This tutorial is for a newer version of Proxmox. Before the beginning of the tutorial, assume that:
Proxmox host is up and running
Host may be used having at least two WAN and LAN network interface.
PfSense disc image has been uploaded to the host
A, Proxmox network settings
To pfSense virtualization software, first create two Linux bridge on Proxmox, these bridges will be used for LAN and WAN interfaces. Select from the host server view and navigate to System> Network. pfSense firewall will use eth1 and eth2 interface, and an interface for eth0 Proxmox management.
Click Create, and then select Linux Bridge. Enter eth1 under a bridge port.
Repeat this process to add another Linux Bridge, this time adding eth2 under the bridge port.
Proxmox Networking Linux should now show two bridges, as shown below. Note : If the interface is not marked as the Active (active) , the Proxmox need to restart.
Second, create a virtual machine pfSense
After you create the WAN and LAN Linux bridge, and now we continue to create a new virtual machine. Click on the upper right corner of the "Create a virtual machine", the new virtual machine wizard will appear. Under the General tab, add a name for pfSense VM.
Under "Operating System" tab, select "Other OS Type", then click "Next."
On the CD / DVD tab, select the local storage, and then find the previously uploaded pfSense ISO under ISO image.
On the next tab, select "in" bus / device " VirtIO" , then enter the desired disk size.
On the "CPU" tab, select a Sockets and add one or more cores. CPU type is confirmed Default (kvm64).
In the "Memory" tab, and add at least 1024 MB. A fixed amount of memory.
在“网络”选项卡上,选择“桥接模式”和“vmbr1”。确保 在“模式”下选择了VirtIO(半虚拟化)。
最后,确认设置并等待创建VM。从服务器视图侧栏中选择新创建的虚拟机。
选择pfSense虚拟机后,单击“硬件设置”,然后添加另一个网络设备。在Bridge下,输入 vmbr2,然后在模式下选择VirtIO(半虚拟化)。
确认虚拟机现在具有两个网络接口。
三、启动和配置pfSense虚拟机
创建新的虚拟机并添加网络接口之后,就可以启动虚拟机了。如果一切都正确完成,可以从控制台窗口中看到pfSense正在启动。
pfSense安装程序会提示你选择引导模式,按“I ”来启动安装程序。
pfSense安装程序启动时,请按照在物理设备上的安装步骤进行操作。只需运行“快速/轻松”设置,然后等待它完成即可。出现提示时,选择标准内核。单击重新启动来完成安装。确保从虚拟CD / DVD媒体中移除ISO映像。
pfSense虚拟机重新启动后,进入接口分配界面。在这里我们不需要设置VLAN,所以按 "N"并确认
在后面的步骤中,分配WAN和LAN接口。在本教程中,会将vtnet0分配给WAN,vtnet1分配给LAN。
分配接口后,pfSense防火墙将完成启动过程。
四、配置pfSense与Proxmox VirtIO一起使用
pfSense安装和接口分配完成后,从另一台计算机连接到分配的LAN端口,对pfSense进行配置和管理。
Note: Because you have not disabled hardware checksum offload, so access pfSense webGUI may be very slow, this is normal. To disable hardware checksum offload, navigate to System> Advanced Options, then select the Network tab. In the " Network Interface" under the section, select the " Disable hardware checksum offload" , then click "Save." You need to reboot after you complete this step.
So far, we have completed the installation and configuration of a virtual machine on Proxmox pfSense.