
Learn pfSense fundamentals to confidently operate a firewall for home or small business, with practical basics, troubleshooting, and steady guidance from an experienced instructor.
Meet your pfSense fundamentals instructor, Stefan, as he shares his pfSense expertise, Netgate certification, and real-world setup of multiple firewalls, IPsec tunnels, and ethical hacking practice.
Gain solid pfSense fundamentals, install pfSense on VirtualBox, build a virtual lab, and configure DHCP, DNS resolver, firewall rules, VLAN basics, Squid proxy, ClamAV, and OpenVPN.
Master the pfSense fundamentals hardware needs, including eight gigabytes of RAM for Windows 10, VirtualBox lab snapshots for testing, and options for physical appliances with Netgate or official pfSense devices.
Take organized notes with free note apps like Evernote or OneNote, set up a lab in VirtualBox, and use snapshots to safely experiment and revert pfSense configurations.
Learn how to set up a virtual lab with VirtualBox. Allocate host resources to Lubuntu and pfSense, use snapshots, and create a separate network for safe testing.
Learn how to download and install VirtualBox 7.0 with the extension pack on Windows or macOS, using default settings, reboot if prompted, and test in a lab environment.
Install pfSense on VirtualBox by downloading the amd64 ISO, extracting it, creating a FreeBSD 64-bit VM, allocating memory, and configuring three network adapters with host-only networks.
Install pfSense on VirtualBox by selecting the pfSense ISO, choosing auto set, ZFS with guided route on ZFS, and using stripe (no redundancy) before booting to access the web configurator.
Learn how to create a bootable usb drive for pfSense by downloading the amd64 image, using a usb stick installer, and writing the extracted img with Windows 32 disk imager.
Install pfSense on a physical appliance by connecting the WAN port, using serial or usb adapters, booting from usb, and completing the installer with auto zfs.
Configure pfSense using the initial configuration wizard to set hostname, time zone, dhcp, and a secure admin password; explore updates, dashboard, and backup options.
Enable the dhcp server in pfSense and configure the 192.168.1.0 subnet with a 100–200 range. Reserve static addresses for printers and nas, and save changes.
PfSense lets you create dhcp static mappings to assign fixed IPs for devices, automatically using their MAC address and an IP like 192.168.1.10, via the dhcp leases page.
Explore pfSense dns resolver settings, including default dns, dns server override, dns query forwarding, ssl tls option, dhcp registration, and ready-to-use public dns choices like Cloudflare or Google.
Explore the DNS forwarder as an alternative to the DNS resolver in pfSense, which forwards requests to upstream DNS servers with no local cache and may be slower.
Change the default DNS server in system general setup, disable DHCP override, and add Cloudflare public DNS and Google public DNS, then enable DNS query forwarding.
Learn how to configure pfSense firewall rules, focusing on the LAN default setup, anti lock out safeguards, and how to create, modify, and review rules, logs, and status.
Explore pfSense basics by configuring the first firewall rule, understanding the default allow lan to any, enabling http/https and dns, and testing anti lockout protection.
Learn to organize pfSense firewall rules using separators for default, general, specific, and blocked categories, saving and applying changes, and understanding top-to-bottom rule precedence.
Block traffic with pfSense by moving the blocking rule to the top, use a single host or alias to block Bob's IP from using IQ, while leaving other traffic allowed.
Learn to read pfSense firewall logs in the log section, see traffic blocked by the default deny rule on IPv4, and troubleshoot firewall rules.
Back up and restore pfSense configurations using the backup and restore section, leveraging config history, encryption, and selective backup options to safeguard a working setup before major changes.
Learn how to restore pfSense backups from the web interface or via SSH, selectively restore items like the DNS resolver, understand reboot and service restart needs, and review config history.
Explore pfSense config history for backup and restore, adjust how many old configurations to keep, and use the web interface to compare states, revert, download, or delete firewall rules.
Diagnose pfSense issues by using diagnostics and system logs, adjust DNS resolver and gateway logs, and filter or sort entries to troubleshoot DHCP, unbound restarts, and packet loss.
Learn how to monitor pfSense services, distinguish running versus stopped (green vs red x), and restart or stop individual services like unbound, plus access DNS resolver settings and system logs.
Learn how to enable secure shell on pfSense, configure authentication options (password, public key, or both), and set the SSH port for remote firewall access via Putty or Linux terminal.
Learn how to reboot or halt your pfSense firewall via the diagnostic menu, with a clear explanation of what halt means in Linux.
Learn to create a new, lower-privileged pfSense user with targeted dashboard access by selecting effective privileges and saving configurations, enhancing security while keeping admin access separate.
Explore how pfSense widgets customize your dashboard to monitor CPU and memory usage, services, gateways, and OpenVPN status, then tailor a monitoring view with added packages.
Install and configure OpenVPN on a pfSense firewall to securely access your home network from anywhere. See the detailed kesq.com beginner guide for step-by-step DNS and setup resources.
Set up a free no-ip dynamic DNS entry for your pfSense firewall to reach it on a changing public IP. Configure the van interface and hostname to keep access reliable.
PfSense fundamentals bootcamp guides configuring an OpenVPN server with the wizard, creating a certificate authority and server certificate, and enabling client export for Linux or Windows.
Create a dedicated VPN user, generate a user certificate, and export a tailored OpenVPN client package for pfSense, then install OpenVPN and connect to remotely access the firewall.
Install the Squid proxy server on pfSense, configure local and memory cache, set object size, enable the service on LAN, and verify it runs.
Create a pfSense firewall rule for the squid proxy on the LAN interface with LAN net as source and port 3128 as destination, placing it in the specific rules category.
Learn to set up squid proxy on pfSense either system-wide or in-browser, using 192.1681.1:3128 and excluding the local subnet 1.0/24, with browser side manual configuration as an alternative.
Enable squid antivirus in pfSense, configure clam av update frequency and mirrors (Europe preferred), consider Google safe browsing, and learn troubleshooting for service startup and reboots.
Hello, and welcome to the course I wish I had when I started out with pfSense.
My name is Stefan, and I am an officially certified pfSense professional. I had the pleasure of learning what I know directly from Jim Thompson (the CTO and a Core Team Member of Netgate/pfSense).
After finishing this course, you will know everything you need to operate all the basic functions of a pfSense firewall with confidence. You will also learn how to navigate through your firewall with ease. You can use this knowledge if you want to implement a pfSense firewall into your home network, but you will also be able to integrate and operate a pfSense firewall in a business environment. This is a hands-on course - you are encouraged to follow through with all of the steps as I do them on your firewall.
Please note that you don't need a physical appliance to follow along with this course. A computer with 8GB of RAM is enough to run a virtual machine with pfSense (covered in the course).
Since integrating pfSense into my home network many years ago, I immediately fell in love with it. Back then, there were hardly any guides or tutorials for pfSense - so I decided to create my own - which has helped to turn my YouTube channel and my blog into one of the most popular resources for pfSense on the internet.
I have also worked with pfSense professionally in a startup for several years, where I built a complete hybrid-cloud setup using multiple pfSense firewalls - so I have seen both worlds.
This is the only Udemy course taught by an officially certified pfSense professional.
Because of my experience with the community of my blog and my YouTube channel, I know what people struggle with most, and I pay extra attention to those topics.
I leave nothing out - I don't assume you have any prior knowledge.
Everything is up-to-date - this course was made with pfSense 2.5 and is fully compatible with pfSense 2.6.
This course will always stay up-to-date. If anything changes, I update the course accordingly
In the end, I also tried to make this course fun. I am not a fan of "dry" content, so I'm throwing a lame dad joke in here and there to loosen things up and keep you motivated.
2023 Update: This course has been updated to use the latest version of VirtualBox (7.X)