Re: [pfSense Support] iPad ssl vpn client
If you jailbreak your ipad there is a openvpn client. On Thu, Aug 5, 2010 at 11:13 AM, Vick Khera vi...@khera.org wrote: On Thu, Aug 5, 2010 at 4:28 AM, Seth Mos seth@dds.nl wrote: Viscosity on the Mac works great, but that doesn't apply to iOS. We just punt and use the PPTP client built-in to iOS. It is not really as secure as we'd like but we normally only run ssh or an https connection over it so that part is double secured. I'd *love* to see an OpenVPN client. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Add Threshold in Snort PFsense
Can you post the snort alert that you are trying to suppress? Just off hand it looks like ur statement is missing `ip` : suppress gen_id 122, sig_id 1, track by_dst, ip 10.10.10.0/24 Also the threshold.conf file should likely be the one tied to the snort instance and interface, mine is located here: /usr/local/etc/snort/snort_25801_fxp0/threshold.conf Hope this helps. Chris On Mon, Apr 12, 2010 at 12:11 AM, Indrajaya Pitra Perdana viet...@indo.net.id wrote: Dear all, I try to add a suppress rule in the threshold.conf like this: suppress gen_id 122, sig_id 1, track by_dst, 10.10.10.0/24 But snort won't start with this kind of error: /usr/local/etc/snort/threshold.conf(4) = Suppress-Parse: argument pairing error Can somobody help me where exactly i'm doing wrong? thanks alot Note: i'm using Snort 2.8.4.1_5 pkg v. 1.6 -- Regards, Indrajaya Pitra Perdana - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN - Now Works on 1.2.3 Embedded!
Here is my expierence with wake on lan. The bios and the operating system have to be configured to put the nic into the proper state upon shutdown sucht hat can be awaken by a wol packet. In windows u need to modify the nic in device manager and enable this feature. If the pc looses total power, ie. the power plug pulled from the source and then re-pluged in, wol may not function. Chris On Dec 12, 2009, at 1:21 AM, Tortise tort...@paradise.net.nz wrote: - Original Message - From: Chris Buechler cbuech...@gmail.com To: support@pfsense.com Sent: Tuesday, December 01, 2009 8:57 PM Subject: Re: [pfSense Support] Wake On LAN On Tue, Dec 1, 2009 at 2:53 AM, Tortise tort...@paradise.net.nz wrote: Somehow I cannot get magic packets to awaken any PC on a pfSense LAN. I don't get it. Some motherboard BIOS seem to have WOL and others don't. Even the ones I have that are said to have it cannot be awoken as best I can tell! I have tried an Intel GT1000 with WOL functionality. I can get Boot on LAN to work OK, WOL seems a mystery! It is not clear to me the state that a PC to be awoken in is, I expected that the ATX power supplies would allow the PC to awaken when the right packets are sent however I am wondering if what is needed is a PC in a suspended state - or something else? Just need a WOL-enabled NIC, and to have WOL turned on in the BIOS. If you have an onboard NIC, it should be as simple as enabling it in the BIOS. As long as the machine is plugged in, it'll wake. With add-in NICs you need a WOL cable from the NIC to the motherboard, that can complicate things. - Well I had already done all that and it still didn't work, that was using 1.2.3 RC1 embedded. (3 NIC's, one WAN, two LAN) I now wish I had set up a sniffer to see if magic packets were actually going out I just upgraded to 1.2.3 and thought I'd fire off a few magic packets for funand just as well I was sitting on my chair, the other PC's had fired into life! Only thing that had really changed was the pfSense version! (That means the motherboard BIOS was already enabled for each on board NIC on the couple of Pentium 3000 class boxes I had tried) Curious that I couldn't find any updates about this, anyway others might find it works now? Thank you for the posters on this topic, it seems it may have proved a useful thread for some... In addition to what Chris said above I understand that some NIC's do not need an additional WOL cable for WOL, e.g. Intel 1000GT which are WOL capable and have no cable connection! I hate having to get some more 512M plus CF cards but accept there are excellent reasons for this! Looking forward to checking out some more embedded stuff. I'd suggested the other half give me the pfsense book for Christmas in the hope I might learn some useful stuff about VLAN's etc, even if I don't learn anything I am pleased the other half is contributing to support pfSense! Happy Christmas all! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN - Now Works on 1.2.3 Embedded!
Also if ur nic is a pci or pcie nic the wol cable must be connected to the motherboard header for it to work with wol. Chris On Dec 12, 2009, at 1:21 AM, Tortise tort...@paradise.net.nz wrote: - Original Message - From: Chris Buechler cbuech...@gmail.com To: support@pfsense.com Sent: Tuesday, December 01, 2009 8:57 PM Subject: Re: [pfSense Support] Wake On LAN On Tue, Dec 1, 2009 at 2:53 AM, Tortise tort...@paradise.net.nz wrote: Somehow I cannot get magic packets to awaken any PC on a pfSense LAN. I don't get it. Some motherboard BIOS seem to have WOL and others don't. Even the ones I have that are said to have it cannot be awoken as best I can tell! I have tried an Intel GT1000 with WOL functionality. I can get Boot on LAN to work OK, WOL seems a mystery! It is not clear to me the state that a PC to be awoken in is, I expected that the ATX power supplies would allow the PC to awaken when the right packets are sent however I am wondering if what is needed is a PC in a suspended state - or something else? Just need a WOL-enabled NIC, and to have WOL turned on in the BIOS. If you have an onboard NIC, it should be as simple as enabling it in the BIOS. As long as the machine is plugged in, it'll wake. With add-in NICs you need a WOL cable from the NIC to the motherboard, that can complicate things. - Well I had already done all that and it still didn't work, that was using 1.2.3 RC1 embedded. (3 NIC's, one WAN, two LAN) I now wish I had set up a sniffer to see if magic packets were actually going out I just upgraded to 1.2.3 and thought I'd fire off a few magic packets for funand just as well I was sitting on my chair, the other PC's had fired into life! Only thing that had really changed was the pfSense version! (That means the motherboard BIOS was already enabled for each on board NIC on the couple of Pentium 3000 class boxes I had tried) Curious that I couldn't find any updates about this, anyway others might find it works now? Thank you for the posters on this topic, it seems it may have proved a useful thread for some... In addition to what Chris said above I understand that some NIC's do not need an additional WOL cable for WOL, e.g. Intel 1000GT which are WOL capable and have no cable connection! I hate having to get some more 512M plus CF cards but accept there are excellent reasons for this! Looking forward to checking out some more embedded stuff. I'd suggested the other half give me the pfsense book for Christmas in the hope I might learn some useful stuff about VLAN's etc, even if I don't learn anything I am pleased the other half is contributing to support pfSense! Happy Christmas all! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Power Question for pfsense
Perhaps a workaround is in order, you should consider investing in a small UPS. You can then install NUT or APCUPSD packages to perform a safe shutdown when the UPS's battery falls below a certain threshold. Chris