[pfSense] Setup Questions

2012-09-29 Thread Johnny 
Hey guys I am currently running ipcop 2.0 and thinking about switching over
to pfsense. (tired of the slooowww updates) I have my ipcop box setup as
follows.

 

1 nic is on green

1 nic is on red

1 nic is on blue - Wi-Fi, I have a router on this nic. DHCP is turned off
and users get ip assigned by ipcop. I have also approve people by their mac
address to access my blue network.

1 nic is on orange for DMZ - Never able to get DMZ working correctly.

 

I was wondering if this same setup is possible with pfsence? Any help would
be appreciated

 

 

Johnny Miller

mill...@cinci.rr.com

gamer tag: wcso845

 

Lets find a cure for cancer together visit:

http://www.worldcommunitygrid.org

 

 

___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Setup Questions

2012-09-29 Thread Oliver Hansen 
On Sep 29, 2012 1:36 PM, "Johnny"  wrote:
>
> Hey guys I am currently running ipcop 2.0 and thinking about switching
over to pfsense. (tired of the slooowww updates) I have my ipcop box setup
as follows.
>
>
>
> 1 nic is on green
>
> 1 nic is on red
>
> 1 nic is on blue – Wi-Fi, I have a router on this nic. DHCP is turned off
and users get ip assigned by ipcop. I have also approve people by their mac
address to access my blue network.
>
> 1 nic is on orange for DMZ – Never able to get DMZ working correctly.
>
>
>
> I was wondering if this same setup is possible with pfsence? Any help
would be appreciated
>
>
>
>
>
> Johnny Miller
>
> mill...@cinci.rr.com
>
> gamer tag: wcso845
>
>
>
> Lets find a cure for cancer together visit:
>
> http://www.worldcommunitygrid.org
>
>
>
>
>
>
> ___
> List mailing list
> List@lists.pfsense.org
> http://lists.pfsense.org/mailman/listinfo/list
>
I was an ipcop user many years ago. Although pfsense doesn't use the
interface color names it can do these things you describe.

Try it out and I doubt you'll look back.
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Setup Questions

2012-09-29 Thread Yehuda Katz 
Lets start by defining the terms to make sure we are all talking about the
same things:
http://www.ipcop.org/2.0.0/en/install/html/preparation-network-interfaces.html

On Sat, Sep 29, 2012 at 4:36 PM, Johnny  wrote:

>  1 nic is on green
>
> *GREEN - This network only connects to the computer(s) that IPCop is
> protecting. It is presumed to be local. Traffic to it is routed through an
> Ethernet NIC.*

This is equivalent to the pfSense LAN.

1 nic is on red
>
*RED - This network is the Internet or other untrusted network. IPCop's
> primary purpose is to protect the GREEN, BLUE and ORANGE networks and their
> computers from traffic originating on the RED network. Your current
> connection method and hardware are used to connect to this network.*

This is equivalent to the pfSense WAN

Those are the only default interfaces in pfSense, However you can add more
(as I do at my office).


>
> 1 nic is on blue – Wi-Fi, I have a router on this nic. DHCP is turned off
> and users get ip assigned by ipcop. I have also approve people by their mac
> address to access my blue network.
>
*This optional network allows you to place wireless and/or wired devices on
> a separate network. Computers on this network cannot get to the GREEN
> network except via tightly controlled “pinholes”, or via a VPN. Traffic to
> this network is routed through an Ethernet NIC.*

 This requires configuration in pfSense, but many people are doing it, so
you should be able to get help on this list.


>
> 1 nic is on orange for DMZ – Never able to get DMZ working correctly.
>
*This optional network allows you to place publicly accessible servers on a
> separate network. Computers on this network cannot get to the GREEN or BLUE
> networks, except through tightly controlled “pinholes”. Traffic to this
> network is routed through an Ethernet NIC.*

This is programatically the same as BLUE, and, yes, lots of people do it.


> 
>
> I was wondering if this same setup is possible with pfsence? Any help
> would be appreciated
>

To sum it up, yes. If you set it up and have more specific questions, just
ask here and someone should be able to help you.
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list