Re: [pfSense Support] Evenly share bandwidth
On a side note; the reason I disabled shaping was it applied to all interfaces. For example; I have a 14Mb WAN connection, and shaped it accordingly (NNTP low, HTTP high etc etc etc). LAN WAN works perfectly (get's shaped) Wireless Wan works perfectly (get's shaped) LAN Wireless also get's shaped; not so good :) (Strange thing is; Wireless is bridged with LAN) Is this fixed, or is there a way to overcome this problem? Regards, -- Jeroen
RE: [pfSense Support] Hang on reboot after restore
No. It will stay hung indefinitely. When I choose FreeBSD with ACPI disabled, I get a Fatal Trap 12: Page fault while in kernel mode right after the pci bus (pci4) starts to load. --Jason W. Allen -Original Message- From: Chris Buechler [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 09, 2008 5:09 PM To: support@pfsense.com Subject: Re: [pfSense Support] Hang on reboot after restore Jason W. Allen wrote: At this point, I've let is wait since just about the same time I sent that email. That was about 45 minutes ago :-) Has it booted yet? You have to give it a while, it's only been ~3.5 hours. ;) The only time I've seen a system hang at that point, it's been caused by ACPI. If you select the option at the boot menu to boot with ACPI disabled, does that fix it? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Hang on reboot after restore
Success, While fooling around and trying to get the boot menu to come up, So I could try Chris' suggestion, I removed the /boot/loader.conf from the dive and viola the thing will now boot. Now I have to determine what in there the system doesn't like. --Jason W. Allen -Original Message- From: Jason W. Allen [mailto:[EMAIL PROTECTED] Sent: Thursday, January 10, 2008 12:39 PM To: support@pfsense.com Subject: RE: [pfSense Support] Hang on reboot after restore No. It will stay hung indefinitely. When I choose FreeBSD with ACPI disabled, I get a Fatal Trap 12: Page fault while in kernel mode right after the pci bus (pci4) starts to load. --Jason W. Allen -Original Message- From: Chris Buechler [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 09, 2008 5:09 PM To: support@pfsense.com Subject: Re: [pfSense Support] Hang on reboot after restore Jason W. Allen wrote: At this point, I've let is wait since just about the same time I sent that email. That was about 45 minutes ago :-) Has it booted yet? You have to give it a while, it's only been ~3.5 hours. ;) The only time I've seen a system hang at that point, it's been caused by ACPI. If you select the option at the boot menu to boot with ACPI disabled, does that fix it? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Making a VPN Connection
Good Afternoon, I have a pfSense 1.2RC3 box that is working quite well on a dual PIII 800. I have managed to get my routed block of IPs working correctly but I am note sure how to make a permanent VPN connection to our other site which currently has a Cisco router. I am able to connect to the router using the MS VPN client but I am not sure how to do it with pfSense. Any assistance would be appreciated. Ron.
Re: [pfSense Support] Evenly share bandwidth
This is being fixed after version 1.2 is released. The work is already well under way. Ngawang Sangye wrote: Yes - I have a similar issue - LAN-WAN gets shaped. I can put some rules for OPT1 to WAN and that gets shaped but then OPT to LAN routes are also shaped which is not defined in any rules. If you have to be so explicit setting up rules manually or with the wizard it seems strange that other traffic is affected. If person in OPT1 subnet accesses a server in LAN subnet and the traffic is routed and shapin happens then during the file transfer the internet traffic from WAN is not able to flow, or shaped to a lesser level. I have a big network and we are moving from one typical 192.168.2.* subnet system to a bigger 10.10.*.* so I need to route client to server traffic between subnets as we may never get everything moved out of the old subnet. I prefer to use PFsense than build a seperate router. How can I allow traffic shaping between other interfaces and WAN without shaping traffic not going to or from WAN as defined in the traffic shaping rules - is it a bug that needs fixing? Thanks Sangye On 10/01/2008, *Jeroen* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: On a side note; the reason I disabled shaping was it applied to all interfaces. For example; I have a 14Mb WAN connection, and shaped it accordingly (NNTP low, HTTP high etc etc etc). LAN WAN works perfectly (get's shaped) Wireless Wan works perfectly (get's shaped) LAN Wireless also get's shaped; not so good :) (Strange thing is; Wireless is bridged with LAN) Is this fixed, or is there a way to overcome this problem? Regards, -- Jeroen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] connections LAN to LAN get dropped
It seems if I have a tcp connection that comes in the LAN interface to my pfSense gateway, and exists the same interface, I can transfer a small amount of data before pfSense starts dropping the packets. Eg -- | router | -- | 192.168.1.1 | | 192.168.1.29 | - +---|myPC| | - | | | 192.168.1.204 | - +---|dev| | - On router I've got this static route: LAN 192.168.12.0/24 192.168.1.204 Virtual Dev machines So if I do a scp from myPC to 192.168.12.23 the traffic flows on my default route to the router, and then gets forwarded onto the dev box. A tcpdump of one such transfer (of a 2Mb file) shows the connection starts, but after about Seq=64664 (thats the tcp sequence number of the direction from myPC to 192.168.12.23) my tcpdump shows that no more packets are forwarded onto 192.168.12.23. Anyone know why? -- Geoff Crompton Debian System Administrator http://www.strategicdata.com.au Phone: +61 3 9340 9000 Fax: +61 3 9348 2015 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Re: connections LAN to LAN get dropped
Geoff Crompton wrote: snip A tcpdump of one such transfer (of a 2Mb file) shows the connection starts, but after about Seq=64664 (thats the tcp sequence number of the direction from myPC to 192.168.12.23) my tcpdump shows that no more packets are forwarded onto 192.168.12.23. Anyone know why? I should have mentioned, I'm running 1.2RC3. -- Geoff Crompton Debian System Administrator http://www.strategicdata.com.au Phone: +61 3 9340 9000 Fax: +61 3 9348 2015 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] connections LAN to LAN get dropped
Your reply traffic from 192.168.12.0/24 is bypassing the pfsense box and returning directly to your PC. This breaks stateful inspection. You are better off moving 192.168.12.0 behind the pfsense box on another nic, or adding a static route on your PC tht points 192.168.12.0 at the same place you are pointing pfsense to. --Bill On Jan 10, 2008 10:10 PM, Geoff Crompton [EMAIL PROTECTED] wrote: It seems if I have a tcp connection that comes in the LAN interface to my pfSense gateway, and exists the same interface, I can transfer a small amount of data before pfSense starts dropping the packets. Eg -- | router | -- | 192.168.1.1 | | 192.168.1.29 | - +---|myPC| | - | | | 192.168.1.204 | - +---|dev| | - On router I've got this static route: LAN 192.168.12.0/24 192.168.1.204 Virtual Dev machines So if I do a scp from myPC to 192.168.12.23 the traffic flows on my default route to the router, and then gets forwarded onto the dev box. A tcpdump of one such transfer (of a 2Mb file) shows the connection starts, but after about Seq=64664 (thats the tcp sequence number of the direction from myPC to 192.168.12.23) my tcpdump shows that no more packets are forwarded onto 192.168.12.23. Anyone know why? -- Geoff Crompton Debian System Administrator http://www.strategicdata.com.au Phone: +61 3 9340 9000 Fax: +61 3 9348 2015 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
