[pfSense Support] Support CARP active/active

[cassio lima]

hi freinds
pfsense  in the support carp  mode active / active and how I
can configure?

Re: [pfSense Support] OpenVPN stopped connecting

[Paul]

Chris Buechler wrote:

On Sun, Feb 15, 2009 at 9:33 PM, Paul  wrote:
  

That was it.. thank you.
Do I need to create a custom route table.? Its connected but can't pass
traffic or ping




Depends on how you have OpenVPN configured, it can add routes for you,
or you can add them manually.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

  
Progress. I changed dev tap to dev tun on the ovpn config file as the 
log set it didnt match the server. What does this actually do? After 
that it pulled the network from the pfsense server


-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] OpenVPN stopped connecting

[Paul]

Chris Buechler wrote:

On Sun, Feb 15, 2009 at 9:33 PM, Paul  wrote:
  

That was it.. thank you.
Do I need to create a custom route table.? Its connected but can't pass
traffic or ping




Depends on how you have OpenVPN configured, it can add routes for you,
or you can add them manually.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

  
On the server tab on the pfsense I have address pool set to 
172.168.0.0/24 and Local Network set to 192.168.2.0/24 shouldnt this be 
creating a route when the client connects


-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] OpenVPN stopped connecting

[Paul]

Chris Buechler wrote:

On Sun, Feb 15, 2009 at 9:33 PM, Paul  wrote:
  

That was it.. thank you.
Do I need to create a custom route table.? Its connected but can't pass
traffic or ping




Depends on how you have OpenVPN configured, it can add routes for you,
or you can add them manually.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

  
What would be the best option. I'm planning on using 2 remote clients 
mobile, and  2 dd-wrt routers accessing the LAN

How would I set it up



-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] OpenVPN stopped connecting

[Chris Buechler]

On Sun, Feb 15, 2009 at 9:33 PM, Paul  wrote:
>
> That was it.. thank you.
> Do I need to create a custom route table.? Its connected but can't pass
> traffic or ping
>

Depends on how you have OpenVPN configured, it can add routes for you,
or you can add them manually.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] OpenVPN stopped connecting

[Paul]

Chris Buechler wrote:

On Sun, Feb 15, 2009 at 8:09 PM, Paul  wrote:
  

PFSense Firewall Rule::
Proto: UDP
Source: Any
Port 1194
Destination Any
Port Any
GW Any




Destination port is 1194, not source.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

  

That was it.. thank you.
Do I need to create a custom route table.? Its connected but can't pass 
traffic or ping


-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] OpenVPN stopped connecting

[Chris Buechler]

On Sun, Feb 15, 2009 at 8:09 PM, Paul  wrote:
>
> PFSense Firewall Rule::
> Proto: UDP
> Source: Any
> Port 1194
> Destination Any
> Port Any
> GW Any
>

Destination port is 1194, not source.

-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

[pfSense Support] OpenVPN stopped connecting

[Paul]

Testing out OpenVPN connection. Need to connect a DD-WRT router (Client) 
to connect to a PFSense box (server) I'm having issues getting to work. 
I installed a test connection on a laptop. It connected once 
successfully. Was able to ping the pfsense but not access anything on 
the lan. I disconnected and now it does not want to reconnect. Heres the 
Log file from the client end.
Sun Feb 15 18:40:04 2009 OpenVPN 2.1_rc15 i686-pc-mingw32 [SSL] [LZO2] 
[PKCS11] built on Nov 19 2008
Sun Feb 15 18:40:04 2009 NOTE: OpenVPN 2.1 requires '--script-security 
2' or higher to call user-defined scripts or executables

Sun Feb 15 18:40:04 2009 LZO compression initialized
Sun Feb 15 18:40:04 2009 Control Channel MTU parms [ L:1542 D:138 EF:38 
EB:0 ET:0 EL:0 ]
Sun Feb 15 18:40:04 2009 Data Channel MTU parms [ L:1542 D:1450 EF:42 
EB:135 ET:0 EL:0 AF:3/1 ]

Sun Feb 15 18:40:04 2009 Local Options hash (VER=V4): '41690919'
Sun Feb 15 18:40:04 2009 Expected Remote Options hash (VER=V4): '530fdded'
Sun Feb 15 18:40:04 2009 Socket Buffers: R=[8192->8192] S=[8192->8192]
Sun Feb 15 18:40:04 2009 UDPv4 link local: [undef]
Sun Feb 15 18:40:04 2009 UDPv4 link remote: ipaddress of pfsense:1194

PFSense Firewall Rule::
Proto: UDP
Source: Any
Port 1194
Destination Any
Port Any
GW Any
On the log file below the GW listed is not pfsense but the address of 
the t1 router. Which would be the gw for the pfsense i guess.

Feb 15 18:28:53 openvpn[84412]: Initialization Sequence Completed
Feb 15 18:28:53 openvpn[84412]: UDPv4 link remote: [undef]
Feb 15 18:28:53 openvpn[84412]: UDPv4 link local (bound): [undef]:1194
Feb 15 18:28:52 	openvpn[84400]: /etc/rc.filter_configure tun0 1500 1542 
172.168.0.1 172.168.0.2 init
Feb 15 18:28:52 	openvpn[84400]: /sbin/ifconfig tun0 172.168.0.1 
172.168.0.2 mtu 1500 netmask 255.255.255.255 up

Feb 15 18:28:52 openvpn[84400]: TUN/TAP device /dev/tun0 opened
Feb 15 18:28:52 openvpn[84400]: gw x.x.x.x (
Feb 15 18:28:52 	openvpn[84400]: WARNING: file 
'/var/etc/openvpn_server0.key' is group or others accessible
Feb 15 18:28:52 	openvpn[84400]: OpenVPN 2.0.6 i386-portbld-freebsd6.2 
[SSL] [LZO] built on Sep 13 2007

Feb 15 18:28:51 openvpn[83446]: SIGTERM[hard,] received, process exiting
Feb 15 18:28:50 	openvpn[83446]: /etc/rc.filter_configure tun0 1500 1542 
172.168.0.1 172.168.0.2 init
Feb 15 18:28:50 	openvpn[83446]: event_wait : Interrupted system call 
(code=4)

Feb 15 18:22:33 openvpn[83446]: Initialization Sequence Completed
Feb 15 18:22:33 openvpn[83446]: UDPv4 link remote: [undef]
Feb 15 18:22:33 openvpn[83446]: UDPv4 link local (bound): [undef]:1194
Feb 15 18:22:32 	openvpn[83423]: /etc/rc.filter_configure tun0 1500 1542 
172.168.0.1 172.168.0.2 init
Feb 15 18:22:32 	openvpn[83423]: /sbin/ifconfig tun0 172.168.0.1 
172.168.0.2 mtu 1500 netmask 255.255.255.255 up

Feb 15 18:22:32 openvpn[83423]: TUN/TAP device /dev/tun0 opened


Thanks to anyone for any help. Scouring the net and forums it appears 
that I have everything correct. I'm just starting down this road so I'm 
definately a fresh newcomer to the openvpn scene. Everyone says its hard 
to setup but once working its stable as stable can get


-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com

Commercial support available - https://portal.pfsense.org

[pfSense Support] Date Change Bug

[Nathan Eisenberg]

Hello,

I recently changed the timezone on one of our PFSense boxes, as it thought it 
was 12 hours ahead of where it actually is.  Since I have made that change, 
states do not appear to be expiring normally, and the logs are still labeled 
with the old date/time offset.  However, the result of 'date' in the command 
line is correct.

Restarting this box is pretty difficult, although I am confident that a reboot 
would fix the issue.  Do I have any other options?

Best Regards,
Nathan Eisenberg
Atlas Networks, LLC
Phone: 206-577-3078
supp...@atlasnetworks.us
www.atlasnetworks.us