Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bradsec/pfsensenotes

pfSense Guides and Configuration Notes
https://github.com/bradsec/pfsensenotes

pfsense pfsense-firewall

Last synced: about 2 months ago
JSON representation

pfSense Guides and Configuration Notes

Host: GitHub
URL: https://github.com/bradsec/pfsensenotes
Owner: bradsec
Created: 2023-08-20T02:49:27.000Z (over 1 year ago)
Default Branch: main
Last Pushed: 2023-08-20T03:55:08.000Z (over 1 year ago)
Last Synced: 2023-08-20T04:23:52.483Z (over 1 year ago)
Topics: pfsense, pfsense-firewall
Homepage:
Size: 7.81 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

## pfSense Configuration Notes

### Dynamic DNS with Cloudflare Managed Domain

- [x] Working with pfSense 2.7.0-RELEASE as of 20 August 2023
- [x] Cloudflare proxy protection can also be enabled on DNS record.

**IN CLOUDFLARE ACCOUNT**

1. Select Domain name then select `DNS > Records`
2. `Add Record` (Name below can be any preferred subdomain, example is ddns)
```terminal
Type Name IPv4 address (required) Proxy status (can be enabled)
A ddns {any placeholder IPV4 address example 1.1.1.1} Enabled
```
3. From the Domain `Overview` page copy the `Zone ID` key (if you don't want to use email as Username in pfSense)
4. Goto `My Profile` and select `API Tokens`
5. Copy the `Global API Key`

***I have not tested with custom API keys, this may be a more secure option rather than using the Global API Key.***

**IN PFSENSE**

1. Goto `Services > Dynamic DNS`
2. Fill in details:
```terminal
Disable [UNTICK] Disable this client
Service Type: CloudFlare
Hostname: ddns yourcloudflaredomainname.com
Cloudflare Proxy: [TICK] Enable Proxy

## IMPORTANT Username or DNS Zone ID is required
Username: {Enter CloudFlare account management email address or DNS Zone ID}
Password: {Paste in Global API Key}
```
3. Click `Save` or `Save & Force Update`

**TROUBLESHOOTING**

If you leave the Username blank it will fail and the `System Log` will show a message similar to below.

`/services_dyndns_edit.php: Response Data: {"success":false,"errors":[{"code":6003,"message":"Invalid request headers","error_chain":[{"code":6111,"message":"Invalid format for Authorization header"}]}],"messages":[],"result":null}`