Just managed to get my first Client SSL authentication working with PFSense and HAProxy!

Getting to understand the ACL ordering was my biggest hurdle, but I can now reject access to my internal apps from the wider internet unless theyre using a client certificate. There's even a bypass for internal IP addresses so I don't need to resort to split-brained DNS!

#sysadmin #haproxy #pfsense #homelab

🔥 pfSense convierte cualquier PC en un firewall profesional. Es gratuito, potente y lo usan empresas de todo el mundo para proteger sus redes. ¿Ya lo conoces? 🛡️

Lee más 👉 https://www.soloingenieria.org/ingenieria-en-sistemas-computacionales/pfsense/

Imagen creada con IA.
#pfSense #Firewall #SeguridadInformática #RedesInformáticas #OpenSource #Ciberseguridad

🔒 La seguridad de tu red no depende del presupuesto, sino del conocimiento. pfSense demuestra que las mejores soluciones pueden ser gratuitas y profesionales a la vez.

#pfSense #Firewall #SeguridadInformática #RedesInformáticas #OpenSource #Ciberseguridad

Just took a look at my PFSense box, and saw that my secondary OpenVPN connection was down.
Looked at the provider's site, and it turns out that they deprecated OpenVPN a while back!

So, tonight has consisted of me learning about and setting up: Wireguard

I'm back in action now, and looking forward to seeing whether this new VPN protocol will have any speed benefits for me!

#homelab #sysadmin #openvpn #wireguard #pfsense

I guess #pfsense will slowly just run out of space and die in weird ways if you keep upgrading & never delete previous Boot Environments (no auto cleanup?).

Wasn't fully out of space but apparently low enough to cause some services to break/act in weird [un-logged] ways.

Also I wish its dashboard Disks plugin properly displayed ZFS space usage too. Had to manually execute 'zfs list' command to find out what was gobbling up all the space. Boot Environments page also massively understates usage.