Making pfSense work with ATT U-Verse

[chetmaster12]

I currently have ATT U-verse Internet, and I would like to set up a pfSense router as well as their proprietary router. I'm working to learn more about networking, thus setting up a pfSense router is on my list of things to do. However, certain other family members (wife) basically say "Let me stay on the u-verse router since I don't trust your setup"*

So basically what I want to do is have the pfSense box as a second router (subnet?). I know I can put the u-verse in DMZ mode, essentially making it a modem with open ports, but I assume that means that people connected to the U-verse router would have a completely insecure connection.

Is there a solution, or am I SOL?



*not actual words

 

[boosted1g]

You are correct that they would be unprotected out on the open internet.

Do it the other way, have the connection from the uverse to pfsense router on the uverse's DMZ.
That way you can keep your existing devices secured under uverse router but still play with pfsense and not have to worry about double NAT.

You dont have to setup DMZ, you will just have double NAT and thus have to configure uverse AND pfsense for any port forwarding or other inbound traffic rules.

Either way will not allow communication from computer connected to UVERSE to communicate with computer on pfsense (so no file shares, printers, dlna streaming, etc)

When you get everything the way you want it with pfsense: you can go into uverse and dissable wifi and set it as modem only mode (may be called bridged mode). Then it will only function as a modem and your pfsense will be your only router.

 

[nigelivey]

The answer above is correct, put pfsense in the DMZ but there is more to consider. You will find you will need to make a few adjustments if your wan connection on Pfsense is from a private IP pool, by default it blocks Bogon networks. Untick this option.