====== Initial setup ======

  * Setup VLANs - Interfaces -> Devices -> VLAN
    * Management 99
    * WiFi 20
    * WiFi guest 22
  * Assign interfaces - Interfaces -> Assignments -> choose an interface
    * Parent : LAN 
    * IPv4 config type : Static IPv4, IPv4 address 192.168.xx.1 / 24
  * Navigate to System → Settings → Administration and change the TCP port field to something other than 80 or 443. Then, also check the HTTP Redirect field to disable web GUI redirect rule.
  * Services: 
    * ISC DHCPv4 -> Interface -> Enable DHCP server, specify range (x.x.x.100 to 199)



====== Backup ======
  * System -> Configuration -> Backups


====== Setting Up PXE Boot with TFTP on OPNsense ======

=== 1. Install and Enable the TFTP Service ===
  * Go to **System > Firmware > Plugins** in OPNsense.
  * Search for `os-tftp` and install it.
  * Navigate to **Services > TFTP > General**, enable TFTP, and set the **server IP**.

=== 2. Configure DHCP for PXE Boot ===
  * Go to **Services > DHCPv4 > [LAN]**.
  * Enable **Network Booting** and set:
    - **Next-server IP** (the TFTP server, usually OPNsense itself).
    - **Boot filename** (`pxelinux.0` for BIOS, `bootx64.efi` for UEFI).

=== 3. Prepare the TFTP Server ===
  * Upload PXE boot files to `/usr/local/tftp`.
  * Ensure the correct bootloader (`pxelinux.0` or UEFI equivalents) is available.

=== 4. Test the Configuration ===
  * Boot a PXE-capable client.
  * Verify it retrieves the bootloader from the TFTP server.

==== Useful Resources ====
  * [GitHub PXE Guide for OPNsense](https://gist.github.com/azhang/d8304d8dd4b4c165b67ab57ae7e1ede0)
  * [OPNsense Forum Discussion on PXE](https://forum.opnsense.org/index.php?topic=25003.0)