I’m back again after half a year absence with work and focus on trying to get new knowledge about ethical hacking/IT security.
I was setting up a lab environment running pfSense in a VM and then I’m going to have a isolated physical network with three computers.
When i was setting up pfSense and i have wireshark running on the VPN tunnel that is dedicated only for the computer running the pfSence VM.
Then i saw that pfSense is generating a lot of network traffic on the wan side (my tunnel that wireshark is monitoring)
I disabled NTP in pfSence since i want minimal traffic to analyze.
I can not find any settings that is automatic updates in pfSense…
Have i missed them?
Or has pfSense built in Telemetry?
Have you guys and girls any ideas of why a clean install of pfSense without any extra installed packages is generating traffic to akamai and othes?
Not sure about that. I know that they have services that you can use like, backing up your config on their servers. And I am sure the VM or physical device phones home for the NDI (network device identification) for licensing if you wish to do so. It is also probably talking back to see if there are new versions available to update or new patches.
I have no idea either as i have limited experience with pfSense
even find a small simple thing/setting in the UI is a half hour task as nothing is similar to Cisco
But i will learn with time…
I just hope i can get some help to turn off ALL update functions etc… as this is just a Lab environment… its not meant to be secure and up to date.
Thanks for the tip, but i want to keep down the number of forums i am on, as it starts to be hard to keep track of them. I think I’m on 6 or 8 forums, i have already hard time to keep up with them. lol
But i will keep your tip in mind if i dont find the answer in here or on my own.
LOL 
