...
Editorial Staff
πŸš€ deploy opnsense on a rad web hosting vps
Learn how to deploy opnsense on a rad web hosting vps!

This guide demonstrates how to deploy OPNsense on a Rad Web Hosting VPS. This guide is tailored specifically for Rad Web Hosting VPS infrastructure, including /32 IP addressing, KVM virtualization, and ISO-based installs.

Table of Contents

What is OPNsense?

OPNsense is a free, open-source firewall and routing platform designed for network security, traffic control, and perimeter defense. It is based on FreeBSD and is widely used as a modern alternative to proprietary firewalls and legacy open-source solutions.

What Works Best on Rad Web Hosting

Rad Web Hosting VPS nodes provide:

  • KVM virtualization
  • Custom ISO boot
  • VNC console access
  • Static IPv4 (/32)
  • Optional IPv6 /64
  • High-performance NVMe storage

This makes Rad VPS well-suited for OPNsense when configured correctly.

Recommended VPS Plan (Minimum)

Resource Recommended
vCPU 2 cores
RAM 2–4 GB
Storage 20+ GB NVMe
NICs 1 (default)
IPv4 1Γ— static /32
IPv6 Optional /64

Dual-NIC OPNsense is not required on Rad VPS. A single-NIC routed firewall model is preferred.

Network Model (Rad-Optimized)

βœ… Single-NIC Routed Firewall (Recommended)

  • Interface: vtnet0
  • WAN + LAN handled on same interface
  • OPNsense acts as:
  • Edge firewall
  • VPN gateway
  • Policy router

LAN is logical, not physical (VPNs, VLANs, or routed subnets).
Launch 100% ssd vps from $3. 19/mo!

How to Deploy OPNsense on a Rad Web Hosting VPS

  1. Download OPNsense ISO

    Collect the DVD ISOΒ download URL:

    https://opnsense.org/download/

    Select:

    • Architecture: amd64
    • Image type: dvd
    • File system: UFS

    Upload the ISO in the Rad Web Hosting VPS panel.

  2. Create the VPS (Rad Panel)

    In the Rad VPS panel:

    1. Create a new VPS
    2. Choose Custom ISO
    3. Select the uploaded OPNsense ISO
    4. Enable VNC console
    5. Disable Rad-side firewall (temporarily)

    Power on the VPS.

  3. Install OPNsense

    From the VNC console:

    1. Select Install (UFS)
    2. Accept defaults
    3. Select disk: vtbd0
    4. Use Auto (UFS)
    5. Confirm install
    6. Set root password
    7. Reboot and detach ISO

  4. Interface Assignment (Rad VPS)

    From the console menu:

    1) Assign interfaces

    Assign:

    • WAN β†’ vtnet0
    • LAN β†’ none (single-NIC setup)

    Confirm and continue.

  5. WAN IP Configuration (Critical for Rad VPS)

    Rad Web Hosting uses static /32 addressing.

    From console:

    2) Set interface IP address

    Example Configuration

    Configure WAN via DHCP?      β†’ No
IPv4 address                β†’ YOUR_ASSIGNED_IP
Subnet mask                 β†’ 32
Gateway                      β†’ RAD_GATEWAY_IP
IPv6                         β†’ Optional

    ⚠️ Gateway is mandatory on /32 IPs
    Rad will provide the correct gateway in the VPS details panel.

  6. Access the Web UI

    After configuration:

    • Web UI:
      https://YOUR_VPS_IP
    • Username: root
    • Password: (set during install)

    If blocked:

    Console β†’ 11) Reload all services

  7. Initial Web Setup Wizard

    Complete:

    1. Hostname (example: fw01)
    2. Domain (example: rad.local)
    3. DNS servers
    4. Timezone
    5. Confirm WAN config
    6. Change admin password

  8. Firewall Rules (Rad-Safe Defaults)

    WAN Rules (Highly Recommended)

    Allow management access only from your IP:

    Action: Pass
Interface: WAN
Source: Your_Public_IP
Destination: This Firewall
Port: 443

    Optional:

    • SSH (TCP 22) with key-only auth

    ❌ Do not allow WAN β†’ Any

  9. NAT Configuration (Rad Default)

    Navigate:

    Firewall β†’ NAT β†’ Outbound

    Set:

    • Automatic outbound NAT

    This works perfectly for:

    • VPN clients
    • LAN subnets
    • IPv6 NAT-less routing

  10. Rad VPS Performance Tweaks

    Disable Hardware Offloading

    System β†’ Settings β†’ Networking

    Disable:

    • Hardware checksum offloading
    • Hardware TCP segmentation
    • Hardware large receive offloading

    This prevents packet drops on virtual NICs.

Optional Rad VPS Enhancements

  • WireGuard VPN gateway
  • Site-to-site tunnels
  • Bastion firewall
  • IPv6-only LAN with NAT64
  • HAProxy reverse proxy
  • GeoIP blocking
  • Suricata IDS (light ruleset)

What OPNsense Is Best Used for on Rad VPS

βœ… Excellent:

  • VPN concentrator
  • Secure edge firewall
  • Jump host protection
  • Remote access hub
  • Traffic filtering
  • High-PPS DDoS mitigation

❌ Not ideal:

  • Hardware offload use
  • Multi-WAN CARP HA

Final Notes

OPNsense runs extremely well on Rad Web Hosting VPS when configured using:

  • Single NIC
  • /32 routing
  • Automatic NAT
  • Tight WAN rules

Launch 100% ssd vps from $3. 19/mo!

Conclusion

You now know how to deploy OPNsense on a Rad Web Hosting VPS.

Add as Preferred Source on Google
Avatar of editorial staff

Editorial Staff

Rad Web Hosting is a leading provider of web hosting, Cloud VPS, and Dedicated Servers in Dallas, TX.
lg