if you need authoritative help visit the help pages or even the forums where some of the development/design staff visit and offer help frequently.
After having dual booted both I prefer pfSense for ease of configuration and operation.
Airtel/TPBB -->pfSense/OPNSense -->LAN switch/WiFi APs-->LAN or WiFi Clients
pfSense WAN connections are set for load balancing and fail over functions. In addition I have installed Snort and Suricata on pfSense and OPNSense respectively. There are plenty of setup instructions available on YT and on other sites, but if you need authoritative help visit the help pages or even the forums where some of the development/design staff visit and offer help frequently.
After having dual booted both I prefer pfSense for ease of configuration and operation.
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
@WieldyBinkie yes I do. A personal subs is about ~$30/year.
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
@WieldyBinkie to me it is, YMMV of course. ET Pro is very very expensive and mostly targeted at corporates not individuals.
Any IPS/IDS may have an impact (depending on the machine) otherwise how will it do it's job? Ditto for firewalls, AV scanners on PCs etc. There's always a small tradeoff when you choose security solutions.
Any IPS/IDS may have an impact (depending on the machine) otherwise how will it do it's job? Ditto for firewalls, AV scanners on PCs etc. There's always a small tradeoff when you choose security solutions.
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
Yes, Snort was single threaded and Suricata is multi threaded. Works best on multi core processors. However Snort 3 is multi threaded. Read more here: Snort 3
What do I prefer? Snort. Why? Only because it works flawlessly with pfSense. I have not tried Suricata on pfS but only on OPNSense which I boot into rarely. I have not done any meaningful comparison yet because TBH I don't really care. There may be detailed comparisons elsewhere on the 'net. Snort, Suricata and pfBlockerNG require additional configuration and fine tuning which you can get on the appropriate forum. I assume you are familiar with the basics of firewalls, routers, network configuration etc. If you have a specific query please feel free to ask.
What do I prefer? Snort. Why? Only because it works flawlessly with pfSense. I have not tried Suricata on pfS but only on OPNSense which I boot into rarely. I have not done any meaningful comparison yet because TBH I don't really care. There may be detailed comparisons elsewhere on the 'net. Snort, Suricata and pfBlockerNG require additional configuration and fine tuning which you can get on the appropriate forum. I assume you are familiar with the basics of firewalls, routers, network configuration etc. If you have a specific query please feel free to ask.
I am probably gonna switch to pfsense once I get hold of the hardware (shipping time from China is bad now). I have it running on a vm, getting my feet wet before I dive in. I was particularly curious about snort because I tried it once on OpenWRT and couldn't get it to work properly. Anyway thanks for the info, I'll ask if I get stuck with something.
@Chip Hey, got my box yesterday. I am having an issue with my access point not being able to connect with the internet (kinda). I have a few static mappings for my main devices that work fine with the main AP connected directly to pfsense but on the secondary ap (using WDS relay) these devices get the set static IPs but the internet won't work. If I enable private mac on my phone I get an IP from DHCP pool and the internet works from secondary IP. Is this because I don't have pfsense configured correctly?
P.S. I was able to make this setup work on OpenWRT.
P.S. I was able to make this setup work on OpenWRT.
- Messages
- 1,507
- Location
- Pune
- ISP
- FTTH: Airtel (DHCP v4/v6), TPF (S-IPv6), BSNL (DHCP v4/v6)
5G: Jio
LTE: Airtel, Vi
@WieldyBinkie I think for wireless devices just let them use private MAC IDs...don't do fixed client IP reservations/mappings unless you really need them. If you do, then switch off private MAC in your devices because I understand it is randomly generated and can change. Each time it changes your router will think it's a new device. So you choose one or the other.
I use static IP for just 5 devices including my desktop, the printer and 3 APs all connected via LAN cable. All wireless devices use private MAC.
I use static IP for just 5 devices including my desktop, the printer and 3 APs all connected via LAN cable. All wireless devices use private MAC.
@Chip Actually, clients with static IP work on the main ap, but on the second ap I get assigned static IP on my devices but no internet. I have to turn on private mac to overcome static IP and get an IP from DHCP pool to get the internet working
Btw, do you know how to install stock firmware on archer a6(openwrt).
Btw, do you know how to install stock firmware on archer a6(openwrt).
Lolita_Magnum
ᓚᘏᗢ
Similar threads
