舉報 
會員
pfSense 2.x Cookbook
pfSenseisanopensourcedistributionoftheFreeBSD-basedfirewallthatprovidesaplatformfor?exibleandpowerfulroutingandfirewalling.TheversatilityofpfSensepresentsuswithawidearrayofconfigurationoptions,whichmakesdeterminingrequirementsalittlemoredifficultandalotmoreimportantcomparedtootherofferings.pfSense2.xCookbook–SecondEditionstartsbyprovidingyouwithanunderstandingofhowtocompletethebasicstepsneededtorenderapfSensefirewalloperational.ItstartsbyshowingyouhowtosetupdifferentformsofNATentriesandfirewallrulesandusealiasesandschedulinginfirewallrules.Movingon,youwilllearnhowtoimplementacaptiveportalsetupindifferentways(noauthentication,usermanagerauthentication,andRADIUSauthentication),aswellasNTPandSNMPconfiguration.YouwillthenlearnhowtosetupaVPNtunnelwithpfSense.ThebookthenfocusesonsettinguptrafficshapingwithpfSense,usingeitherthebuilt-intrafficshapingwizard,custom?oatingrules,orSnort.Towardtheend,youwillsetupmultipleWANinterfaces,loadbalancingandfailovergroups,andaCARPfailovergroup.Youwillalsolearnhowtobridgeinterfaces,addstaticroutingentries,andusedynamicroutingprotocolsviathird-partypackages.
最新章節
- Leave a review - let other readers know what you think
- Other Books You May Enjoy
- Summary
- Installing the standard platform on an appliance
- Installing the embedded platform on a desktop/server/laptop
- Choosing a form factor
品牌:中圖公司
上架時間:2021-06-10 18:17:44
出版社:Packt Publishing
本書數字版權由中圖公司提供,并由其授權上海閱文信息技術有限公司制作發行
- Leave a review - let other readers know what you think 更新時間:2021-06-10 18:31:11
- Other Books You May Enjoy
- Summary
- Installing the standard platform on an appliance
- Installing the embedded platform on a desktop/server/laptop
- Choosing a form factor
- Choosing a standard or embedded image
- Determining our interface requirements
- Determining our throughput requirements
- Determining our deployment scenario
- Determining Hardware Requirements
- See also
- There's more...
- How it works...
- How to do it...
- Updating pfSense
- There's more...
- How it works...
- How to do it...
- Restoring pfSense
- See also
- There's more...
- How it works...
- How to do it...
- Backing up pfSense
- Introduction
- Backing Up and Restoring pfSense
- How to do it...
- Using tcpflow
- How to do it...
- Using tcpdump
- See also
- How to do it...
- Using pfTop
- How to do it...
- Using netstat
- See also
- How it works...
- How to do it...
- Using traceroute
- See also
- How it works...
- How to do it...
- Using ping
- How to do it...
- Getting ready
- Configuring external logging with a syslog server
- See also
- There's more...
- How it works...
- How to do it...
- Configuring PPPoE
- See also
- There's more...
- How it works...
- How to do it...
- Enabling Wake-on-LAN
- A structured approach to problem solving
- Introduction
- Services and Maintenance
- How it works...
- How to do it...
- Getting ready
- Configuring OSPF using FRR
- How it works...
- How to do it...
- Configuring BGP using FRR
- How it works...
- How to do it...
- Configuring RIP using routed
- There's more...
- How it works...
- How to do it...
- Adding a static route
- There's more...
- How it works...
- How to do it...
- Bridging interfaces
- Bridging
- Dynamic routing
- Routing
- Introduction
- Routing and Bridging
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring a CARP failover group
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring server load balancing
- There's more...
- How it works...
- How to do it...
- Getting ready
- Adding multiple WAN interfaces
- Introduction
- Redundancy Load Balancing and Failover
- See also
- There's more...
- How it works...
- How to do it...
- Configuring traffic shaping using Snort
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring traffic shaping using floating rules
- See also
- There's more...
- How it works...
- How to do it...
- Configuring traffic shaping using the traffic-shaping wizard
- Introduction
- Traffic Shaping
- How to do it...
- Configuring the L2TP VPN service
- There's more...
- How to do it...
- Getting ready
- Connecting to the OpenVPN service
- There's more...
- How to do it...
- Configuring the OpenVPN service
- How to do it...
- Getting ready
- Connecting to the IPsec VPN service
- There's more...
- How it works...
- How to do it...
- Configuring the IPsec VPN service – client/server
- There's more...
- How it works...
- How to do it...
- Configuring the IPsec OpenVPN server – peer-to-peer
- Choosing the right VPN server
- Introduction
- Virtual Private Networking
- See also
- There's more...
- How to do it...
- Getting ready
- Configuring SNMP
- There's more...
- How to do it...
- Configuring NTP
- See also
- How it works...
- How to do it...
- Getting ready
- Creating a captive portal with RADIUS authentication
- See also
- How it works...
- How to do it...
- Creating a captive portal with User Manager authentication
- See also
- There's more...
- How it works...
- How to do it...
- Creating a captive portal with voucher authentication
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Creating a captive portal without authentication
- Introduction
- Additional Services
- See also
- Security warning
- There's more...
- How it works...
- How to do it...
- Enabling UPnP and NAT-PnP
- How it works...
- How to do it...
- Creating an NPt entry
- See also
- There's more...
- How to do it...
- Creating a 1:1 NAT entry
- See also
- There's more...
- How it works...
- How to do it...
- Creating an outbound NAT entry
- See also
- Port redirection example
- Port redirection
- There's more...
- How it works...
- How to do it...
- Getting ready
- Creating a NAT port forwarding entry
- See also
- There's more...
- How it works...
- How to do it...
- Creating a floating rule
- See also
- Selecting dates or days of the week
- There's more...
- How it works...
- How to do it...
- Setting a firewall rule schedule
- See also
- Advanced features
- Duplicating firewall rules
- Ordering firewall rules
- The source port
- There's more...
- How it works...
- How to do it...
- Creating a firewall rule
- See also
- Bulk importing aliases
- Deleting an alias
- Editing an alias
- Using an alias
- There's more...
- How it works...
- How to do it...
- Creating and using aliases
- Introduction
- Firewall and NAT
- See also
- How it works...
- How to do it...
- Getting ready
- Adding a wireless access point
- Specifying an alternative service using RFC 2136
- How it works...
- How to do it...
- Getting ready
- Configuring dynamic DNS
- See also
- Register DHCP leases in DNS resolver
- How it works...
- How to do it...
- Configuring a stand-alone DHCP/DNS server
- See also...
- How it works...
- How to do it...
- Getting ready
- Configuring the DNS resolver
- See also
- Using your WAN DNS servers
- Using the DNS resolver
- How it works...
- How to do it...
- Getting ready
- Specifying alternate DNS servers
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring the DHCP relay
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring static DHCP mappings
- See also
- Prefix delegation
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring the DHCP6 server
- See also
- Additional BOOTP/DHCP options
- Dynamic DNS
- Static ARP
- Failover peer IP
- Maximum lease time
- Default lease time
- Domain name
- Gateway
- DNS servers
- Deny unknown clients
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring the DHCP server
- Introduction
- Essential Services
- See also
- How it works...
- How to do it...
- Getting ready
- Configuring VLANs from the console
- See also
- How it works...
- How to do it...
- Getting ready
- Configuring optional interfaces from the console
- See also
- How it works...
- How to do it...
- Getting ready
- Configuring a LAN interface from the console
- See also
- How it works...
- How to do it...
- Getting ready
- Configuring a WAN interface from the console
- See also
- How it works...
- How to do it...
- Getting ready
- Assigning interfaces from the console
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring VLANs
- See also
- How it works...
- How to do it...
- Getting ready
- Accessing the SSH
- See also
- There’s more...
- How it works...
- How to do it...
- Getting ready
- Configuring SSH RSA key authentication
- See also
- How it works...
- How to do it...
- Getting ready
- Generating authorized RSA keys
- See also
- There's more...
- How it works...
- How to do it...
- Enabling SSH access
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring optional interfaces from the console
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring a LAN interface
- See also
- There's more...
- How it works...
- How to do it...
- Getting ready
- Configuring a WAN interface
- See also
- How to do it...
- Getting ready
- Identifying and assigning interfaces
- See also
- How to do it...
- Getting ready
- Applying basic settings to General Setup
- Introduction
- Initial Configuration
- Reviews
- Get in touch
- See also
- There's more…
- How it works…
- How to do it…
- Getting ready
- Sections
- Conventions used
- Download the color images
- To get the most out of this book
- What this book covers
- Who this book is for
- Preface
- Packt is searching for authors like you
- About the reviewer
- About the author
- Contributors
- PacktPub.com
- Why subscribe?
- About Packt
- Title Page
- coverpage
- coverpage
- Title Page
- About Packt
- Why subscribe?
- PacktPub.com
- Contributors
- About the author
- About the reviewer
- Packt is searching for authors like you
- Preface
- Who this book is for
- What this book covers
- To get the most out of this book
- Download the color images
- Conventions used
- Sections
- Getting ready
- How to do it…
- How it works…
- There's more…
- See also
- Get in touch
- Reviews
- Initial Configuration
- Introduction
- Applying basic settings to General Setup
- Getting ready
- How to do it...
- See also
- Identifying and assigning interfaces
- Getting ready
- How to do it...
- See also
- Configuring a WAN interface
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Configuring a LAN interface
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Configuring optional interfaces from the console
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Enabling SSH access
- How to do it...
- How it works...
- There's more...
- See also
- Generating authorized RSA keys
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring SSH RSA key authentication
- Getting ready
- How to do it...
- How it works...
- There’s more...
- See also
- Accessing the SSH
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring VLANs
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Assigning interfaces from the console
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring a WAN interface from the console
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring a LAN interface from the console
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring optional interfaces from the console
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring VLANs from the console
- Getting ready
- How to do it...
- How it works...
- See also
- Essential Services
- Introduction
- Configuring the DHCP server
- Getting ready
- How to do it...
- How it works...
- There's more...
- Deny unknown clients
- DNS servers
- Gateway
- Domain name
- Default lease time
- Maximum lease time
- Failover peer IP
- Static ARP
- Dynamic DNS
- Additional BOOTP/DHCP options
- See also
- Configuring the DHCP6 server
- Getting ready
- How to do it...
- How it works...
- There's more...
- Prefix delegation
- See also
- Configuring static DHCP mappings
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Configuring the DHCP relay
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Specifying alternate DNS servers
- Getting ready
- How to do it...
- How it works...
- Using the DNS resolver
- Using your WAN DNS servers
- See also
- Configuring the DNS resolver
- Getting ready
- How to do it...
- How it works...
- See also...
- Configuring a stand-alone DHCP/DNS server
- How to do it...
- How it works...
- Register DHCP leases in DNS resolver
- See also
- Configuring dynamic DNS
- Getting ready
- How to do it...
- How it works...
- Specifying an alternative service using RFC 2136
- Adding a wireless access point
- Getting ready
- How to do it...
- How it works...
- See also
- Firewall and NAT
- Introduction
- Creating and using aliases
- How to do it...
- How it works...
- There's more...
- Using an alias
- Editing an alias
- Deleting an alias
- Bulk importing aliases
- See also
- Creating a firewall rule
- How to do it...
- How it works...
- There's more...
- The source port
- Ordering firewall rules
- Duplicating firewall rules
- Advanced features
- See also
- Setting a firewall rule schedule
- How to do it...
- How it works...
- There's more...
- Selecting dates or days of the week
- See also
- Creating a floating rule
- How to do it...
- How it works...
- There's more...
- See also
- Creating a NAT port forwarding entry
- Getting ready
- How to do it...
- How it works...
- There's more...
- Port redirection
- Port redirection example
- See also
- Creating an outbound NAT entry
- How to do it...
- How it works...
- There's more...
- See also
- Creating a 1:1 NAT entry
- How to do it...
- There's more...
- See also
- Creating an NPt entry
- How to do it...
- How it works...
- Enabling UPnP and NAT-PnP
- How to do it...
- How it works...
- There's more...
- Security warning
- See also
- Additional Services
- Introduction
- Creating a captive portal without authentication
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Creating a captive portal with voucher authentication
- How to do it...
- How it works...
- There's more...
- See also
- Creating a captive portal with User Manager authentication
- How to do it...
- How it works...
- See also
- Creating a captive portal with RADIUS authentication
- Getting ready
- How to do it...
- How it works...
- See also
- Configuring NTP
- How to do it...
- There's more...
- Configuring SNMP
- Getting ready
- How to do it...
- There's more...
- See also
- Virtual Private Networking
- Introduction
- Choosing the right VPN server
- Configuring the IPsec OpenVPN server – peer-to-peer
- How to do it...
- How it works...
- There's more...
- Configuring the IPsec VPN service – client/server
- How to do it...
- How it works...
- There's more...
- Connecting to the IPsec VPN service
- Getting ready
- How to do it...
- Configuring the OpenVPN service
- How to do it...
- There's more...
- Connecting to the OpenVPN service
- Getting ready
- How to do it...
- There's more...
- Configuring the L2TP VPN service
- How to do it...
- Traffic Shaping
- Introduction
- Configuring traffic shaping using the traffic-shaping wizard
- How to do it...
- How it works...
- There's more...
- See also
- Configuring traffic shaping using floating rules
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Configuring traffic shaping using Snort
- How to do it...
- How it works...
- There's more...
- See also
- Redundancy Load Balancing and Failover
- Introduction
- Adding multiple WAN interfaces
- Getting ready
- How to do it...
- How it works...
- There's more...
- Configuring server load balancing
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Configuring a CARP failover group
- Getting ready
- How to do it...
- How it works...
- There's more...
- See also
- Routing and Bridging
- Introduction
- Routing
- Dynamic routing
- Bridging
- Bridging interfaces
- How to do it...
- How it works...
- There's more...
- Adding a static route
- How to do it...
- How it works...
- There's more...
- Configuring RIP using routed
- How to do it...
- How it works...
- Configuring BGP using FRR
- How to do it...
- How it works...
- Configuring OSPF using FRR
- Getting ready
- How to do it...
- How it works...
- Services and Maintenance
- Introduction
- A structured approach to problem solving
- Enabling Wake-on-LAN
- How to do it...
- How it works...
- There's more...
- See also
- Configuring PPPoE
- How to do it...
- How it works...
- There's more...
- See also
- Configuring external logging with a syslog server
- Getting ready
- How to do it...
- Using ping
- How to do it...
- How it works...
- See also
- Using traceroute
- How to do it...
- How it works...
- See also
- Using netstat
- How to do it...
- Using pfTop
- How to do it...
- See also
- Using tcpdump
- How to do it...
- Using tcpflow
- How to do it...
- Backing Up and Restoring pfSense
- Introduction
- Backing up pfSense
- How to do it...
- How it works...
- There's more...
- See also
- Restoring pfSense
- How to do it...
- How it works...
- There's more...
- Updating pfSense
- How to do it...
- How it works...
- There's more...
- See also
- Determining Hardware Requirements
- Determining our deployment scenario
- Determining our throughput requirements
- Determining our interface requirements
- Choosing a standard or embedded image
- Choosing a form factor
- Installing the embedded platform on a desktop/server/laptop
- Installing the standard platform on an appliance
- Summary
- Other Books You May Enjoy
- Leave a review - let other readers know what you think 更新時間:2021-06-10 18:31:11
