l see off I can replicate the
>> problem tomorrow.
>> -Adam
>>
>>
>> Joshua Schmidlkofer wrote:
>>
>>> Dear Support,
>>>
>>> I have multiple WANs at one site, and it I have a few different
>>> places which I am connecting tu
Dear Support,
I have multiple WANs at one site, and it I have a few different
places which I am connecting tunnels to. It appears that creating new
connections to the end points is a little unpredictable.
I can't seem to control which interface the initial contact packets
comes from. I don't
Dear Support,
I have a client with a pfSense install and he is required to
interface with a large research hospital. The hospital requires that
all IPsec endpoints and encrypted hosts fall within Internet routable
IP-space
Out pfSense box is as follows:
1.1.1.1 -- WAN Gateway
1.1.1.2 --
On Thu, Apr 22, 2010 at 17:48, Chris Buechler wrote:
> On Thu, Apr 22, 2010 at 7:51 PM, Dimitri Rodis
> wrote:
>>
>> I would really like to see this work reliably at some point. From what I can
>> tell, this problem is not limited to just Fireboxes, it is on pretty much
>> all NICs that have
>>
>> Ok new problem: re:1 watchdog timeout. I think we have properly
>> disabled ACPI. Anyone have any other advice?
>>
>
> Change hardware. Those cheap NICs in the Watchguards have all kinds of
> problems.
Chris,
Thanks, I appreciate your input. I think we'll take your advice. =(
Weak-sauce
>>
>>
>>
>
> Yes, do not blame your switch, something is wrong with your pfSense cluster.
> Most probably your re1 becomes overloaded with traffic.
> Evgeny.
>
Ok new problem: re:1 watchdog timeout. I think we have properly
disabled ACPI. Anyone have any other advice?
> Does pfSense' log say CARP is moved from Active to Passive?
> Evgeny.
Evgeny,
It appears we are getting some of that: (JAX2)
Apr 19 14:48:13 kernel: carp1: link state changed to DOWN
Apr 19 14:48:13 kernel: carp1: MASTER -> BACKUP (more frequent
advertisement received)
Apr 19 14:48:10 kernel:
I have a site in Jacksonville, FL. We have two Watchguard Firebox
X700s, with upgraded RAM and a pfSense embedded deployment.
Since installation we have had WEIRD problems with the VPN. We
THOUGHT it was the vpn. However, weeks and work revealed an apparent
switch problem. Basically, what we
On 9/22/09 8:07 PM, Morgan Reed wrote:
On Wed, Sep 23, 2009 at 10:26, Luke Jaeger wrote:
Are there any known issues with quad NIC cards on a pfSense box?
Should be fine, your average (decent) quad NIC is a PCI(express)
bridge on a card with what essentially amounts to 4 individual ne
I have a pfSense box with several interfaces and several IP addresses.
I just want to shape LAN->WAN. I have seen listed problems about
multi-interfaces shaping dilemmas, but I didn't see anything to indicate
that shaping would *not* work on a multi-interface machine. This is
the error wh
On 7/27/09 9:01 AM, Joseph L. Casale wrote:
Is there anything I should know about writing configs by hand
and importing the xml? Are there any things internally that may
invalidate this aside from obvious syntax errors?
I have never hand-rolled an entire configuration. I have done stuff
w
On 7/27/09 10:13 AM, Joseph L. Casale wrote:
I am familiar with PIX/ASA and iptables which I am seeing don't quite
share the same rules as pfSense.
If I have a vlan and or opt interface that I am routing traffic into
from the LAN interface, is there a way to write one rule on the OPT
interface s
On 4/18/09 11:17 AM, Dimitri Rodis wrote:
Attention Firebox X500/700/1000 Users using pfSense:
Watchdog timeouts getting' you down? Thinkin' about throwin' that old
Firebox in to the fireplace? Don't do that just yet! J
Thanks to the pfSense devs, along with Pyun YongHyeon, the maintainer f
Support,
I want to integrate pfSense, or rather, a series of pfSense boxen with
something like fail2ban. Is there an interface for temporary rules?
Are there faculties for timed operations? I am thinking of getting a
python packages for my pfSense box and just making a fail2ban server f
> Part of this is there, and parts of it remain to be completed. It
> isn't terribly involved though, we can get this done including the
> dial up support (even throw in a support contract too) for
> considerably less money than the Cisco solution.
>
> We tapped the second keg at the Hackathon
> (h
AM, Joshua Schmidlkofer
> wrote:
>> Is there any known / supported way with pfSense to use an old fashion
>> modem? I have a customer with a large number of 56K Frame Relay
>> lines. He is moving most of them to DSL and pfSense + IPsec. His one
>> request was regard
Is there any known / supported way with pfSense to use an old fashion
modem?I have a customer with a large number of 56K Frame Relay
lines. He is moving most of them to DSL and pfSense + IPsec. His one
request was regarding the ability to have a dial-up standby in case
there is a sustained DS
Wow, thanks for the link and the advice. I didn't think that you
would have to put an EXPLICIT rule just for DHCP on there. We have so
many other hot things in pfsense, this would be a very hot idea for a
check-box or some other means.
On Sun, Mar 8, 2009 at 6:59 PM, Michael Schmitt wrote:
> th
To clarify, I do not need help with pf, I did get the rules setup correctly.
Sincerely,
Joshua
On Sun, Mar 8, 2009 at 1:31 PM, Joshua Schmidlkofer wrote:
> Support,
>
>
> My pfSense-foo is weak, and I don't follow the support list closely,
> but I am subscribed. I just a
Support,
My pfSense-foo is weak, and I don't follow the support list closely,
but I am subscribed. I just added a DLINK 802.11g card (atheros
chipset) to my pfsense firewall. I am impressed with hostap, etc,
etc, etc. It all kicks ass. Right up to the part where bridging LAN
and OPT1 (fxp0 a
> I don't see what I have messed up. What other information can I provide
>> you with?
>>
>
> I was primarily interested in how you were assigning IPs to clients, and
> what kind of authentication (local, RADIUS, etc.). All those various
> scenarios are very widely tested though.
Local Authentic
10.42.1.11
I don't see what I have messed up. What other information can I provide you
with?
Sincerely,
Joshua
On Thu, May 22, 2008 at 9:21 PM, Joshua Schmidlkofer <[EMAIL PROTECTED]>
wrote:
> Not sure what you want
>
> Here is the snippet from the pptpd config:
o find the answer, but I couldn't seem to find it.
Sincerely,
Joshua
On Thu, May 22, 2008 at 7:39 PM, Chris Buechler <[EMAIL PROTECTED]> wrote:
> On Thu, May 22, 2008 at 6:43 PM, Joshua Schmidlkofer <[EMAIL PROTECTED]>
> wrote:
> > I have pfSense 1.2-release on a mu
I have pfSense 1.2-release on a multi-lan box. We have 9 Interfaces with 6
six active. Only a single WAN, all the rest are used with dedicated leased
lines. We have IPsec in tunnel mode for several remote offices as well.
We added PPTP services, via the internal PPTP server, however we aren't a
24 matches
Mail list logo
