Re: [pfSense Support] PPPoE gets disconnected on WAN port
Hello... Since the situation has not improved, I'm re-posting this :-( If you have any idea what I could/should try, it would be very nice... At the moment I have about 3-4 disconnects per day, and according to the ISP everything is fine (line, etc.) thanks regards, Olivier On Mon, 2008-04-07 at 11:46 +0200, Olivier Mueller wrote: On Tue, 2008-04-01 at 09:14 +0200, Olivier Mueller wrote: On Tue, 2008-04-01 at 08:46 +0200, Olivier Mueller wrote: pfSense Version: 1.2-Release. Still looking for a solution too... :) Activated syslog to a remote pc to be able to debug this problem if it occurs again today. Et voila, it just happened again: And about 2-3 times this weekend and 2 times this morning... Apr 7 09:20:28 gw mpd: [pppoe] PPPoE connection closed Apr 7 09:20:28 gw mpd: [pppoe] device: DOWN event in state UP Apr 7 09:20:28 gw mpd: [pppoe] device is now in state DOWN Apr 7 09:20:28 gw mpd: [pppoe] link: DOWN event Apr 7 09:20:28 gw mpd: [pppoe] LCP: Down event Apr 7 09:20:28 gw mpd: [pppoe] LCP: state change Opened -- Starting Apr 7 09:20:28 gw mpd: [pppoe] LCP: phase shift NETWORK -- DEAD Apr 7 09:20:28 gw mpd: [pppoe] setting interface ng0 MTU to 1500 bytes Apr 7 09:20:28 gw mpd: [pppoe] up: 0 links, total bandwidth 9600 bps Apr 7 09:20:28 gw mpd: [pppoe] IPCP: Down event Apr 7 09:20:28 gw mpd: [pppoe] IPCP: state change Opened -- Starting Apr 7 09:20:28 gw mpd: [pppoe] IPCP: LayerDown Apr 7 09:20:28 gw mpd: [pppoe] IFACE: Down event According to the Zyxel VDSL router, the dsl link was always up... Is there any way to debug that a bit deeper? Without the pfsense box it worked fine, without pppoE disconnects, so I guess it's pfsense-related. thanks regards, Olivier - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] pfSensce - SIP Limitations
Hello, I am having trouble to configure the pfsense. Any help appreciate. I am using the most recent pfSense 1.2-RELEASE built on Sun Feb 24 17:04:58 EST 2008 Newtwork 1 - - Asterisk server running with a Public IP address. No Firewalls. Network 2 with pfSense -- - Two Astra Phones behind the pfsense firewall trying to register with the Remote asterisk server. - Only one client can connect at a time? - But when I use a Linksys or snapgear it works works for me. Is this a pfSense Limitaion related to SIP or Am I missing something in the pfsense settings ? Also I find the following from the pfSense web site ... www.pfsense.com - info - features *SIP Limitation - By default, all TCP and UDP traffic other than SIP and IPsec gets the source port rewritten. More information on this can be found in the static port documentation. Because this source port rewriting is how pf tracks which internal IP made the connection to the given external server, and most all SIP traffic uses the same source port, only one SIP device can connect simultaneously to a single server on the Internet. Unless your SIP devices can operate with source port rewriting (most can't), you cannot use multiple phones with a single outside server without using a dedicated public IP per device. The sipproxd package will provide a work around for this issue, and is currently under development.* Any help help appreciate. Thank you Lloyd
Re: [pfSense Support] pfSensce - SIP Limitations
Are the Astra phones NAT aware? -- Curtis LaMasters http://www.curtis-lamasters.com http://www.builtnetworks.com
Re: [pfSense Support] pfSensce - SIP Limitations
Yes the phones are NAT aware. Astra 9133i and 480 These phones work with the linksys router with NAT Thank you Lloyd On Wed, Apr 16, 2008 at 11:41 AM, Curtis LaMasters [EMAIL PROTECTED] wrote: Are the Astra phones NAT aware? -- Curtis LaMasters http://www.curtis-lamasters.com http://www.builtnetworks.com
Re: [pfSense Support] PPPoE gets disconnected on WAN port
Olivier Have you tried successively issuing the commands ifconfig em0 down ifconfig em0 up from http://[LANIP]/exec.php where em0 is your WAN interface Give that a try and see what happens and do let us know please. Kind regards David Hingston - Original Message - From: Olivier Mueller [EMAIL PROTECTED] To: support@pfsense.com Sent: Thursday, April 17, 2008 1:46 AM Subject: Re: [pfSense Support] PPPoE gets disconnected on WAN port Hello... Since the situation has not improved, I'm re-posting this :-( If you have any idea what I could/should try, it would be very nice... At the moment I have about 3-4 disconnects per day, and according to the ISP everything is fine (line, etc.) thanks regards, Olivier On Mon, 2008-04-07 at 11:46 +0200, Olivier Mueller wrote: On Tue, 2008-04-01 at 09:14 +0200, Olivier Mueller wrote: On Tue, 2008-04-01 at 08:46 +0200, Olivier Mueller wrote: pfSense Version: 1.2-Release. Still looking for a solution too... :) Activated syslog to a remote pc to be able to debug this problem if it occurs again today. Et voila, it just happened again: And about 2-3 times this weekend and 2 times this morning... Apr 7 09:20:28 gw mpd: [pppoe] PPPoE connection closed Apr 7 09:20:28 gw mpd: [pppoe] device: DOWN event in state UP Apr 7 09:20:28 gw mpd: [pppoe] device is now in state DOWN Apr 7 09:20:28 gw mpd: [pppoe] link: DOWN event Apr 7 09:20:28 gw mpd: [pppoe] LCP: Down event Apr 7 09:20:28 gw mpd: [pppoe] LCP: state change Opened -- Starting Apr 7 09:20:28 gw mpd: [pppoe] LCP: phase shift NETWORK -- DEAD Apr 7 09:20:28 gw mpd: [pppoe] setting interface ng0 MTU to 1500 bytes Apr 7 09:20:28 gw mpd: [pppoe] up: 0 links, total bandwidth 9600 bps Apr 7 09:20:28 gw mpd: [pppoe] IPCP: Down event Apr 7 09:20:28 gw mpd: [pppoe] IPCP: state change Opened -- Starting Apr 7 09:20:28 gw mpd: [pppoe] IPCP: LayerDown Apr 7 09:20:28 gw mpd: [pppoe] IFACE: Down event According to the Zyxel VDSL router, the dsl link was always up... Is there any way to debug that a bit deeper? Without the pfsense box it worked fine, without pppoE disconnects, so I guess it's pfsense-related. thanks regards, Olivier - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] PPPoE gets disconnected on WAN port
Also what are you guys respective NIC's brand, model and chip? Kind regards David Hingston - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] check_reload_status.log
What is check_reload_status intended to do and achieve? Why does it get triggered? (Frequently as it does in one of my boxes) Kind regards David Hingston Florian, The larger question is why you haven't upgraded to 1.2-RELEASE since its been out for several months now? -Gary @pfsense.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] check_reload_status.log
On 4/16/08, Tortise [EMAIL PROTECTED] wrote: What is check_reload_status intended to do and achieve? It is responsible for reloading various subsystems after changes, etc. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [pfSense Support] PPPoE gets disconnected on WAN port
I suggest you to use intel nics... they work very well right out of the box... -Ursprüngliche Nachricht- Von: Tortise [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 16. April 2008 21:41 An: support@pfsense.com Betreff: Re: [pfSense Support] PPPoE gets disconnected on WAN port Also what are you guys respective NIC's brand, model and chip? Kind regards David Hingston - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] ipsec saying: racoon: INFO: unsupported PF_KEY message REGISTER
I havent got all settings for the other end (3rd party). Is there any specific option I should look at? Gary Buckmaster wrote: Sounds like you have the two different ends of your tunnel configured differently. Double check both configurations and make sure they match exactly. Fabio C Flores wrote: Hi there, Im trying to setup a site-to-site ipsec VPN, when I start the serveice I get unsupported PF_KEY message REGISTER. I tried the forum but couldnt find any clues or solution. Im not sure if its a known issue. Apr 7 11:11:34 racoon: INFO: unsupported PF_KEY message REGISTER Apr 7 11:11:34 racoon: *[Self]*: INFO: 10.0.2.1[500] used as isakmp port (fd=28) Apr 7 11:11:34 racoon: INFO: fe80::215:17ff:fe51:4a16%em0[500] used as isakmp port (fd=27) Apr 7 11:11:34 racoon: *[Self]*: INFO: xxx.xxx.xxx.xx[500] used as isakmp port (fd=26) Apr 7 11:11:34 racoon: INFO: fe80::215:17ff:fe51:4a17%em1[500] used as isakmp port (fd=25) Apr 7 11:11:34 racoon: *[Self]*: INFO: 10.1.0.1[500] used as isakmp port (fd=24) Apr 7 11:11:34 racoon: INFO: fe80::21c:23ff:fee1:f7d1%bge0[500] used as isakmp port (fd=23) Apr 7 11:11:34 racoon: *[Self]*: INFO: 10.0.2.4[500] used as isakmp port (fd=22) Apr 7 11:11:34 racoon: INFO: fe80::21c:23ff:fee1:f7d2%bge1[500] used as isakmp port (fd=21) Apr 7 11:11:34 racoon: *[Self]*: INFO: 127.0.0.1[500] used as isakmp port (fd=20) Apr 7 11:11:34 racoon: INFO: ::1[500] used as isakmp port (fd=19) Apr 7 11:11:34 racoon: INFO: fe80::1%lo0[500] used as isakmp port (fd=18) Apr 7 11:11:34 racoon: *[Self]*: INFO: xxx.xxx.xxx.xx[500] used as isakmp port (fd=17) Apr 7 11:11:34 racoon: INFO: fe80::215:17ff:fe51:4a16%tun0[500] used as isakmp port (fd=16) Apr 7 11:11:34 racoon: *[Self]*: INFO: 192.168.66.1[500] used as isakmp port (fd=15) Apr 7 11:11:34 racoon: *[Self]*: INFO: 10.0.2.6[500] used as isakmp port (fd=14) Apr 7 11:11:34 racoon: INFO: fe80::215:17ff:fe51:4a16%lagg0[500] used as isakmp port (fd=13) Apr 7 11:11:34 racoon: INFO: @(#)This product linked OpenSSL 0.9.7e-p1 25 Oct 2004 (http://www.openssl.org/) Apr 7 11:11:34 racoon: INFO: @(#)ipsec-tools 0.6.7 (http://ipsec-tools.sourceforge.net) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Who has some good numbers to share for load balancing?
Good afternoon PFsense fans, Greetings from the sunny central cost of California. I am currently pricing out several load balancer solutions. The requirements are pretty basic; -Redundancy (CARP) -Sticky -intelligent load balancing of TCP services (fail a load balanced node/server out of the pool when the service fails) -ability to manually pull nodes out of the pool for maintenance without affecting customers So I know that PF supports all of these requirements and is a good inexpensive candidate for the project. What I am now trying to get a handle on is what can I expect for connections/sec? The proposed hw platform for the PF's is; CPU: Intel Pentium E2140 Dual-Core 1.60GHz, 1MB L2 Cache, 800MHz LGA775 RAM: 1GB (2 x 512MB) Unbuffered ECC DDR2-667 NIC: Dual 10/100/1000 Mbps NICs (Intel 82573L + 82573V) - Integrated PCIe x8: Intel PRO/1000 PT Dual Port Server Adapter - 2 x GbE (RJ45) - PCIe x4 Fixed Drive - 1: 160GB Western Digital RE (3.0Gb/s, 7.2Krpm, 16MB Cache) SATA Anyone on the list have some benchmarks they could pass along? TIA. -W -- Wade Blackwell Integrity is often more painful and always more profitable than perception management - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] PPPoE gets disconnected on WAN port
On Wed, Apr 16, 2008 at 9:46 AM, Olivier Mueller [EMAIL PROTECTED] wrote: Hello... Since the situation has not improved, I'm re-posting this :-( If you have any idea what I could/should try, it would be very nice... At the moment I have about 3-4 disconnects per day, and according to the ISP everything is fine (line, etc.) Open up /etc/inc/interfaces.inc in Diagnostics - Edit, and go down to under: set bundle disable multilink set bundle authname {$pppoecfg['username']} set bundle password {$pppoecfg['password']} which is line 1242, and add the following line beneath that: set bundle no noretry Then save the file and reboot. Let us know if that makes any difference. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] ipsec saying: racoon: INFO: unsupported PF_KEY message REGISTER
On Wed, Apr 16, 2008 at 4:41 PM, Fabio C Flores [EMAIL PROTECTED] wrote: I havent got all settings for the other end (3rd party). Is there any specific option I should look at? Not really, you need to get all the configuration details from the other end, and make sure they aren't using any incompatible options like xauth, PFS, and possibly others. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]