Re: [pfSense Support] PFSense 1.2.3RC1 / Problems with IPSEC and AES256
On Thu, Jun 25, 2009 at 6:27 AM, Ho Sy Tanhosy...@gmail.com wrote: I run pfSense-1.2.3-RC1 (FreeBSD 7.1), IPSec with IKE P2 AES 256, it work fine. That's with the older ipsec-tools version. The latest one wants different syntax. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Traffic Shapping : High priority on particular port
Hello, Is there a way, in pfsense, to give the highest priority over the rest of the traffic to an application running on a particular port? A VPN is connecting some branches where an application is running on port 1. This application should have the highest priority over the rest of the traffic running over the VPN. Any suggestion on how to do this? Bastien
Re: [pfSense Support] Traffic Shapping : High priority on particular port
Bastien DARMON wrote: Hello, Is there a way, in pfsense, to give the highest priority over the rest of the traffic to an application running on a particular port? A VPN is connecting some branches where an application is running on port 1. This application should have the highest priority over the rest of the traffic running over the VPN. Any suggestion on how to do this? Bastien In 1.2.x you cannot shape over a VPN tunnel. This changes in 2.0. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Traffic Shapping : High priority on particular port
On Mon, Jun 29, 2009 at 1:58 PM, Bastien DARMONbdar...@horus-df.com wrote: Hello, Is there a way, in pfsense, to give the highest priority over the rest of the traffic to an application running on a particular port? You can shape this just like anything else, with the caveat that it falls into the group of all traffic between LAN and WAN. Sounds like that's fine for this purpose. Just setup the queues as desired and add a rule to put that traffic into the appropriate queue. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Statically-defined DHCP clients with dynamic addressing not entered into DNS
On Jun 26, 2009, at 2:00 PM, Ian Levesque wrote: We're running DHCP and DNS on a pair of CARPed pfSense 1.2.1 boxen. Other than the fact that they don't sync DCHP entries, it's been working OK for us. However, we've currently got them configured to assign static IPs to specific MACs, and that's becoming difficult to manage. We'd prefer to add an entry for each host's MAC and a hostname, but omit the IP address assignment. While we can do this currently - said hosts do receive an IP address is the dynamic pool - the hosts' hostname fails to be assigned in DNS. Remember, statically-assigned IP hosts (hence, hosts added to /etc/hosts) DO get added to DNS. I'm surprised that nobody seems to have DHCP/DNS configured with your clients allocated IP addresses from a dynamic pool. This seems like a pretty simple use case. Ian - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Captive Portal and Wifi network
Hello everybody, I am in study phase to do a Wireless network and requirement is need to force users authenticate first. I figured out that can be done with Captive Portal feature of pfsense. However, I want to know if anybody did a Wifi network with 1 main access point connect directly to pfsense box and expand the wireless signal with some kind of Wifi extender ? TIA, - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Captive Portal and Wifi network
- Lunix1618 [mailto:lunix1...@gmail.com] Hello everybody, I am in study phase to do a Wireless network and requirement is need to force users authenticate first. I figured out that can be done with Captive Portal feature of pfsense. However, I want to know if anybody did a Wifi network with 1 main access point connect directly to pfsense box and expand the wireless signal with some kind of Wifi extender ? TIA, - Yes, absolutely - if your Access Points support it - but you will be chopping bandwidth in half at every relay point. Two hops is probably OK, but I'd reconsider your setup for multiple hops. -Tim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org