pfSense is software originally allowing you to create a firewall/router, but pfSense can also be used to create a VPN server, as well as install other network services (DHCP, DNS, NTP, ...).
To get started, go to the pfSense download page and select:
Then, click "Download".
Note: the "Community Edition" version is the free version of pfSense, but it is possible to benefit from paid support from Netgate if you wish.
Once the download is complete, unzip the resulting "pfSense-CE-x.x.x-RELEASE-amd64.iso.gz" file.
As expected, you will find a file "pfSense-CE-x.x.x-RELEASE-amd64.iso".
Although pfSense can be installed on a physical computer to turn it into a firewall, router, ..., you can also install it in a virtual machine.
In our case, we will use VMware Workstation Pro which allows you to easily create virtual internal networks using Virtual Network Editor.
To launch the "Virtual Network Editor" program, use the shortcut in the start menu.
You can also go through the "Edit -> Virtual Network Editor" menu in VMware Workstation Pro.
To get started, click "Change Settings".
Click "Add Network" to add a new VMware virtual network.
Click OK.
In our case, it is the virtual network "VMnet2" which has been added (the number does not matter, except to locate it).
However, you can rename it (for information only in VMware) by selecting the added virtual network, then clicking on "Rename Network".
In our case, we will rename this virtual network "pfSense LAN".
Then, configure this virtual network "pfSense LAN" like this:
Note: we will use the "10.x.x.x" network for the internal network, because the pfSense WAN network card will be connected to our physical network at "192.168.1.x".
To get started, in VMware Workstation Pro, go to: File -> New Virtual Machine.
Note: if you want to install pfSense on a physical machine, refer to the "Official pfSense Hardware, Appliances, and Security Gateways" page.
Select "Custom (advanced)" and click Next.
Select "I will install the operating system later".
In the case of pfSense 2.6.0, this distribution is based on FreeBSD 12.3.
For future pfSense releases, you can find the FreeBSD version your pfSense release is based on on the "Versions of pfSense software and FreeBSD | pfSense Documentation" page.
In our case, we therefore select:
Specify "pfSense-CE..." as the name for this VM.
The minimum number of cores to use for the processor is 1.
However, if you have the possibility, it may be interesting to add some.
In our case, we will therefore allocate 2 processor cores to this VM.
For the minimum configuration required by pfSense, refer to the "Minimum Hardware Requirements | pfSense Documentation" page.
According to the official pfSense documentation, if you want to use pfSense as a firewall only, 1 GB (1024 MB) of RAM is sufficient.
However, depending on the features you want and the plugins you may install, you may need more RAM.
When you install pfSense as a router (by default), pfSense will be connected to 2 networks:
As noted in the official pfSense documentation, LSI Logic SAS is a pfSense compatible controller.
So, select this type of SCSI controller.
Leave the "SCSI" disk type selected as default.
Leave the "Create a new virtual disk" option selected and click Next.
Again, the documentation says to allocate at least 16 GB of disk space, but you may need more disk space if you install large plug-ins.
So, leave the value of 20 GB indicated as default or indicate at least 16 GB.
Click "Customize Hardware".
In the "Hardware" window that appears:
Next, click "Add" (at the bottom of the window).
Select "Network Adapter" and click Finish to add a second virtual network adapter to your virtual machine.
For this 2nd virtual network adapter (Network Adapter 2), select "Custom", then select your virtual network "pfSense LAN" from the list provided.
Click Close.
Click Finish.
Your "pfSense-CE-x.x.x x64" virtual machine appears.
To improve the performance of your virtual machine, pfSense recommends using "VMXNET3" paravirtual network adapters instead of the virtual network card model used by default.
However, this requires modification of the ".vmx" configuration file of your virtual machine, as this is not possible from the VMware Workstation Pro graphical interface.
Warning : for these changes to be taken into account, it is important that the virtual machine concerned is not currently open in VMware Workstation Pro.
To do this, close the tab corresponding to your "pfSense-CE-x.x.x x64" virtual machine or close the VMware Workstation Pro window.
Next, go to your virtual machine folder and open the ".vmx" file with notepad.
In this file, you will find configuration options for your 2 virtual network cards (ethernet0 and ethernet1).
As you can see, by default, VMware Workstation Pro uses an "e1000" virtual network adapter (which corresponds to the "Intel 82545EM Gigabit Ethernet" network adapter).
Source : Network Adapter Basics - VMware Docs.
For your virtual machine on VMware Workstation Pro to use VMXNET3 paravirtual network adapters, simply modify the "virtualDev" property of them like this:
Plain Text
ethernet0.virtualDev = "vmxnet3" ethernet1.virtualDev = "vmxnet3"
Source : Configure vNIC to use vmxnet3 driver - VMware Technology Network VMTN.
For VMware Workstation Pro to use the new values in this configuration file, you must double-click on this ".vmx" file.
Your virtual machine appears on VMware Workstation Pro.
Procedure based on official pfSsense documentation : Virtualizing pfSense Software with VMware vSphere / ESXi | pfSense Documentation.
Firewall 5/28/2025
Firewall 6/4/2025
Firewall 5/17/2025
Firewall 5/15/2025
Pinned content
Contact
® InformatiWeb-Pro.net - InformatiWeb.net 2008-2022 - © Lionel Eppe - All rights reserved.
Total or partial reproduction of this site is prohibited and constitutes an infringement punishable by articles L.335-2 and following of the intellectual property Code.
You must be logged in to post a comment