In this project, I configured a virtual pfSense router and firewall to manage my homelab network. By implementing Tailscale, these machines are accessible through a VPN mesh network, allowing clients to securely connect from any outside network.
The pfSense instance runs on a Proxmox virtual machine, utilizing a bridge network configuration. In this setup, the virtual WAN interface is connected to the home network, while the LAN is isolated on a separate network with its own gateway address, DHCP server, and subnet.
Each device on this network is also equipped with Tailscale, a VPN mesh network service that provides secure remote access capabilities beyond the pfSense LAN. These devices receive a secondary IP address from Tailscale, enabling seamless ssh connections from any outside network.
To enhance security, two of these devices are configured as an exit node, creating a fully secure VPN tunnel for the entire Tailscale network. This setup directs all network traffic through a designated exit node, similar to a commercial secure VPN service like NordVPN.