pfSense Firewall Integration
CyberCNS can evaluate the security policy of your pfSense Firewall and flag any potential shortcomings. You can initiate a Firewall Scan from the Integrations menu.
Navigate to Integrations
In the CyberCNS portal, navigate to Global Settings() > Integrations and choose pfSense from the integrations listed.
Next, is to add credentials for your pfSense firewall.
Enter Credentials
Credentials should have ssh access to the firewall from the probe agent machine.
In pfsense firewall, navigate to the Advanced option and Enable Secure Shell under the Secure shell section.
Enter Name: Choose a name of your choice for the credentials to be added.
Enter Hostname/IP Address: Enter a Hostname/IP address for the credentials to be added.
Enter SSH Port Number: Enter the Port Number for the credentials to be added.
Enter Username: Enter the username used to log in to pfSense Firewall. It is recommended that you define a special username to be used exclusively for these scans so that they can be identified in the firewall’s logs.
Enter Password: Enter the password used to log in to pfSense Firewall.
6. Select an associated company: Select the existing company in order to add the firewall as an asset of that company.
7. Select Probe/Agent: Select a Probe/Agent of the selected company to be used for the scan. If no agent is installed for the company, an external scan agent can be used to initiate firewall scans from the CyberCNS Server (e.g abc.mycybercns.com). But please note that the external scan agent should have reachability to pfsense firewall.
8. Once all the data has been entered, click Save.
Note that multiple credentials can be added by using the '+' sign. Each set of credentials can be attached to a company and then to an agent under that company.
Â
After the credentials have been successfully added to the company, the Firewalls tab will be added to the Main Menu.
Navigate to the Firewalls section and click Firewall Scan to initiate a scan of all the configured firewalls.
When the scan is complete, details of the Rules, Users, Groups, Interfaces, and Interface Groups information will be populated for pfSense Firewall.
Completed firewall scans are listed with timestamps as shown below. To view the results of a scan, click the scan in the list.
The scan results can be downloaded as a report in the Microsoft Word .docx format by clicking Download Report.
This completes the documentation of the pfSense Firewall Scan.