created-by:ifttt   793

« earlier    

Setting Up PFSense in Hyper-V : homelab
from: upvoted by zorrojo by: /u/aaronwhite1786 on: May 23, 2018 at 11:17AM

I've been looking at setting up a PFSense router to replace my Netgear one (mostly for fun...I'll be keeping the Netgear going for now as the WiFi AP) and I was curious if anyone had advice for some of the more basic setup issues I'm working through in my head.

I've heard talk of people not liking the idea of virtualizing a router/firewall because of the security risk potential, and while granted it's just for my house, I'm still curious if there's much real worry there.

I've got the VM of PFSense up and running, all that's left now is the configuring of the network side to make it the router/firewall for the network. I have DHCP and DNS being handled by my Server 2016 DC VM, so the PFSense won't have to worry about that.

Picture of my setup, done with Expert-Level Paint skills I've got an R710 (Running Hyper-V 2016) with 6 ports, and my initial thought process was that I would configure one port (WAN in the pic) to be the WAN port going straight to my modem. Maybe I'm overthinking this and confusing myself, but how would I handle the IP addressing for that port itself? The PFSense router will grab a dynamic IP from my ISP via the modem, but what would I do in Hyper-V for that port? Right now I've got it configured as a "WAN (External) Hyper-V Switch". I'm guessing I would just set it to DHCP in Hyper-V and then let the PFSense talk with the ISP and pull an IP.

Edit: Having read through this I think I sorted out the issue on this one, since I wouldn't have the Hyper-V server have access to that WAN port.

After that, I have the LAN going up to my Cisco switch, and from there I have a cable going to what is currently my router (will be turned off for everything but WiFi and become the AP) and then the switch goes down to the 4 ports on my R710, with the left two (1 in the pic) being my "General Traffic" LBFO team on the Hyper-V server that I just send general traffic through, and the right 2 being another LBFO team.

I have a Plex server that I share with friends, so I was thinking that might be something I might want to move to a DMZ should I configure one, but I thought that might be muddying the waters at this point and something I could look into once I have the basic network configured.

My basic plan typed out is: * WAN - (DHCP IP from ISP) * LAN - (Would bet he default Gateway out, correct?) * Other VM's besides servers get DHCP.

Is there something I'm missing? Am I overthinking this? Thanks, everyone!

submitted by /u/aaronwhite1786 to r/homelab
[link] [comments]
created-by:ifttt  via:reddit  via:reddit.upvoted 
29 days ago by michaelfox
GDPR: Raising the Standards for Data Protection, Security & Compliance - YouTube
GDPR: Raising the Standards for Data Protection, Security & Compliance posted to Feedbin Starred Entries for on May 22, 2018 at 02:10PM by Amazon Web Services Learn more about AWS at - AWS London Summit 2018 - Breakout Session The European Union’s General Data Protection Regulation (GDPR) protects European Union citizens’ fundamental right to privacy and the protection of personal data. It introduces robust requirements that will raise and harmonize standards for data protection, security and compliance. Come learn how to work with AWS to build your security & data protection strategy and how to transform the way your organization processes data. In this session, we will see GDPR as the baseline for data protection with the belief that organisations should aim higher and that with AWS Cloud they can.
created-by:ifttt  via:feedbin 
4 weeks ago by michaelfox

« earlier    

related tags

awesome  aws  bestpractices  cli  collection  config  devops  dotfiles  editor  firewall  github-starred  guide  howto  networking  optimization  osx  performance  privacy  resource  scaling  secrets  security  server  setup  shell  sysadmin  vpn  vscode   

Copy this bookmark: