Paul's Security Weekly - Episode 471


Tech Segment: Building A PfSense Firewall - Part 1 - The Hardware

About & Why

For your home or small office, everyone needs a firewall! Well, I supposed you don't NEED one, but it helps. More important than just protecting you from curious people on the Internet, there are a ton of added advantages of having a good firewall platform, such as VPN, outbound filtering and more. Now, you can buy commercial off-the-shelf hardware to do this, however there are some issues:

  1. If you are listening to this show, you are a nerd who likes to tinker, and this is a great way to do that. Off-the-shelf stuff doesn't always give you stuff to tinker with.
  2. This is a great learning experience, if you are just getting started building and maintaining your own Linux/BSD firewall will teach you a lot, and its like table stakes (I built my own firewall, check).
  3. You can get a ton more speed and performance from a custom firewall for less money. This also means you can do things like scanning through your firewall without it catching fire.


I used the http://pcpartpicker.com web site to start identifying hardware in use for the build, a few things to note:

  • Low power consumption is key as it will be on all the time
  • Solid networking cards should be used, not using what is built into the Motherboard
  • Cooling, cooling and more cooling - This thing will be on all the time, make sure you have good airflow

Taking all these things into consideration, here is my build:

