In this tutorial, we will go through the process of choosing a suitable home server/router that we will virtualize to install multiple services on using Proxmox (Debian-based free hypervisor).
We will install OPNSense (instead of pfSense) as a virtual machine (VM) to provide us with basic networking such as DHCP/DNS and add plugins such as Sensei for intrusion detection / app filtering, HAProxy, Let’s Encrypt and more. We will cover how to install your own OpenVPN service directly on OPNSense and even how to connect your home network (LAN) to an external VPN provider for annonymization purposes. In addition, we will create a couple of containers(rather than VMs) for pihole DNS filtering (against adverts) on Proxmox.
Lessons
Disabling default Proxmox firewall
OPNSense VM Set Up
Download the OPNSense ISO image (use amd64, DVD version) – it should be < 500 MB in size. Unpack the iso.bz2 file – note that the size of the image…
OPNSense Installation
1. OS Installation Once the booting sequence completes, notice that the VM will create a DHCP server with a default address of 192.168.1.1 (the VM’s web interface becomes available, but…
PCI Passthrough Set Up (Optional)
In case you would like to set up a direct access to a component (e.g. a network card, HDMI port on your Qotom, etc.) for a VM, you would need…
WAN / LAN Set Up (Before OPNSense Installation)
Unless you opted for a PCI Passthrough method for your network cards (only recommended for advanced users), we will use the more standard and more widely used method of setting…
Initial OPNSense Set up in Web GUI
1. Wizard Once you log in to the OPNSense GUI, you can set some basic parameters for your network by going to System -> Wizard. In the first step, confirm…
Dynamic DNS Set Up with DuckDNS on OPNSense
Why is is recommended? Let’s say that you have a security camera that sends recordings to an external service like angelcam.com and you want to open a port for it…
Choosing a VPN provider for your OPNSense
What to take into account: Does the VPN provider officially support OPSense (or pfSense)? If not, are there guides available (on YouTube or blogs) where someone provides step-by-step instructions on…
Is it worth getting VPN on OPNSense?
Why VPN on OPNSense? Since you have a powerful OPNSense firewall installed, why not to expand its functionality with securing your entire household behind a third-party virtual private network (VPN)…
NordVPN installation on OPNSense
Import the Certificate Authority in OPNSense: In OPNSense, go to ‘System’ -> ‘Trust’ -> ‘Authorities’ and click on the + sign. Provide an identifiable name (just for yourself) such as…
Multi-WAN Set Up in Proxmox & OPNSense
1. Preparation time Once you get your additional ISP line, plug a laptop to the router/modem and find out what local IP address and gateway address you will get. In…