Been there, done that. My firewalls now run on hardware :-).
The other possibility is to run redundant firewalls in *different* ESX clusters
so that a failure in one doesn't take you completely offline.
-Adam
On November 6, 2014 10:44:06 AM CST, Brian Caouette <bri...@dlois.com> wrote:
>Problem is I can't even run the windows software to manage anything so
>a
>2nd vm probably won't help. As long as the wan/lan are in a disconnect
>state i'm stuck with the boot to esxi 4.1 since I can't even start the
>vm that has pfsense on it.
>
>On 11/6/2014 11:09 AM, Ryan Coleman wrote:
>> I’ll be honest you shouldn’t rely on a VM to host your routing
>connection - I do it and I know I will be left in a lurch *AGAIN*
>(three times so far) so I keep a second and third VM spun up at all
>times in case the Guest OS goes wonky.
>>
>> Make a new VM. That’s your easiest, cheapest route. After you do that
>and re-create your config (there’s a way to hack the old one on but I
>don’t recommend trying it… total PITA) buy a hardware version of
>pfSense, probably the APU from NetGate ($200 disassembled) and put that
>in the middle… you can still have your VM firewall doing the filtering
>(I’d probably recommend it) but you won’t have to worry about the VM
>failing being the issue.
>>
>> Moral of the story: Snapshots.
>>
>>
>>> On Nov 6, 2014, at 9:36 AM, Brian Caouette <bri...@dlois.com> wrote:
>>>
>>> So my internet has been limited without pfsense online. I just
>replied to prior message from Bryan.
>>>
>>> As an option in the future what is the least costly way to go with
>new hardware? I use squid for cache and traffic logging as well as
>content filtering. I also use captive portal were each child in the
>house has their own logon using radius that controls when they are
>allowed online. It doesn't have to support wifi as we have a commercial
>outdoor ap on the roof that covers the property so it would just plug
>into the lan and assigns ips to everyone over dhcp based on mac address
>of connecting device.
>>>
>>> On 11/4/2014 11:14 AM, Jim Thompson wrote:
>>>>> On Nov 4, 2014, at 6:15 AM, Ryan Coleman <ryan.cole...@cwis.biz>
>wrote:
>>>>>
>>>>> As Jim pointed out so abruptly yesterday (and you have not
>acknowledged) is that you haven't stated what version of pfSense you
>are running is.
>>>> Without this, we're left to guess.
>>>> _______________________________________________
>>>> List mailing list
>>>> List@lists.pfsense.org
>>>> https://lists.pfsense.org/mailman/listinfo/list
>>> _______________________________________________
>>> List mailing list
>>> List@lists.pfsense.org
>>> https://lists.pfsense.org/mailman/listinfo/list
>> _______________________________________________
>> List mailing list
>> List@lists.pfsense.org
>> https://lists.pfsense.org/mailman/listinfo/list
>
>_______________________________________________
>List mailing list
>List@lists.pfsense.org
>https://lists.pfsense.org/mailman/listinfo/list
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
_______________________________________________
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
