Basic Setup and Configuring pfsense Firewall Rules For Home

Official Netgate pfsense documentation on firewall rules

LTS Curated pfsense Tutorials

Getting Stared with pfsense firewall rules

How To Setup VLANS With pfsense & UniFI. Also how to build for firewall rules for VLANS in pfsense

Office Network Design and Planning with VLANs, LLDP, Rules, IoT, Guest using UniFi & pfsense

How To Setup pfsense OpenVPN Policy Routing With Kill Switch Using A Privacy VPN

Tutorial: pfsense Wireguard For Remote Access


⏱ Timestamps ⏱

00:00 pfsense Home Firewall Rules
02:00 Diagrams.net Devices & Networks
06:30 pfsense NAT rules
07:04 WAN Firewall Rules
08:16 IOT & LAN Rules

LAWRENCESYSTEMS

Just wanted to drop a comment and thank you for all of your content. You are consistently putting out relevant, detailed videos and I hope it never slows down. This channel is a wealth of information and it just keeps coming. I’m blown away at how much content you are able to put out, and it’s all SO good! Thanks so much for all that you do. It has helped me take my home network and homelab to a whole new level!

thegrimreever

Most awaited video especially after the pandemic where most of us started WFH. Watching your videos I have setup a home brew pfsense box and UAP AC Pro with multi WiFi VLANs for IOT, Work, Study and Guest. This video will help us to fine tune the rules.

sriran

Thanks! I will be watching and re-watching this video as I scale out my network.
I am running Suricata and pfBlockerNG but sometimes feel overwhelmed with all the activity - your other videos have been very helpful Tom.
Again, many thanks

CmdrStukov

NSFW LAN as the most important category. You truly a man of culture. Thank you Tom

tranthien

Thank you for this. Was struggling with configuring pfsense because my only firewall experience was with corporate firewall software. Seeing your rule configuration just made it click!

Dreamshadow

To be fair "what rules you need" is depending on what you do on your network, love these videos, you guys explains things in an easy way to understand.

gonace

Excellent video. Entering the networking and security analyst field, this has been an interesting experience setting pfsense up for home. Great to see I'm on the right path. 😁

loco_latino

Another excellent video. I like how you covered your segmentation and the rationale behind it also. I picked up a few things just in how you used all the aliases to make life easier. Thank you for sharing.

agpct

Always like your videos. I created some test phone servers and decided to be best on its own network. Happy that I did especially when I was wanting to do some port forwards (I know, not the best) to call my phone system from anywhere. Now I got OpenVPN setup and toying with it. Your one of the main guys that got me looking more into pfSense coming from a EdgeRouter-X, loving it

Deraco

Hi Laurence you are a reference abroad for me, your knowledge is precious, and exactly that the fact that you explain things easily and right to the point.

vitorhugobarbosa

Nice video, this confirms my same thought about securing my own home network the same way. Thanks for your great content and best wishes for 2022!

mysticsilent

LOve that you pickup these pfsense series with more interesting video's. Keep 'm coming. Thanks

wernerdebijl

Great video Tom . Love seeing how others do their rules

MactelecomNetworks

Very interesting to see how your rules are configured! One thing I noted that I'd do differently would be the rules for the NSFW lan - personally I configure an alias for RFC1918 subnets and create an allow rule to the inverse of that alias, rather than creating block rules for each network and having an allow all. Just means if you add any other networks in future you don't need to specifically block them as they're already covered in that private address space. Great video either way! -Marc

marcvasey

Great content but just a warning about Wemo light switches and the block firewall rule Tom mentions. You must enable ICMP to your firewall in order for your Wemo Light Switches to stop flashing red. Thanks!

gregsh

Hi Tom,
I was way overthinking this!

Thanks so much for freeing my mind.

davidbrowningCodeMix

This is exactly what i've been needing. After being fed up with crappy consumer grade routers, I first looked into running OpenWRT on x85 hardware when someone mentioned to look at PFSense. I've been running it for two weeks now on a preliminary hardware build and have been both pleased and overwhelmed by its ability and complexity. I've got a Lenovo M900 Tiny coming tomorrow which i'll be modifying to use a second NIC, and this video will come in handy.

LBCAndrew

Very big Doh moment seeing your Separator with Documentation WAN rules. I have been using PFSense for about 6 years and never thought of this.

TumescentPuma

This is a great video. I have a 6100 to play with and eventually replace my UDMP once I have it setup how I want it. This will be a great starting place.

Was wondering if you would do either a forum post or video on expanding this to pfsense rules to use in a multi tenant business center or SMB

AngryDadTech