pfSense is an ideal tool for system administrators looking to add a broad range of features to their network. It is primarily an open-source router/firewall suite built on top of FreeBSD, but it also supports setting up a VPN or load balancer with just a few clicks. This guide explains how to install pfSense on a Vultr cloud server with at least 1 GB of RAM.
pfSense is based on FreeBSD, which needs custom VPS settings at Vultr. The easiest way to get a FreeBSD-compatible VPS is to deploy a FreeBSD server. Then, you'll attach the pfSense ISO and reformat the original server. By deploying a FreeBSD server first, Vultr will choose a compatible instance type for you, which you can then overwrite with pfSense.
Open the web console for your server. You will see the following screen after some time:
We want to use the standard option "Quick/Easy Install". As this has already been selected, press Enter. If pfSense asks for a confirmation, press Enter again. Then you will need to choose the kernel to use.
If you are unsure which kernel you should use, choose the default kernel version.
After some time, pfSense will automatically reboot. This is somewhat confusing because pfSense will restart to the installation screen, making it look like you have to walk through the entire process again. However, this is not necessary; navigate to "Reboot" with your arrow keys.
Dismount the Custom ISO after installation so the instance can boot normally; otherwise, the instance will continuously enter the installation after each reboot.
The installation will now proceed in the console. Please match the questions with the appropriate letters as seen below.
Should VLANs be set up now? n Enter the WAN interface or "a" for auto-detection: vtnet0, press enter Enter the LAN interface name or "a" for auto-detection: press enter Do you want to proceed? y
You have now walked through the first part of pfSense's configuration. Next, you will set up the configuration through the built-in
webConfigurator, a web interface used for administrating pfSense and accessing its tools. To use this tool, please navigate to the IP address of your Vultr server. You can find this IP address on the Vultr control panel.
Upon navigating to the
webConfigurator, you will see an SSL error. However, you can safely ignore this and proceed. The default user name is
admin and the default password is
pfsense. Enter this is in the login form and login.
Click "Next" to start the installation. I will guide you through this process step-by-step.
pfSense uses a time server to determine the time. Leave this on the default setting. (Time server hostname: 0.pfsense.pool.ntp.org).
Type the same domain name as you did at "General Information".
Make sure to enter a strong password to access the pfSense web GUI.
Click "Click here to continue on to pfSense webConfigurator" to configure pfSense.
If, for some reason, you experience slow connectivity to your pfSense when downloading, go into
System > Advanced > Networking, and disable the following features:
See https://docs.netgate.com/pfsense/en/latest/virtualization/virtio-driver-support.html for more information.