Configuring VLANs with pfSense on Proxmox

In my Proxmox host I’ve two hardware NICs cabled to the ISP router which provides the connection (the home LAN connection).

One NIC is configured as vmbr0 which is the default network used by the VMs on the Proxmox host. The other one is just listed on the network section.

Network configuration on Proxmox

Let’s create a new Linux Bridge interface using the other NIC (enp5s0 in the image) with the following settings.


Physical Setup

Call Digit TS3 Plus

This guide is intended for a Call Digit TS3 Plus connect to a Razer Core X case with a Zotac NVDIA GeForce 1070 but it should be feasible to perform the same steps for other configurations.

Connect the Raze Core X to the Thunderbolt 3 port on the back of the dock station (the one at the bottom center) so that the traffic is forwarded to the PC using only a single cable (the one connecting the dock to the PC).

Now connect the external monitor/s to the eGPU inside the Razer Core X case. …


  • Name: Access
  • IP: 10.10.10.98
  • Author: egre55
  • Difficulty: 4.3/10

nmap -sV -sC -Pn -p- -T4 --min-rate 1000 --max-retries 5 10.10.10.98

PORT STATE SERVICE VERSION
21/tcp open ftp Microsoft ftpd
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_Can't get directory listing: TIMEOUT
| ftp-syst:
|_ SYST: Windows*NT
23/tcp open telnet?
80/tcp open http Microsoft IIS httpd 7.5
| http-methods:
|* Potentially risky methods: TRACE
|\_http-server-header: Microsoft-IIS/7.5
|\_http-title: MegaCorp
Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows

The FTP allows Anonymous logins but no directory listing:

ncftpget -R -v -u anonymous 10.10.10.98 . .

Downloads all files from the service.

In /Backups we…


  • Name: giddy
  • IP: 10.10.10.104
  • Author: lkys37en
  • Difficulty: 6.2/10
nmap -sV -sC -Pn -p 1-65535 -T5 --min-rate 1000 --max-retries 5 10.10.10.104PORT     STATE SERVICE       VERSION
80/tcp open http Microsoft IIS httpd 10.0
| http-methods:
|_ Potentially risky methods: TRACE
|_http-server-header: Microsoft-IIS/10.0
|_http-title: IIS Windows Server
443/tcp open ssl/http Microsoft IIS httpd 10.0
| http-methods:
|_ Potentially risky methods: TRACE
|_http-server-header: Microsoft-IIS/10.0
|_http-title: IIS Windows Server
| ssl-cert: Subject: commonName=PowerShellWebAccessTestWebSite
| Not valid before: 2018-06-16T21:28:55
|_Not valid after: 2018-09-14T21:28:55
|_ssl-date: 2018-09-14T07:59:14+00:00; +14s from scanner…


  • Name: Dab
  • IP: 10.10.10.86
  • Author: snowscan
  • Difficulty: 6.2/10

nmap -sV -sC -Pn -p- --min-rate 1000 --max-retries 5 10.10.10.86

21/tcp   open  ftp     vsftpd 3.0.3
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_-rw-r--r-- 1 0 0 8803 Mar 26 16:17 dab.jpg
| ftp-syst:
| STAT:
| FTP server status:
| Connected to ::ffff:10.10.15.27
| Logged in as ftp
| TYPE: ASCII
|…


  • Name: reddish
  • IP: 10.10.1094
  • Author: yuntao
  • Difficulty: 8.1/10

nmap -sV -sC -Pn -p- --min-rate 1000 --max-rate 5 10.10.10.94

PORT     STATE SERVICE VERSION
1880/tcp open http Node.js Express framework
|_http-title: Error
No exact OS matches for host (If you know what OS is running on it, see https://nmap.org/submit/ ).
TCP/IP fingerprint:
OS:SCAN(V=7.70%E=4%D=12/24%OT=1880%CT=1%CU=36670%PV=Y%DS=2%DC=T%G=Y%TM=5C20 …


  • Name: SecNotes
  • IP: 10.10.10.97
  • Author: 0xdf
  • Difficulty: 5/10

nmap -sV -sC -Pn -p- -T4 --min-rate 1000 --max-retries 5 10.10.10.97

80/tcp   open  http         Microsoft IIS httpd 10.0
| http-methods:
|_ Potentially risky methods: TRACE
|_http-server-header: Microsoft-IIS/10.0
| http-title: Secure Notes - Login
|_Requested resource was login.php
445/tcp open microsoft-ds Windows 10 Enterprise 17134 microsoft-ds (workgroup: HTB)
8808/tcp open http Microsoft IIS httpd 10.0
| http-methods:
|_ Potentially risky methods: TRACE
|_http-server-header: Microsoft-IIS/10.0
|_http-title: IIS Windows
Service Info: Host: SECNOTES; OS: Windows; CPE: cpe:/o:microsoft:windows

Host script results:
|_clock-skew: mean: 2h20m06s, deviation: 4h02m30s…

  • Name: Active
  • IP: 10.10.10.100
  • Author: eks & mrb3n
  • Difficulty: 4.3/10

nmap -sV -sC -Pn -p- -T4 10.10.10.100

PORT      STATE SERVICE       VERSION
53/tcp open domain Microsoft DNS 6.1.7601 (1DB15D39) (Windows Server 2008 R2 SP1)
| dns-nsid:
|_ bind.version: Microsoft DNS 6.1.7601 (1DB15D39)
88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2018-08-08 07:32:39Z)
135/tcp open msrpc Microsoft Windows RPC
139/tcp open netbios-ssn Microsoft…


  • Name: Oz
  • IP: 10.10.10.96
  • Authors: Mumbai & incidrthreat
  • Difficulty: 7.1/10
nmap -sV -sC -Pn -p 1-65535 -T5 --min-rate 1000 --max-retries 5 10.10.10.96PORT     STATE SERVICE VERSION
80/tcp open http Werkzeug httpd 0.14.1 (Python 2.7.14)
| http-methods:
|_ Supported Methods: HEAD OPTIONS GET POST
|_http-server-header: Werkzeug/0.14.1 Python/2.7.14
|_http-title: OZ webapi
|_http-trane-info: Problem with XML parsing of /evox/about
8080/tcp open http Werkzeug httpd 0.14.1 (Python 2.7.14)
|_http-favicon: Unknown favicon MD5: 2AD9B45644388EAAA41B8DA6614F8256
| http-methods:
|_ Supported Methods: HEAD GET POST OPTIONS
| http-open-proxy: Potentially OPEN proxy.
|_Methods supported:CONNECTION
|_http-server-header: Werkzeug/0.14.1 Python/2.7.14
| http-title: GBR Support - Login
|_Requested resource was http://10.10.10.96:8080/login …

  • Name: Rabbit
  • IP: 10.10.10.71
  • Author: lkys37en
  • Difficulty: 6/10

nmap -sV -sC -Pn -p- 10.10.10.71

25/tcp    open  smtp          Microsoft Exchange smtpd
| smtp-commands: Rabbit.htb.local Hello [10.10.14.129], SIZE, PIPELINING, DSN, ENHANCEDSTATUSCODES, STARTTLS, X-ANONYMOUSTLS, AUTH NTLM, X-EXPS GSSAPI NTLM, 8BITMIME, BINARYMIME, CHUNKING, XEXCH50, XRDST, XSHADOW,
|_ This server supports the following commands: HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH BDAT
| smtp-ntlm-info:
| Target_Name: HTB
| NetBIOS_Domain_Name: HTB
| NetBIOS_Computer_Name: RABBIT
| DNS_Domain_Name: htb.local
| DNS_Computer_Name: Rabbit.htb.local
| DNS_Tree_Name: htb.local
|_…

Edoardo Rosa

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store