Re: [pfSense Support] Aliases for QDN
k_o_l wrote: Is it possible to create an alias for Qualified Domain Name? please, no thread hijacking. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] connecting netgear fvs124g to openvpn for site to site vpn
I have one site with a Netgear FVS124G firewall that the documentation mentions it has PKI support. Our office is running pfsense openvpn with PKI and BF-CBC. Ive tried googling how to get the netgear to connect to the pfsense firewall for site to site connectivity, but i havnt come up with anything. Does anyone know if its possible to do so, and if it is, how to do it? Ive emailed netgear support, but have yet to hear back from them. Our pfsense openvpn is already setup and we have other firewalls connecting to it via PKI and it is working great for site to site. I would like to get the netgear they already have connected to it as well if at all possible. thanks for any input. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Stuck on boot
I'm reinstall Pfsense on Pentium 4, 3.40Ghz (Intel Pentium 4 Northwood/Prescott) however, after a successful installation, it get stuck on boot with /boot/kernel/acpi.ko I tried IDE and SATA drives with the same problem, any suggestions? Thanks Sam - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Packages with pfSense embedded not an option - very sad
I have gone out and purchased a SanDisk 8GB CF Card. Using VMWare Workstation, mounted the CF as physical drive. Booted off CD, ran install to disk option, all defaults to install to CF (chose Embedded Kernel). Shut down, installed into ALIX, boot only comes up with the following: PfSense Default: F1 Can't do anything from there. Redid the above, followed the http://forum.pfsense.org/index.php?topic=12973.msg72095 (steps 1 to 14), this is of course for a CF HDD Microdrive. Specifically the da0s1a to ad0s1a entries in fstab. Still get the same thing: PfSense Default: F1 Any ideas on how to solve this? Regards, Chuck -Original Message- From: cbuech...@gmail.com [mailto:cbuech...@gmail.com] On Behalf Of Chris Buechler Sent: Thursday, January 22, 2009 10:30 PM To: support@pfsense.com Subject: Re: [pfSense Support] Packages with pfSense embedded not an option - very sad On Thu, Jan 22, 2009 at 10:18 PM, Morgan Reed morgan.s.r...@gmail.com wrote: Wear leveling is your friend. If your CF card is significantly larger than the data stored on it you'll get longer life out of it. Definitely seems to be the case, even when using half the CF. Catch is getting it installed on the 4GB CF first, I've done this once using a random CF-IDE adapter, disabling DMA in BIOS and from the loader prompt so that it'll actually work (most CF-IDE adapters aren't built in such a way that they allow the CF card to negotiate DMA like an HDD would), install ran fine, modified loader.conf to ensure DMA is turned off, it did seem to work but it took a good 20 mins to boot, so I'm not sure what the other differences are between a full and an embedded system. If you choose the embedded kernel during install, it should boot no problem. It includes disabling DMA, enabling serial console, etc. In the not too distant future we'll likely be distributing a new embedded 1.2.x, essentially a full install img for various size cards. It upgrades reliably (though pretty slowly, that doesn't really matter), and packages work fine. It'll be equivalent to installing it from iso yourself, just easier. It's easy to install to CF using a USB CF writer and VMware USB redirection. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Packages with pfSense embedded not an option - very sad
Re-do what you did, but create a 2GB partition and try again. Leave the other 6GB unused. I had this problem with an older PC and an actual 20GB hard drive-- from what I understand, it has to do with the IDE--CF adapters and how well they support LBA/DMA modes, etc. Dimitri Rodis Integrita Systems LLC -Original Message- From: Chuck Mariotti [mailto:cmario...@xunity.com] Sent: Monday, January 26, 2009 9:40 AM To: support@pfsense.com Subject: RE: [pfSense Support] Packages with pfSense embedded not an option - very sad I have gone out and purchased a SanDisk 8GB CF Card. Using VMWare Workstation, mounted the CF as physical drive. Booted off CD, ran install to disk option, all defaults to install to CF (chose Embedded Kernel). Shut down, installed into ALIX, boot only comes up with the following: PfSense Default: F1 Can't do anything from there. Redid the above, followed the http://forum.pfsense.org/index.php?topic=12973.msg72095 (steps 1 to 14), this is of course for a CF HDD Microdrive. Specifically the da0s1a to ad0s1a entries in fstab. Still get the same thing: PfSense Default: F1 Any ideas on how to solve this? Regards, Chuck -Original Message- From: cbuech...@gmail.com [mailto:cbuech...@gmail.com] On Behalf Of Chris Buechler Sent: Thursday, January 22, 2009 10:30 PM To: support@pfsense.com Subject: Re: [pfSense Support] Packages with pfSense embedded not an option - very sad On Thu, Jan 22, 2009 at 10:18 PM, Morgan Reed morgan.s.r...@gmail.com wrote: Wear leveling is your friend. If your CF card is significantly larger than the data stored on it you'll get longer life out of it. Definitely seems to be the case, even when using half the CF. Catch is getting it installed on the 4GB CF first, I've done this once using a random CF-IDE adapter, disabling DMA in BIOS and from the loader prompt so that it'll actually work (most CF-IDE adapters aren't built in such a way that they allow the CF card to negotiate DMA like an HDD would), install ran fine, modified loader.conf to ensure DMA is turned off, it did seem to work but it took a good 20 mins to boot, so I'm not sure what the other differences are between a full and an embedded system. If you choose the embedded kernel during install, it should boot no problem. It includes disabling DMA, enabling serial console, etc. In the not too distant future we'll likely be distributing a new embedded 1.2.x, essentially a full install img for various size cards. It upgrades reliably (though pretty slowly, that doesn't really matter), and packages work fine. It'll be equivalent to installing it from iso yourself, just easier. It's easy to install to CF using a USB CF writer and VMware USB redirection. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org smime.p7s Description: S/MIME cryptographic signature
Re: [pfSense Support] Stuck on boot
On Mon, Jan 26, 2009 at 9:05 AM, k_o_l k_...@hotmail.com wrote: I'm reinstall Pfsense on Pentium 4, 3.40Ghz (Intel Pentium 4 Northwood/Prescott) however, after a successful installation, it get stuck on boot with /boot/kernel/acpi.ko I tried IDE and SATA drives with the same problem, any suggestions? What version of pfSense? Try the following: 1. Make sure bios is the latest version. 2. Reset bios to defaults 3. Make sure you're using the latest pfSense. If already trying 1.2.2, give the latest 1.2.3-snapshot a try. -Dave - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Error While Mounting fd0 when trying to save config
Greetings all. I'd imagine I'm doing something utterly stupid, but why in the heck can't I save my config to floppy? When selecting 98 it shows fd0 as an available device but when I say, ok go ahead and save to fd0 it kicks back the Error while mounting fd0 error message and drops me back into the console setup. I've swapped drives and disks to no avail. Any ideas would be greatly appreciated. Thanks, -Marty
RE: [pfSense Support] Stuck on boot
Thanks Dave, I tried all with no luck -Original Message- From: David Rees [mailto:dree...@gmail.com] Sent: Monday, January 26, 2009 2:25 PM To: support@pfsense.com Subject: Re: [pfSense Support] Stuck on boot On Mon, Jan 26, 2009 at 9:05 AM, k_o_l k_...@hotmail.com wrote: I'm reinstall Pfsense on Pentium 4, 3.40Ghz (Intel Pentium 4 Northwood/Prescott) however, after a successful installation, it get stuck on boot with /boot/kernel/acpi.ko I tried IDE and SATA drives with the same problem, any suggestions? What version of pfSense? Try the following: 1. Make sure bios is the latest version. 2. Reset bios to defaults 3. Make sure you're using the latest pfSense. If already trying 1.2.2, give the latest 1.2.3-snapshot a try. -Dave - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] RE: Error While Mounting fd0 when trying to save config - SOLVED - 1.2.2 problem
When going down to 1.2 it saves it to the floppy just fine. Reboots, keeps config, etc. -Marty From: Marty Nelson Sent: Monday, January 26, 2009 12:04 PM To: support@pfsense.com Subject: Error While Mounting fd0 when trying to save config Greetings all. I'd imagine I'm doing something utterly stupid, but why in the heck can't I save my config to floppy? When selecting 98 it shows fd0 as an available device but when I say, ok go ahead and save to fd0 it kicks back the Error while mounting fd0 error message and drops me back into the console setup. I've swapped drives and disks to no avail. Any ideas would be greatly appreciated. Thanks, -Marty
Re: [pfSense Support] Error While Mounting fd0 when trying to save config
On Mon, Jan 26, 2009 at 3:04 PM, Marty Nelson mnel...@transdyn.com wrote: Greetings all. I'd imagine I'm doing something utterly stupid, but why in the heck can't I save my config to floppy? When selecting 98 it shows fd0 as an available device but when I say, ok go ahead and save to fd0 it kicks back the Error while mounting fd0 error message and drops me back into the console setup. Please try a 1.2.3 snapshot. A problem was fixed after 1.2.2 release concerning the MS-Dos filesystem. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Error While Mounting fd0 when trying to save config
Will do, thanks Scott. As mentioned going down to 1.2 fixed it, so the next step will be to go back up to 1.2.3. Thanks again, -Marty -Original Message- From: Scott Ullrich [mailto:sullr...@gmail.com] Sent: Monday, January 26, 2009 12:25 PM To: support@pfsense.com Subject: Re: [pfSense Support] Error While Mounting fd0 when trying to save config On Mon, Jan 26, 2009 at 3:04 PM, Marty Nelson mnel...@transdyn.com wrote: Greetings all. I'd imagine I'm doing something utterly stupid, but why in the heck can't I save my config to floppy? When selecting 98 it shows fd0 as an available device but when I say, ok go ahead and save to fd0 it kicks back the Error while mounting fd0 error message and drops me back into the console setup. Please try a 1.2.3 snapshot. A problem was fixed after 1.2.2 release concerning the MS-Dos filesystem. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Stuck on boot
On Mon, Jan 26, 2009 at 12:20 PM, k_o_l k_...@hotmail.com wrote: Thanks Dave, I tried all with no luck OK, try disabling acpi to see if that helps: http://devwiki.pfsense.org/BootOptions -Dave - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] outdated bogon networks?
I setup my first pfsense box over the weekend and I am having trouble with connection attempts from an IP address at 173.32.x.x. I checked that address space here http://www.iana.org/assignments/ipv4-address-space/ and it says it was allocated not over a year ago. Connections and ICMP packets respond from every other connection I've tried, so I'm wondering if the default Block Bogon Networks rule are blocking my connection from the 173.x.x.x network. Is there a place on the pfsense box where I can view what it considers to be a bogon network? And where does it get the knowledge of bogon networks (via updates/online repo) from? Thanks - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Re: outdated bogon networks?
I just read an archived message re:bogon networks here http://article.gmane.org/gmane.comp.security.firewalls.pfsense.support/11791/match=bogon and it appears that this rule isnt whats blocking my traffic. However if anyone has any other suggestions I'm all ears. On Mon, Jan 26, 2009 at 3:56 PM, Jonathan Reed jreed...@gmail.com wrote: I setup my first pfsense box over the weekend and I am having trouble with connection attempts from an IP address at 173.32.x.x. I checked that address space here http://www.iana.org/assignments/ipv4-address-space/ and it says it was allocated not over a year ago. Connections and ICMP packets respond from every other connection I've tried, so I'm wondering if the default Block Bogon Networks rule are blocking my connection from the 173.x.x.x network. Is there a place on the pfsense box where I can view what it considers to be a bogon network? And where does it get the knowledge of bogon networks (via updates/online repo) from? Thanks - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] outdated bogon networks?
On Mon, Jan 26, 2009 at 12:56 PM, Jonathan Reed jreed...@gmail.com wrote: I setup my first pfsense box over the weekend and I am having trouble with connection attempts from an IP address at 173.32.x.x. I checked that address space here http://www.iana.org/assignments/ipv4-address-space/ and it says it was allocated not over a year ago. Connections and ICMP packets respond from every other connection I've tried, so I'm wondering if the default Block Bogon Networks rule are blocking my connection from the 173.x.x.x network. Is there a place on the pfsense box where I can view what it considers to be a bogon network? And where does it get the knowledge of bogon networks (via updates/online repo) from? http://www.mail-archive.com/support@pfsense.com/msg15272.html -Dave - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Packages with pfSense embedded not an option - very sad
Le Mon, 26 Jan 2009 12:40:05 -0500, Chuck Mariotti cmario...@xunity.com a écrit : I have gone out and purchased a SanDisk 8GB CF Card. Using VMWare Workstation, mounted the CF as physical drive. Booted off CD, ran install to disk option, all defaults to install to CF (chose Embedded Kernel). Shut down, installed into ALIX, boot only comes up with the following: PfSense Default: F1 Can't do anything from there. Redid the above, followed the http://forum.pfsense.org/index.php?topic=12973.msg72095 (steps 1 to 14), this is of course for a CF HDD Microdrive. Specifically the da0s1a to ad0s1a entries in fstab. Still get the same thing: PfSense Default: F1 Any ideas on how to solve this? Hello, For the first time I guess I can help on this list, so I try ! When installing, don't select any bootloader (nor grub nor Bootblock) on your CF card with installer system, then, before to reboot, go in a shell and run the following command : boot0cfg -B -o nopacket,noupdate -b /boot/boot0sio -s 1 -t 1 ad0 (see also http://devwiki.pfsense.org/FullInstallOnWRAP) Fred. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] outdated bogon networks?
Thanks Dave. That thread led me to checking the bogons file which was outdated. 173/8 was there and I'm running rc.update_bogons.sh to correct it. On Mon, Jan 26, 2009 at 4:00 PM, David Rees dree...@gmail.com wrote: On Mon, Jan 26, 2009 at 12:56 PM, Jonathan Reed jreed...@gmail.com wrote: I setup my first pfsense box over the weekend and I am having trouble with connection attempts from an IP address at 173.32.x.x. I checked that address space here http://www.iana.org/assignments/ipv4-address-space/ and it says it was allocated not over a year ago. Connections and ICMP packets respond from every other connection I've tried, so I'm wondering if the default Block Bogon Networks rule are blocking my connection from the 173.x.x.x network. Is there a place on the pfsense box where I can view what it considers to be a bogon network? And where does it get the knowledge of bogon networks (via updates/online repo) from? http://www.mail-archive.com/support@pfsense.com/msg15272.html -Dave - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
