This article explains a method of whitelisting one or more devices on your internal network so that pfBlockerNG doesn’t block those devices/servers due to any configured restrictions. For example, you might block a country using pfBlockerNG’s GeoIP filtering, but you may need one of your internal devices to be able
Read moreBrowse our Firewall articles here. AGIX is a Netgate partner. Our team have documented pfSense how-to articles to share our knowledge with the world.
pfSense Cannot allocate memory with pfBlockerNG – Firewall Rules Not Working
This article discusses the cause and solution to the error message “Cannot allocate memory” relating to pfBlockerBG. In this scenario, we’re using a Netgate 2100 Base firewall appliance. The firewall was receiving the following error message when reloading the filter rules (in “Status – Filter Reload“). There were error(s) loading
Read moreAdvert Blocking Comparison Between pfBlockerNG & AdBlocker
This article is a quick comparison of advert blocking for web browsing between pfBlockerNG DNS filtering, and the web browser plugin Ad Blocker. This is hardly scientific, but it does give an idea of how effective each are with basic settings. I’m sure with more effort, the impact could be
Read moreWindows Built-In VPN to pfSense
This article demonstrates the settings required on Windows and pfSense to get a Windows Built-In VPN to work between the two. It’s actually pretty easy. This article is more a confirmation of settings than a guide. Make sure you have the firewall rules configured on the pfSense WAN interface. We’re
Read moreUpgrading the Netgate Firewall to 23.01 Error – Unable to check for updates
I discovered this issue today while upgrading a Netgate 7100 from 22.05 to 23.01. The Reddit page “https://www.reddit.com/r/PFSENSE/comments/mdqyhg/unable_to_check_for_updates_getting_this_error/” discussed this topic too. This is somewhere between a hack and a correction, so make sure to have a backup and a plan for recovery if this all goes bad. The file
Read moreUpgrading the Netgate 3100 to Version 23.01-RELEASE
This article shows the process and experience to upgrade the Netgate 3100 to version 23.01. The process started smoothly but I was forced to do a manual power off/on having waited an hour and a half for it to return on its own after the upgrade process was started. OpenVPN
Read moreUpgrade the Netgate 7100 1U Hard Disk – Off the shelf disk
Recently I upgrade the disk of a Netgate 7100 1U firewall appliance. I’ve been looking forward to doing this but was not sure on the success of using a locally purchased (off the shelf) hard disk. The installation process is pretty simple based on the Netgate article here “https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100-1u/m-2-sata-installation.html”. The
Read moreChange OpenVPN Site-to-Site VPN from Shared Key to SSL/TLS (Netgate pfSense)
In this article, we’re modifying an existing OpenVPN site-to-site (peer to peer) VPN. We’re aware of the change that will come into effect soon that OpenVPN will no longer support shared keys for site-to-site VPNs. We’re going to modify an existing VPN to use SSL rather than the shared key
Read moreRestoring the Netgate Config File from USB (migration technique)
Recently a comment from “carefreepineapple” appears on this blog responding to this article “https://agix.com.au/restore-pfsense-from-backup-using-the-cli-command-line” where the problem differed slightly, and so did the solution. Here’s the solution to restoring a config file from a USB storage device. The idea being that one could copy a config file from a working
Read morepfSense Firewall Not Enforcing Rules
EDIT: I have seen this more recently where the total number of pfBlockerNG records exceeded the amount of rules accepted by pfSense (in Advanced-Firewall). I believe the issue relates to that limitation which can easily be overcome by increasing the acceptable maximum. Today I encountered a Netgate pfSense firewall that
Read more