This is an addendum to the MetalLB recipe, explaining how to configure MetalLB to perform BGP peering with a pfSense firewall.

This is a companion discussion topic for the original entry at

Hello, if I am with a digitalocean, I should create a new droplet or where install pfsense?

Pfsense would make “sense” (haha) for a self-hosted, bare-metal install. If you’re with a cloud provider, you’ll typically use their tooling / services for firewalling / load-balancing…