Configuration | pfSense Documentation (2024)

Connecting to the GUI¶

To reach the GUI, follow this basic procedure:

• Connect a client computer to the same network as the LAN interface of thefirewall. This computer may be directly connected with a network cable orconnected to the same switch as the LAN interface of the firewall.

  By default, the LAN IP address of a new installation of pfSense software is192.168.1.1 with a /24 mask (255.255.255.0), and there is also aDHCP server running. If a client computer is set to use DHCP, it should obtainan address in the LAN subnet automatically.

• On the client computer, open a web browser such as Firefox, Safari, or Chromeand navigate to https://192.168.1.1.

  The GUI listens on HTTPS by default, but if the browser attempts to connectusing HTTP, it will be redirect by the firewall to the HTTPS port instead.

• Enter the default credentials in the login page:

  username:

  admin

  password:

  pfsense

In some cases additional steps may be necessary before the client computer canreach the GUI.

The LAN IP address may be changed and DHCP may be disabled using the console:

• Open the console (VGA, serial, or using SSH from another interface)

• Choose option 2 from the console menu

• Enter the new LAN IP address, subnet mask, and specify whether or not toenable DHCP.

• Enter the starting and ending address of the DHCP pool if DHCP is enabled.This can be any range inside the given subnet.

If the DHCP server on the firewall is disabled, client computers on LAN musthave a statically configured IP address in the LAN subnet, such as192.168.1.5, with a subnet mask that matches the one given to the firewall,such as 255.255.255.0.