RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website brows
Sorry for the delay... Go to your rules for your LAN and add a new rule at the top of your ruleset (rules process top down) With the source IP you sited below, and set it to block. And yes, your machine should handle the amount of machines you require. Last, looking at the image you sent - depending on that amount of time since uptime - it doesn't look like you are getting hammered too much. What is your state table? -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Tuesday, April 14, 2009 6:25 AM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Now how can I block that IP address its not showing on our dns and im not too familiar with the pfsence fire wall please help!!! -Original Message- From: Ryan [mailto:radiote...@aaremail.com] Sent: Tuesday, April 14, 2009 9:23 AM To: support@pfsense.com Subject: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Block the IP and wait to see who complains that they are disconnected. Ryan Rodrigue Office: (985) 876-4096 Fax: (985) 853-0134 -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Tuesday, April 14, 2009 6:55 AM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Now as you see in the picture there is IP 192.168.1.147 that IP address cant be located with a computer name how can I locate who is using that IP address I have use Advance IP scanner but its saying that the IP address is dead and also look at our Dns records and nothing no computer with that IP address u think is a computer infected with malware and can you help me on how to locate it -Original Message- From: Tim Dickson [mailto:tdick...@calistogaranch.com] Sent: Monday, April 13, 2009 4:19 PM To: support@pfsense.com Subject: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing It all depends on throughput levels - but yes, I can pretty much guarantee it can handle it. (1990's hardware can handle 70 users with modest throughput), but if you are curious - what are your specs? I was more wondering if you had a couple machines with malware that may be pegging out your connections state table, or some P2P users. Check your state table and make sure it isn't maxing out. And make sure if you have P2P users, that they aren't maxing out your bandwidth. Blank MTU in your config is fine - that means it will be at 1500 - which is the standard on most connections (at least in the US). You didn't answer if all was well when bypassing the pfSense box. If it is, then start segregating things. Try it with JUST your machine - pfSense - Modem, and see how that works... this is granting your box is malware free :) - if in doubt, grab an Ubuntu LiveCD (or variant) and boot it up on your machine to test. Good luck! -Tim -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Monday, April 13, 2009 12:57 PM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Yeah just called my ISP they are checking on the modem to see if there is something wrong with it as the MTU was blank before I made any changes to it, now it got me thinking I have more than 70 computers connecting to my free BSD you think it can't handle that many ? -Original Message- From: Tim Dickson [mailto:tdick...@calistogaranch.com] Sent: Monday, April 13, 2009 2:54 PM To: support@pfsense.com Subject: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Sounds like you are pulling at straws here - but try and find out what the root of your problem is. If your packets are fragmented, then yes this will slow things down - but it could be totally irrelevant to your issue. If you bypass pfSense is everything fine? How do your traffic graphs look? (how many connections are you doing - check the state table) If it is in fact your MTU - check with your ISP on what your MTU should be, you'll want to leave it matching theirs as changing MTU will just cause MORE packet fragmentation where it isn't necessary, or causing more packets with less data. And if your MTU is correct, your traffic is minimal, and you are still having latency issues start a trace and find the routers your traffic is passing through. Then test the MTU levels to each router to find out which router is causing
RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing
Juan, This is really off topic for this list, but it sounds to me like whatever computer is using that IP is probably also running a firewall that is blocking everything, even ICMP. At this point, you could narrow down which machine it was using a managed switch if you have one. You could also visit the machines and manually look at their IP addresses. The other option (and one I'd choose) is to block all traffic from 192.168.1.147 at the firewall and see who comes to you to complain about not being able to get on the internet. Christopher Iarocci Network Solutions Manager Twin Forks Office Products 631-727-3354 -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Tuesday, April 14, 2009 7:55 AM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Now as you see in the picture there is IP 192.168.1.147 that IP address cant be located with a computer name how can I locate who is using that IP address I have use Advance IP scanner but its saying that the IP address is dead and also look at our Dns records and nothing no computer with that IP address u think is a computer infected with malware and can you help me on how to locate it -Original Message- From: Tim Dickson [mailto:tdick...@calistogaranch.com] Sent: Monday, April 13, 2009 4:19 PM To: support@pfsense.com Subject: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing It all depends on throughput levels - but yes, I can pretty much guarantee it can handle it. (1990's hardware can handle 70 users with modest throughput), but if you are curious - what are your specs? I was more wondering if you had a couple machines with malware that may be pegging out your connections state table, or some P2P users. Check your state table and make sure it isn't maxing out. And make sure if you have P2P users, that they aren't maxing out your bandwidth. Blank MTU in your config is fine - that means it will be at 1500 - which is the standard on most connections (at least in the US). You didn't answer if all was well when bypassing the pfSense box. If it is, then start segregating things. Try it with JUST your machine - pfSense - Modem, and see how that works... this is granting your box is malware free :) - if in doubt, grab an Ubuntu LiveCD (or variant) and boot it up on your machine to test. Good luck! -Tim -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Monday, April 13, 2009 12:57 PM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Yeah just called my ISP they are checking on the modem to see if there is something wrong with it as the MTU was blank before I made any changes to it, now it got me thinking I have more than 70 computers connecting to my free BSD you think it can't handle that many ? -Original Message- From: Tim Dickson [mailto:tdick...@calistogaranch.com] Sent: Monday, April 13, 2009 2:54 PM To: support@pfsense.com Subject: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing Sounds like you are pulling at straws here - but try and find out what the root of your problem is. If your packets are fragmented, then yes this will slow things down - but it could be totally irrelevant to your issue. If you bypass pfSense is everything fine? How do your traffic graphs look? (how many connections are you doing - check the state table) If it is in fact your MTU - check with your ISP on what your MTU should be, you'll want to leave it matching theirs as changing MTU will just cause MORE packet fragmentation where it isn't necessary, or causing more packets with less data. And if your MTU is correct, your traffic is minimal, and you are still having latency issues start a trace and find the routers your traffic is passing through. Then test the MTU levels to each router to find out which router is causing your fragmentation. You should then point your ISP to that router. The random MTU guess isn't going to get you anywhere. Just my 2cents though... -Tim -Original Message- From: Juan Rivera [mailto:jriv...@americancableco.com] Sent: Monday, April 13, 2009 11:12 AM To: support@pfsense.com Subject: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing ok I've done that but still the internet slow the MTU is not at 1400 but internet slow is there anything else that could be the problem -Original Message- From: Gary Buckmaster [mailto:g...@centipedenetworks.com] Sent: Monday, April 13, 2009 1:28 PM To: support@pfsense.com Subject: [SPAM] Re: [pfSense Support] RE:
Re: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] RE: [pfSense Support] RE: [SPAM] Re: [pfSense Support] RE: [SPAM] Re: [pfSense Support] website browsing
On Wed, Apr 15, 2009 at 08:00, Christopher M. Iarocci ciaro...@tfop.net wrote: This is really off topic for this list, but it sounds to me like whatever computer is using that IP is probably also running a firewall that is blocking everything, even ICMP. At this point, you could narrow down which machine it was using a managed switch if you have one. You could also visit the machines and manually look at their IP addresses. The other option (and one I'd choose) is to block all traffic from 192.168.1.147 at the firewall and see who comes to you to complain about not being able to get on the internet. Don't forget that DHCP and ARP information are often enough to clearly identify a given machine. If you're using the DHCP server, look in the lease information page or /var/dhcpd/var/db/dhcpd.leases for the machine's lease and the name it provided at negotiation. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] rsync in pfsense
Dear all, i have installed rsync in my pfsense 1.2.2* *with pkg_add and succeeded but when i try to grab a file to it, it keeps telling me this error: @ERROR: max connections (10) reached -- try again later rsync: connection unexpectedly closed (0 bytes received so far) [receiver] rsync error: error in rsync protocol data stream (code 12) at io.c(359) i've increased the max connection to whatever the number is and the problem persist these are the rsync version that i already tried rsync-3.0.0.tbz, rsync-3.0.4.tbz,rsync-3.0.5.tbz Need your help on this, thx -- Regards, Indrajaya Pitra Perdana - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
