[pfSense Support] pfsense 2.0 beta4 ntop help
Hi, I have installed ntop on my pfsense 2.0-beta4. pfsense can not start ntop service after installation.I try start ntop service on command prompt ,It give me following error. /libexec/ld-elf.so.1: Shared object libGeoIP.so.5 not found, required by ntop - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] DNS issue
I have a DNS server behind a pfsense box. The dns forwarder is enabled (I've tried disabling it.) Without the forwarder, dns queries from behind the pfsense box don't resolve, not ever. With the forwarder dns queries resolve and the active directory works fine as the windows servers forward all their queries to the pfsense box and they are handled. My problem is that there is an unrelated dns server behind the pfsense machine that needs to answer to the outside world. I set up a virtual ip address (tried it all three ways) and set up a NAT rule to forward TCP/UDP on port 53 DNS to the server inside. TCP queries work, but UDP queries time out against the virtual address, but work fine on actual address. Have I run into something. WanIP forwarded to inside server works both tcp and udp. Virtual IP forwarded to inside server works tcp Virtual IP forwarded to inside server fails udp. Most dns queries are udp except for dnssec, dkim and spf. Any ideas? I'm running a 1.2.3-RELEASE built nearly a year ago. Thanks, Curtis
Re: [pfSense Support] DNS issue
On Nov 5, 2010, at 9:24 PM, Curtis Maurand wrote: I have a DNS server behind a pfsense box. The dns forwarder is enabled (I've tried disabling it.) Without the forwarder, dns queries from behind the pfsense box don't resolve, not ever. With the forwarder dns queries resolve and the active directory works fine as the windows servers forward all their queries to the pfsense box and they are handled. My problem is that there is an unrelated dns server behind the pfsense machine that needs to answer to the outside world. I set up a virtual ip address (tried it all three ways) and set up a NAT rule to forward TCP/UDP on port 53 DNS to the server inside. TCP queries work, but UDP queries time out against the virtual address, but work fine on actual address. Have I run into something. WanIP forwarded to inside server works both tcp and udp. Virtual IP forwarded to inside server works tcp Virtual IP forwarded to inside server fails udp. Most dns queries are udp except for dnssec, dkim and spf. Corresponding firewall rules? my internal machine is running DNS as well, and I allowed it to query the outside world, and works just fine through my pfsense box. You could also tcpdump on the pflog0 interface and see what is going on and what is getting blocked.. Any ideas? I'm running a 1.2.3-RELEASE built nearly a year ago. Thanks, Curtis -- /\ Best regards,| re...@freebsd.org \ / Remko Lodder | Xhttp://www.evilcoder.org/| Quis custodiet ipsos custodes / \ ASCII Ribbon Campaign| Against HTML Mail and News - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Assign custom Gateway
From: Ryan L. Rodrigue [mailto:radiote...@aaremail.com] Sent: Friday, November 05, 2010 9:16 AM To: support@pfsense.com Subject: [pfSense Support] Assign custom Gateway Is there a way in PF to have dhcp assign a custom gateway in the static dhcp setup. A little info on what I am trying to accomplish Most users get IP address for normal gateway with normal restrictions and all. Some special users get an IP on the same network, but a different router with different restrictions and captive portal login. The easiest way I could see to do this is to simply use two routers and assign them accordingly. I suppose 1 router would work, but I want only a few specific machines to use captive portal and most machines to bypass CP. This is kind of opposite to what most people do. I could also use VLAN and segrigate this computer, but I want them to share all network resourses expecially itunes and a weird network printer that doesn't seem to like traversing routers. (The printer doesn't even have a place for a default gateway, how weird is that?) I am really just trying to keep things simple. Thanks for any suggestions. Sorry, I read what I wrote and realize clarity is not one of my strengths. Under the dhcp server I can add a static map. Is there a way to add a different gateway just for this static map. I am running PF 1.2.3 Release. Perhaps in version 2? Thanks for reading and any help you might be able to provide. __ Information from ESET NOD32 Antivirus, version of virus signature database 5593 (20101105) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com
Re: [pfSense Support] Assign custom Gateway
Hi Ryan, Sorry, no, that is currently not possible. I doubt there is much demand for this feature. Regards, Seth Op 5 nov 2010, om 22:31 heeft Ryan Rodrigue het volgende geschreven: From: Ryan L. Rodrigue [mailto:radiote...@aaremail.com] Sent: Friday, November 05, 2010 9:16 AM To: support@pfsense.com Subject: [pfSense Support] Assign custom Gateway Is there a way in PF to have dhcp assign a custom gateway in the static dhcp setup. A little info on what I am trying to accomplish Most users get IP address for normal gateway with normal restrictions and all. Some special users get an IP on the same network, but a different router with different restrictions and captive portal login. The easiest way I could see to do this is to simply use two routers and assign them accordingly. I suppose 1 router would work, but I want only a few specific machines to use captive portal and most machines to bypass CP. This is kind of opposite to what most people do. I could also use VLAN and segrigate this computer, but I want them to share all network resourses expecially itunes and a weird network printer that doesn’t seem to like traversing routers. (The printer doesn’t even have a place for a default gateway, how weird is that?) I am really just trying to keep things simple. Thanks for any suggestions. Sorry, I read what I wrote and realize clarity is not one of my strengths. Under the dhcp server I can add a static map. Is there a way to add a different gateway just for this static map. I am running PF 1.2.3 Release. Perhaps in version 2? Thanks for reading and any help you might be able to provide. __ Information from ESET NOD32 Antivirus, version of virus signature database 5593 (20101105) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com
RE: [pfSense Support] Assign custom Gateway
Is there a way in PF to have dhcp assign a custom gateway in the static dhcp setup. Why don't you whitelist the IPs you want to pass in the captive portal configuration. They would all go through the captive portal, but those IPs assigned to bypass wouldn't be blocked. -Tim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: Re: [pfSense Support] Assign custom Gateway
On Fri, 2010-11-05 at 22:35 +0100, Seth Mos wrote: Sorry, no, that is currently not possible. I doubt there is much demand for this feature. I would also suspect there's very little demand for this feature, but on the other hand, it's a fairly simple thing to add if Ryan wants to try patching it himself. I've made local modifications to the OpenBGPD config UI, which is a bit easier because everything's isolated in the package, but I believe this would consist of adding one extra config field to the page visible at http://whatever/services_dhcp_edit.php?if=lanid=0, and then adding the code to handle writing out an optional gateway directive when write_config (?) is called. So a little bit of XML editing and a little bit of PHP coding. Most of which can be based on similar optional-value fields already existing (like IP Address itself, which is apparently optional). I just can't _find_ the XML and PHP code in question right now... (And yes, I know, I should post a patch for the OpenBGPD mods I did - I will, Real Soon Now.) -Adam Thompson athom...@c3a.ca attachment: winmail.dat- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Assign custom Gateway
-Original Message- From: Tim Dickson [mailto:tdick...@aubergeresorts.com] Sent: Friday, November 05, 2010 4:54 PM To: support@pfsense.com Subject: RE: [pfSense Support] Assign custom Gateway Is there a way in PF to have dhcp assign a custom gateway in the static dhcp setup. Why don't you whitelist the IPs you want to pass in the captive portal configuration. They would all go through the captive portal, but those IPs assigned to bypass wouldn't be blocked. -Tim I guess I could do that. I want to pass all office pc's and block 2 semi public pc's. If it wasn't for this printer, I would have a separate network for these pc's. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org __ Information from ESET NOD32 Antivirus, version of virus signature database 5595 (20101105) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org