Netgate SG-5100 User manual
Security Gateway Manual
SG-5100
© Copyright 2002 - 2019 Rubicon Communications LLC
Dec 06, 2019
CHAPTER
ONE
GETTING STARTED
The basic firewall configuration begins with connecting the pfSense® appliance to the Internet. The pfSense appliance
should be unplugged at this time.
Connect one end of an Ethernet cable to the WAN port (shown in the Input and Output Ports section) of the pfSense
appliance. The other end of the same cable should be inserted into a port of the Cable or DSL modem. The modem
provided by the ISP should have multiple LAN ports. Any port should work.
Next, connect one end of a second Ethernet cable to the LAN port (shown in the Input and Output Ports section) of
the pfSense appliance. Connect the other end to the computer.
2
Security Gateway Manual SG-5100
Warning: The default IP Address on the LAN subnet on the pfSense firewall is 192.168.1.1/24. The same
subnet cannot be used on both WAN and LAN, so if the default IP address on the ISP-supplied modem is also
192.168.1.1/24,disconnect the WAN interface until the LAN interface on the firewall has been renumbered
to a different subnet (like 192.168.2.1/24).
© Copyright 2002 - 2019 Rubicon Communications LLC 3
CHAPTER
TWO
INITIAL CONFIGURATION
Plug the power cable into the power port (shown in the Input and Output Ports section) to turn on the pfSense Firewall.
Allow 4 or 5 minutes to boot up completely.
1. From the computer, log into the Web Interface
Open a web browser (Google Chrome in this example) and type in 192.186.1.1 on the address bar. Press
Enter.
Fig. 1: Enter the Default LAN IP Address
2. A warning message may appear. If this message or similar message is encountered, it is safe to proceed. Click
the Advanced Button and the click Proceed to 192.168.1.1 (unsafe) to continue.
3. At the Sign In page, enter the default pfSense username and password and click Next.
• Default Username: admin
• Default Password: pfsense
2.1 The Setup Wizard
The following steps will step through the Setup Wizard for the initial configuration of the firewall.
Note: Ignore the warning to reset the ‘admin’ account password. One of the steps in the Setup Wizard is to change
the default password.
1. Click Next to start the Setup Wizard.
2. Click Next after you have read the information on Netgate Global Support.
3. On the General Information page, use the following as a guide to configure the firewall.
Hostname: Any desired name can be entered. For the purposes of this guide, the default hostname pfsense
is used.
Domain: The default localdomain is used for the purposes of this tutorial.
4
Security Gateway Manual SG-5100
Fig. 2: Click Advanced and then Proceed to 192.168.1.1 (unsafe)
Fig. 3: Click Next
© Copyright 2002 - 2019 Rubicon Communications LLC 5
Security Gateway Manual SG-5100
DNS Servers: For purposes of this setup guide, use the Google public DNS servers (8.8.8.8 and 8.8.4.4).
Fig. 4: Type in the DNS Server information and Click Next
4. Use the following information for the Time Server Information page.
Time Server Hostname: Use the default pfSense time server address.
Timezone: Select the time zone for the location of the firewall. For this guide, the Timezone will be set to
America/Chicago for US Central time.
5. The WAN interface is the Public IP address the network will use to communicate with the Internet. Use the
following information for the WAN configuration page.
DHCP is the default and is the most common type of interface for home cable modems.
Default settings for the other items on this page should be acceptable for normal home users.
6. Configuring LAN IP Address & Subnet Mask. The default LAN IP address of 192.168.1.1 and subnet mask
of 24 is usually sufficient.
7. Change the Admin Password. Enter the same password in both fields.
8. Click Reload to save the configuration.
9. After a few seconds, a message will indicate the Setup Wizard has completed. To proceed to the pfSense
dashboard, click Finish.
10. A final notification screen will appear stating that NO COMMERCIAL DISTRIBUTION. . . Click Accept
to continue to the pfSense dashboard.
This completes the basic configuration for the pfSense firewall.
© Copyright 2002 - 2019 Rubicon Communications LLC 6
Security Gateway Manual SG-5100
Fig. 5: Change the Timezone and Click Next
Fig. 6: Default Settings Should be Acceptable. Click Next
© Copyright 2002 - 2019 Rubicon Communications LLC 7
Security Gateway Manual SG-5100
Fig. 7: Read and Click Accept
© Copyright 2002 - 2019 Rubicon Communications LLC 8
CHAPTER
THREE
PFSENSE OVERVIEW
This page provides an overview of the pfSense® dashboard and navigation. It also provides information on how to
perform frequent tasks such as backing up the pfSense software and connecting to the pfSense firewall console.
3.1 The Dashboard
pfSense software is highly configurable, all of which can be done through the dashboard. This orientation will help to
navigate and further configure the firewall.
Fig. 1: The pfSense Dashboard
Section 1 shows important system information such as the model, Serial Number, and Netgate Device ID for this
pfsense firewall.
Section 2 identifies what version of pfSense software is installed, and if an update is available.
9
Security Gateway Manual SG-5100
Section 3 describes Netgate Service and Support.
Section 4 shows the various menu headings. Each menu heading has drop-down options for a wide range of configu-
ration choices.
3.2 Re-running the Setup Wizard
To re-run the Setup Wizard, navigate to System -> Setup Wizard.
Fig. 2: Re-run the Setup Wizard
3.3 Backup and Restore
It is important to backup the firewall configuration prior to updating or making any configuration changes. From the
menu at the top of the page, browse to Diagnostics > Backup/Restore.
Click Download configuration as XML and save a copy of the firewall configuration to the computer con-
nected to the pfSense firewall.
This backup (or any backup) can be restored from the same screen by choosing the backed up file under Restore
Configuration.
Note: Auto Config Backup is a built-in service located at Services -> Auto Config Backup. This service will save
up to 100 encrypted backup files automatically, any time a change to the configuration has been made. Visit the Auto
Config Backup page for more information.
3.3.1 Connecting to the Console
There are times when accessing the console is required. Perhaps GUI console access has been locked out, or the
password has been lost or forgotten.
© Copyright 2002 - 2019 Rubicon Communications LLC 10
Security Gateway Manual SG-5100
Fig. 3: Backup & Restore
Fig. 4: Click Download configuration as XML
© Copyright 2002 - 2019 Rubicon Communications LLC 11
Security Gateway Manual SG-5100
See also:
Connecting to the Console Port Connect to the console. Cable is required.
Tip: To learn more about getting the most out of your pfSense appliance, sign up for a pfSense Training course or
browse our extensive Resource Library.
© Copyright 2002 - 2019 Rubicon Communications LLC 12
CHAPTER
FOUR
INPUT AND OUTPUT PORTS
4.1 Rear Side
4.2 Ethernet Ports
Interface Name Port Name Port Type Port Speed
WAN IGB0 RJ-45 1 Gbps
LAN IGB1 RJ-45 1 Gbps
OPT1 IX0 RJ-45 1 Gbps
OPT2 IX1 RJ-45 1 Gbps
OPT3 IX2 RJ-45 1 Gbps
OPT4 IX3 RJ-45 1 Gbps
13
Security Gateway Manual SG-5100
Status LED State Description
Left LED
(Link Status)
Solid Amber Link has been established and there
is no activity on this port
Blinking Amber Link has been established and there
is activity on this port
Off No link has been established
Right LED
(Speed)
Solid Green Operating as a 100 Mbps connection
Blinking Amber Operating as a Gigabit connection
(1000 Mbps)
Off No link has been established
Note: All Ethernet ports of the pfSense® appliance support auto-MDIX and are capable of utilizing either straight-
through or crossover ethernet cables.
Warning: The ix(4) driver used for ports IX0-IX3 does not support ALTQ traffic shaping directly. Limiters
may be used instead, or use tagged VLAN interfaces which can be used with ALTQ traffic shaping.
4.3 Other Ports and Indicators
• Console (Mini-USB)
• Status LEDs
• 2x USB 3.0
Status LED Description
Top LED Add-on storage activity (does not show eMMC activity)
Middle LED Activity
Bottom LED Power
4.4 Front Side
1. Receessed Reset Button
© Copyright 2002 - 2019 Rubicon Communications LLC 14
Security Gateway Manual SG-5100
2. Power Button
3. Power (12VDC with threaded locking connector)
Center Pin Positive
© Copyright 2002 - 2019 Rubicon Communications LLC 15
CHAPTER
FIVE
SAFETY AND LEGAL
•Safety Notices
•Electrical Safety Information
•FCC Compliance
•Industry Canada
•CE Marking
•RoHS/WEEE Compliance Statement
–English
–Deutsch
–Español
–Français
–Italiano
•Declaration of Conformity
–ˇ
Cesky[Czech]
–Dansk [Danish]
–Nederlands [Dutch]
–English
–Eesti [Estonian]
–Suomi [Finnish]
–Deutsch [German]
–ΕλληνικH [Greek]
–Magyar [Hungarian]
–Íslenska [Icelandic]
–Italiano [Italian]
–Latviski [Latvian]
–Lietuviškai [Lithuanian]
–Malti [Maltese]
16
Security Gateway Manual SG-5100
–Norsk [Norwegian]
–Slovensky [Slovak]
–Svenska [Swedish]
–Español [Spanish]
–Polski [Polish]
–Português [Portuguese]
–Român˘a [Romanian]
•Disputes
•Applicable Law
•Site Policies, Modification, and Severability
•Miscellaneous
•Limited Warranty
5.1 Safety Notices
1. Read, follow, and keep these instructions.
2. Heed all warnings.
3. Only use attachments/accessories specified by the manufacturer
Warning: Do not use this product in location that can be submerged by water.
Warning: Do not use this product during an electrical storm to avoid electrical shock.
5.2 Electrical Safety Information
1. Compliance is required with respect to voltage, frequency, and current requirements indicated on the manu-
facturer’s label. Connection to a different power source than those specified may result in improper operation,
damage to the equipment or pose a fire hazard if the limitations are not followed.
2. There are no operator serviceable parts inside this equipment. Service should be provided only by a qualified
service technician.
3. This equipment is provided with a detachable power cord which has an integral safety ground wire intended for
connection to a grounded safety outlet.
a) Do not substitute the power cord with one that is not the provided approved type. If a 3 prong plug is
provided, never use an adapter plug to connect to a 2-wire outlet as this will defeat the continuity of the
grounding wire.
b) The equipment requires the use of the ground wire as a part of the safety certification, modification or
misuse can provide a shock hazard that can result in serious injury or death.
© Copyright 2002 - 2019 Rubicon Communications LLC 17
Security Gateway Manual SG-5100
c) Contact a qualified electrician or the manufacturer if there are questions about the installation prior to
connecting the equipment.
d) Protective grounding/earthing is provided by Listed AC adapter. Building installation shall provide appro-
priate short-circuit backup protection.
e) Protective bonding must be installed in accordance with local national wiring rules and regulations.
5.3 FCC Compliance
Changes or modifications not expressly approved by the party responsible for compliance could void the user’s au-
thority to operate the equipment. This device complies with Part 15 of the FCC Rules. Operation is subject to the
following two conditions:
1. This device may not cause harmful interference, and
2. This device must accept any interference received, including interference that may cause undesired operation.
Note: This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant
to part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference
when the equipment is operated in a residential environment.
5.4 Industry Canada
This Class B digital apparatus complies with Canadian ICES-3(B). Cet appareil numérique de la classe B est conforme
à la norme NMB-3(B) Canada.
5.5 CE Marking
CE marking on this product represents the product is in compliance with all directives that are applicable to it.
5.6 RoHS/WEEE Compliance Statement
5.6.1 English
European Directive 2002/96/EC requires that the equipment bearing this symbol on the product and/or its packaging
must not be disposed of with unsorted municipal waste. The symbol indicates that this product should be disposed
of separately from regular household waste streams. It is your responsibility to dispose of this and other electric and
electronic equipment via designated collection facilities appointed by the government or local authorities. Correct
disposal and recycling will help prevent potential negative consequences to the environment and human health. For
more detailed information about the disposal of your old equipment, please contact your local authorities, waste
disposal service, or the shop where you purchased the product.
© Copyright 2002 - 2019 Rubicon Communications LLC 18
Other manuals for SG-5100
3
Table of contents
Other Netgate Gateway manuals
Netgate
Netgate SG-5100 User manual
Netgate
Netgate XG-7100-1U User manual
Netgate
Netgate Netgate-4100 User manual
Netgate
Netgate SG-3100 User manual
Netgate
Netgate Netgate-6100 User manual
Netgate
Netgate SG-4860 User manual
Netgate
Netgate Netgate-2100 User manual
Netgate
Netgate SG-3100 User manual
Netgate
Netgate SG-1100 User manual
Netgate
Netgate XG-1537 User manual
