pfsense https://blog.werk21.de/en en Install pfsense 2.4.x on xen (Ubuntu 16.04) https://blog.werk21.de/en/2017/12/17/install-pfsense-24x-xen-ubuntu-1604 <span>Install pfsense 2.4.x on xen (Ubuntu 16.04)</span> <span><span lang="" about="/en/user/15" typeof="schema:Person" property="schema:name" datatype="">kelly</span></span> <span>Sun, 12/17/2017 - 17:43</span> <div class="field field--name-body field--type-text-with-summary field--label-hidden field--item"><p>pfsense 2.4.x is not available as nano-image, so you have to install pfsense as xen-Guest via vnc.</p> <h2>Download pfsense</h2> <p>Download pfsense from <a href="https://www.pfsense.org/download/">https://www.pfsense.org/download/</a> (AMD64, CD Image (ISO) Installer)</p> <h2>Configure Xen</h2> <p>You have to create a LV or another device to install.</p> <div class="geshifilter"><pre class="cpp geshifilter-cpp" style="font-family:monospace;">builder <span style="color: #000080;">=</span> <span style="color: #FF0000;">'hvm'</span> vcpus <span style="color: #000080;">=</span> <span style="color: #FF0000;">'4'</span> memory <span style="color: #000080;">=</span> <span style="color: #FF0000;">'2048'</span> &nbsp; disk <span style="color: #000080;">=</span> <span style="color: #008000;">&#91;</span> <span style="color: #FF0000;">'phy:/dev/xenvg/pfsense-disk,hda,w'</span>, <span style="color: #FF0000;">'file:/root/pfSense-CE-2.4.2-RELEASE-amd64.iso,hdc:cdrom,r'</span> <span style="color: #008000;">&#93;</span> &nbsp; serial <span style="color: #000080;">=</span> <span style="color: #FF0000;">'pty'</span> &nbsp; vnc <span style="color: #000080;">=</span> <span style="color: #0000dd;">1</span> vnclisten <span style="color: #000080;">=</span> <span style="color: #FF0000;">'0.0.0.0'</span> &nbsp; boot <span style="color: #000080;">=</span> <span style="color: #FF0000;">'d'</span> &nbsp; name <span style="color: #000080;">=</span> <span style="color: #FF0000;">'pfsense'</span> &nbsp; vif <span style="color: #000080;">=</span> <span style="color: #008000;">&#91;</span> <span style="color: #FF0000;">'ip=xxx.xxx.xxx.xxx,bridge=xenbr0'</span>, <span style="color: #FF0000;">'ip=yyy.yyy.yyy.yyy,bridge=xenbr1'</span>, <span style="color: #FF0000;">'ip=zzz.zzz.zzz.zzz,bridge=xenbr2'</span>, <span style="color: #008000;">&#93;</span></pre></div> <h2>Installing pfsense</h2> <p>Create Guest (xl create) and connect with your vncviewer (<a href="https://www.realvnc.com/en/connect/download/viewer/">https://www.realvnc.com/en/connect/download/viewer/</a>)</p> <p>(Remark: We had to add internal route / tunnel to access webgui via browser)</p> <h2>After installing pfsense</h2> <p>After installing remove lines for booting and vnc:</p> <div class="geshifilter"><pre class="cpp geshifilter-cpp" style="font-family:monospace;">builder <span style="color: #000080;">=</span> <span style="color: #FF0000;">'hvm'</span> vcpus <span style="color: #000080;">=</span> <span style="color: #FF0000;">'4'</span> memory <span style="color: #000080;">=</span> <span style="color: #FF0000;">'2048'</span> &nbsp; disk <span style="color: #000080;">=</span> <span style="color: #008000;">&#91;</span> <span style="color: #FF0000;">'phy:/dev/xenvg/pfsense-disk,hda,w'</span> <span style="color: #008000;">&#93;</span> &nbsp; serial <span style="color: #000080;">=</span> <span style="color: #FF0000;">'pty'</span> &nbsp; name <span style="color: #000080;">=</span> <span style="color: #FF0000;">'pfsense'</span> &nbsp; vif <span style="color: #000080;">=</span> <span style="color: #008000;">&#91;</span> <span style="color: #FF0000;">'ip=xxx.xxx.xxx.xxx,bridge=xenbr0'</span>, <span style="color: #FF0000;">'ip=yyy.yyy.yyy.yyy,bridge=xenbr1'</span>, <span style="color: #FF0000;">'ip=zzz.zzz.zzz.zzz,bridge=xenbr2'</span>, <span style="color: #008000;">&#93;</span></pre></div> <h2>Important Network-settings</h2> <p>Under https://&lt;your_host&gt;/system_advanced_network.php you have to check following options (check to disable):</p> <ul> <li>Hardware Checksum Offloading</li> <li>Hardware TCP Segmentation Offloading</li> <li>Hardware Large Receive Offloading</li> </ul> <p> </p> <p> </p></div> <div class="field field--name-field-systems field--type-entity-reference field--label-inline"> <div class="field--label">Systems</div> <a href="/de/systems/server" class="label label-default" hreflang="de">Server</a> </div> <div class="field field--name-field-tags field--type-entity-reference field--label-inline"> <div class="field--label">Tags</div> <a href="/de/tags/xen" class="label label-default" hreflang="de">xen</a> <a href="/de/tags/ubuntu" class="label label-default" hreflang="de">ubuntu</a> <a href="/en/tags/pfsense" class="label label-default" hreflang="en">pfsense</a> </div> Sun, 17 Dec 2017 16:43:23 +0000 kelly 130 at https://blog.werk21.de