Re: [pfSense] recommandation: snort IDS, web http traffic, pfsense
Hello Ivo, yes 2 pfsense nodes as cluster 2 loadbalancer 3 webserver need more info? tia Stefan Von: Ivo Tonev i...@tonev.pro.br An: pfSense Support and Discussion Mailing List list@lists.pfsense.org Gesendet: Montag, 29. September 2014 02:52:26 Betreff: Re: [pfSense] recommandation: snort IDS, web http traffic, pfsense can you send your network layout ? how many servers ? -- Ivo Tonev i...@tonev.pro.br On Sep 28, 2014, at 05:58, Stefan Fuhrmann ste...@fuhrmann.homedns.org wrote: Hello all, can someone help? tia Stefan Am Freitag, 26. September 2014, 15:11:04 schrieb Stefan Fuhrmann: Hello all, I need a recommandation for following setup: pfsense-cluster loadbalancers webservers There are some thousend visits per day and I want to secure with pfsense and snort. Snort runs on lan-site. I want to be aware which are the false positives and how to handle this traffic with snort and the snort- gui within pfsense? Is it now a good idea to enable step by step the categories and doing whitelisting of rules , where Im the meaning this traffic should go and block the rest? Im unsure if there is alot of traffic getting blocked which should pass This should dont be happen... In that firm there is the meaning that we should do blacklisting. Blocking only categories where we are secure this is not good traffic. In the moment there are several thousend alerts per day! I would say blocking the alerts and then I do whitelisting via gui. Problem: at first there is an error state Someone can give recommandations how to implement? Is it a good idea to configure the files directly on pfsense? tia Stefan ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] After upgrading 2.1.3-2.1.5 the SNMP.pm can't be found for Nagios anymore
Nobody that can help me with this? From: Rens [mailto:r...@autempspourmoi.be] Sent: maandag 22 september 2014 13:53 To: 'list@lists.pfsense.org' Subject: After upgrading 2.1.3-2.1.5 the SNMP.pm can't be found for Nagios anymore Dear all, after upgrading to 2.1.5, coming from 2.1.3 PFSense all of a sudden lost it's Net/SNMP.pm from it's path. This results in issues with some plugins of Nagios. e.g. /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus Which gives these errors: Can't locate Net/SNMP.pm in @INC (@INC contains: /usr/pbi/nrpe-amd64/libexec/nagios /usr/pbi/nrpe-amd64/lib/perl5/5.14.2/BSDPAN /usr/pbi/nrpe-amd64/lib/perl5/site_perl/5.14.2/mach /usr/pbi/nrpe-amd64/lib/perl5/site_perl/5.14.2 /usr/pbi/nrpe-amd64/lib/perl5/5.14.2/mach /usr/pbi/nrpe-amd64/lib/perl5/5.14.2 .) at /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus line 40. BEGIN failed--compilation aborted at /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus line 40. I guess something went wrong in the Perl dependencies. What is advised to get out of this situation? Regards, Rens ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
[pfSense] Autostart
I know pfsense will autoboot when power is turned on but in vmware it doesn't seem to be the case. We just lost power at home and pfsense never came back up until I connected to vmware to turn the virtual system back on. Is there a way to autostart on occasions like this when we loose power? A step by step would be VERY appreciated. I'm not very fluent in vmware and its use. Still haven't been able to get it to work with a new network card I added to the machine. Someone suggested I check to see if the bios recognizes it. Not even sure were that option is. I have a dell poweredge 2850. ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] Autostart
On Thu, Oct 2, 2014 at 11:35 AM, Brian Caouette bri...@dlois.com wrote: Is there a way to autostart on occasions like this when we loose power? Under your ESXi host's configuration tab, there a Virtual Machine Startup/Shutdown section that you can use to set various VMs to start up automatically on boot. ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] After upgrading 2.1.3-2.1.5 the SNMP.pm can't be found for Nagios anymore
This is not a Nagios or pfsense error. It's a PERL error and it can not find SNMP.pm You may want to try CPAN to re-install Net::SNMP Lyle On 10/02/14 05:04, Rens wrote: Nobody that can help me with this? *From:*Rens [mailto:r...@autempspourmoi.be] *Sent:* maandag 22 september 2014 13:53 *To:* 'list@lists.pfsense.org' *Subject:* After upgrading 2.1.3-2.1.5 the SNMP.pm can't be found for Nagios anymore Dear all, after upgrading to 2.1.5, coming from 2.1.3 PFSense all of a sudden lost it's Net/SNMP.pm from it's path. This results in issues with some plugins of Nagios. e.g. /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus Which gives these errors: Can't locate Net/SNMP.pm in @INC (@INC contains: /usr/pbi/nrpe-amd64/libexec/nagios /usr/pbi/nrpe-amd64/lib/perl5/5.14.2/BSDPAN /usr/pbi/nrpe-amd64/lib/perl5/site_perl/5.14.2/mach /usr/pbi/nrpe-amd64/lib/perl5/site_perl/5.14.2 /usr/pbi/nrpe-amd64/lib/perl5/5.14.2/mach /usr/pbi/nrpe-amd64/lib/perl5/5.14.2 .) at /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus line 40. BEGIN failed--compilation aborted at /usr/pbi/nrpe-amd64/libexec/nagios/check_ifoperstatus line 40. I guess something went wrong in the Perl dependencies. What is advised to get out of this situation? Regards, Rens ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] Autostart
You can set delays. I use this for my VMs that have host folders for others and they stage the boots by seconds or minutes depending on the size of the drives in those VMs. It’s very helpful. Check under Host Preferences, if you need more detailed information let me know and I’ll look tomorrow when I get into work. — Ryan On Oct 2, 2014, at 11:35, Brian Caouette bri...@dlois.com wrote: I know pfsense will autoboot when power is turned on but in vmware it doesn't seem to be the case. We just lost power at home and pfsense never came back up until I connected to vmware to turn the virtual system back on. Is there a way to autostart on occasions like this when we loose power? A step by step would be VERY appreciated. I'm not very fluent in vmware and its use. Still haven't been able to get it to work with a new network card I added to the machine. Someone suggested I check to see if the bios recognizes it. Not even sure were that option is. I have a dell poweredge 2850. ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
