I am getting ready to install a pfSense firewall box between the ISP modem and Gargoyle router. pfSense box has a Wifi-n radio, WAN and LAN NICs, but no switch. Gargoyle 1.9.0 is running on TPlink WRT3600. Gargoyle firewall has port forwarding for streaming audio/video servers.
I would prefer to use Gargoyle for wireless clients and pfsense for firewall. Can you suggest the best setup options about connecting these two sequentially? Thanks.
Gargoyle behind another firewall
Moderator: Moderators
Re: Gargoyle behind another firewall
The magic of gargoyle is its firewall
You can have two firewalls but its a lot of work (port forwards etc)
I would choose pfsense or gargoyle but I wouldn't use both
You can have two firewalls but its a lot of work (port forwards etc)
I would choose pfsense or gargoyle but I wouldn't use both
Re: Gargoyle behind another firewall
I don't want to configure two firewalls if possible, since there would be no benefit of it. Pfsense has much more options such as pocket sniffing, anti-virus scanning, anti-spam and such.
Re: Gargoyle behind another firewall
Yep
Just remember there is a cost to a bigger horsepower cpu.
Power.
I was keen on ipcop for a long time but it used a lot of power
Just remember there is a cost to a bigger horsepower cpu.
Power.
I was keen on ipcop for a long time but it used a lot of power
Re: Gargoyle behind another firewall
I am going to install it on a NUC platform.
So, is there a way to disable gargoyle firewall?
So, is there a way to disable gargoyle firewall?
Re: Gargoyle behind another firewall
There is information on the wiki about this. Not sure it it still works?
If you want to just use your router as a radio you would be better off with openwrt
If you want to just use your router as a radio you would be better off with openwrt
Re: Gargoyle behind another firewall
This how you connect two routers with using only the first router's firewall and DHCP server.
ISP modem -> pfsense (router1) -> switch -> gargoyle (router 2)
switch -> wired clients
gargoyle ->wireless clients
All users receive the same 192.168.1.x address and subnet mask
Disable the DHCP server on gargoyle router (2) to prevent IP conflicts or network configuration issues allowing only Router 1 to manage the network.
Manually set the IP Address of this router to 1 number higher than the existing main router (pfsense), for example if your router IP is 192.168.1.1, set this router to 192.168.1.2. Make sure this address is out of the 1st router's allotment of addresses for DHCP distribution. If not, please make a DHCP reservation for this router's address in the router 1's DHCP table.
Set the Internet Gateway of router 2 to router 1's IP address.
Connect the two routers using a wired connection from any of port 1-4 in router 1 to any of port 1-4 in router 2.
Disable router 2's WAN port.
This setup turns gargoyle into a wireless AP without a WAN port and firewall. I hope this helps other users.
ISP modem -> pfsense (router1) -> switch -> gargoyle (router 2)
switch -> wired clients
gargoyle ->wireless clients
All users receive the same 192.168.1.x address and subnet mask
Disable the DHCP server on gargoyle router (2) to prevent IP conflicts or network configuration issues allowing only Router 1 to manage the network.
Manually set the IP Address of this router to 1 number higher than the existing main router (pfsense), for example if your router IP is 192.168.1.1, set this router to 192.168.1.2. Make sure this address is out of the 1st router's allotment of addresses for DHCP distribution. If not, please make a DHCP reservation for this router's address in the router 1's DHCP table.
Set the Internet Gateway of router 2 to router 1's IP address.
Connect the two routers using a wired connection from any of port 1-4 in router 1 to any of port 1-4 in router 2.
Disable router 2's WAN port.
This setup turns gargoyle into a wireless AP without a WAN port and firewall. I hope this helps other users.