RE: [pfSense Support] CARP preemption
Title: RE: [pfSense Support] CARP preemption Are you using a dedicated interface for CARP sync? -Original Message- From: Ispanovits Imre [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 04, 2006 7:15 AM To: support@pfsense.com Subject: [pfSense Support] CARP preemption Hi, I'm testing the pfSense CARP configuration on version BETA3-PLUS-11548-PLUS-11567. Everything seems working fine exept that both machines in the carp cluster is master. It's like the preemption weren't enabled. In this version this option is missing in GUI setup and supposed to be set by default. Where can I check it and maybe set if it is not done. First I didn't bothered about this "dual-master" configuration, but it seems that if one of the carp servers is down, the network speed increases. It is strange. Regards Imre -- Skype: ispanovits_imre This is Linux Land. In silent nights you can hear the windows machines rebooting
[pfSense Support] PPOE on multi wan(pfsense)
Title: PPOE on multi wan(pfsense) Does any one out there know how I can use PPOE on the optional interfaces? I have a box with one lan and 3 wans. My ISP just switched to PPOE and i am not sure hoe to best get it to work. I have considered putting a additional box for each wan, but it seems the should be a way to do this. Any help is much appreciated. Thanx > Ryan
RE: [pfSense Support] VLAN setup
Title: RE: [pfSense Support] VLAN setup you typically would put all ports that are connected directly to a computer or other end user device as an Untagged port. You then need to program your ports that connect to your router and any other switches as Tagged ports. vlan 1 is typically used for management of the network devices and really should not be occupied by end users. I hope this helps, >> Ryan -Original Message- From: Bill Marquette [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 17, 2006 3:33 PM To: support@pfsense.com Subject: Re: [pfSense Support] VLAN setup On 5/17/06, Ispánovits Imre <[EMAIL PROTECTED]> wrote: > > True, seconded :) Using dedicated (untagged) vlans for each port in a > > trunk configuration is a good idea too if your switch supports this. > > > > Trunked vlans? How this looks like? Again, I think my terminology is getting the better of me. Lets say port 5 is in vlan 5, but you want it to be a trunk port, not an access port, you still keep it in vlan 5, but you put vlans 6-10 in your trunk statement. The native vlan for the port is 5, the tagged vlans are 6-10. I can't speak to any switches other than Cisco and even then it's not my job to configure them, I know enough to make it work on the firewall side. --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] redundant wan router
Title: redundant wan router i have successfuly set up a router with multiple wans. I have 2 dsl lines. one is very quick and the other is rather slow. I would like for the second to be used mainly as a backup link in the even the primary goes down. The only way I could find to do this is to set up both links in Load Balancer. The fall over works fine, but it seems as though it is alternating between the two connections. I put the faster DSL in the pool 5 times to get it to go to this one more ofter. I don't think this to be of good practice and hope to fine a more perminate solution. I am kinda new to PFsense. Can anyone help please. I am using an MSI motherboard with a 2 gig Celeron processor, 512 megs ram, and 3ea realtec gigabit network cards.
RE: [pfSense Support] redundant wan router
Title: RE: [pfSense Support] redundant wan router ok thanks -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 18, 2006 1:11 PM To: support@pfsense.com Subject: Re: [pfSense Support] redundant wan router On 5/18/06, Ebay <[EMAIL PROTECTED]> wrote: > > > > i have successfuly set up a router with multiple wans. I have 2 dsl lines. > one is very quick and the other is rather slow. I would like for the second > to be used mainly as a backup link in the even the primary goes down. The > only way I could find to do this is to set up both links in Load Balancer. > The fall over works fine, but it seems as though it is alternating between > the two connections. I put the faster DSL in the pool 5 times to get it to > go to this one more ofter. I don't think this to be of good practice and > hope to fine a more perminate solution. I am kinda new to PFsense. Can > anyone help please. I am using an MSI motherboard with a 2 gig Celeron > processor, 512 megs ram, and 3ea realtec gigabit network cards. We do not have WAN failover as of yet. It only works with Load balancing which will alternate packets to each link. We're looking into this for a future version. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Throughput calculation
Title: redundant wan router I am using an MSI motherboard with a 2 gig Celeron processor, 512 megs ram, and 3ea realtec gigabit network cards. Does anyone know what kinda thoughput would be possible in this configuration. I need to route between two local networks. Is there any documentation that explanes some examples I could achieve with certain hardware types? Thanks Again. >>Ryan
[pfSense Support] Remote monitoring
Title: Remote monitoring I would like a way to remotely monitor a PFsense box. I would relaay like to monitor all the interfaces as well as the cpu, mem, and swap on the status page. Does anyone know of anything that will do this? I would really like to monitor multiple boxes from the same computer. I have mono mon which does some of this. Thanks for the help. This software rocks i am new to PFsense and already love it. I've done cisco for 5 years and don't plan on going back. Thanks > Ryan
RE: [pfSense Support] Remote monitoring
Title: RE: [pfSense Support] Remote monitoring Thankx all. I am experimenting with the options. I had no idea I get this good of a response. This Rocks. Thanks again > Ryan -Original Message- From: William Armstrong [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 23, 2006 7:28 AM To: support@pfsense.com Subject: Re: [pfSense Support] Remote monitoring Try a SyMon http://www.xs4all.nl/~wpd/symon/ It´s monitor for CPU, MEM, IO ( disks ), PROCESSES , INTERFACES. Really a fine monitor. install a daemon on target machines and a monitor , webgui for a reports on another machine. my 0,2 cents 2006/5/23, Mailling <[EMAIL PROTECTED]>: > > > The script is working fine (all nice in one IE screen :) but the password > part doesn't work :( > > > Van: Adrian Chitoni [mailto:[EMAIL PROTECTED]] > Verzonden: dinsdag 23 mei 2006 1:35 > Aan: support@pfsense.com > Onderwerp: Re: [pfSense Support] Remote monitoring > > > > Or you can use iframes: > > > > > http://username:[EMAIL PROTECTED]" > target="_blank">pfsense1 > src="" href="http://username:[EMAIL PROTECTED]">http://username:[EMAIL PROTECTED]" width="800" > height="400" scrolling="auto" frameborder="1"> > [Your user agent does not support iframes] > > > > href="" href="http://username:[EMAIL PROTECTED]">http://username:[EMAIL PROTECTED]>pfsense2 > src="" href="http://username:[EMAIL PROTECTED]">http://username:[EMAIL PROTECTED]" width="800" > height="400" scrolling="auto" frameborder="1"> > [Your user agent does not support iframes] > > > > > > Cheers > > Adrian > > - Original Message - > From: Adrian Chitoni > To: support@pfsense.com > Sent: Tuesday, May 23, 2006 9:23 AM > Subject: Re: [pfSense Support] Remote monitoring > > > Just create a html page with frames and store it locally. Like: > > ## > > > > > Monitoring > > > http://192.168.1.252:8088"> > http://192.168.1.253"> > > > > > > ### > > Cheers > > Adrian > > - Original Message - > From: Ebay > To: support@pfsense.com > Sent: Tuesday, May 23, 2006 8:21 AM > Subject: [pfSense Support] Remote monitoring > > > > I would like a way to remotely monitor a PFsense box. I would relaay like > to monitor all the interfaces as well as the cpu, mem, and swap on the > status page. Does anyone know of anything that will do this? I would > really like to monitor multiple boxes from the same computer. I have mono > mon which does some of this. Thanks for the help. This software rocks i > am new to PFsense and already love it. I've done cisco for 5 years and don't > plan on going back. Thanks > Ryan > -- -=-=-=-=-=-=-=-=-=- William David Armstrong <. Of course it runs Bio Systems Security Networking <|== Hinodeinfo Soluções em Informática <' NetBSD, OpenBSD or FreeBSD ICQ 27550645 MSN / GT biosystems gmail . com -- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] HAVP
Title: HAVP Hey All. I am atempting to get HAVP to work. I have installed the package. Whats the next step? DO I need to manually load any virus definations? How can I test to see if it is working. I think a router based antivirus is a great line of defense. I would rely totally on just that, but everywhere I add protection is a good thing in my opinion. If anyone could point me to any documentation I would greatly appreciate it. Thanx all> Ryan
RE: [pfSense Support] HAVP
Title: RE: [pfSense Support] HAVP I feel stupid because there doesn't seem to be any complicated settings here, but i can't seem to get it to work. I set up the proxie settings in my browser and loose internet conectivity. Is there a way to do this that I don't have to go to every computer? Can someone that has this working please send me what the put as there configuration so I can see what I am doing wrong. Thanks a bunch. Oh and thanks for the ClamAV, i just installed it. * I fat fingered in my first message, meant to say I won't rely totally on just that, but everywhere I add protection is a good thing * -Original Message- From: Gary Buckmaster [mailto:[EMAIL PROTECTED]] Sent: Friday, May 26, 2006 8:02 AM To: support@pfsense.com Subject: Re: [pfSense Support] HAVP First and foremost, if you installed the HAVP package and don't have the ClamAV package installed, you'll need to install that. ClamAV will update its definitions automatically so you can safely ignore that part. Once you have HAVP set up and configured (transparent mode doesn't currently work so you'll need to specify an IP address and port to bind to) put proxy settings into your browser and start surfing the web. You should see your activity being recorded in /var/log/havp/access.log. If you want to test the antivirus portion, google up the EICAR test virus pattern and go try to download a couple of copies from the home page. It's really very simple. Ebay wrote: > > Hey All. I am atempting to get HAVP to work. I have installed the > package. Whats the next step? DO I need to manually load any virus > definations? How can I test to see if it is working. I think a > router based antivirus is a great line of defense. I would rely > totally on just that, but everywhere I add protection is a good thing > in my opinion. If anyone could point me to any documentation I would > greatly appreciate it. Thanx all> Ryan > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] HAVP
Title: RE: [pfSense Support] HAVP OK i got it. I had it set with no ip address in that field, but it wasn't working so i tried putting one. I didn't realise i had to go into Statuc>services and start HAVP. It seems to be working now. Thanks a bunch. Sorry if I aggrivated you too much. >Ryan -Original Message- From: Gary Buckmaster [mailto:[EMAIL PROTECTED]] Sent: Friday, May 26, 2006 11:34 AM To: support@pfsense.com Subject: Re: [pfSense Support] HAVP If you've got your LAN interface configured at 192.168.1.1, why are you trying to bind HAVP to 192.168.1.10? Fix this, and also ssh into your pfSense box and see if HAVP is running. Ebay wrote: > > I don't know. I am lost like a baby racoon up a pecan tree. It is > loaded. I don't see an option to enable or disable it. I attached a > screen capture of my settings. My router lan is 192.168.1.1. Thanx > for the help. > > -Original Message- > From: Gary Buckmaster [mailto:[EMAIL PROTECTED]] > Sent: Friday, May 26, 2006 11:14 AM > To: support@pfsense.com > Subject: Re: [pfSense Support] HAVP > > > Are you sure HAVP is actually running? > > Ebay wrote: > > > > I feel stupid because there doesn't seem to be any complicated > > settings here, but i can't seem to get it to work. I set up the > > proxie settings in my browser and loose internet conectivity. Is > > there a way to do this that I don't have to go to every computer? Can > > someone that has this working please send me what the put as there > > configuration so I can see what I am doing wrong. Thanks a bunch. Oh > > and thanks for the ClamAV, i just installed it. > > > > * I fat fingered in my first message, meant to say I won't rely > > totally on just that, but everywhere I add protection is a good thing * > > > > > > -Original Message- > > From: Gary Buckmaster [mailto:[EMAIL PROTECTED]] > > Sent: Friday, May 26, 2006 8:02 AM > > To: support@pfsense.com > > Subject: Re: [pfSense Support] HAVP > > > > > > First and foremost, if you installed the HAVP package and don't have > the > > ClamAV package installed, you'll need to install that. ClamAV will > > update its definitions automatically so you can safely ignore that > > part. Once you have HAVP set up and configured (transparent mode > > doesn't currently work so you'll need to specify an IP address and port > > to bind to) put proxy settings into your browser and start surfing the > > web. You should see your activity being recorded in > > /var/log/havp/access.log. If you want to test the antivirus portion, > > google up the EICAR test virus pattern and go try to download a couple > > of copies from the home page. It's really very simple. > > > > Ebay wrote: > > > > > > Hey All. I am atempting to get HAVP to work. I have installed the > > > package. Whats the next step? DO I need to manually load any virus > > > definations? How can I test to see if it is working. I think a > > > router based antivirus is a great line of defense. I would rely > > > totally on just that, but everywhere I add protection is a good thing > > > in my opinion. If anyone could point me to any documentation I would > > > greatly appreciate it. Thanx all> Ryan > > > > > > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] HAVP
Title: RE: [pfSense Support] HAVP Wow, thanks. This is a great program. I have one question / Bug. HAVP does not seem to work with load balancing. Is there anyone out there who knows a workaround for this. I am currently using load balancing for fallover purposes and if I use HAVP, I loose my fallover, not to mention waist my nice high speed connections. Thanx. Oh, and should ClamAV always be running. Mine runs for a little while and then shuts down. I don't know if this is normal. Thanks > Ryan -Original Message- From: Rajkumar S [mailto:[EMAIL PROTECTED]] Sent: Friday, May 26, 2006 12:05 PM To: support@pfsense.com Subject: Re: [pfSense Support] HAVP Ebay wrote: > I don't know. I am lost like a baby racoon up a pecan tree. It is > loaded. I don't see an option to enable or disable it. I attached a > screen capture of my settings. My router lan is 192.168.1.1. Thanx for > the help. Just leave all options empty. ssh into the pfsense box and type netstat -nr to make sure that HAVP is running. the error log will be in /var/log/havp/ Take a look at that for some clue. finally uninstall havp, and clamav and install clamav and havp in that order. Let us know how it fares. raj - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Load balancing
Title: RE: [pfSense Support] Load balancing did you change the gateway in the Firewall>Rules>Lan to the load balancer you created? I only see a asterick below in that spot. -Original Message- From: Paul Willard [mailto:[EMAIL PROTECTED]] Sent: Monday, May 29, 2006 8:32 PM To: support@pfsense.com Subject: [pfSense Support] Load balancing Yeah I know, I know .. RTFM ... I read everything can't figure it out. lan = 192.168.1.253 wan = 202.37.230.93 (pppoe) opt1 = 203.96.212.68 Firewall->NAT->Outbound Int Source Source Port Dest Dest Port NAT Add NAT Port Static Port OPT1 192.168.1.0/24 * * * * * NO WAN 192.168.1.0/24 * * * * * NO Services->Load Balancer Name Servers/Gateways Port Monitor Description LoadBalancetoWAN 202.37.230.93/210.48.22.38 203.96.212.1/203.96.212.1 Note: In the wiki it says "in the IP box type in the IP address of the gateway (this has to be one of the gateways configured at WAN or OPTx's)" I read this to mean use the gateway IP rather than the interface IP .. was I right? Firewall->Rules->LAN Proto Source Port Dest Port Gateway * LAN Net * * * * So to my knowledge everything should be setup correctly. so a quick test. links -source http://www.whatismyip.com | grep -i TITLE\> | sed "s/ //I" | sed "s/<\/title>//I" | sed "s/WhatIsMyIP.com\ -\ //" 202.37.230.93 I would expect the ip to change every now and then .. but it has never changed Can some one point out what I am doing wrong? Thanks Paul. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Transcend IDE Flash drives
My Cheap CF Card I was using to kida test PFSense just Died. No fault to anything except that I used cheap hardware. I am looking at spending a little bit more money to get a transcend card to install it on. I just wanted to see if anyone out there is using the Transcend Flash drives and if so, what are you using and how does it work. I hate to spend money only to find it is not compatible. Thanks, Ryan (Sorry if this goes out more than once. My server is on drugs or something) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]