Re: [pfSense Support] pfsense reset
On 4/1/10 6:02 PM, Brent Clark wrote: On 31/03/2010 19:18, Evgeny Yurchenko wrote: Brent Clark wrote: Hiya d R I need would like to reset my pfsense to the factory default settings. How would one setup pfsense via command line to enable access the webgui. Kind Regards Brent Clark Connect console or ssh to your pfSense and choose option 4) pfSense console setup *** 0) Logout (SSH only) 1) Assign Interfaces 2) Set LAN IP address 3) Reset webConfigurator password 4) Reset to factory defaults 5) Reboot system 6) Halt system 7) Ping host 8) Shell 9) PFtop 10) Filter Logs 11) Restart webConfigurator 12) pfSense Developer Shell 13) Upgrade from console 14) Disable Secure Shell (sshd) Enter an option: Thanks for this But let me try this again What I was refering to and asking for is ... I press 8, what is the firewall command or the process to allow access to the webgui from the WAN. I dont have physical access to the machine, but I can access the console via a DRAC. If you're able to connect to the console (you should be able w/ DRAC) use ssh remote port forwarding to access the webgui via a remote machine. Regards, Roy - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] ntop core dumped
Hi There, I've built a couple of pfSense 1.2.3-Release boxes lately, they are super stable. But with the ntop package things goes south quickly. I've got three interfaces (all Intel GT class giganics) and ntop is listening to LAN and OPT1. Once ntop starts, its good for about 5 minutes, then I get a single line like this in my system log: Apr 2 10:57:15 kernel: pid 13755 (ntop), uid 0: exited on signal 11 (core dumped) I can go start the service again and it runs fine. It does not appear to be hardware specific as I've tried this on a P4 1.8, a Dual P3 1.4, and this morning on a dual opteron 250 box. All have tons of memory. The only packages installed are rate, squid, and lightsquid (besides ntop of course). Squid runs in transparent mode. Is there somewhere else I can poke around for root cause? There doesn't seem to be very good troubleshooting info for ntop on pfSense. I found this post in the forum, but the chmod didn't correct it for me. http://forum.pfsense.org/index.php?topic=22201.msg116288 Any thoughts?
Re: [pfSense Support] VPN LAN TO LAN
Tim, if you are saying PPTP not being the most secure means of VPN which VPN i sthe most secure to use ??? As currently I'm having PPTP just to login remotely to other sites and check for maintenence or other associates problems. Any advise on having a secure VPN tunneling. Cheers, Joseph. On Fri, Apr 2, 2010 at 10:54 AM, Tim Dickson tdick...@aubergeresorts.comwrote: well strange because i can access my box with the following http://IPhttp://ip/address:443 how is it possible as you you've said it should be https://IP https://ip/ address:443 If you setup HTTP as port 443 I this would work - kind of goes against web standards - but it's your box :) - you probably just didn't tick HTTPS as the protocol So i can use any port nubers as you've said , this will gurantee my PPTP tunneling secure ??? Yes - System | General Setup As for PPTP - totally different thing, and you'll need to open those ports as well. PPTP not being the most secure means of VPN - but probably sufficient for your needs. As for purchasing the pfsense book is it poosible to send money through wired transfer like western union money transfer then the book is send to my postal address ??? Standard Amazon billing applies - not sure if they do wire transfers... This may help? http://www.amazon.com/gp/help/customer/display.html/ref=help_search_1-1?ie=UTF8nodeId=15399401qid=1270158715sr=1-1 Can you purchase a prepaid visa gift card at a local market? - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] VPN LAN TO LAN
➢ if you are saying PPTP not being the most secure means of VPN which VPN i sthe most secure to use ??? I’ll take this off list – as it’s been covered before – I’ll email you directly, Joseph. -tim
RE: [pfSense Support] VPN LAN TO LAN
Traditionally PPTP has been prone to more flaws than other technologies... and most industry managers frown on it. With Vista and Win7 - Microsoft filled in a lot of holes and upped the encryption size - so should be sufficient, especially for personal use. It doesn't use a dual authentication, like openVPN can (key + password), so is more susceptible to hacks via brute force. But you can negate all that by adding source rules to your ports. (if you know the IPs you will be dialing in from - add them to the SOURCE of the rule - and it will ONLY allow those IPs to connect to your PPTP server) I have to say - it is by far the most convenient especially for your use. I'd say go for it - just wanted to make sure you were fully informed. Let me know if you have any more questions. -Tim From: Joseph Rotan [mailto:joseph.ro...@gmail.com] Sent: Friday, April 02, 2010 8:59 PM To: support@pfsense.com Subject: Re: [pfSense Support] VPN LAN TO LAN Tim, if you are saying PPTP not being the most secure means of VPN which VPN i sthe most secure to use ??? As currently I'm having PPTP just to login remotely to other sites and check for maintenence or other associates problems. Any advise on having a secure VPN tunneling. Cheers, Joseph. On Fri, Apr 2, 2010 at 10:54 AM, Tim Dickson tdick...@aubergeresorts.commailto:tdick...@aubergeresorts.com wrote: well strange because i can access my box with the following http://IPhttp://ip/ address:443 how is it possible as you you've said it should be https://IPhttps://ip/ address:443 If you setup HTTP as port 443 I this would work - kind of goes against web standards - but it's your box :) - you probably just didn't tick HTTPS as the protocol So i can use any port nubers as you've said , this will gurantee my PPTP tunneling secure ??? Yes - System | General Setup As for PPTP - totally different thing, and you'll need to open those ports as well. PPTP not being the most secure means of VPN - but probably sufficient for your needs. As for purchasing the pfsense book is it poosible to send money through wired transfer like western union money transfer then the book is send to my postal address ??? Standard Amazon billing applies - not sure if they do wire transfers... This may help? http://www.amazon.com/gp/help/customer/display.html/ref=help_search_1-1?ie=UTF8nodeId=15399401qid=1270158715sr=1-1 Can you purchase a prepaid visa gift card at a local market? - To unsubscribe, e-mail: support-unsubscr...@pfsense.commailto:support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.commailto:support-h...@pfsense.com Commercial support available - https://portal.pfsense.orghttps://portal.pfsense.org/
RE: [pfSense Support] VPN LAN TO LAN
Errr After all that - forgot to change the TO: ... sorry list!
Re: [pfSense Support] VPN LAN TO LAN
- Original Message - From: Tim Dickson To: support@pfsense.com Sent: Saturday, April 03, 2010 5:36 PM Subject: RE: [pfSense Support] VPN LAN TO LAN Errr.. After all that - forgot to change the TO: . sorry list! Well I for one appreciate your comments and advice cause this is where probably many of us advance our learning so thank you! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org