Re: [pfSense] Reports
First time I would do is make sure that you have added static IP address reservations for those the MAC addresses using the DHCP server page for each piece of IP gear that your children have. If you click on All Leases, it will show you every device that has tried to get an address. You can take the MAC addresses from this page to make static leases. That way each device will always have the same IP address and then you can use the existing IP reports in pfSense to get sense for the traffic flows. If you can't get the reporting you need, you might look at exporting the logs and then processing them on separate box using other packages. If you know a scripting language (perl, python, ruby, etc..) you might whip a script of your own to generate basic reports of the style that you need. Walter On Fri, Sep 26, 2014 at 12:23 PM, Brian Caouette wrote: > Is there a way to do a weekly report based on MAC address showing times > used, total time and date for the period? Trying to prove a point how much > the kids use and that they are still online after bedtime. > > Sent from my iPad > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list > -- The greatest dangers to liberty lurk in insidious encroachment by men of zeal, well-meaning but without understanding. -- Justice Louis D. Brandeis ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
Thanks Vassilis, I've these settings already - without any success. On Fri, Sep 26, 2014 at 9:03 PM, Vassilis V. wrote: > > > Hannes Werner wrote on 26.09.2014 16:51: >> thank you very much Giles, but unfortunately it doesn't help. >> >> anyone here who is using asterisk behind pfSense on a dynamic IP WAN >> successfully? >> > > Hello Hannes! > > I have also used asterisk behind a dynamic PPPoE WAN. I had the exact > same issues that the bug report is describing. > > I tried different ways to get it to work and I found that some solutions > work with some providers, but fail at others. There seems to be alot of > black magic involved when configuring SIP to work in such a configuration :) > > What worked best was to set nat=no and externip=. > I had also not done any port forwards whatsoever on pfsense, outgoing > NAT was set to automatic. > > I certainly cannot explain why it was working that way! > > > Hope it helps! > Vassilis > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
In the different environments where I use PF I'm using different appliances acting as modem/routers. In most cases I use those supplied by the ISP. In other cases I use some other low-medium level modem/routers. As an example some are Tp-link TD-W8968. All these modem/routers connect: - to the ISP on the phone line over ADSL and PPPoE/PPPoA - to the pfSense WAN port via Ethernet port They are just enough to act as - ADSL2+ modem on the 20 mbit/sec ADSL lines - inbound NATP towards the PF WAN IP. pfSense act as routing firewalls, sometimes as VPN endpoints, never as ADSL modem. O. -- In data venerdì 26 settembre 2014 20:00:59, Hannes Werner ha scritto: > Thank you very much Odette, > > what type of router do you use? Those who are doing the PPPoA? So you > use pfSense as a strict Firewall? > > On Fri, Sep 26, 2014 at 4:35 PM, Odette Nsaka wrote: > > Not too much related, but I am. > > > > I'm using a multi-wan connection to different ISP who give me dynamic IP > > address. I set up the Internet connection via a couple of different > > routers, one for each ISP. > > > > The difference in my configuration is that the routers connect to the ISP > > via PPPoA and PF is connected to the routers via regular IP local subnet > > connection (no PPPoE/PPPoA on PF). > > > > This way everything works fine, asterisk on the LAN side of PF too, even > > when one or both of the public IPs are changed. > > > > In case of failure of one (or the other) of the ISP connections, asterisk > > connects with no problem to the VoIP provider, no matter on which is the > > active or preferred gateway. > > > > O. > > > > -- > > > > On Sept. 26th 2014 15:51:37, Hannes Werner wrote: > >> thank you very much Giles, but unfortunately it doesn't help. > >> > >> anyone here who is using asterisk behind pfSense on a dynamic IP WAN > >> successfully? > >> > >> On Fri, Sep 26, 2014 at 2:44 PM, Giles Coochey wrote: > >> > On 26/09/2014 12:42, Hannes Werner wrote: > >> >> are you saying that people with dynamic IP shouldn't use pfSense > >> >> behind an Asterisk service? I've had asterisk running behind Fritz- Box > >> >> for years without any trouble. I've seen the cheapest router being > >> >> able to handle this like the speedports. I can't believe pfSense is > >> >> unable to do this, but it doesn't matter a clear word would solve the > >> >> problem for all the time and you do not have to worry again about this > >> >> issue. > >> >> > >> >> maybe you guys do better telling those users to change there router? > >> > > >> > It's not my place, either, to pass comment on what free software you > >> > should > >> > decide to use, I am also none other than a happy end user (with a PPPoE > >> > service on at least one of my pfsense boxes, but with a static IP). > >> > > >> > Doesn't ensuring that you have Gateway monitoring enabled, and then > >> > ensuring that you have, under System --> Advanced --> Miscelleaneous > >> > --> > >> > "State Killing on Gateway Failure" enabled provide a workaround > >> > resolution for you? I'm referring to > >> > https://redmine.pfsense.org/issues/3181 which is referenced from #1629. > >> > > >> > Also it's clear that bug #1629 is pushed out to 2.2, although the > >> > latest > >> > comment is for it to be addressed, or to push it out to 2.3. It's > >> > probably > >> > not good news for you, but it looks like there is a schedule for it to > >> > be > >> > fixed just not very quickly. > >> > > >> > Do bear in mind that the original PPP software was designed for > >> > opportunistic on-demand dial-up connections, and isn't perfectly suited > >> > for > >> > running server side applications on the client end. PPPoE & PPPoA built > >> > on > >> > this, I guess, to allow ISPs to continue to use their RADIUS > >> > infrastructure > >> > for customers authentication as they moved to broadband / cable based > >> > connections. > >> > > >> > > >> > -- > >> > Regards, > >> > > >> > Giles Coochey, CCNP, CCNA, CCNAS > >> > NetSecSpec Ltd > >> > +44 (0) 8444 780677 > >> > +44 (0) 7584 634135 > >> > http://www.coochey.net > >> > http://www.netsecspec.co.uk > >> > gi...@coochey.net > >> > > >> > > >> > > >> > ___ > >> > List mailing list > >> > List@lists.pfsense.org___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] Reports
You can install time based access control apps on most devices. Same goes for time based rules. I use this for the kids. 26. sep. 2014 21:23 skrev "Brian Caouette" følgende: > Is there a way to do a weekly report based on MAC address showing times > used, total time and date for the period? Trying to prove a point how much > the kids use and that they are still online after bedtime. > > Sent from my iPad > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list > ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] Reports
You could possibly use a captive portal and block them out after certain period of time. That in combination with squid would give you access use > On Sep 26, 2014, at 14:23, Brian Caouette wrote: > > Is there a way to do a weekly report based on MAC address showing times used, > total time and date for the period? Trying to prove a point how much the kids > use and that they are still online after bedtime. > > Sent from my iPad > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
[pfSense] Reports
Is there a way to do a weekly report based on MAC address showing times used, total time and date for the period? Trying to prove a point how much the kids use and that they are still online after bedtime. Sent from my iPad ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
Hannes Werner wrote on 26.09.2014 16:51: > thank you very much Giles, but unfortunately it doesn't help. > > anyone here who is using asterisk behind pfSense on a dynamic IP WAN > successfully? > Hello Hannes! I have also used asterisk behind a dynamic PPPoE WAN. I had the exact same issues that the bug report is describing. I tried different ways to get it to work and I found that some solutions work with some providers, but fail at others. There seems to be alot of black magic involved when configuring SIP to work in such a configuration :) What worked best was to set nat=no and externip=. I had also not done any port forwards whatsoever on pfsense, outgoing NAT was set to automatic. I certainly cannot explain why it was working that way! Hope it helps! Vassilis ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
Thank you very much Odette, what type of router do you use? Those who are doing the PPPoA? So you use pfSense as a strict Firewall? On Fri, Sep 26, 2014 at 4:35 PM, Odette Nsaka wrote: > Not too much related, but I am. > > I'm using a multi-wan connection to different ISP who give me dynamic IP > address. I set up the Internet connection via a couple of different routers, > one for each ISP. > > The difference in my configuration is that the routers connect to the ISP via > PPPoA and PF is connected to the routers via regular IP local subnet > connection (no PPPoE/PPPoA on PF). > > This way everything works fine, asterisk on the LAN side of PF too, even when > one or both of the public IPs are changed. > > In case of failure of one (or the other) of the ISP connections, asterisk > connects with no problem to the VoIP provider, no matter on which is the > active or preferred gateway. > > O. > > -- > > On Sept. 26th 2014 15:51:37, Hannes Werner wrote: >> thank you very much Giles, but unfortunately it doesn't help. >> >> anyone here who is using asterisk behind pfSense on a dynamic IP WAN >> successfully? >> >> On Fri, Sep 26, 2014 at 2:44 PM, Giles Coochey wrote: >> > On 26/09/2014 12:42, Hannes Werner wrote: >> >> are you saying that people with dynamic IP shouldn't use pfSense >> >> behind an Asterisk service? I've had asterisk running behind Fritz-Box >> >> for years without any trouble. I've seen the cheapest router being >> >> able to handle this like the speedports. I can't believe pfSense is >> >> unable to do this, but it doesn't matter a clear word would solve the >> >> problem for all the time and you do not have to worry again about this >> >> issue. >> >> >> >> maybe you guys do better telling those users to change there router? >> > >> > It's not my place, either, to pass comment on what free software you >> > should >> > decide to use, I am also none other than a happy end user (with a PPPoE >> > service on at least one of my pfsense boxes, but with a static IP). >> > >> > Doesn't ensuring that you have Gateway monitoring enabled, and then >> > ensuring that you have, under System --> Advanced --> Miscelleaneous --> >> > "State Killing on Gateway Failure" enabled provide a workaround >> > resolution for you? I'm referring to >> > https://redmine.pfsense.org/issues/3181 which is referenced from #1629. >> > >> > Also it's clear that bug #1629 is pushed out to 2.2, although the latest >> > comment is for it to be addressed, or to push it out to 2.3. It's probably >> > not good news for you, but it looks like there is a schedule for it to be >> > fixed just not very quickly. >> > >> > Do bear in mind that the original PPP software was designed for >> > opportunistic on-demand dial-up connections, and isn't perfectly suited >> > for >> > running server side applications on the client end. PPPoE & PPPoA built on >> > this, I guess, to allow ISPs to continue to use their RADIUS >> > infrastructure >> > for customers authentication as they moved to broadband / cable based >> > connections. >> > >> > >> > -- >> > Regards, >> > >> > Giles Coochey, CCNP, CCNA, CCNAS >> > NetSecSpec Ltd >> > +44 (0) 8444 780677 >> > +44 (0) 7584 634135 >> > http://www.coochey.net >> > http://www.netsecspec.co.uk >> > gi...@coochey.net >> > >> > >> > >> > ___ >> > List mailing list >> > List@lists.pfsense.org >> > https://lists.pfsense.org/mailman/listinfo/list >> >> ___ >> List mailing list >> List@lists.pfsense.org >> https://lists.pfsense.org/mailman/listinfo/list > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
Not too much related, but I am. I'm using a multi-wan connection to different ISP who give me dynamic IP address. I set up the Internet connection via a couple of different routers, one for each ISP. The difference in my configuration is that the routers connect to the ISP via PPPoA and PF is connected to the routers via regular IP local subnet connection (no PPPoE/PPPoA on PF). This way everything works fine, asterisk on the LAN side of PF too, even when one or both of the public IPs are changed. In case of failure of one (or the other) of the ISP connections, asterisk connects with no problem to the VoIP provider, no matter on which is the active or preferred gateway. O. -- On Sept. 26th 2014 15:51:37, Hannes Werner wrote: > thank you very much Giles, but unfortunately it doesn't help. > > anyone here who is using asterisk behind pfSense on a dynamic IP WAN > successfully? > > On Fri, Sep 26, 2014 at 2:44 PM, Giles Coochey wrote: > > On 26/09/2014 12:42, Hannes Werner wrote: > >> are you saying that people with dynamic IP shouldn't use pfSense > >> behind an Asterisk service? I've had asterisk running behind Fritz-Box > >> for years without any trouble. I've seen the cheapest router being > >> able to handle this like the speedports. I can't believe pfSense is > >> unable to do this, but it doesn't matter a clear word would solve the > >> problem for all the time and you do not have to worry again about this > >> issue. > >> > >> maybe you guys do better telling those users to change there router? > > > > It's not my place, either, to pass comment on what free software you > > should > > decide to use, I am also none other than a happy end user (with a PPPoE > > service on at least one of my pfsense boxes, but with a static IP). > > > > Doesn't ensuring that you have Gateway monitoring enabled, and then > > ensuring that you have, under System --> Advanced --> Miscelleaneous --> > > "State Killing on Gateway Failure" enabled provide a workaround > > resolution for you? I'm referring to > > https://redmine.pfsense.org/issues/3181 which is referenced from #1629. > > > > Also it's clear that bug #1629 is pushed out to 2.2, although the latest > > comment is for it to be addressed, or to push it out to 2.3. It's probably > > not good news for you, but it looks like there is a schedule for it to be > > fixed just not very quickly. > > > > Do bear in mind that the original PPP software was designed for > > opportunistic on-demand dial-up connections, and isn't perfectly suited > > for > > running server side applications on the client end. PPPoE & PPPoA built on > > this, I guess, to allow ISPs to continue to use their RADIUS > > infrastructure > > for customers authentication as they moved to broadband / cable based > > connections. > > > > > > -- > > Regards, > > > > Giles Coochey, CCNP, CCNA, CCNAS > > NetSecSpec Ltd > > +44 (0) 8444 780677 > > +44 (0) 7584 634135 > > http://www.coochey.net > > http://www.netsecspec.co.uk > > gi...@coochey.net > > > > > > > > ___ > > List mailing list > > List@lists.pfsense.org > > https://lists.pfsense.org/mailman/listinfo/list > > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
thank you very much Giles, but unfortunately it doesn't help. anyone here who is using asterisk behind pfSense on a dynamic IP WAN successfully? On Fri, Sep 26, 2014 at 2:44 PM, Giles Coochey wrote: > On 26/09/2014 12:42, Hannes Werner wrote: >> >> are you saying that people with dynamic IP shouldn't use pfSense >> behind an Asterisk service? I've had asterisk running behind Fritz-Box >> for years without any trouble. I've seen the cheapest router being >> able to handle this like the speedports. I can't believe pfSense is >> unable to do this, but it doesn't matter a clear word would solve the >> problem for all the time and you do not have to worry again about this >> issue. >> >> maybe you guys do better telling those users to change there router? >> >> > It's not my place, either, to pass comment on what free software you should > decide to use, I am also none other than a happy end user (with a PPPoE > service on at least one of my pfsense boxes, but with a static IP). > > Doesn't ensuring that you have Gateway monitoring enabled, and then ensuring > that you have, under System --> Advanced --> Miscelleaneous --> "State > Killing on Gateway Failure" enabled provide a workaround resolution for you? > I'm referring to https://redmine.pfsense.org/issues/3181 which is referenced > from #1629. > > Also it's clear that bug #1629 is pushed out to 2.2, although the latest > comment is for it to be addressed, or to push it out to 2.3. It's probably > not good news for you, but it looks like there is a schedule for it to be > fixed just not very quickly. > > Do bear in mind that the original PPP software was designed for > opportunistic on-demand dial-up connections, and isn't perfectly suited for > running server side applications on the client end. PPPoE & PPPoA built on > this, I guess, to allow ISPs to continue to use their RADIUS infrastructure > for customers authentication as they moved to broadband / cable based > connections. > > > -- > Regards, > > Giles Coochey, CCNP, CCNA, CCNAS > NetSecSpec Ltd > +44 (0) 8444 780677 > +44 (0) 7584 634135 > http://www.coochey.net > http://www.netsecspec.co.uk > gi...@coochey.net > > > > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
[pfSense] recommandation: snort IDS, web http traffic, pfsense
Hello all, I need a recommandation for following setup: pfsense-cluster | loadbalancers | webservers There are some thousend visits per day and I want to secure with pfsense and snort. Snort runs on lan-site. I want to be aware which are the false positives and how to handle this traffic with snort and the snort- gui within pfsense? Is it now a good idea to enable step by step the categories and doing whitelisting of rules , where Im the meaning this traffic should go and block the rest? Im unsure if there is alot of traffic getting blocked which should pass This should dont be happen... In that firm there is the meaning that we should do blacklisting. Blocking only categories where we are secure this is not good traffic. In the moment there are several thousend alerts per day! I would say blocking the alerts and then I do whitelisting via gui. Problem: at first there is an error state Someone can give recommandations how to implement? Is it a good idea to configure the files directly on pfsense? tia Stefan ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
On 26/09/2014 12:42, Hannes Werner wrote: are you saying that people with dynamic IP shouldn't use pfSense behind an Asterisk service? I've had asterisk running behind Fritz-Box for years without any trouble. I've seen the cheapest router being able to handle this like the speedports. I can't believe pfSense is unable to do this, but it doesn't matter a clear word would solve the problem for all the time and you do not have to worry again about this issue. maybe you guys do better telling those users to change there router? It's not my place, either, to pass comment on what free software you should decide to use, I am also none other than a happy end user (with a PPPoE service on at least one of my pfsense boxes, but with a static IP). Doesn't ensuring that you have Gateway monitoring enabled, and then ensuring that you have, under System --> Advanced --> Miscelleaneous --> "State Killing on Gateway Failure" enabled provide a workaround resolution for you? I'm referring to https://redmine.pfsense.org/issues/3181 which is referenced from #1629. Also it's clear that bug #1629 is pushed out to 2.2, although the latest comment is for it to be addressed, or to push it out to 2.3. It's probably not good news for you, but it looks like there is a schedule for it to be fixed just not very quickly. Do bear in mind that the original PPP software was designed for opportunistic on-demand dial-up connections, and isn't perfectly suited for running server side applications on the client end. PPPoE & PPPoA built on this, I guess, to allow ISPs to continue to use their RADIUS infrastructure for customers authentication as they moved to broadband / cable based connections. -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7584 634135 http://www.coochey.net http://www.netsecspec.co.uk gi...@coochey.net smime.p7s Description: S/MIME Cryptographic Signature ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] new user with console menu
On 9/26/2014 3:51 AM, Martin Fuchs wrote: > When i add a new user to pfSense, this user does not have a menu when > logging into the shell… > > What rights does the user need to have the console menu displayed ? The user won't have all the necessary permissions to use the menu so they don't get one displayed. You can install the sudo package and give someone access to run commands and then perhaps they can run then menu via /etc/rc.initial Through the use of sudo without a password (not recommended) and adding the command to run the menu (/etc/rc.initial) in their login script, it might work out to have them dropped in automatically. Jim ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
On 26/9/14 12:42 pm, Hannes Werner wrote: are you saying that people with dynamic IP shouldn't use pfSense behind an Asterisk service? Firstly - it's not my place to say anything of the sort - I have no connection to the pfSense team (apart from as a satisfied user). I suspect one of the pfSense devs will reply to this thread at an appropriate time. The point I was trying to make is that this is not exclusively a pfSense problem. Asterisk (and SIP in general) is far from perfect when behind a frequently changing dynamic IP. Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
are you saying that people with dynamic IP shouldn't use pfSense behind an Asterisk service? I've had asterisk running behind Fritz-Box for years without any trouble. I've seen the cheapest router being able to handle this like the speedports. I can't believe pfSense is unable to do this, but it doesn't matter a clear word would solve the problem for all the time and you do not have to worry again about this issue. maybe you guys do better telling those users to change there router? On Fri, Sep 26, 2014 at 1:33 PM, Chris Bagnall wrote: > On 26/9/14 12:06 pm, Giles Coochey wrote: >> >> I can think of many reasons, why running a service such as Asterisk, on >> an IP address that you have a temporary lease for (thus only have a >> passing relationship with, before it is passed to someone else), would >> be pretty bad practice. > > > I think Giles has put it far better than I did :-) > > In short, Asterisk is temperamental with dynamic IPs _in general_, it's not > necessarily specific to pfSense (though I appreciate this bug report relates > specifically to pfSense). > > I've seen the same symptoms with Asterisk servers behind Draytek routers, > for example - as with pfSense, it's usually solved with a state table reset. > > > Kind regards, > > Chris > -- > This email is made from 100% recycled electrons > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
On 26/9/14 12:06 pm, Giles Coochey wrote: I can think of many reasons, why running a service such as Asterisk, on an IP address that you have a temporary lease for (thus only have a passing relationship with, before it is passed to someone else), would be pretty bad practice. I think Giles has put it far better than I did :-) In short, Asterisk is temperamental with dynamic IPs _in general_, it's not necessarily specific to pfSense (though I appreciate this bug report relates specifically to pfSense). I've seen the same symptoms with Asterisk servers behind Draytek routers, for example - as with pfSense, it's usually solved with a state table reset. Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
On 26/09/2014 11:58, Chris Bagnall wrote: Worth mentioning here that many of us are using Asterisk behind pfSense without any issue at all. The triggers for this issue seem to be, specifically: - PPPoE WAN interface - dynamic WAN IP - SIP service provider We (one of my $dayjobs is a VoIP service provider) have dozens of clients using Asterisk with PPPoE WAN without any problem, but they're all using static WAN IPs provided by the ISP(s) in question. I can think of many reasons, why running a service such as Asterisk, on an IP address that you have a temporary lease for (thus only have a passing relationship with, before it is passed to someone else), would be pretty bad practice. The bug itself seems to be a genuine problem, the way the bug is put forward doesn't do much for motivating its resolution. -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7584 634135 http://www.netsecspec.co.uk giles.cooc...@netsecspec.co.uk -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7584 634135 http://www.coochey.net http://www.netsecspec.co.uk gi...@coochey.net smime.p7s Description: S/MIME Cryptographic Signature ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
I'm sure more people are with dynamic WAN IPs and facing this problem. The issue #1629 is showing this clearly. If at least there would be a report saying "we are not going to fix it" than all of those could decide to use or not to use pfsense. On Fri, Sep 26, 2014 at 12:58 PM, Chris Bagnall wrote: > On 26/9/14 11:43 am, Hannes Werner wrote: >> >> I wonder what the reason for not getting >> https://redmine.pfsense.org/issues/1629 fixed? >> Many gave up waiting for this, but it seems there must be a proper >> reason for it. May I ask what the problem is not being able to use >> pfSense with Asterisk? > > > Worth mentioning here that many of us are using Asterisk behind pfSense > without any issue at all. > > The triggers for this issue seem to be, specifically: > - PPPoE WAN interface > - dynamic WAN IP > - SIP service provider > > We (one of my $dayjobs is a VoIP service provider) have dozens of clients > using Asterisk with PPPoE WAN without any problem, but they're all using > static WAN IPs provided by the ISP(s) in question. > > Kind regards, > > Chris > -- > This email is made from 100% recycled electrons > ___ > List mailing list > List@lists.pfsense.org > https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] States Issue with Asterisk behind pfSense
On 26/9/14 11:43 am, Hannes Werner wrote: I wonder what the reason for not getting https://redmine.pfsense.org/issues/1629 fixed? Many gave up waiting for this, but it seems there must be a proper reason for it. May I ask what the problem is not being able to use pfSense with Asterisk? Worth mentioning here that many of us are using Asterisk behind pfSense without any issue at all. The triggers for this issue seem to be, specifically: - PPPoE WAN interface - dynamic WAN IP - SIP service provider We (one of my $dayjobs is a VoIP service provider) have dozens of clients using Asterisk with PPPoE WAN without any problem, but they're all using static WAN IPs provided by the ISP(s) in question. Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
[pfSense] States Issue with Asterisk behind pfSense
Hello, I wonder what the reason for not getting https://redmine.pfsense.org/issues/1629 fixed? Many gave up waiting for this, but it seems there must be a proper reason for it. May I ask what the problem is not being able to use pfSense with Asterisk? Regards ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
[pfSense] new user with console menu
Hi ! When i add a new user to pfSense, this user does not have a menu when logging into the shell. What rights does the user need to have the console menu displayed ? Regards, martin ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list