[guide] pfsense VM on QNAP in 2020

[Qmann]

if they are on separate vlans, they both can have internet access. difference is, they can't talk to each other.

so your pc cannot talk to your chromecast, vice versa. but both have internet access. however they can talk to other devices on the same vlan. so you can separate out private network vs iots, vs wireless guest

I have phones and PCs that all use chromecast, and homeassistant that needs to run IoT but accessible on PC and phones to signal devices,,,, so I've never been able to VLAN anything . It seems they all need to be on the same network. Seems like there has to be a way to bridge certain traffic over to the other VLAN by some type of rule, but that is far beyond my mojo.

I could do guest wifi, but seems like that's about it.

[Moogle Stiltzkin]

o.... ur using expressvpn.

that kind of vpn only tunnels your internet traffic so that your ip uses the one of your vpn provider. (i use mullvad)
https://www.youtube.com/watch?v=oja3UzuuqGQ

this is different from the vpn server you run from your own router, then provide your client elsewhere e.g. desktop, laptop, smartphone, so they can connect to your router via vpn for a secure encrypted tunnel. NO Vpn subscription required for this. Lawrence explains how to setup this kind of vpn for remote access
https://www.youtube.com/watch?v=PgielyUFGeQ

if they are on separate vlans, they both can have internet access. difference is, they can't talk to each other.

so your pc cannot talk to your chromecast, vice versa. but both have internet access. however they can talk to other devices on the same vlan. so you can separate out private network vs iots, vs wireless guest

I have phones and PCs that all use chromecast, and homeassistant that needs to run IoT but accessible on PC and phones to signal devices,,,, so I've never been able to VLAN anything . It seems they all need to be on the same network. Seems like there has to be a way to bridge certain traffic over to the other VLAN by some type of rule, but that is far beyond my mojo.

I could do guest wifi, but seems like that's about it.

i watched lawrence's video, he says it may be possible using the avahi, so that devices on your private lan can communicate with your guest vlan, but not the otherway. or maybe i misundertood what he meant was possible with that kind of setup he even cites usage for chromecast in a vlan segmented network. i highly recommend you watch this video

https://www.youtube.com/watch?v=HW9mUrF1ZgU

[MikeLagit]

You can do both.

Client: Express VPN in pfsense tunnels outgoing traffic to a public shared IP.

While

Server: Is configured in pfsense so you can connect back into the network remotely with Openvpn client on a phone and laptop. You don't expose any ports on the pfsense except 1194 for incoming OpenVPN.

[Qmann]

Thanks for the IoT tip! I figured it could be done, I just hadn't spent the time on it yet.

[patricepm]

Hi everybody,

I’d like to know your experiences with having pfsense virtualized, and configured the OpenVPN client in pfsense with a vpn provider.

I’ve got it all up and running but the download speed is soooo slow, nearly 30mbps while connecting to the same vpn server using qvpn gives me over 300mbps.

I’d like to hear your comments on this one.
Thank all!


==================================================
QNAP TVS-473
- 4x WD Red Pro 6TB (RAID 10)
- 16GB Memory
- Firmware: QTS 4.5.1

[Qmann]

I didn't have any issues with speed using Express VPN and got around 170mbps down on my 200 mbps connection. That's using 256-bit encryption on my TS-877.

Verify your cpu is aesni, and you have hardware crypto enables properly in pfsense.

[matthewoliver]

Hi,

Trying to install pfsense on my nas, except I can't as I can't find a proper keyboard mapping for my mac... Any ideas? (I've been struggling with other linux VMs but I eventually managed) or should I buy a usb keyboard to plug in the nas. If so, which one would you recommend?
Thx!