RE: [pfSense Support] Serial console on PC?
I did that and it didn't work. Let me give a bit more detail... Intel chipset Celeron 400 PC w/ 256 MB RAM. Serial port is enabled in BIOS (standard COM1 -- 3F8 IRQ4). I am trying to connect from my laptop COM1 using a null-modem cable connected to COM1 on PC. I booted from CD and performed a default install to HD (using attached keyboard/screen). Accessed web GUI (from crossover-connected laptop NIC) and enabled serial console, as stated below. Saved changes and restarted PC. On laptop, configured Hyperterminal COM1, 9600-8-N-1. Hyperterminal says it is connected, but no text is visible on the screen (not even any garbage while PC is booting). I would have expected to see a console screen just like the local console, but through Hyperterminal, but no joy :-( Any other thoughts? ~Brian > -Original Message- > From: Holger Bauer [mailto:[EMAIL PROTECTED] > Sent: Wednesday, May 10, 2006 2:05 PM > To: support@pfsense.com > Subject: RE: [pfSense Support] Serial console on PC? > > > system>advanced, [x] enable serial console at com1 > > Holger > > > -Original Message- > > From: Brian Neufeld [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, May 10, 2006 10:57 PM > > To: support@pfsense.com > > Subject: RE: [pfSense Support] Serial console on PC? > > > > > > Sorry I was not more clear... What I wanted to know is if > it is even > > possible on the PC platform? I don't want to bang my head > against a > > wall trying to get something to work that never will... > > > > ~Brian > > > > > > > -Original Message- > > > From: Vivek Khera [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, May 10, 2006 1:37 PM > > > To: support@pfsense.com > > > Subject: Re: [pfSense Support] Serial console on PC? > > > > > > > > > > > > On May 10, 2006, at 4:26 PM, Brian Neufeld wrote: > > > > > > > Does the serial port console functionality of pfSense > work on the > > > > standard PC platform or is this an embedded platform only (i.e. > > > > wrap/soekris) feature? I tried with a null modem cable and > > > > couldn't get > > > > it to work... > > > > > > did you enable the option on the gui and reboot, and did > > you connect > > > at 9600 baud? > > > > > > if so, please better define "couldn't get it to work" in terms of > > > what happened and how that differed from what you expected to > > > happen, > > > and what exactly you did. > > > > > > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > Virus checked by G DATA AntiVirusKit > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Re: Problem in appliance
Confirmed. Once I moved my backup XML file to a:\conf\config.xml (i.e. creating the "conf" folder and renaming the file to simply "config.xml"), I could boot the CD (beta4 currently) and it would restore that config as well as use it to store changes done from the web GUI. Thanks for the insight! Invaluable tip. ~Brian > -Original Message- > From: Angelo Turetta [mailto:[EMAIL PROTECTED] > Sent: Wednesday, May 10, 2006 6:06 AM > To: support@pfsense.com > Subject: Re: [pfSense Support] Re: Problem in appliance > > > Brian Neufeld wrote: > > I tried this recently and it didn't work, so either I did something > > wrong or it is broken... > > > > To clarify: > > 1) I configured a working system from the beta3 CD, not > installing to > > HD > > 2) Once everything was configured and functioning, accessed > from browser > > and saved "config-[pfsense hostname]-[date-time stamp].xml" > > > > Without changing the filename, I copied the XML file to a FAT (i.e. > > DOS) formatted floppy and then rebooted from the CD. It > didn't find > > the XML file and, consequently, didn't configure itself. I > even tried > > renaming the file on the floppy to "config.xml" and still no joy. > > > > For reference, I tried this with m0n0wall 1.22 (generic PC) and it > > worked as expected. m0n0, however seems behave in a fundamentally > > different fashion and writes config.xml upon every save > from the web > > GUI. pfSense does not do this and doesn't appear to utilize the > > floppy at all during GUI saves. > > I tell you what I understood (but not testes fully). > If the system at boot detects a floppy or USB removable > device (with FAT > file system), in the console menu you see the option to copy the > configuration to removable media. This option puts a file named > 'config.xml' into a directory named 'conf' on the media. > > I suppose that, if you want to load the config from removable > media, it > should be named /conf/config.xml (starting from the root of > the floppy). > > As I told, I tested the first part of this procedure (saving > the config > to floppy) but I cannot remember whether I tried to boot from > it or not. > > Angelo Turetta > Italy - Modena > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Migrate a wrap platform to regular?
At 12:36 PM 5/10/2006, Frederick Page wrote: Same here. I also like to take advantage of the "PC functionality" with my Soekris net4801. I think I might follow the suggestions on this page: http://www.gizmolabs.org/~ecronin/w/Main/PfSenseFullWRAP Rather than hack an embedded image to give me full capability, this is hacking a full install to work with WRAP. It's a bit of work, but the results will be more like the full image. -- Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Migrate a wrap platform to regular?
I'll probably do some testing with my CF setup and if it works, go buy the microdrive. Thanks, I appreciate it! At 03:17 PM 5/10/2006, Bill Marquette wrote: Update /etc/platform to read pfSense instead of embedded I believe. --Bill On 5/10/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: I run pfsense on a wrap platform. I'm aware of the differences in the image (R/O CF mount, no packages, etc). I'd like to replace my CF card with a 1GB (or larger) microdrive, and enable R/W and packages. This has been discussed many times, and it's well documented in the archives how to change the file system to R/W, so I'm good with that. A couple of questions for the developers: Where does pfsense "test" for the image in order to not display menus such as the packages menu? I've poked around, but I could spend a lot of time looking for it.. is a variable set somewhere (conf file, for example) that I could patch to make the code think it's running on a PC? Are there other places that I'd need to patch up? Any other words of warning or wisdom, so I don't waste my time if it's not worth it? I'm not asking for a microdrive image for wrap, I'm willing to patch this up on my own if it's not too much of a stretch. Thanks in advance. -- Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Migrate a wrap platform to regular?
Update /etc/platform to read pfSense instead of embedded I believe. --Bill On 5/10/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: I run pfsense on a wrap platform. I'm aware of the differences in the image (R/O CF mount, no packages, etc). I'd like to replace my CF card with a 1GB (or larger) microdrive, and enable R/W and packages. This has been discussed many times, and it's well documented in the archives how to change the file system to R/W, so I'm good with that. A couple of questions for the developers: Where does pfsense "test" for the image in order to not display menus such as the packages menu? I've poked around, but I could spend a lot of time looking for it.. is a variable set somewhere (conf file, for example) that I could patch to make the code think it's running on a PC? Are there other places that I'd need to patch up? Any other words of warning or wisdom, so I don't waste my time if it's not worth it? I'm not asking for a microdrive image for wrap, I'm willing to patch this up on my own if it's not too much of a stretch. Thanks in advance. -- Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Serial console on PC?
system>advanced, [x] enable serial console at com1 Holger > -Original Message- > From: Brian Neufeld [mailto:[EMAIL PROTECTED] > Sent: Wednesday, May 10, 2006 10:57 PM > To: support@pfsense.com > Subject: RE: [pfSense Support] Serial console on PC? > > > Sorry I was not more clear... What I wanted to know is if it is even > possible on the PC platform? I don't want to bang my head against a > wall trying to get something to work that never will... > > ~Brian > > > > -Original Message- > > From: Vivek Khera [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, May 10, 2006 1:37 PM > > To: support@pfsense.com > > Subject: Re: [pfSense Support] Serial console on PC? > > > > > > > > On May 10, 2006, at 4:26 PM, Brian Neufeld wrote: > > > > > Does the serial port console functionality of pfSense work on the > > > standard PC platform or is this an embedded platform only (i.e. > > > wrap/soekris) feature? I tried with a null modem cable and > > > couldn't get > > > it to work... > > > > did you enable the option on the gui and reboot, and did > you connect > > at 9600 baud? > > > > if so, please better define "couldn't get it to work" in terms of > > what happened and how that differed from what you expected to > > happen, > > and what exactly you did. > > > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Serial console on PC?
On May 10, 2006, at 4:56 PM, Brian Neufeld wrote: Sorry I was not more clear... What I wanted to know is if it is even possible on the PC platform? I don't want to bang my head against a wall trying to get something to work that never will... yes it is. did you do what I stated originally? smime.p7s Description: S/MIME cryptographic signature
RE: [pfSense Support] Serial console on PC?
Sorry I was not more clear... What I wanted to know is if it is even possible on the PC platform? I don't want to bang my head against a wall trying to get something to work that never will... ~Brian > -Original Message- > From: Vivek Khera [mailto:[EMAIL PROTECTED] > Sent: Wednesday, May 10, 2006 1:37 PM > To: support@pfsense.com > Subject: Re: [pfSense Support] Serial console on PC? > > > > On May 10, 2006, at 4:26 PM, Brian Neufeld wrote: > > > Does the serial port console functionality of pfSense work on the > > standard PC platform or is this an embedded platform only (i.e. > > wrap/soekris) feature? I tried with a null modem cable and > > couldn't get > > it to work... > > did you enable the option on the gui and reboot, and did you connect > at 9600 baud? > > if so, please better define "couldn't get it to work" in terms of > what happened and how that differed from what you expected to > happen, > and what exactly you did. > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Serial console on PC?
On May 10, 2006, at 4:26 PM, Brian Neufeld wrote: Does the serial port console functionality of pfSense work on the standard PC platform or is this an embedded platform only (i.e. wrap/soekris) feature? I tried with a null modem cable and couldn't get it to work... did you enable the option on the gui and reboot, and did you connect at 9600 baud? if so, please better define "couldn't get it to work" in terms of what happened and how that differed from what you expected to happen, and what exactly you did. smime.p7s Description: S/MIME cryptographic signature
Re: [pfSense Support] Migrate a wrap platform to regular?
At 12:36 PM 5/10/2006, Frederick Page wrote: [EMAIL PROTECTED] wrote on Wed, May 10 2006: >I'd like to replace my CF card with a 1GB (or larger) microdrive, and >enable R/W and packages. Same here. I also like to take advantage of the "PC functionality" with my Soekris net4801. My understanding is that the Soekris could be set up with a regular image, while WRAP cannot due to the fact that it requires a serial console and the regualar image doesn't support serial console on boot. There is probably too little interest from the community, so a special microdrive build probably will not be offered. Well, maybe on a stable release? If it's as simple as running a script after the fact (change /etc/fstab, edit a file or so, etc.), I'll gladly make it available as a "use at your own risk" type of tool. - Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Serial console on PC?
Does the serial port console functionality of pfSense work on the standard PC platform or is this an embedded platform only (i.e. wrap/soekris) feature? I tried with a null modem cable and couldn't get it to work... ~Brian - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: AW: [pfSense Support] Suggested mini-itx solutions?
Hi, Although regularly a m0n0wall user, I use some VIA EPIA PD-6000 FW / GW systems with pfsense. It runs great. I did install to both 1G CF and regular HDD, and am very happy with it. Currently the CF version has been up for the last three months and doing great. 1 WAN 1 Mbit / 1 VoIP link 1 Mbit / 1 Lan 100 Mbit / 1 DMZ, serving Citrix ICA / MS RDP Clients all day as well as simple browsing, IPSEC VPN and PPTP Clients working from distant locations. Never had a glitch. System is: EPIA PD 6000E Eden Processor Mini-ITX MoBo 512 MB Kingston RAM Kingston CF Card with CF to IDE ADAPTER Cubid Case Regards, Kerem Marc Eggenberger wrote: Hi Paul. I use pfSense on a PC-Engines WRAP with 3 nics. Works great. http://www.pcengines.ch/wrap.htm you didn't supply requirements so I dont know if this is sufficient. Regards, Marc Von: Paul Haddad [mailto:[EMAIL PROTECTED] Gesendet: Di 02.05.2006 16:36 An: support@pfsense.com Betreff: [pfSense Support] Suggested mini-itx solutions? Hi All, There seems to be a near endless supply of almost identical mini-itx motherboards out there, half of which are either unavailable or out of stock. The case situation is maybe even worse with most of them seeming to focus on car installations. So any suggestions on pfSense compatible ~$300 case/motherboard solutions? The only one I've found is the minibox m200 but there's got to be some other solutions out there using maybe newer/faster procs? -- Paul Haddad ([EMAIL PROTECTED] [EMAIL PROTECTED]) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Migrate a wrap platform to regular?
[EMAIL PROTECTED] wrote on Wed, May 10 2006: >I'd like to replace my CF card with a 1GB (or larger) microdrive, and >enable R/W and packages. Same here. I also like to take advantage of the "PC functionality" with my Soekris net4801. >Are there other places that I'd need to patch up? Any other words of >warning or wisdom, so I don't waste my time if it's not worth it? Please let us know about your progress or solutions, it's highly interesting to me as well. >I'm not asking for a microdrive image for wrap There is probably too little interest from the community, so a special microdrive build probably will not be offered. Well, maybe on a stable release? Best regards Frederick - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Suggested mini-itx solutions?
On 5/10/06, Rainer Duffner <[EMAIL PROTECTED]> wrote: What hardware is inside the dlink? You should compare apples to apples. And I don't think the dlink runs pf as a packet-filter... I'm actually not comparing the device to the WRAP box so much as showing an example where increasing the number of connections decreased the overall throughput. Again my assumption is that increasing the number of connections is going to increase the CPU usage which will in turn decrease the max throughput. Is this incorrect? -- Paul Haddad ([EMAIL PROTECTED] [EMAIL PROTECTED]) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Suggested mini-itx solutions?
Paul Haddad wrote: Vivek, On 5/10/06, Rainer Duffner <[EMAIL PROTECTED]> wrote: Vivek Khera wrote: > > On May 10, 2006, at 1:48 PM, Paul Haddad wrote: > >> 2k+ connections and 15Mbps down at the same time. > > these boxes have been clocked at > 30Mbps and have 128MB of RAM, so > should be able to handle that many connection states. > So am I wrong to assume that a single connection at 30Mbps doesn't take anywhere near the amount of CPU resources as 1000 connections at 30Kbps? I have a dlink 4300 router that can handle a single connection at line speed (according to some of the tests I've seen) but can't handle > 8Mbps with 1-2k multiple connections. Whether this is due to RAM or CPU or both I can't really tell but I had assumed it was both, hence my desire to upgrade to something beefier then a WRAP. -- What hardware is inside the dlink? You should compare apples to apples. And I don't think the dlink runs pf as a packet-filter... cheers, Rainer - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Suggested mini-itx solutions?
Vivek, On 5/10/06, Rainer Duffner <[EMAIL PROTECTED]> wrote: Vivek Khera wrote: > > On May 10, 2006, at 1:48 PM, Paul Haddad wrote: > >> 2k+ connections and 15Mbps down at the same time. > > these boxes have been clocked at > 30Mbps and have 128MB of RAM, so > should be able to handle that many connection states. > So am I wrong to assume that a single connection at 30Mbps doesn't take anywhere near the amount of CPU resources as 1000 connections at 30Kbps? I have a dlink 4300 router that can handle a single connection at line speed (according to some of the tests I've seen) but can't handle > 8Mbps with 1-2k multiple connections. Whether this is due to RAM or CPU or both I can't really tell but I had assumed it was both, hence my desire to upgrade to something beefier then a WRAP. -- Paul Haddad ([EMAIL PROTECTED] [EMAIL PROTECTED]) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Suggested mini-itx solutions?
Vivek Khera wrote: On May 10, 2006, at 1:48 PM, Paul Haddad wrote: 2k+ connections and 15Mbps down at the same time. these boxes have been clocked at > 30Mbps and have 128MB of RAM, so should be able to handle that many connection states. I think the rule-of-thumb was 1K RAM per connection, right? cheers, Rainer - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Suggested mini-itx solutions?
On May 10, 2006, at 1:48 PM, Paul Haddad wrote: 2k+ connections and 15Mbps down at the same time. these boxes have been clocked at > 30Mbps and have 128MB of RAM, so should be able to handle that many connection states. smime.p7s Description: S/MIME cryptographic signature
Re: [pfSense Support] Suggested mini-itx solutions?
Marc, On 5/10/06, Marc Eggenberger <[EMAIL PROTECTED]> wrote: Hi Paul. I use pfSense on a PC-Engines WRAP with 3 nics. Works great. http://www.pcengines.ch/wrap.htm you didn't supply requirements so I dont know if this is sufficient. I want a mini-itx solution because I wanted something small and yet more powerful then one of the WRAP boxes. I'm guessing (someone correct me if I'm wrong) that a WRAP isn't going to be able to handle 2k+ connections and 15Mbps down at the same time. -- Paul Haddad ([EMAIL PROTECTED] [EMAIL PROTECTED]) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Migrate a wrap platform to regular?
I run pfsense on a wrap platform. I'm aware of the differences in the image (R/O CF mount, no packages, etc). I'd like to replace my CF card with a 1GB (or larger) microdrive, and enable R/W and packages. This has been discussed many times, and it's well documented in the archives how to change the file system to R/W, so I'm good with that. A couple of questions for the developers: Where does pfsense "test" for the image in order to not display menus such as the packages menu? I've poked around, but I could spend a lot of time looking for it.. is a variable set somewhere (conf file, for example) that I could patch to make the code think it's running on a PC? Are there other places that I'd need to patch up? Any other words of warning or wisdom, so I don't waste my time if it's not worth it? I'm not asking for a microdrive image for wrap, I'm willing to patch this up on my own if it's not too much of a stretch. Thanks in advance. -- Bill Plein [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Load balance dude
Hi, I haven’t seen or heard of anyone getting a “Rare Thins”, unless someone has posted this error message in the forums at some point. I experience regularly OPT and WAN Interfaces attempting to sync but does not sync until I reset the ADSL routers a couple of times to get them reconnected. I don’t know if it is the NIC’s or routers or PF. Is this the problem you are experiencing? Would take a screen dump and give as much information as possible. Kindest Regards, Craig Roy Horizon IT Consultants AUSTRALIAN RESELLER FOR From: Overpeer --- [mailto:[EMAIL PROTECTED] Sent: Thursday, 11 May 2006 12:37 AM To: support@pfsense.com Subject: [pfSense Support] Load balance dude Hi! I'm try to configure a load balance in pfsense BETA3, but .. although i have read some pdf documents in the tutorials secction, this documents are ... too much specific for the examples, no explain what is the meaning of each section and variable and i don't know if i have a configuration mistake or if this feature don't work fine, somebody has some documentation about load balacing in pfsense?? When i configured the load balance pool, it do a not equal balanced, but rare thins occurs ... for example, if i disconnect the WAN interface... all traffic go to OPT1, this is good, but when plug again WAN ... then ... is rare, in the traffic graphic i see that WAN outbound traffic is equal to OPT1 inbound traffic ... and if i disconnect OPT1 ... keeps on giving the same result althought OPT is disconnected xD I know that it is a beta :) but... is it a know bug? or maybe a mistake configuration? Regards. -- No virus found in this incoming message. Checked by AVG Anti-Virus. Version: 7.1.392 / Virus Database: 268.5.5/335 - Release Date: 9/05/2006 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.1.392 / Virus Database: 268.5.5/335 - Release Date: 9/05/2006
[pfSense Support] Load balance dude
Hi!I'm try to configure a load balance in pfsense BETA3, but .. although i have read some pdf documents in the tutorials secction, this documents are ... too much specific for the examples, no explain what is the meaning of each section and variable and i don't know if i have a configuration mistake or if this feature don't work fine, somebody has some documentation about load balacing in pfsense?? When i configured the load balance pool, it do a not equal balanced, but rare thins occurs ... for example, if i disconnect the WAN interface... all traffic go to OPT1, this is good, but when plug again WAN ... then ... is rare, in the traffic graphic i see that WAN outbound traffic is equal to OPT1 inbound traffic ... and if i disconnect OPT1 ... keeps on giving the same result althought OPT is disconnected xD I know that it is a beta :) but... is it a know bug? or maybe a mistake configuration?Regards.
Re: [pfSense Support] Re: Problem in appliance
Brian Neufeld wrote: I tried this recently and it didn't work, so either I did something wrong or it is broken... To clarify: 1) I configured a working system from the beta3 CD, not installing to HD 2) Once everything was configured and functioning, accessed from browser and saved "config-[pfsense hostname]-[date-time stamp].xml" Without changing the filename, I copied the XML file to a FAT (i.e. DOS) formatted floppy and then rebooted from the CD. It didn't find the XML file and, consequently, didn't configure itself. I even tried renaming the file on the floppy to "config.xml" and still no joy. For reference, I tried this with m0n0wall 1.22 (generic PC) and it worked as expected. m0n0, however seems behave in a fundamentally different fashion and writes config.xml upon every save from the web GUI. pfSense does not do this and doesn't appear to utilize the floppy at all during GUI saves. I tell you what I understood (but not testes fully). If the system at boot detects a floppy or USB removable device (with FAT file system), in the console menu you see the option to copy the configuration to removable media. This option puts a file named 'config.xml' into a directory named 'conf' on the media. I suppose that, if you want to load the config from removable media, it should be named /conf/config.xml (starting from the root of the floppy). As I told, I tested the first part of this procedure (saving the config to floppy) but I cannot remember whether I tried to boot from it or not. Angelo Turetta Italy - Modena - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [pfSense Support] Suggested mini-itx solutions?
Hi Paul. I use pfSense on a PC-Engines WRAP with 3 nics. Works great. http://www.pcengines.ch/wrap.htm you didn't supply requirements so I dont know if this is sufficient. Regards, Marc Von: Paul Haddad [mailto:[EMAIL PROTECTED] Gesendet: Di 02.05.2006 16:36 An: support@pfsense.com Betreff: [pfSense Support] Suggested mini-itx solutions? Hi All, There seems to be a near endless supply of almost identical mini-itx motherboards out there, half of which are either unavailable or out of stock. The case situation is maybe even worse with most of them seeming to focus on car installations. So any suggestions on pfSense compatible ~$300 case/motherboard solutions? The only one I've found is the minibox m200 but there's got to be some other solutions out there using maybe newer/faster procs? -- Paul Haddad ([EMAIL PROTECTED] [EMAIL PROTECTED]) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] <>- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Re: carp pfsync - sessions not carried over to slave
Ah, right. I messed up the outbound NAT. Thanks Holger. sai On 5/9/06, Holger Bauer <[EMAIL PROTECTED]> wrote: You have to use advanced outbound NAT and the tutorial covers this. Otherwise your connections from your node one will be natted to the REAL IP of the interface, not the CARP VIP. On failover the other machine takes over the communication and uses it's REAL IP which causes a change of the public IP and the states are not correct any more. You have to use advanced outbound NAT at both machines. Quick guide: - enable advanced outbound - edit the created rule at the bottom of the page and use as "Translation" your CARP WAN VIP (in case you have OPT subnets copy this rule and edit it to match every internal source network) - save and apply Reset states and retry the failover again Holger > -Original Message- > From: sai [mailto:[EMAIL PROTECTED] > Sent: Tuesday, May 09, 2006 7:53 AM > To: support@pfsense.com > Subject: [pfSense Support] Re: carp pfsync - sessions not carried over > to slave > > > Holger, > > I dont really understand the question (!) , but I am not using > advanced outbound NAT. > > I just followed the tutorial on > http://www.pfsense.org/mirror.php?section=tutorials/carp/carp- > cluster-new.htm > > sai > > On 5/6/06, Holger Bauer <[EMAIL PROTECTED]> wrote: > > Are you using advanced outbound nat to use the shared CARP > IP of both nodes > > and not the real IPs of the machines? > > > > Holger > > > > > -Original Message- > > > From: sai [mailto:[EMAIL PROTECTED] > > > Sent: Saturday, May 06, 2006 1:24 PM > > > To: support@pfsense.com > > > Subject: [pfSense Support] carp pfsync - sessions not > carried over to > > > slave > > > > > > > > > I have 2 pfsense-beta-3 machines running with > carp/pfsync. I followed > > > the carp tutorial to setup. > > > > > > I have a download running and then I shutdown the left > machine (which > > > is master). The right machine then becomes master and new > sessions are > > > setup ok, but the existing download does not proceed, but > just hangs. > > > Similarly if I ping the gateway this also hangs when the > switchover > > > occurs, but new pings work fine. > > > > > > My rules propogate ok from the master to the slave, but not the > > > sessions. Have I missed something or is this how it works? > > > > > > In CARP settings I have the following selected: > > > Synchronize Enabled > > > Synchronize rules > > > Synchronize aliases > > > Synchronize nat > > > Synchronize Virtual IPs > > > Synchronize DNS Forwarder > > > > > > sai > > > > > > > - > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > > > > > > Virus checked by G DATA AntiVirusKit > > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
