Re: [pfSense Support] Problem with Polish provider
Hello, no wierd messages. What i see is a Message Link down and one second later link up and then the pfsense wall do all the stuff for this event. Bring up all daemons dyndns dhcp and so on. This causes 100% CPU Time. As i know i have standard TCP/IP Port. I configured the WAN Port the same way as i do for a connecting in standard LAN. You know, the same Way if you have a direct connection to a switch, and dhcp server . As a short Workaround i do a static config for the WAN port and now the Provider Changes the IP .. ähem not really we lost conectivity while the Pfsense don't use dhcp now. I don't know why i lost the Link if dhcp is on. Is it a Hardware Problem ? Its Realtek Gigabit Chip. Or is it the dhcp implemtation ? Greetings Markus Curtis LaMasters schrieb: With pfSense in place did you get any wierd log messages relating to arp? How is your ISP delivering their connectivity to you? Curtis On Jan 16, 2008 10:02 AM, Markus Helfrich [EMAIL PROTECTED] wrote: Hi, not a laptop but Zyxcel Router with dhcp enabled. This appliance works with no problems Markus Curtis LaMasters schrieb: Markus, Have you tried hooking up a typical laptop (xp, vista, linux) to the network connection and gotten a reliable connection with dhcp? Curtis -- __ Dipl. Inf. (FH) Markus Helfrich Fachhochschule Kaiserslautern Standort Zweibrücken Amerikastr. 1 66482 Zweibrücken Tel.: +49 6332 914 154 Fax.: +49 6332 914 155 mailto: [EMAIL PROTECTED] PGP KeyID 0x47B902D0 _ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- __ Dipl. Inf. (FH) Markus Helfrich Fachhochschule Kaiserslautern Standort Zweibrücken Amerikastr. 1 66482 Zweibrücken Tel.: +49 6332 914 154 Fax.: +49 6332 914 155 mailto: [EMAIL PROTECTED] PGP KeyID 0x47B902D0 _ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released!
no way... thats from where i downloaded it as well and it works fine... do you have some kind of services between the client and the server (such as transparent firewalls or else with AV capabilities) ? We once had such a device and every archive was corrupted afterwards... Regards, Martin Von: Jeroen Gesendet: Mi 16.01.2008 23:39 An: support@pfsense.com Betreff: Re: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released! On Jan 16, 2008 11:35 PM, Scott Ullrich [EMAIL PROTECTED] wrote: This seems to occur every release. Are you using IE? If so, then IE automatically decompresses the file and forgets to change the filename suffix. Scott PS: If you are using IE, try firefox. Same here with FF. Downloaded from http://pfsense.iserv.nl/updates/. -- Jeroen
Re: [pfSense Support] Flash UPNP attack
Being that UPnP is generally a security-stupid protocol, if you're paranoid about such things, it would be a good idea to disable UPnP. I don't know if anyone has specifically tested this issue against pfSense, but I wouldn't be surprised if we're affected. Again, UPnP is a dumb protocol. tester wrote: Hello, as subject, being worried I'd like to know if pfSense's UPNP implementation is also affected: should I disable UPNP? If you still don't know it, read 'Flash UPnP Attack FAQ' at http://www.gnucitizen.org/blog/flash-upnp-attack-faq Bye ___ Support the World Aids Awareness campaign this month with Yahoo! For Good http://uk.promotions.yahoo.com/forgood/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Flash UPNP attack
Hello, as subject, being worried I'd like to know if pfSense's UPNP implementation is also affected: should I disable UPNP? If you still don't know it, read 'Flash UPnP Attack FAQ' at http://www.gnucitizen.org/blog/flash-upnp-attack-faq Bye ___ Support the World Aids Awareness campaign this month with Yahoo! For Good http://uk.promotions.yahoo.com/forgood/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released!
Log in and on the first sceen it should show the version. Or you can go to Status System -Original Message- From: Ngawang Sangye [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 6:33 PM To: support@pfsense.com Subject: Re: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released! i did the firmware upgrade with the update, I don't see that it has been upgraded? How can you see if the upgrade was successful? Thanks Sangye On 17/01/2008, Jeroen [EMAIL PROTECTED] wrote: On Jan 17, 2008 12:35 AM, Ryan Rodrigue [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: alright. Im goofy. I guess i just got used to decompressing the image before burning to cd. And the 7zip works fine for the ISO. thanks, Ryan Not really, it's also just smart to check whether the archive is in mint condition before you feed it to the box :) pfSense will probably also double-check it, but you never know. Time to go to sleep. Will report if I find any bugs tomorrow. -- Jeroen
Re: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released!
Don't know how it happened and it's unlikely that I can replicate it (tried on a VM this AM), but the upgrade on one system resulted in no DNS server listening on UDP/53. It shows tinydns running on TCP/53, but dnsmasq isn't running, and I don't have the tinydns package installed. The VM just has dnsmasq. Any suggestions? RB - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Problem with Polish provider
Hello, update: The Equipment from the Provider is an Cablemodem, and the Hostnames in the Providers DNS consists the Last part of the ip i.e. 111-11.echostar.pl It is Motorola Cable Modem SB5101 Put DHCP on and link goes up down up down Markus Markus Helfrich schrieb: Hello, no wierd messages. What i see is a Message Link down and one second later link up and then the pfsense wall do all the stuff for this event. Bring up all daemons dyndns dhcp and so on. This causes 100% CPU Time. As i know i have standard TCP/IP Port. I configured the WAN Port the same way as i do for a connecting in standard LAN. You know, the same Way if you have a direct connection to a switch, and dhcp server . As a short Workaround i do a static config for the WAN port and now the Provider Changes the IP .. ähem not really we lost conectivity while the Pfsense don't use dhcp now. I don't know why i lost the Link if dhcp is on. Is it a Hardware Problem ? Its Realtek Gigabit Chip. Or is it the dhcp implemtation ? Greetings Markus Curtis LaMasters schrieb: With pfSense in place did you get any wierd log messages relating to arp? How is your ISP delivering their connectivity to you? Curtis On Jan 16, 2008 10:02 AM, Markus Helfrich [EMAIL PROTECTED] wrote: Hi, not a laptop but Zyxcel Router with dhcp enabled. This appliance works with no problems Markus Curtis LaMasters schrieb: Markus, Have you tried hooking up a typical laptop (xp, vista, linux) to the network connection and gotten a reliable connection with dhcp? Curtis -- __ Dipl. Inf. (FH) Markus Helfrich Fachhochschule Kaiserslautern Standort Zweibrücken Amerikastr. 1 66482 Zweibrücken Tel.: +49 6332 914 154 Fax.: +49 6332 914 155 mailto: [EMAIL PROTECTED] PGP KeyID 0x47B902D0 _ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- __ Dipl. Inf. (FH) Markus Helfrich Fachhochschule Kaiserslautern Standort Zweibrücken Amerikastr. 1 66482 Zweibrücken Tel.: +49 6332 914 154 Fax.: +49 6332 914 155 mailto: [EMAIL PROTECTED] PGP KeyID 0x47B902D0 _ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Traffic Graph kills FireFox 2.0.0.11
Scott Ullrich wrote: On Jan 17, 2008 1:24 AM, Chuck Benson [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: The only additions I can make right now, are that I did try with a priv account with all extensions disabled. The fault occurs in ivplugin.dll. Good ol' Norton Internet Security installed?? Scott Oh, I see. That probably is the source of the difficulty. Thank you. I wonder if that is what the previous cases were too. Chuck Benson - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Traffic Graph kills FireFox 2.0.0.11
Scott Ullrich wrote: On Jan 17, 2008 1:24 AM, Chuck Benson [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: The only additions I can make right now, are that I did try with a priv account with all extensions disabled. The fault occurs in ivplugin.dll. Good ol' Norton Internet Security installed?? Scott Yes, is this a problem? Chuck Benson
Re: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4 released!
Ok - I did the update again and it killed my system, after that it just didn't quite manage to give an IP address to its LAN Nic. All the Nics are good intel pro 1000 gt. So I reinstalled and reloaded a backup of the settings and its back to normal. I would avoid the upgrade - there seems to be something on the blog warning about that too. Regards Sangye On 17/01/2008, Ryan Rodrigue [EMAIL PROTECTED] wrote: Log in and on the first sceen it should show the version. Or you can go to Status System -Original Message- *From:* Ngawang Sangye [mailto:[EMAIL PROTECTED] *Sent:* Wednesday, January 16, 2008 6:33 PM *To:* support@pfsense.com *Subject:* Re: [pfSense Support] RE: [pfSense-discussion] 1.2-RC4released! i did the firmware upgrade with the update, I don't see that it has been upgraded? How can you see if the upgrade was successful? Thanks Sangye On 17/01/2008, Jeroen [EMAIL PROTECTED] wrote: On Jan 17, 2008 12:35 AM, Ryan Rodrigue [EMAIL PROTECTED] wrote: alright. Im goofy. I guess i just got used to decompressing the image before burning to cd. And the 7zip works fine for the ISO. thanks, Ryan Not really, it's also just smart to check whether the archive is in mint condition before you feed it to the box :) pfSense will probably also double-check it, but you never know. Time to go to sleep. Will report if I find any bugs tomorrow. -- Jeroen
[pfSense Support] Dropped WAN connections
Good Afternoon All, I have a satellite internet connection, both in and out, attached to a pfSense 1.2RC3 box. Lately I have been having a connection issue keeping my connection stable on the stat elite for some unknown reason. When the connection gets dropped it usually comes back up a short time later but it seems that the pfSense box does not always either reacquire an IP or sometimes it does not drop the existing one and I have to do a DHCP renew. I can do this but I do have a need to access this box from the outside world at times and if I am not on site I can not do the DHCP renew. Does anyone have any suggestions for a scheduled job to check and see if it can ping something on the outside and if not cause a DHCP renew to happen automatically or any suggestions for that matter. I am more of a Windows kind of guy so I am kind of lost in the FreeBSD. Any assistance is muchly appreciated. Thanks, Ron
Re: [pfSense Support] Pfsense + OpenVPN + Kvpnc with certificates
[EMAIL PROTECTED] wrote: Hi, did anyone install pfsense with such configuration? I am using it with the Windows GUI (Mathias one, very good indeed) but I am unable to configure it using KVPNC on Fedora. Could anyone help? TIA, Giuseppe Marullo - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] vpnc is for use with cisco vpn concentrators. what you need is along the lines of this: [EMAIL PROTECTED] ~]# rpm -qa|grep openvpn NetworkManager-openvpn-0.7.0-2.svn3047.fc8 openvpn-2.1-0.19.rc4.fc7 knetworkmanager-openvpn-0.2-0.7.fc8 cheers, -- Jonathan Horne http://dfwlpiki.dfwlp.org freebsd08 [EMAIL PROTECTED] dfwlp.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
