# pfSense Firewall

## Rules

Now that we have the network setup, its time to setup some basic firewall rules to ensure that users are not able to pivot into our main network.

![](https://1937192737-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FObuEPM0wMmlYGGoxYCbD%2Fuploads%2FxnzmP8f8TxF1GD4Yeknz%2Fimage.png?alt=media\&token=03c11258-cc58-41a2-b69a-35b1e8d17f14)

I also have created a VPN server to enable users from external networks to practice pentesting the network together with me. I'll be creating another rule for that network as shown below.

![](https://1937192737-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FObuEPM0wMmlYGGoxYCbD%2Fuploads%2FqhojCD2zaBAs6g3sHGot%2Fimage.png?alt=media\&token=bfc115bb-e78d-4525-96bd-3e1fd9da1605)