Create a pfsense router for your private lab network template Some labs will require a private network where you can deploy services like DHCP. Here are instructions for setting up an uplink router for your private network using pfsense. *For reference take a look at the virtual lab network topology. 1. First lets deploy our class specific template that includes a private network and a blank VM for use as a router...
2. You will notice that there is a "Linux-Template-No-OS" machine automatically set to quantity "1". Select the machine from the list then type "Router" as the description of the VM. 3. Next select the "Windows-Server-2012-R2" machine entity and configure it with 4GB, 4096MB, of memory. We will add "Jump Box" in that VM's description. 4. Click Submit and wait for the request to finish. Note: The process will take 5-7 minutes to deploy the private network, blank Linux VM, and Windows 2012 R2 Jump Box
Note: Behind the scenes a new virtual network will be created along with a private network edge device 5. 6. Click the Requests tab to view the status of your requests Once our request status is "Complete" we can move on to configuring our router... 7. Click the Items tab then click on the VM with the generic icon (as opposed to the Windows icon).
8. Click on the "Mount ISO to CD-ROM" action 9. We will mount the pfsense ISO with the following settings. Note: Instructions for uploading and mounting ISO images can be found here. a. CD-ROM Connected on VM Start = No b. CD-ROM Connected = Yes c. Mount ISO File = YES
10. 11. 12. Click Submit then click OK Click on the Empty VM that we have mounted the ISO Click the "HTML5 Console link" under the Actions list. 13. Click on the URL. This will give you Web access to your VM Note: You must accept the certificate to view the VM
14. Click on the console session and hit enter. This should boot the pfsense installation 15. While the OS boots lets go look at the network configuration of this VM. Go back to the Academic Cloud browser tab and click Save.
16. Now click on our router VM 17....and click on the Network tab
18. 19. In this tab you will see that this VM has Network interface 0 assigned to a isolated network while Network Interface 1 is assigned to the Shared-Uplink-Network. Take note of the IP assigned to interface 1 as that will be our WAN uplink interface IP of the pfsense router. Go back to the VM console interface browser tab 20. 21. Since our VM's uplink (WAN) interface should be em1, select option 1 to reassign the interfaces. Since we are not using VLANs (we are actually using VXLANs) type "n"
22. In our case we will select em1 as our WAN interface 23. For our LAN interface we will type em0
24. Go ahead with the new interface assignments 25. Now lets set the interface IP's based on what our VM was given in step 14. Select option 2 and then select interface 1.
26. We could leave interface 1 as dhcp but let configure with the static IP assigned to us (shown in step 14). Enter IP address 172.20..x.x (IP specificly shown for this VM in network tab (as shown in step 14)). Enter subnet mask bit count as 16. Enter gateway address as 172.20.255.254. Select y for IPv6 and select y for HTTP webconfigurator Protocol. 27. Now select option 2 to configure LAN IP address.
28. Enter 2 for LAN interface, 192.168.1.1 for IP address, 24 for subnet mask bit count, and enter for no gateway address. Take defaults for remaining choices. 29. 30. Now select option 99 to install to local VM hard drive. Accept video configuration and continue with install. When prompted accept default kernel. This will take a minute to complete installation. Once finished select reboot. When reboot of pfsense VM is complete, go to your Windows jump box VM console.
31. Login to the Windows VM and verify you have internet connectivity 32. Open a browser and go to 192.168.1.1 to login to your pfsense router and configure a new password. The default login is username:admin and password:pfsense. Just click next until you get to the Admin Password field. At this point you can go through the configuration wizard and change the default admin password. The pfsense router is functional as a router for VM's on your private network.
33. You now have a functional router for your private network!