PFSense SNMP Configuration

Open a browser software, enter the IP address of your Pfsense firewall and access web interface. In our example, the following URL was entered in the Browser:

The Pfsense web interface should be presented. After a successful login, you will be sent to the Pfsense Dashboard.

Access the Pfsense Services menu and select the SNMP option.

Select the option named: Enable the SNMP Daemon and its controls Set a SNMP contact and a SNMP location.

Set a SNMP community that will have read-only permission to get remote SNMP information.

In our example, we created a SNMP community named: GokuBlack

On the SNMP modules configuration, make sure that all modules are selected.

On the Interface binding configuration, select the option ALL.

Click on the Save button to finish the configuration.

You have successfully enabled the Pfsense SNMP service.

You have successfully configured the Pfsense SNMP service.

PFSense SNMP – Firewall Configuration

By default, the PFsense firewall does not allow external SNMP connections to the WAN interface.

In our example we are going to create a firewall rule to allow the SNMP communication.

Access the Pfsense Firewall menu and select the Rules option.

Click on the Add button to add a rule to the Top of the list.

On the Firewall rule creation screen, perform the following configuration:

  • Action – Pass
  • Interface – WAN
  • Address family – IPV4
  • Protocol – UDP

On the Source configuration screen, you need to define the IP address that should be allowed to perform SNMP communication with the Pfsense firewall.

In our example, any computer is able to perform SNMP communication with the firewall.

On the Firewall destination screen, perform the following configuration:

  • Destination – Wan address
  • Destination port range- From SNMP 161 to SNMP 161

On the Firewall Extra options screen, you may enter a description to the firewall rule.

Click on the Save button, you will be sent back to the Firewall configuration screen.

Now, you need to reload the firewall rules to apply the SNMP configuration.

Click on the Apply changes button to reload the firewall configuration.

You have finished the PFsense firewall configuration to allow SNMP communication using the WAN interface.

Download the SNMP Tester aplication, and test the communication using the following parametes:

  • Community name: Your SNMP community
  • Device IP: Your PFsense server IP address
  • SNMP Version: V2C
  • Select Request type: Scan Interfaces

Here is an example from my Pfsense configuration.

You have successfully performed a Pfsense SNMP communication test.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.