Skip to Content

pfsens

 pfSense secures your information system

pfSense secures information systems by controlling all exchanges on the network.


Built on a BSD distribution (FreeBSD), guaranteeing a high level of IT security and reliability, the pfSense distribution enables the deployment of a firewall, a router and a complete captive portal tailored to professionals.


pfSense is an open source solution on a par with proprietary solutions such as fortinet, to name but one.


Its flexibility of configuration and use makes it easy to integrate into all information systems, while complying with current security policy requirements.


What's more, it can be installed on both professional hardware (servers) and standard IT equipment such as a simple client PC, or even a virtual machine.


This makes it a key element in improving the security of information systems.

pfSense replaces or complements routers and firewalls to great advantage


Both an OS-firewall router and a firewall, pfSense supports a number of extended capabilities such as :


  • NAT,
  • IPV6,
  • DHCP
  • Proxy,
  • VPN over IPSec/PPTP server,
  • ....

The NAT features of pfSense enable it to filter source and destination IPs for all traffic (TCP, UDP, etc.). It also filters and redirects connection ports, subnets, etc.


Load balancing support enables the use of incoming and outgoing connections to be distributed so that users can be offered the best possible speeds.


This solution can therefore replace routers and firewalls, but can also be combined with existing routers/firewalls.


pfSense is also a DHCP server and a DHCP relay.

pfSense the interface between your networks


pfSense must be placed between the company's various networks in order to control exchanges between them.


Whether you need to filter access to the public computer network, such as Internet access, or exchanges between different sub-networks, pfSense's capabilities will meet all your needs.

pfSense simplified administration (graphical interface)


Although pfSense has a wide range of network security capabilities, its web interface makes it easy to use.


However, console mode (command line) access is also available for administrators.

The possibilities of pfSense


Although it supports the addition of complementary plugins, this network security solution natively offers a wide range of possibilities.


Here are the main components:


  • Firewall
  • Tagged VLAN support
  • IPV4 / IPV6 support
  • Access control by MAC address or RADIUS authentication
  • Lan router
  • Wan router
  • Captive portal
  • Proxy server
  • DNS server
  • VPN server
  • PPPoE server or client
  • Virtual IP
  • Logs, load balancing, failover, .....

Virtual Private Network (VPN)


In terms of VPN functionality, pfSense offers 4 connection modes:


  • OpenVPN
  • VPN PPTP
  • VPN IPSEC
  • VPN L2TP

These 4 connection modes cover all VPN client connection requirements, ensuring maximum compatibility.

The captive portal


The role of the captive portal is to redirect anonymous users of the computer network to an authentication page. This restricts connections to authorised users only.


The captive portal is particularly useful on corporate networks and hot-spots, especially wireless ones.


A number of additional options complement the captive portal's authentication module.


You can define


  • The number of simultaneous connections
  • The maximum duration of a connection
  • URL redirection
  • Authentication modes
  • Idle timeout
  • ....

Extensions and modularity


A number of extensions and plugins are available to extend the capabilities of the solution and make it easier to integrate it into existing networks:


  • Avahi
  • Iperf
  • Squid
  • Nmap
  • Varnish
  • Zabbix,
  • ...

pfSense's wide-ranging capabilities, modularity and ease of use make it an essential network security solution.


We will support you throughout the implementation of pfSense to strengthen the security of your information system.

Contact Us

Submit