pfSense 2.4 - Enabling SSH Access

HackerSploit · Intermediate ·🔐 Cybersecurity ·7y ago

Key Takeaways

The video demonstrates how to enable SSH access on pfSense 2.4, an open source firewall/router software based on FreeBSD.

Full Transcript

hey guys welcome back to the pfcent series in this video we're going to be taking a look at how to set up ssh on your pfsense router or your psense router and firewall configuration all right so uh before we actually continue with this series i just want to update you guys on my perspective and the way i'll be looking at things especially when talking about pfsense uh on both sides so for now when talking about configuring your router and firewall i'll be looking at it from a systems or network administrator position or role all right so i'll be trying to configure it for security and then when that is done i'll be showing you how to set up machines or virtual machines inside a vlan and then how to perform penetration testing and how you can perform lateral movement all that good stuff but for now for the purpose of this v of this series of videos uh in regards to pf sense i'm going to be looking at it as a systems or network administrator all right now that i've essentially explained my perspective in this particular set of videos we can get started so why would you need to enable ssh access on your router or your firewall well that may seem like a really really obvious question is that you might want to access it on your computer because remember you may have a network room where you have all your servers and that's primarily where you'll have your router and firewall configuration in the form of a computer with its own panel but you can imagine working on your own desk and you want to access the firewall really quickly uh you would need to do that via ssh of course you can do it through the web gui configuration panel but again this is only a sort of a passive access onto the actual control or the core control of the firewall and the router all right so it's really important to understand how to do that now the other reason is that if you do or are considering uh setting up ssh to work on your one meaning you can access uh the firewall or router uh from an external network or from home or remotely really that's what i was what i was getting to so setting up ssh access to access the firewall or router remotely so you could be home you could have left work and you want to access the router we'll also show you how to do that right now so those those are very very good reasons uh for essentially enabling ssh access on your route and firewall so i'm going to be showing you how to do that as securely as possible now i'm currently logged on to the web gui and i still have the same configuration as the previous video and i showed you how to install pfsense so the first thing you need to do is you need to go into your system and you need to go into your advanced settings all right before we actually touch any users now i'll be covering the advanced menu but for now let's just stick with what we are doing you want to scroll all the way down to secure shell and you want to enable uh enable secure shell and as for your authentication you want to select whether you want to use a public key or you want to use a password or public key in my case i'm going to say a password or public key or what you can do is just simply use a public key only all right and for the port this is very important if you are configuring it to to be accessed through the one then changing the port is very important because that is a pole that is going to be really really targeted and of course if you are on your local network then again you might want to set this up and when when talking about firewall rules also i'll show you how to prevent uh particular nmap scans from actually determining what ports are running on the router but for now we'll just leave it as the default on port 22. and once that's done because we've selected our authentication to work with a public key only what we can do as well is we can also enable password or public key but for now and let's use the publicly the public key only so you need to generate your your two pairs your private key and your public key and of course you can do that on windows and on linux on windows you can do it on you can use you can do it with putty and on linux you can use your ussh key generator to do so all right so i'm going to save this and apologies if the router takes a while to load i haven't actually optimized it yet so don't worry about that i'll just wait for this to load up shouldn't take a lot of time now all right the settings have successfully been applied and now we need to go into system and you want to go into your user manager this is where we will be essentially providing our public key so let us talk about generating your ssh keys which i'm sure many of you already know to do so the first thing we need to do is we need to use putty we need to use puttygen if you're on windows if you're on a linux you can simply use the ssh generation or the ssh keygen and they'll essentially generate your keys for you and you'll be able to log in the only thing you need to do is you need to you need to actually save the public key so i'm just going to generate here and again we're just going to rotate around the screen here and just give it a bit of randomness here so that it can generate our key for us and once it's done we should be good all right so this is your public key here and we want to save the private key because uh yes we actually i'm gonna provide a passphrase before i do that so provide a passphrase here like so and i'm going to save the private key and i'll just save it on my desktop here and i'll just call it uh pf sense all right and i'm just going to hit save and that's done all right now i'll copy the public key here onto my clipboard and i'll edit my admin user now if you want to create any users here you can do it from this page if you want to also separate access or roles you can do that from your groups and take a look at your settings this is something i'll be covering later on but hopefully you'll get an idea of what's going on so if i wanted to create another user uh who had sys admin uh privileges if you go to groups right over here you can go ahead and take a look at the at the role so the group name is admins and of course the description is the fact that this group is only for system administrators so you can get a good idea of the rules here what i'm going to do is i'm just going to hit on the little pen or pencil here and you can from this page you can edit the settings in regards to the user's access etc so the password here i'm just going to specify the password right over there so because i know it will prompt me to to actually confirm the password if i'm making any changes you want to go down to keys and paste in the public key right over here all right and once that is done we can just hit save i'm just going to give that a few seconds right over here and once that is done uh this user should have the public keys ready to go so that when we load the private key with putty uh we can actually access it we can have ssh access all right so there we are it's uh the settings seem to have changed uh now we can go on to our desktop here and we can load the pf sense key with pageant right over here which is part of the putty suite so i'm just going to load it up here it's going to ask me for my passphrase i'm going to hit ok and now we can open up a new putty session here and i'm going to type in the ip address for my router and firewall configuration which is 192.168.1.1 let me just increase the the font size here so that we can actually see what's going on and there we are so i'm going to open and uh just like that it is going to prompt us to log in apologies for the speed again uh there might be a few connection issues that i still have to optimize or it's going to prompt you to log in as and you're going to provide the username as it is on the putty ui configuration i'm going to hit enter and there you are so we are authenticated uh via ssh to the firewall um and router so this is the screen if you have watched my installation video this is the console screen and it's really awesome that you can have access to the screen via ssh because you can essentially control it even if the server room is miles away or you know if you're in another country you can essentially manage the company's infrastructure remotely all right so you can see that these are the settings that i had when i had set up the router so we have one which is getting its ip from my primary router which is outside my room or my office and then we have the lan access here which is provided on the local ip1 and the appropriate subnet which is 192.168.1.1 uh so these are the up the other options that you can interact with on the console again these are all things that we'll be taking a look at so you can reboot the system you can hold the system you can bring a host you can access the shell you can restart the web configurator you can uh update from console you can disable ssh as well and you can also you can of course reconfigure the interfaces right over here and you can essentially control the entire uh the the entire firewall in our router configuration all right so that is how to configure ssh on your pf sense installation i hope that made sense if you have any questions in regards to the video please leave them in the comment section if you want to support the channel you can do so by uh supporting us on patreon we really appreciate all the support you've given us and i'll be seeing you in the next video peace [Music]

Original Description

pfSense is an open source firewall/router software based on the FreeBSD packet filtering program PF that can be used as a perimeter firewall, router, wireless access point, DHCP server and a DNS server. HACKERSPLOIT WEBSITE: https://hsploit.com/ ⭐SUPPORT HACKERSPLOIT BY USING THE FOLLOWING LINKS: NordVPN: https://nordvpn.org/hacker Use the link above or the code below for 77% Off your order Promo Code: hacker Patreon: http://patreon.com/hackersploit I Hope you enjoy/enjoyed the video. If you have any questions or suggestions feel free to ask them in the comments section or on my social networks. 🔗 HackerSploit Website: https://hsploit.com/ 🔹 SUPPORT THE CHANNEL NordVPN Affiliate Link: https://nordvpn.org/hacker Patreon: http://patreon.com/hackersploit 🔹 GET OUT COURSES Get a special discount on our courses: The Complete Deep Web Course 2018: https://www.udemy.com/the-complete-deep-web-course-2017/?couponCode=DWCBP2017 🔹 SOCIAL NETWORKS - Connect With Us! ------------------------------- Facebook: https://www.facebook.com/HackerSploit/ Twitter: https://twitter.com/HackerSploit Instagram: https://www.instagram.com/hackersploit/ Patreon: http://patreon.com/hackersploit -------------------------------- Thanks for watching! Благодаря за гледането Kiitos katsomisesta Danke fürs Zuschauen! 感谢您观看 Merci d'avoir regardé Grazie per la visione Gracias por ver شكرا للمشاهدة دیکھنے کے لیے شکریہ देखने के लिए धन्यवाद #pfSense#Networking#Firewall
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from HackerSploit · HackerSploit · 0 of 60

← Previous Next →
1 How To Install Kali Linux 2.0 On Virtual Box
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
2 100 Subscriber Q&A! - How I Learned Ethical Hacking
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
3 BlackArch Linux Review - Better Than Kali Linux?
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
4 How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
5 Wireshark Tutorial for Beginners - Installation
Wireshark Tutorial for Beginners - Installation
HackerSploit
6 Wireshark Tutorial for Beginners - Overview of the environment
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
7 Wireshark Tutorial for Beginners - Capture options
Wireshark Tutorial for Beginners - Capture options
HackerSploit
8 Wireshark Tutorial for Beginners - Filters
Wireshark Tutorial for Beginners - Filters
HackerSploit
9 Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
10 Complete Ethical Hacking Course #2 - Installing Kali Linux
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
11 Parrot OS 3.5 Review | The Best Kali Linux Alternative
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
12 Nmap Tutorial For Beginners - 1 - What is Nmap?
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
13 Katoolin | How To Install Pentesting Tools On Any Linux Distro
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
14 Nmap Tutorial For Beginners - 2 - Advanced Scanning
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
15 Nmap Tutorial For Beginners - 3 - Aggressive Scanning
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
16 Zenmap Tutorial For Beginners
Zenmap Tutorial For Beginners
HackerSploit
17 How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
18 How To Setup Proxychains In Kali Linux - #2 - Change Your IP
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
19 How To Change Mac Address In Kali Linux | Macchanger
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
20 How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
21 Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
22 VPN And DNS For Beginners | Kali Linux
VPN And DNS For Beginners | Kali Linux
HackerSploit
23 Tails OS Installation And Review - Access The Deep Web/Dark Net
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
24 Steganography Tutorial - Hide Messages In Images
Steganography Tutorial - Hide Messages In Images
HackerSploit
25 The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
26 Best Linux Distributions For Penetration Testing
Best Linux Distributions For Penetration Testing
HackerSploit
27 Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
28 Gaining Access - Web Server Hacking - Metasploitable - #1
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
29 Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
30 How To Install Kali Linux On VMware  - Complete Guide 2018
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
31 Q&A #1 - Best Cyber-security Certifications?
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
32 Terminator - Kali Linux - Multiple Terminals
Terminator - Kali Linux - Multiple Terminals
HackerSploit
33 Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
34 Q&A #2 - Mr Robot?
Q&A #2 - Mr Robot?
HackerSploit
35 Metasploit Community Web GUI  - Installation And Overview
Metasploit Community Web GUI - Installation And Overview
HackerSploit
36 Linux Expl0rer - Forensics Toolbox - Installation & Configuration
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
37 QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
38 Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
39 Metasploit For Beginners - #2 - Understanding Metasploit Modules
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
40 Kali Linux Quick Tips - #1 - Adding a non-root user
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
41 Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
42 Spectre Meltdown Vulnerability  - How To Check Your System
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
43 Metasploit For Beginners - #4 - Basic Exploitation
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
44 ARP Spoofing With arpspoof - MITM
ARP Spoofing With arpspoof - MITM
HackerSploit
45 WordPress Vulnerability Scanning With WPScan
WordPress Vulnerability Scanning With WPScan
HackerSploit
46 Generating A PHP Backdoor with weevely
Generating A PHP Backdoor with weevely
HackerSploit
47 Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
48 How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
49 Stacer - System Optimizer And Monitoring Tool For Linux
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
50 Kali Linux 2018.1 - Kernel Updates & Patches
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
51 MITM With Ettercap - ARP Poisoning
MITM With Ettercap - ARP Poisoning
HackerSploit
52 Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
53 How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
54 Channel Updates - How To Post Questions & Video Suggestions
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
55 Web App Penetration Testing - #1 - Setting Up Burp Suite
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
56 Web App Penetration Testing - #2 - Spidering & DVWA
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
57 Cl0neMast3r - GitHub Repository Cloning Tool
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
58 Kali Linux On Windows 10 Official - WSL - Installation & Configuration
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
59 DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
60 Web App Penetration Testing - #3 - Brute Force With Burp Suite
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit

This video teaches how to enable SSH access on pfSense 2.4, a crucial step in securing and managing a firewall/router. By following the steps, viewers can gain hands-on experience with pfSense and improve their networking skills.

Key Takeaways
  1. Install and configure pfSense 2.4
  2. Enable SSH access
  3. Configure network settings
  4. Test SSH connection
  5. Secure firewall settings
💡 Enabling SSH access on pfSense 2.4 requires careful configuration to ensure secure access to the firewall/router.

Related Reads

📰
Designing trust after the Quantum Shock stripped away our digital armor
Learn how to design trust in a post-quantum world where traditional digital security measures are no longer effective
Medium · Cybersecurity
📰
6 Cybersecurity Mistakes Small Businesses Make Without Realizing
Learn the 6 common cybersecurity mistakes small businesses make and how to avoid them to protect your business from cyber threats
Medium · Cybersecurity
📰
The Server Room Is Not a Museum, Stop Preserving Ancient Systems
Learn to modernize outdated server systems to improve cybersecurity and efficiency
Medium · Cybersecurity
📰
Applying SAST Tools to Real Applications — A Hands-On Look at Bandit
Learn to apply SAST tools like Bandit to real applications for enhanced security
Dev.to · Mauricio Choqueña Choque
Up next
NordVPN Vs ExpressVPN 2026 | Which VPN Should You Choose?
Tutorial Stack
Watch →