The next step is to download the opnsense-bootstrap.sh script from OPNsense’s GitHub.
This will limit exposure of the management interface(s) while OPNsense is being configured. During this time I would suggest using a newer feature in Lightsail and adjusting the firewall rules to limit access to the VPS by both port and IP address. The FreeBSD instance takes a few minutes after boot before it is operational. The lowest tier instance will work however, in my production setup, I opted for a larger one. To get started, standup a FreeBSD 12.1 VPS in Lightsail. The main area of improvement in this post over the original is showing how OPNsense can be installed on FreeBSD 12 versus downgrading to FreeBSD 11. A post on the OPNsense forums provided the foundation for using the opnsense-bootstrap.sh script and configuring OPNsense’s LAN interface to work with Lightsail. This entry covers installing OPNsense on a FreeBSD 12.1 Amazon Lightsail instance.
0 kommentar(er)
