> > Once more
Command > not recognised.
> Command Once not recognised.
Command Command not recognised.
> > I am running the latest snapshot of today.
Command > not recognised.
> Command I not recognised.
Command Command not recognised.
> > I do use the old pptp adsl way to make connection with our provider.
Command > not recognised.
> Command I not recognised.
Command Command not recognised.
> > It works for us a really long time very well.
Command > not recognised.
> Command It not recognised.
Command Command not recognised.
> > This works great on all versions of monowall and pfsense 1.2.3 and before.
Command > not recognised.
> Command This not recognised.
Command Command not recognised.
> > But now with pfsense 2.0 i can not get traffic over the line.
Command > not recognised.
> Command But not recognised.
Command Command not recognised.
> > At least no real data.
Command > not recognised.
> Command At not recognised.
Command Command not recognised.
> > I can ping, but websites do not load or part of it, but most will not.
Command > not recognised.
> Command I not recognised.
Command Command not recognised.
> > I am struggling with this for about 2 months now.
Command > not recognised.
> Command I not recognised.
Command Command not recognised.
> > The thing is i see a lot of dropped packages on the vr1 interface.
Command > not recognised.
> Command The not recognised.
Command Command not recognised.
> > This is the interface my modem is connected to and it runs on a 5501
Command > not recognised.
> Command This not recognised.
Command Command not recognised.
> > soekris board.
Command > not recognised.
> Command soekris not recognised.
Command Command not recognised.
> > these drops looks like i have disabled the block rule of private networks
Command > not recognised.
> Command these not recognised.
Command Command not recognised.
> > vr1 10.0.0.138 10.0.0.100 GRE
Command > not recognised.
> Command vr1 not recognised.
Command Command not recognised.
> > vr1 10.0.0.138 10.0.0.100 GRE
Command > not recognised.
> Command vr1 not recognised.
Command Command not recognised.
> > 10.0.0.138 is the modem
Command > not recognised.
> Command 10.0.0.138 not recognised.
Command Command not recognised.
> > 10.0.0.100 is my WAN addres.
Command > not recognised.
> Command 10.0.0.100 not recognised.
Command Command not recognised.
> > i have disabled the block rule of private networks
Command > not recognised.
> Command i not recognised.
Command Command not recognised.
> > also tried all kinds of mtu settings.
Command > not recognised.
> Command also not recognised.
Command Command not recognised.
> > On the 2.0 version if i look at the /tmp/rules.debug file i see the WAN
Command > not recognised.
> Command On not recognised.
Command Command not recognised.
> > interface WAN = "{ pptp1 }"
Command > not recognised.
> Command interface not recognised.
Command Command not recognised.
> > Also i see the pass rule for this GRE traffic on my WAN interface
Command > not recognised.
> Command Also not recognised.
Command Command not recognised.
> > pass in on $WAN proto gre from any to any keep state label "allow PPTP
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > client on WAN"
Command > not recognised.
> Command client not recognised.
Command Command not recognised.
> > But here it goes wrong in my understanding!
Command > not recognised.
> Command But not recognised.
Command Command not recognised.
> > The firewall log tells me it drops them on vr1 and the pass rule is for
Command > not recognised.
> Command The not recognised.
Command Command not recognised.
> > pptp1 hence WAN = "{ pptp1 }"
Command > not recognised.
> Command pptp1 not recognised.
Command Command not recognised.
> > On the old pfsence 1.2.3 i see wan = "{ vr1 ng0 }"
Command > not recognised.
> Command On not recognised.
Command Command not recognised.
> > And also the pass rule.
Command > not recognised.
> Command And not recognised.
Command Command not recognised.
> > # PPTPd rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "pptp"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on $wan proto gre from any to 213.84.84.84 keep state
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > label "allow gre pptpd"
Command > not recognised.
> Command label not recognised.
Command Command not recognised.
> > pass in quick on $wan proto tcp from any to 213.84.84.84 port = 1723
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > modulate state label "allow pptpd xxx.xxx.xxx.xxx"
Command > not recognised.
> Command modulate not recognised.
Command Command not recognised.
> > So in the old version it also passes these GRE packages on the vr1
Command > not recognised.
> Command So not recognised.
Command Command not recognised.
> > interface and the ng0 interface.
Command > not recognised.
> Command interface not recognised.
Command Command not recognised.
> > So would it be wise to set WAN = "{ vr1 pptp1}" on 2.0
Command > not recognised.
> Command So not recognised.
Command Command not recognised.
> > And how can i do that for a test.
Command > not recognised.
> Command And not recognised.
Command Command not recognised.
> > regards
Command > not recognised.
> Command regards not recognised.
Command Command not recognised.
> > Johan Hendriks
Command > not recognised.
> Command Johan not recognised.
Command Command not recognised.
> > Below are my /tmp/rules.debug files
Command > not recognised.
> Command Below not recognised.
Command Command not recognised.
> > The version 2.0 is from a cleanly installed sytem.
Command > not recognised.
> Command The not recognised.
Command Command not recognised.
> > The version from 1.2.3 is from the working one, and i deleted some of
Command > not recognised.
> Command The not recognised.
Command Command not recognised.
> > the rules that are not important as far as i know.
Command > not recognised.
> Command the not recognised.
Command Command not recognised.
> > This is the output of /tmp/rules.debug (V2.0)
Command > not recognised.
> Command This not recognised.
Command Command not recognised.
> > ############### V 2.0 #################
Command > not recognised.
> Command ############### not recognised.
Command Command not recognised.
> > #System aliases
Command > not recognised.
> Command #System not recognised.
Command Command not recognised.
> > loopback = "{ lo0 }"
Command > not recognised.
> Command loopback not recognised.
Command Command not recognised.
> > WAN = "{ pptp1 }"
Command > not recognised.
> Command WAN not recognised.
Command Command not recognised.
> > LAN = "{ vr0 }"
Command > not recognised.
> Command LAN not recognised.
Command Command not recognised.
> > #SSH Lockout Table
Command > not recognised.
> Command #SSH not recognised.
Command Command not recognised.
> > table <sshlockout> persist
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > table <webConfiguratorlockout> persist
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > #pfSnortSam tables
Command > not recognised.
> Command #pfSnortSam not recognised.
Command Command not recognised.
> > table <snort2c>
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > table <virusprot>
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > # User Aliases
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > # Gateways
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > GWWAN = " route-to ( pptp1 xxx.190.242.xxx ) "
Command > not recognised.
> Command GWWAN not recognised.
Command Command not recognised.
> > set loginterface vr0
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set optimization normal
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set limit states 48000
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set limit src-nodes 48000
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set skip on pfsync0
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > scrub in on $WAN all fragment reassemble
Command > not recognised.
> Command scrub not recognised.
Command Command not recognised.
> > scrub in on $LAN all fragment reassemble
Command > not recognised.
> Command scrub not recognised.
Command Command not recognised.
> > nat-anchor "natearly/*"
Command > not recognised.
> Command nat-anchor not recognised.
Command Command not recognised.
> > nat-anchor "natrules/*"
Command > not recognised.
> Command nat-anchor not recognised.
Command Command not recognised.
> > # Outbound NAT rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > # Subnets to NAT
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > tonatsubnets = "{ 192.168.1.0/24 127.0.0.0/8 }"
Command > not recognised.
> Command tonatsubnets not recognised.
Command Command not recognised.
> > nat on $WAN from $tonatsubnets port 500 to any port 500 ->
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > xxx.xxx.xxx.xxx/32 port 500
Command > not recognised.
> Command xxx.xxx.xxx.xxx/32 not recognised.
Command Command not recognised.
> > nat on $WAN from $tonatsubnets to any -> xxx.xxx.xxx.xxx/32 port
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > 1024:65535
Command > not recognised.
> Command 1024:65535 not recognised.
Command Command not recognised.
> > # Load balancing anchor
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "relayd/*"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > # TFTP proxy
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "tftp-proxy/*"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > table <direct_networks> { xxx.xxx.xxx.xxx/32 192.168.1.0/24 }
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > # UPnPd rdr anchor
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "miniupnpd"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > anchor "relayd/*"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > #---------------------------------------------------------------------------
Command > not recognised.
> Command
> #---------------------------------------------------------------------------
> not recognised.
Command Command not recognised.
> > # default deny rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > #---------------------------------------------------------------------------
Command > not recognised.
> Command
> #---------------------------------------------------------------------------
> not recognised.
Command Command not recognised.
> > block in log all label "Default deny rule"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block out log all label "Default deny rule"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # We use the mighty pf, we cannot be fooled.
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block quick proto { tcp, udp } from any port = 0 to any
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick proto { tcp, udp } from any to any port = 0
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # Block all IPv6
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block in quick inet6 all
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block out quick inet6 all
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # pfSnortSam
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block quick from <snort2c> to any label "Block snort2c hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick from any to <snort2c> label "Block snort2c hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick from <pfSnortSamout> to any label "Block pfSnortSamOut hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick from any to <pfSnortSamin> label "Block pfSnortSamIn hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # SSH lockout
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block in log quick proto tcp from <sshlockout> to any port 22 label
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > "sshlockout"
Command > not recognised.
> Command "sshlockout" not recognised.
Command Command not recognised.
> > # webConfigurator lockout
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block in log quick proto tcp from <webConfiguratorlockout> to any port
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > 443 label "webConfiguratorlockout"
Command > not recognised.
> Command 443 not recognised.
Command Command not recognised.
> > block in quick from <virusprot> to any label "virusprot overload table"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > antispoof for pptp1
Command > not recognised.
> Command antispoof not recognised.
Command Command not recognised.
> > # allow PPTP client
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass in on $WAN proto tcp from any to any port = 1723 flags S/SA
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > modulate state label "allow PPTP client on WAN"
Command > not recognised.
> Command modulate not recognised.
Command Command not recognised.
> > pass in on $WAN proto gre from any to any keep state label "allow PPTP
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > client on WAN"
Command > not recognised.
> Command client not recognised.
Command Command not recognised.
> > antispoof for vr0
Command > not recognised.
> Command antispoof not recognised.
Command Command not recognised.
> > # loopback
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass in on $loopback all label "pass loopback"
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > pass out on $loopback all label "pass loopback"
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > # let out anything from the firewall host itself and decrypted IPsec traffic
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass out all keep state allow-opts label "let out anything from firewall
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > host itself"
Command > not recognised.
> Command host not recognised.
Command Command not recognised.
> > pass out route-to ( pptp1 xxx.190.242.xxx ) from xxx.xxx.xxx.xxx to
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > !xxx.xxx.xxx.xxx/32 keep state allow-opts label "let out anything from
Command > not recognised.
> Command !xxx.xxx.xxx.xxx/32 not recognised.
Command Command not recognised.
> > firewall host itself"
Command > not recognised.
> Command firewall not recognised.
Command Command not recognised.
> > # make sure the user cannot lock himself out of the webConfigurator or SSH
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass in quick on vr0 proto tcp from any to (vr0) port { 80 443 22 }
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > keep state label "anti-lockout rule"
Command > not recognised.
> Command keep not recognised.
Command Command not recognised.
> > # User-defined rules follow
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "userrules/*"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on $WAN reply-to ( pptp1 xxx.190.242.xxx ) from any to
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > any keep state label "USER_RULE"
Command > not recognised.
> Command any not recognised.
Command Command not recognised.
> > pass in quick on $LAN from 192.168.1.0/24 to any keep state label
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > "USER_RULE: Default allow LAN to any rule"
Command > not recognised.
> Command "USER_RULE: not recognised.
Command Command not recognised.
> > # VPN Rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "tftp-proxy/*"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > ############### END V 2.0 #################
Command > not recognised.
> Command ############### not recognised.
Command Command not recognised.
> > ############### V 1.2.3 #################
Command > not recognised.
> Command ############### not recognised.
Command Command not recognised.
> > This is /tmp.rules.debug on the working 1.2.3 system (relevant part for
Command > not recognised.
> Command This not recognised.
Command Command not recognised.
> > as far i know)
Command > not recognised.
> Command as not recognised.
Command Command not recognised.
> > # System Aliases
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > loopback = "{ lo0 }"
Command > not recognised.
> Command loopback not recognised.
Command Command not recognised.
> > lan = "{ vr0 }"
Command > not recognised.
> Command lan not recognised.
Command Command not recognised.
> > ng0 = "{ vr1 ng0 }"
Command > not recognised.
> Command ng0 not recognised.
Command Command not recognised.
> > wan = "{ vr1 ng0 }"
Command > not recognised.
> Command wan not recognised.
Command Command not recognised.
> > enc0 = "{ enc0 }"
Command > not recognised.
> Command enc0 not recognised.
Command Command not recognised.
> > pptp = "{ ng1 ng2 ng3 ng4 ng5 ng6 ng7 ng8 ng9 ng10 ng11 ng12 ng13 ng14
Command > not recognised.
> Command pptp not recognised.
Command Command not recognised.
> > ng15 ng16 }"
Command > not recognised.
> Command ng15 not recognised.
Command Command not recognised.
> > # User Aliases
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > set loginterface vr1
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set loginterface vr0
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set loginterface vr2
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set optimization normal
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > set skip on pfsync0
Command > not recognised.
> Command set not recognised.
Command Command not recognised.
> > scrub all random-id fragment reassemble
Command > not recognised.
> Command scrub not recognised.
Command Command not recognised.
> > nat-anchor "pftpx/*"
Command > not recognised.
> Command nat-anchor not recognised.
Command Command not recognised.
> > nat-anchor "natearly/*"
Command > not recognised.
> Command nat-anchor not recognised.
Command Command not recognised.
> > nat-anchor "natrules/*"
Command > not recognised.
> Command nat-anchor not recognised.
Command Command not recognised.
> > # FTP proxy
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "pftpx/*"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > # Outbound NAT rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.0/24 port 500 to any port 500 -> (ng0) port 500
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.0/24 port 5060 to any port 5060 -> (ng0) port
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > 5060
Command > not recognised.
> Command 5060 not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.0/24 to any -> (ng0) port 1024:65535
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.208/28 port 500 to any port 500 -> (ng0) port 500
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.208/28 port 5060 to any port 5060 -> (ng0)
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > port 5060
Command > not recognised.
> Command port not recognised.
Command Command not recognised.
> > nat on $ng0 from 192.168.1.208/28 to any -> (ng0) port 1024:65535
Command > not recognised.
> Command nat not recognised.
Command Command not recognised.
> > #SSH Lockout Table
Command > not recognised.
> Command #SSH not recognised.
Command Command not recognised.
> > table <sshlockout> persist
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > # Load balancing anchor - slbd updates
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "slb"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > # FTP Proxy/helper
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > table <vpns> { }
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > no rdr on vr0 proto tcp from any to <vpns> port 21
Command > not recognised.
> Command no not recognised.
Command Command not recognised.
> > rdr on vr0 proto tcp from any to any port 21 -> 127.0.0.1 port 8021
Command > not recognised.
> Command rdr not recognised.
Command Command not recognised.
> > no rdr on vr2 proto tcp from any to <vpns> port 21
Command > not recognised.
> Command no not recognised.
Command Command not recognised.
> > rdr on vr2 proto tcp from any to any port 21 -> 127.0.0.1 port 8022
Command > not recognised.
> Command rdr not recognised.
Command Command not recognised.
> > # NAT Inbound Redirects
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > # IMSpector rdr anchor
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "imspector"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > # UPnPd rdr anchor
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > rdr-anchor "miniupnpd"
Command > not recognised.
> Command rdr-anchor not recognised.
Command Command not recognised.
> > anchor "ftpsesame/*"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > anchor "firewallrules"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # We use the mighty pf, we cannot be fooled.
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block quick proto { tcp, udp } from any port = 0 to any
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick proto { tcp, udp } from any to any port = 0
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # snort2c
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > table <snort2c> persist
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > block quick from <snort2c> to any label "Block snort2c hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block quick from any to <snort2c> label "Block snort2c hosts"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # Block all IPv6
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block in quick inet6 all
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block out quick inet6 all
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # loopback
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "loopback"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on $loopback all label "pass loopback"
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > pass out quick on $loopback all label "pass loopback"
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > # package manager early specific hook
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "packageearly"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # carp
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "carp"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # permit wan interface to ping out (ping_hosts.sh)
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass quick proto icmp from xxx.xxx.xxx.xxx to any keep state
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > # NAT Reflection rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > # allow PPTP client
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "pptpclient"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on $wan proto gre from any to any modulate state label
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > "allow PPTP client"
Command > not recognised.
> Command "allow not recognised.
Command Command not recognised.
> > pass in quick on $wan proto gre from any to any modulate state label
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > "allow PPTP client"
Command > not recognised.
> Command "allow not recognised.
Command Command not recognised.
> > pass in quick on $wan proto tcp from any port = 1723 to any flags S/SA
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > modulate state label "allow PPTP client"
Command > not recognised.
> Command modulate not recognised.
Command Command not recognised.
> > pass in quick on $wan proto tcp from any to any port = 1723 flags S/SA
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > modulate state label "allow PPTP client"
Command > not recognised.
> Command modulate not recognised.
Command Command not recognised.
> > block in log quick on $wan proto udp from any port = 67 to
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > 192.168.1.0/24 port = 68 label "block dhcp client out wan"
Command > not recognised.
> Command 192.168.1.0/24 not recognised.
Command Command not recognised.
> > # LAN/OPT spoof check (needs to be after DHCP because of broadcast
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > addresses)
Command > not recognised.
> Command addresses) not recognised.
Command Command not recognised.
> > antispoof for vr0
Command > not recognised.
> Command antispoof not recognised.
Command Command not recognised.
> > antispoof for vr2
Command > not recognised.
> Command antispoof not recognised.
Command Command not recognised.
> > anchor "spoofing"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # Support for allow limiting of TCP connections by establishment rate
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "limitingesr"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > table <virusprot>
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > block in quick from <virusprot> to any label "virusprot overload table"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > # block bogon networks
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > # http://www.cymru.com/Documents/bogon-bn-nonagg.txt
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "wanbogons"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > table <bogons> persist file "/etc/bogons"
Command > not recognised.
> Command table not recognised.
Command Command not recognised.
> > block in log quick on $wan from <bogons> to any label "block bogon
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > networks from wan"
Command > not recognised.
> Command networks not recognised.
Command Command not recognised.
> > # let out anything from the firewall host itself and decrypted IPsec traffic
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass out quick on $lan proto icmp keep state label "let out anything
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > from firewall host itself"
Command > not recognised.
> Command from not recognised.
Command Command not recognised.
> > pass out quick on $wan proto icmp keep state label "let out anything
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > from firewall host itself"
Command > not recognised.
> Command from not recognised.
Command Command not recognised.
> > # tcp.closed 5 is a workaround for load balancing, squid and a few other
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > issues.
Command > not recognised.
> Command issues. not recognised.
Command Command not recognised.
> > # ticket (FEN-857512) in centipede tracker.
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass out quick on ng0 all keep state ( tcp.closed 5 ) label "let out
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > anything from firewall host itself"
Command > not recognised.
> Command anything not recognised.
Command Command not recognised.
> > # pass traffic from firewall -> out
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "firewallout"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass out quick on vr1 all keep state label "let out anything from
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > firewall host itself"
Command > not recognised.
> Command firewall not recognised.
Command Command not recognised.
> > pass out quick on vr0 all keep state label "let out anything from
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > firewall host itself"
Command > not recognised.
> Command firewall not recognised.
Command Command not recognised.
> > pass out quick on vr2 all keep state label "let out anything from
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > firewall host itself"
Command > not recognised.
> Command firewall not recognised.
Command Command not recognised.
> > pass out quick on $pptp all keep state label "let out anything from
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > firewall host itself pptp"
Command > not recognised.
> Command firewall not recognised.
Command Command not recognised.
> > pass out quick on $enc0 keep state label "IPSEC internal host to host"
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > # let out anything from the firewall host itself and decrypted IPsec traffic
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > pass out quick on vr2 proto icmp keep state ( tcp.closed 5 ) label "let
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > out anything from firewall host itself"
Command > not recognised.
> Command out not recognised.
Command Command not recognised.
> > pass out quick on $WLAN all keep state ( tcp.closed 5 ) label "let out
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > anything from firewall host itself"
Command > not recognised.
> Command anything not recognised.
Command Command not recognised.
> > # make sure the user cannot lock himself out of the webGUI or SSH
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "anti-lockout"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on vr0 from any to 192.168.1.250 keep state label
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > "anti-lockout web rule"
Command > not recognised.
> Command "anti-lockout not recognised.
Command Command not recognised.
> > # PPTPd rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "pptp"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > pass in quick on $wan proto gre from any to xxx.xxx.xxx.xxx keep state
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > label "allow gre pptpd"
Command > not recognised.
> Command label not recognised.
Command Command not recognised.
> > pass in quick on $wan proto tcp from any to xxx.xxx.xxx.xxx port = 1723
Command > not recognised.
> Command pass not recognised.
Command Command not recognised.
> > modulate state label "allow pptpd xxx.xxx.xxx.xxx"
Command > not recognised.
> Command modulate not recognised.
Command Command not recognised.
> > # SSH lockout
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > block in log quick proto tcp from <sshlockout> to any port 22 label
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > "sshlockout"
Command > not recognised.
> Command "sshlockout" not recognised.
Command Command not recognised.
> > anchor "ftpproxy"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > anchor "pftpx/*"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # IMSpector
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "imspector"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > # uPnPd
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > anchor "miniupnpd"
Command > not recognised.
> Command anchor not recognised.
Command Command not recognised.
> > #---------------------------------------------------------------------------
Command > not recognised.
> Command
> #---------------------------------------------------------------------------
> not recognised.
Command Command not recognised.
> > # default deny rules
Command > not recognised.
> Command # not recognised.
Command Command not recognised.
> > #---------------------------------------------------------------------------
Command > not recognised.
> Command
> #---------------------------------------------------------------------------
> not recognised.
Command Command not recognised.
> > block in log quick all label "Default deny rule"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > block out log quick all label "Default deny rule"
Command > not recognised.
> Command block not recognised.
Command Command not recognised.
> > ############### END V 1.2.3 #################
Command > not recognised.
> Command ############### not recognised.
Command Command not recognised.
> > _______________________________________________
Command > not recognised.
> Command _______________________________________________ not recognised.
Command Command not recognised.
> > List mailing list
Command > not recognised.
> Command List not recognised.
Command Command not recognised.
> > [email protected]
Command > not recognised.
> Command [email protected] not recognised.
Command Command not recognised.
> > http://lists.pfsense.org/mailman/listinfo/list
Command > not recognised.
> Command http://lists.pfsense.org/mailman/listinfo/list not recognised.
Command Command not recognised.
> _______________________________________________
Command _______________________________________________ not recognised.
> List mailing list
Command List not recognised.
> [email protected]
Command [email protected] not recognised.
> http://lists.pfsense.org/mailman/listinfo/list
Command http://lists.pfsense.org/mailman/listinfo/list not recognised.
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
