Subj : New firewall.
To   : All
From : Weatherman
Date : Sun May 05 2024 06:57 pm


Hi all,

Not that I think there are any issues, but I recently decided to completely cut 
over from my Cisco ASA firewall to pfSense running as a VM on my main ESXi 
server.  It came down to being tired of dealing with Java, no updates, and the 
extra power it uses when I can run a better firewall as a VM.

I even set up pfELK for syslog for the setup.  That was a pain in the ass to 
get working, but it is finally working.  

My pfSense VM has (3) virtual nics.  Inside, Outside, and DMZ.  I have some 
stuff in my DMZ, but the BBS stuff is all technically inside with port 
forwards.  The outside nic is a virtual distributed switch port that is on a 
dedicated 1Gbps physical nic on the server.  That connects to my Cisco switch, 
where I have (3) ports in a layer-2 VLAN just to act as a hub for possibile 
failover to my other physical ESXi server.  My Fios connection connects to one 
of the ports in that layer-2 VLAN.  

Works like a champ and saves some power.

- Mark

:.:       Weather Station BBS ú telnet://bbs.weather-station.org         :.:
:.:    http://www.weather-station.org/bbs ú Bel Air, Maryland - USA      :.:
ÿÿÿÿÿÿ
--- WWIVToss v.1.52 
 * Origin:  http://www.weather-station.org * Bel Air, MD -USA (11:1/101.0)

.