You don't need two ethernet ports to run PFSense, you point computers at it's IP address and port number and it outputs to the router from another port.
What about the internals as far as what country manufactured it and where was the BIOS flashed? Does it have Coreboot options to purge the chinese flashed bios which may come with extra stuff? I been running ipfire for many years and switched to running it on a protecli device a year ago. The bad thing about protecli though is many of their lower end devices (2 ports and 4 ports) have many hardware vulnerabilities due to the old intel chips being used. I have the 2 port version and it is plagued with hardware vulnerabilties. Ipfire has a built in checker to check for hardware vulnerabilities unlike pfsense, which is an awesome feature to inspect the hardware to ensure it is not vulnerable. I am working to look at different hardware since my current protecli i bought a year ago has to many hardware vulnerabilities on it now. If you get protecli, get coreboot bios, since all their stuff is made/flashed in china, but at least with coreboot you get opensource firmware vs who knows what extra stuff is included in the china flashed firmware. Love these videos but wish folks would actually dive deeper to talk about the manufacture country, etc..
Hi , can you explain to me why did you disable wifi card on your mini pc ?? because I think if you had using wifi on your pfsense all your devices can connect to your pfsense firewall wirelessly !!! why you didn't use one port as WAN and wifi card as LAN when all your devices can connect to pfsense wirelessly and access to internet ??!! because normally in most of our homes we are not using cable rj45 to connect to the internet in most of the time, we connect wirelessly, my question is, can we use one port as WAN and use wifi card as LAN?? so we get internet on WAN port and give internet from Wifi card to all devices in the house and they will have access to the internet through wifi card ?? is it possible ?? please if you have knowledge help me because i have search a lot but i didn't find anything and nobody can answer my question. thankyou so much
thank you. i've seen a few pfsense video intros but never finished watching them. my biggest setback to actually start using pfsense was hardware. you've eliminated that setback. btw, your ali express link just goes to the main aliexpress page, not to the hardware you are showcasing.
your new setup is internet > new router/firewall > managed switch, does your original router also connect to the managed switch or are you solely using it for Wi Fi?
Hi , why you didn't use network card as WAN and wifi card as LAN , setup DHCP server on PFsense to give IP address to all devices , then from network card you setup before as WAN get internet after that from Wifi card that set as lan give internet to your wireless devices without using vlan and switch to anything else ? why you didn't make your mini PC as pfsense and DHCP server and WiFi Access Point , ???that means all in one without any extra access point and switch ????thnx
Hi again , if it possible and you can please make a tutorial video about how to set up and configure pfsense like this: one port as Wan and wifi card as Lan , from wan port we will get internet from router and from wifi card, we will give internet to all devices in our network,and setup dhcp server on pfsense to give ip address to all devices, i have searched a lot but i didn't find any tutorial like that. please if you can make this tutorial for beginners. thnx
I've got something similar in a 4-port with pfsense on it, it works very well, does run super hot though (like ouch hot) I have a 120mm fan bolted to the top of it which is powered from the USB which keeps it lukewarm.
Same, got one in 2017, cooling drops passive heat-sink temp from circa 52 degrees to 31 Degrees Centigrade. i5 with 8GB RAM 4 Intel Gigabit ports. With my Cable 200 Mbit I can get 220 Mbit and CPU barely registers.
Hi there , make a tutorial video about how we can block all incoming traffic from outside to our network on pfsense firewall for more security . i mean how we can make a rule on pfsense firewall to block all incoming request from (WAN) internet or outside for more security ,in another word, from Lan can access to internet but no one can access to our network from internet . please if you know help me or make a tutorial video about this . how i can create rule on pfsense firewall . thnx
Thanks for your video! I am running pfsense on an old AMD ryzen 3 desktop pc, with 2 GB Ethernet card. All working fine except when I am running Speedtest on two of my desktop computer, my Pfsense will kindof hangs up, e.g the web interface of pfsense is not available when it hangs upI need to manually restart it via SSH. The same issue happens when i am downloading over 500 mbps of content on my NAS from Google drive continuously. Do you have any recommendations for me to prevent this kind of issue? P.S my isp provides me a fiber connection with 1000 mbps up and download. Thank you 🙏🏻
How much ram do you have ? Sounds like you have a bottleneck. Is PFSense installed to an SSD , usb or HDD? If you watch the PFSense resource consumption, how high does it go just before the GUI cuts off?
@@user-zr7kz4vs7c that is relatively high usage, buuut you are running a 500Mbps line so it's not as bad as if you were running a 100Mbps line that was hitting 85%. What network cards do you have ? Decent intel cards will do most of the processing in the network card and not the CPU, which I suspect is happening here. Do you have any of the following setup: Vpn, IDS, IPS?
@@zadekeys2194 I am running a 1000mbps line( all cables are cat5e/cat6, and ISP provides me a fiber connection with 1000 up and download while doing speedtest I get around 950 Mbps). My system information is like this AMD Ryzen 3 2200G with Radeon Vega Graphics Current: 2300 MHz, Max: 3500 MHz 4 CPUs: 1 package(s) x 4 core(s) AES-NI CPU Crypto: Yes (inactive) QAT Crypto: No My LAN network card is a TP-Link TG-3468 (it’s a Gigabit PCI Express Network Adapter, it’s cheap and brand new so I brought it instead of Intel network cards, I wonder if is it because of this LAN card causing the issues). Also, my WAN network card is the built-in one on my motherboard, it’s a Gigabit card too! Any recommendations? Btw should I enable AES-NI CPU Crypto, I heard that’s only available on intel CPU…
Are you using your old router as a modem and the new hardware as a router and firewall? You keep saying you are still using your old router as a router and the new hardware as the firewall but I don't think that's what you mean (even tough it's possible) . Please fill us in.
@@headsoftech you should just be putting your wifi router into Access Point (AP) mode. This will stop it from trying to do DHCP and other router features.
It's a rare talent that both A) knows their stuff - AND - B) can explain it well. Great video!
You don't need two ethernet ports to run PFSense, you point computers at it's IP address and port number and it outputs to the router from another port.
Nice one
What about the internals as far as what country manufactured it and where was the BIOS flashed? Does it have Coreboot options to purge the chinese flashed bios which may come with extra stuff?
I been running ipfire for many years and switched to running it on a protecli device a year ago. The bad thing about protecli though is many of their lower end devices (2 ports and 4 ports) have many hardware vulnerabilities due to the old intel chips being used. I have the 2 port version and it is plagued with hardware vulnerabilties. Ipfire has a built in checker to check for hardware vulnerabilities unlike pfsense, which is an awesome feature to inspect the hardware to ensure it is not vulnerable. I am working to look at different hardware since my current protecli i bought a year ago has to many hardware vulnerabilities on it now. If you get protecli, get coreboot bios, since all their stuff is made/flashed in china, but at least with coreboot you get opensource firmware vs who knows what extra stuff is included in the china flashed firmware.
Love these videos but wish folks would actually dive deeper to talk about the manufacture country, etc..
You should put the powerwall and any other IoT devices on a segmented, firewalled, ACL'd vlan. :)
Hi , can you explain to me why did you disable wifi card on your mini pc ?? because I think if you had using wifi on your pfsense all your devices can connect to your pfsense firewall wirelessly !!! why you didn't use one port as WAN and wifi card as LAN when all your devices can connect to pfsense wirelessly and access to internet ??!! because normally in most of our homes we are not using cable rj45 to connect to the internet in most of the time, we connect wirelessly, my question is, can we use one port as WAN and use wifi card as LAN?? so we get internet on WAN port and give internet from Wifi card to all devices in the house and they will have access to the internet through wifi card ?? is it possible ?? please if you have knowledge help me because i have search a lot but i didn't find anything and nobody can answer my question. thankyou so much
Hi there it was one of your best tutorial video . thnx
thank you. i've seen a few pfsense video intros but never finished watching them. my biggest setback to actually start using pfsense was hardware. you've eliminated that setback. btw, your ali express link just goes to the main aliexpress page, not to the hardware you are showcasing.
wise video thank you once again !
Thanks for that video very useful
your new setup is internet > new router/firewall > managed switch, does your original router also connect to the managed switch or are you solely using it for Wi Fi?
Yeah the wifi is on the managed switch too to get internet over to the wifi devices, but I don't use any of its routing or DHCP capabilities.
Great stuff
Great video thanks
Are pre-made VPN or firewall computers plug and play?
Hi , why you didn't use network card as WAN and wifi card as LAN , setup DHCP server on PFsense to give IP address to all devices , then from network card you setup before as WAN get internet after that from Wifi card that set as lan give internet to your wireless devices without using vlan and switch to anything else ? why you didn't make your mini PC as pfsense and DHCP server and WiFi Access Point , ???that means all in one without any extra access point and switch ????thnx
nice
Hi again , if it possible and you can please make a tutorial video about how to set up and configure pfsense like this: one port as Wan and wifi card as Lan , from wan port we will get internet from router and from wifi card, we will give internet to all devices in our network,and setup dhcp server on pfsense to give ip address to all devices, i have searched a lot but i didn't find any tutorial like that. please if you can make this tutorial for beginners. thnx
imo it would be unwise to make your LAN devices connect using a wifi port, try to opt for an ethernet port it would be more stable.
I've got something similar in a 4-port with pfsense on it, it works very well, does run super hot though (like ouch hot) I have a 120mm fan bolted to the top of it which is powered from the USB which keeps it lukewarm.
Same, got one in 2017, cooling drops passive heat-sink temp from circa 52 degrees to 31 Degrees Centigrade. i5 with 8GB RAM 4 Intel Gigabit ports.
With my Cable 200 Mbit I can get 220 Mbit and CPU barely registers.
You forgot mention to set the router in modem mode
Hi there , make a tutorial video about how we can block all incoming traffic from outside to our network on pfsense firewall for more security . i mean how we can make a rule on pfsense firewall to block all incoming request from (WAN) internet or outside for more security ,in another word, from Lan can access to internet but no one can access to our network from internet . please if you know help me or make a tutorial video about this . how i can create rule on pfsense firewall . thnx
Any basic router will do this by default. I'm 99.99% site that PFSense also does this.
What is the "serial" option for in download screen?
Here you go: docs.netgate.com/pfsense/en/latest/hardware/connect-to-console.html#connecting-to-a-serial-console
Nice. Looks like you use LuLU 😁
I wouldnt setup pfsense before configurint it by double nating it.
Never download pfsense from preconfigured system from Ali express.
Thanks for your video! I am running pfsense on an old AMD ryzen 3 desktop pc, with 2 GB Ethernet card. All working fine except when I am running Speedtest on two of my desktop computer, my Pfsense will kindof hangs up, e.g the web interface of pfsense is not available when it hangs upI need to manually restart it via SSH. The same issue happens when i am downloading over 500 mbps of content on my NAS from Google drive continuously. Do you have any recommendations for me to prevent this kind of issue?
P.S my isp provides me a fiber connection with 1000 mbps up and download.
Thank you 🙏🏻
How much ram do you have ? Sounds like you have a bottleneck. Is PFSense installed to an SSD , usb or HDD? If you watch the PFSense resource consumption, how high does it go just before the GUI cuts off?
@@zadekeys2194 thanks for your reply! Mine is 8 Gb of ram and installed on SSD, the resources consumption is around 85% before the GUI cuts off!
@@user-zr7kz4vs7c that is relatively high usage, buuut you are running a 500Mbps line so it's not as bad as if you were running a 100Mbps line that was hitting 85%. What network cards do you have ? Decent intel cards will do most of the processing in the network card and not the CPU, which I suspect is happening here. Do you have any of the following setup: Vpn, IDS, IPS?
@@zadekeys2194 I am running a 1000mbps line( all cables are cat5e/cat6, and ISP provides me a fiber connection with 1000 up and download while doing speedtest I get around 950 Mbps). My system information is like this AMD Ryzen 3 2200G with Radeon Vega Graphics
Current: 2300 MHz, Max: 3500 MHz
4 CPUs: 1 package(s) x 4 core(s)
AES-NI CPU Crypto: Yes (inactive)
QAT Crypto: No
My LAN network card is a TP-Link TG-3468 (it’s a Gigabit PCI Express Network Adapter, it’s cheap and brand new so I brought it instead of Intel network cards, I wonder if is it because of this LAN card causing the issues).
Also, my WAN network card is the built-in one on my motherboard, it’s a Gigabit card too!
Any recommendations? Btw should I enable AES-NI CPU Crypto, I heard that’s only available on intel CPU…
Are you using your old router as a modem and the new hardware as a router and firewall? You keep saying you are still using your old router as a router and the new hardware as the firewall but I don't think that's what you mean (even tough it's possible) . Please fill us in.
I let my wifi router handle the wifi connections and let this guy handle the network IP allocations, internet connection and firewall.
@@headsoftech you should just be putting your wifi router into Access Point (AP) mode. This will stop it from trying to do DHCP and other router features.
Yep
"it has usb-c"??
👍👍👏👏👏🌹🌹