,

Setup Cloudflare for Teams (Zero Trust) WireGuard Config with Pfsense – IPv6 and v4 with full speed

Credit: cloudflareCloudflare

Pfsense setup with Cloudflare WARP+/Teams (Zero trust)

Steps before we start config Pfsense:

  1. Install wireguard package
  2. Setup Cloudflare configuration in WireGuard VPN – Pfsense
  3. Create LAN/Opt x with static IPv4 and IPv6 with both Gateways
  4. Setup DCHP and DCHPv6 with router advertisement
  5. Setup LAN Rules for IPv6 and IPv4 with Cloudflare gateway
  6. Setup NAT for IPv6 and IPv4
  7. Check connection and speed test

Package Manager – Pfsense

First thing is to install WireGuard add-on from the package manager

In pfsense > go to System > package manager > available packages

Install WireGuard by searching for it.

wireguard in package manager

Ones installed head to  VPN > wireguard

Create cloudflare tunnel with the information you fetch from the virtual device for cloudflare

Add private key then click on generate button for the public key and save

wireguard tunnel

Next go to the peer tab and and add new peer with the tunnel you just created for cloudflare

  1. enable the peer
  2. assign the tunnel you created it
  3. description as you please
  4. add endpoint and port 
  5. Keep live: 25
  6. add public key from the information you fetched. 
  7. Allow IPs

It should be like this: 

Click Save and then go to the status to check if cloudflare Teams is connected (handshake).

status

Congratulations: you have done 20% of the configuration 🙂

Post Views: 1,378
/0 Comments/by
You might also like
WireGuard VPN on Openwrt Image- Raspberry Pi 4
0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *