Will This Setup Work ?

Discussion in 'privacy technology' started by blusky, Apr 23, 2015.

  1. blusky

    blusky Registered Member

    Joined:
    Jan 29, 2011
    Posts:
    15
    I have been reading for a while at Wilders and am impressed with the great information. I have a Media Server that I would like to connect too when I am away through a VPN tunnel. Maybe some torrents and Kodi. I am considering using IVPN and using pfSense on a dedicated box. My download speed is about 50Mbps and upload about 8-10Mbps. I do have a few questions if I may.
    What I am trying to do is secure my home LAN which consists of the following components:
    Cable modem--Apple Time Capsule Wifi Router--Trendnet 24 port Gigabit Switch--Media Server(WHS2011)--Apple iMac--HTPC (Windows7 computer)--Gaming Computer (windows8.1)-- several Roku's--Netflix.

    On Wifi I have several Iphones , iPads, and laptops that I use.

    I ordered the hardware for the pfSense box with will include a Supermicro Motherboard Micro ATX DDR3 1600
    A1SRM-LN7F-2758 which includes the intelAtom processor C2758, SoC,
    (Rangeley), 20W 8-Core, 2.4GHz, 16GB ram. I realize this is an overkill for what I need it for but i figure it will give my plenty of growing room to install packages in the future.

    My plan is to use the Apple Time Capsule Router just for Wifi and for all other router functions the dedicated pfSense box.

    My setup would then be :
    Cable modem-- pfSense box--Apple Time Capsule Wifi Router--Trendnet 24 port Gigabit Switch all other computers.
    1) Is this the best way to set this up?

    From What I have read it is best to allow all the traffic through the VPN Tunnel.
    2)How can I deal with Roku, Netflix not going through the tunnel. Roku and Netflix are connected through ethernet?
    3)Will that compromise my security and anonymity?

    4) In this setup will the wifi also go through the tunnel? or is there a way to exclude it from the tunnel so only ethernet connected computers go through tunnel?

    I have read all of Mirimir's Privacy and advanced guides although some of them are way over my head but I am trying to learn. I will use Mirimir's , "pfSense Setup Guide", to get started.

    Any ideas or suggestions would be greatly appreciated . I am a newbie so my knowledge is limited but I hope I can get this done.
     
  2. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,025
    That would be a complicated setup. You want remote access via VPN. You want most Internet access via a VPN service (iVPN). But you want some Internet access direct (Roku and Netflix, and all access via WiFi).

    That's doable on a pfSense box. You'll need two VPN instances: 1) a server to provide remote access, and 2) a client for iVPN. There will be at least five network interfaces: WAN, LAN, WLAN, IVPN and MYVPN. And you'll need routing and firewall rules to control traffic among those.

    It would be a stretch for me. I recommend getting at least gold support from pfSense. That gives you their book, which is a very detailed manual, with lots of how-to, and limited one-on-one support.
     
  3. blusky

    blusky Registered Member

    Joined:
    Jan 29, 2011
    Posts:
    15
    Thank you Mirimir for your help. Yes it does look a little complicated for starters like me. Wow , you must have read my mind because I just signed up for gold support.

    My first goal would be to get the pfSense box up and running and setting up the vpn with IVPN. Initially , everything through the VPN and make sure it is secure and anonymous. Then I could start working on the rest.
    Is the setup I described above , with the pfsense box the best way to initially set it up?
     
  4. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,025
    Yes, it's best to start with pfSense and iVPN. There's a guide for that at https://www.ivpn.net/setup/router-pfsense.html

    You could do the same thing in Linux. It's arguable which would be more secure. But the pfSense webGUI is very intuitive, and they provide excellent support.
     
  5. blusky

    blusky Registered Member

    Joined:
    Jan 29, 2011
    Posts:
    15
    Thank you Mirimir for your response. I was thinking that I could setup pfSense for different ivpn exit servers and when I'm not using it just leave it on a US exit server this way Roku and Netflix should work.

    Thanks for the guide Mirimir, that is the best one I have seen. I have already started reading the Definitive Guide to PfSense. I have limited experience with Ubuntu linux but am willing to give it a try in the future.

    Appreciate the help.
     
Loading...