I have been running since the beginning. Throw an extra network card in there and there you go. It has a little bit of memory, enough cpu to run as a router and an expansion slot. Posted on MaMaCategories automation, General Geekery, Raspberry Pi Tags carp, esxi, failover, fault tolerant, pfsense, pi-hole, raspberry pi, virtual server 2 Comments on New Firewall Status! This week/weekend has been pretty cool for getting some network stuff done. But you should see some sites without their ad’s. We were gone for 4 hours and it’s still that high. Pi-hole pi-hole pi-hole pi-hole pi-hole pi-hole pi-hole pi-hole How well does pi-hole work? Why do I keep saying pi-hole? It sounds dirty. No my pi-hole is the primary on my network, AJ’s is secondary, and if both are down for some reason the network defaults to google. use each others as a backup!!! Beautiful. Pfsense raspberry pi update#Now to update our respective DHCP servers to tell our networks to use the new adblocking dns. He brings it up in his virtual environment and gets it working on his end. Export it as an ovf and ship it off to AJ over the new tunnel. Pfsense raspberry pi install#So I configure a tiny ubuntu server and install pi-hole. Turns out pi-hole doesn’t require pi hardware. I didn’t want to tie up a raspberry pi just for dns. Alternatively, you can manually set each device to use the Raspberry Pi as its DNS server.”īut it seems like something that screams virtual machine. Once installed, configure your router to have DHCP clients use the Pi as their DNS server and then any device that connects to your network will have ads blocked without any further configuration. “The Pi-hole is an advertising-aware DNS server that prevents ads from being downloaded. So Aj had asked me about a raspberry pi project on friday called pi-hole. NO EFFING WAY!!!!! My tunnel re-establishes to AJ on the backup router too!!! HAHAHAHA this is awesome. So what happens if I reboot the primary now…. will the tunnel come up on the backup too? *checks the backup router* well the ipsec tunnel config was sync’d. WIN!!!īUT!!!!!! We have this awesome failover working…. 30!!!!! Fully maxing my fiber line over a secured tunnel and my cpu was only at 25%. We got some time over this weekend to get the tunnel working. Pfsense raspberry pi upgrade#So this all went great, but the original reason for the upgrade was my old hardware choked itself out with my ipsec tunnel to AJ doing the encryption/decryption. This is awesome for various servers that I have in different datacenters that have ip security configured. Reboot primary router and the backup comes online, takes over the gateway x.x.x.1 and the external x.x.x.250. So now that my switch is acknowledged as a slut, it works. You have to set the switch to accept promiscuous mode…. There is a switch security feature that blocked it. The arp change caused some problems with the esxi side. Network dropped and didn’t come back up until the primary fully booted… Once the backup is sync’d it’s time to test. I just make a change pretty much anywhere in the main router and its automatically sync’d to the backup. Setup all the carp sync settings to push the settings to the backup pfsense. External is x.x.x.250, internal is x.x.x.1. You create a virtual IP for both lan and wan. So now I have a physical router configured with one of my public ip’s x.x.x.253. My main network scheme is based on characters and vehicles from this show. Named after the voot runner from the show Invader Zim. I configured it with dual nics, 1 in each switch. So with this new physical port I was able to build a pfsense box in my virtual environment. Duh! But I am waiting for a cable for my switch so I can configure said vlans. I then configured esxi with a second virtual switch that uses that NIC on the new physical switch. I too my esxi box and with the second nic ran it to another small unused switch of mine. I tried to get pfsense to install on this old thin client I had. So I decided to see if I could get pfsense to do failover router. So I have a business class fiber line run to the house with 5 static IP’s.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |