[pfSense Support] pfSense 2.0 RC1 and igb0 LRO disabling
From a quick look the sysctls most people suggest disabling to fix the slow LRO on igb cards isn't present in 2.0's igb driver, anyone got the right options to use to get them working at a proper speed again? Thanks - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Virgin (UK) with a Direct Connection to a pfSense ?
As an update, I did eventually get the cable modem through from them. On 10 November 2010 17:51, James Bensley jwbens...@gmail.com wrote: Interesting, for me they sent their standard little black cable modem which terminates with a single ethernet port, and a wireles router with a WAN port rather than an all in one jobbie. --James. (This email was sent from a mobile device, this is not secure) On 10 Nov 2010 17:21, Simon Dick sim...@irrelevant.org wrote: On 25 October 2010 21:55, James Bensley jwbens...@gmail.com wrote: On 25 October 2010 16:08, Glenn Kelley gl...@typo3usa.com wrote: Doubtful - for the direct connection. He could ask them to place the cable modem however into bridge mode I don't believe that can be done (although most VM modems are accessible via http://192.168.100.1 you could check there). Upon initial install I believe the modem they give you registers its MAC with their network so you account is locked to that. Assuming any time you have a fault you will ring them and they would (if needs be) supply you with another router so there is no reason for a MAC unknown to them should ever show up on your line. Having just had that installed myself, they shipped me a Netgear 11n router with built in cable modem, if you hassle them enough they are willing to send out just a modem that you can use with your own router, they told me today they'd be sending me it, despite the 3-4 previous people I'd talked to saying that they didn't do them anymore, only their Media HUB. For the new routers there seems to be no way to put them into Modem mode, default IP 192.168.0.1 user: admin and password: changeme - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Virgin (UK) with a Direct Connection to a pfSense ?
On 25 October 2010 21:55, James Bensley jwbens...@gmail.com wrote: On 25 October 2010 16:08, Glenn Kelley gl...@typo3usa.com wrote: Doubtful - for the direct connection. He could ask them to place the cable modem however into bridge mode I don't believe that can be done (although most VM modems are accessible via http://192.168.100.1 you could check there). Upon initial install I believe the modem they give you registers its MAC with their network so you account is locked to that. Assuming any time you have a fault you will ring them and they would (if needs be) supply you with another router so there is no reason for a MAC unknown to them should ever show up on your line. Having just had that installed myself, they shipped me a Netgear 11n router with built in cable modem, if you hassle them enough they are willing to send out just a modem that you can use with your own router, they told me today they'd be sending me it, despite the 3-4 previous people I'd talked to saying that they didn't do them anymore, only their Media HUB. For the new routers there seems to be no way to put them into Modem mode, default IP 192.168.0.1 user: admin and password: changeme - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] ADSL2+ PCI Card (from LinITX.com) in a pfSense Box ?
On 15 October 2010 18:15, Gavin Spurgeon gspurg...@dageek.co.uk wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Paul, On 14/10/10 23:44, Gavin Spurgeon wrote: Just stumbled upon this cool little PCI card over @ LinITX.com ... mode, If I had a pfSense unit that could use this (or similar) PCI card I could scrap my current Cheap Home Router and just have a pfSense box connected direct to my ISP. having had an external modem go bad (draytek vigor) after a bad thunderstorm but the attached computer survived without a glitch (on a UPS), I'd be very reluctant to integrate the ADSL card into a computer as there's bound to be less isolation. that said, if the card has a freebsd driver, it should work just fine. I would normally agree, but the PC in question would be a cheap ITX type unit anyway, as I would rather not have 2 devices plugged in wasting power when I could just have 1. This would be for a home www connection anyway, so no real shame if it did blow up. The details of the card seem to say it is seen by the host system as a Realtek 10/100 Network Port (RTL8100CL) and the card does the hard work. So I guess the real question is... Does pfSense support the RTL8100CL Nic ? Not sure, I know FreeBSD does with the re driver, but not sure which version introduced support for it, but it went into FreeBSD over 2 years ago. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] OpenVPN and CARP
On 23 June 2010 13:01, Fuchs, Martin martin.fu...@trendchiller.com wrote: Hi ! I already looked up the forums, but i have a problem i cannot solve on my own… I have two pfSenses with CARP. Internal LAN-CARP is 10.11.1.1 and external WAN-CARP let’s say is 12.12.12.12 (gw1.bk), where pfSense_1 WAN is 12.12.12.13 (gw2.bk) and pfSense_2 WAN is 12.12.12.14 (gw3.bk). When I try to connect to gw1 (CARP) it does not respond… my WAN rule allows any on OpenVPN port incoming to WAN-subnet. I tried to set up two different OpenVPN-Address-pools on both servers for then using load-balancer-mode. I also tried to set up the same-Address-pool on both servers for CARP-mode. When I try to connect to gw2 (non-CARP) it works and the back-route works, too (pfSense_1 is CARP-master). When I try to connect to gw3 (non-CARP) it does connects and the back-route does NOT work (pfSense_2 ist CARP-slave), because all traffic is routed to 10.11.1.1 (LAN-CARP) which is held by pfSense_1. Any idea how I can use the WAN-CARP for OpenVPN ? Or Any idea how I can tell the LAN-CARP-master to route the pfSense_2 OpenVPN traffic to pfSense_2 (without static routes because these replicate via CARP) ? I asked this a while ago and got the following answer: Works now, put local x.x.x.x in custom options, where x.x.x.x is a CARP IP. You will have to manually configure the secondary to match the primary since the config doesn't sync on 1.2.x. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] rsyncd for 1.2.3
On 29 April 2010 13:54, mayak-cq ma...@australsat.com wrote: hi all, subject line pretty much says it all -- i'd like to install an rsync daemon onto several pfsense instances to do backups -- pkg_add rsync or rsyncd fails ... can anyone suggest how i might install it? Tried pkg_add -r rsync ? - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN
My Dell windows box does WOL even from powered off, standby works quicker though :) 2009/12/1 lists li...@kush-t.co.uk: For a windoze machine, it'll need to be on Standby rather than just plugged in. -- Chris Buechler wrote: On Tue, Dec 1, 2009 at 2:53 AM, Tortise tort...@paradise.net.nz wrote: Somehow I cannot get magic packets to awaken any PC on a pfSense LAN. I don't get it. Some motherboard BIOS seem to have WOL and others don't. Even the ones I have that are said to have it cannot be awoken as best I can tell! I have tried an Intel GT1000 with WOL functionality. I can get Boot on LAN to work OK, WOL seems a mystery! It is not clear to me the state that a PC to be awoken in is, I expected that the ATX power supplies would allow the PC to awaken when the right packets are sent however I am wondering if what is needed is a PC in a suspended state - or something else? Just need a WOL-enabled NIC, and to have WOL turned on in the BIOS. If you have an onboard NIC, it should be as simple as enabling it in the BIOS. As long as the machine is plugged in, it'll wake. With add-in NICs you need a WOL cable from the NIC to the motherboard, that can complicate things. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN
2009/12/1 Pete Boyd petes-li...@thegoldenear.org: David Burgess wrote: No, your computer will not wake from off if it is disabled in whatever OS was running last. I'm not sure why that is, but from experience I can tell you it is true. In Windows you have to go into device properties for the NIC under the advance tab and enable magic packet WOL. In linux you use ethtool. Other OSes will have similar settings. If this is so, is it the default in Windows XP Pro? because all workstations we have that have a WOL setting in the BIOS, successfully do WOL, without us changing anything in Windows from a fresh install. I think it's more dependant on the windows driver default than anything else - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Quad NIC's?
2009/9/23 Morgan Reed morgan.s.r...@gmail.com: On Wed, Sep 23, 2009 at 10:26, Luke Jaeger ad...@pvpa.org wrote: Are there any known issues with quad NIC cards on a pfSense box? Should be fine, your average (decent) quad NIC is a PCI(express) bridge on a card with what essentially amounts to 4 individual network adapters on it, far as pfSense is concerned there's 4 NICs (of whatever variety) plugged in. I've never had trouble with using PCI quad port cards with pfSense, I even once used a 4 port 10Mb card with built in hub... :) - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] CARP and OpenVPN
Are there any plans to get openvpn working well with CARP? I currently have a 2 pfSense CARP setup with VPN access via openvpn for support use, but due to the firewall failover, I have to have 2 openvpn conf files to use depending which firewall is active at the time. If it's already working, please give me some pointers how to use it! :) Much appreciated, TIA - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] CARP and OpenVPN
2009/8/21 Chris Buechler c...@pfsense.org: On Fri, Aug 21, 2009 at 5:13 AM, Simon Dicksim...@irrelevant.org wrote: Are there any plans to get openvpn working well with CARP? I currently have a 2 pfSense CARP setup with VPN access via openvpn for support use, but due to the firewall failover, I have to have 2 openvpn conf files to use depending which firewall is active at the time. If it's already working, please give me some pointers how to use it! :) Works now, put local x.x.x.x in custom options, where x.x.x.x is a CARP IP. You will have to manually configure the secondary to match the primary since the config doesn't sync on 1.2.x. Aah, thanks, good to know, I'm sure I did try that (I already have the config matching between them so that's no big problem, will give that a try soon. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] port 25
2009/8/11 Fabien Germain fabien.germ...@gmail.com: Hi, On Tue, Aug 11, 2009 at 12:13 PM, Kevin Kimani kevinkim...@gmail.com wrote: Not going through dont understand how you are able to do that mail kevin # telnet mail.aphrc.org 25 Trying 41.220.120.26... telnet: Unable to connect to remote host: Connection timed out If you are behind a residential DSL line, your ISP is probably filtering outgoing smtp connections. It's often the case, to prevent spammers to use their cheap DSL line to flood the planet. From a non filtered network here in France, it works too : Works from an unfiltered UK business connection (and BTW bethere don't filter outbound SMTP, I use them at home and used to run my own mail server there) - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Review New Hardware Setup
On Thu, 12 Jun 2008 10:15:31 -0500, Ryan Rodrigue [EMAIL PROTECTED] said: Sorry to butt in to this question, but i think it kinda goes along. Has anybody tried the new Inet atom based processors for something like this? They have made a few ITX boards for a pretty cheap price. They even have intel chipsets. http://www.malabs.com/product.asp?product_sku=76171item_no=MB-945GCLFshow= bpass=shopid= looks interesting. Thant and a good intel quad nic may be the way too go. Too bad it has a realtek nic onboard. An intel would have made this unit much better IMO. I have an Atom 230 based system I've just put together, unfortunately it's not one I'm planning to install BSD nevermind pfSense on, I'll actually be using it for VMWare (one of the guests will be pfSense, but this is only for a small home network, I'm trying to combine old low powered systems) -- Simon Dick [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Review New Hardware Setup
On Fri, 13 Jun 2008 10:55:51 +0100, Paul Mansfield [EMAIL PROTECTED] said: Simon Dick wrote: I have an Atom 230 based system I've just put together, unfortunately it's not one I'm planning to install BSD nevermind pfSense on, I'll actually be using it for VMWare (one of the guests will be pfSense, but this is only for a small home network, I'm trying to combine old low powered systems) would you be able to do at least a minimal network performance test, eg, boot linux and use netcat to test raw throughput? It's running centos 5 anyway, so I'll do that shortly, bear in mind I'm using a quad port 100Mb fxp type pci card, not the onboard Realtek one though (centos doesn't come with a driver to support it for some strange reason) -- Simon Dick [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Review New Hardware Setup
I have one of the ones from http://www.tranquilpc-shop.co.uk/acatalog/Motherboards.html Using iperf: Client connecting to 192.168.50.189, TCP port 5001 TCP window size: 32.5 KByte (default) [ 3] local 192.168.50.50 port 56194 connected with 192.168.50.189 port 5001 [ ID] Interval Transfer Bandwidth [ 3] 0.0-30.0 sec335 MBytes 93.7 Mbits/sec This is with the Atom server acting as the iperf server via linux fxp equivalent driver, and a FreeBSD 7.0/amd64 via vge0 over a 100Mb switch This is with the Atom as the client: Client connecting to 192.168.50.50, TCP port 5001 TCP window size: 16.0 KByte (default) [ 3] local 192.168.50.189 port 41113 connected with 192.168.50.50 port 5001 [ ID] Interval Transfer Bandwidth [ 3] 0.0-30.0 sec337 MBytes 94.2 Mbits/sec Hope that helps somewhat, doesn't seem too bad to me! As a note, CentOS is actually the x86-64 version On Fri, 13 Jun 2008 08:51:12 -0500, Ryan Rodrigue [EMAIL PROTECTED] said: I have a board on order and will let you know how well it works with pfsense. -Original Message- From: Simon Dick [mailto:[EMAIL PROTECTED] Sent: Friday, June 13, 2008 6:02 AM To: support@pfsense.com; support@pfsense.com Subject: Re: [pfSense Support] Review New Hardware Setup On Fri, 13 Jun 2008 10:55:51 +0100, Paul Mansfield [EMAIL PROTECTED] said: Simon Dick wrote: I have an Atom 230 based system I've just put together, unfortunately it's not one I'm planning to install BSD nevermind pfSense on, I'll actually be using it for VMWare (one of the guests will be pfSense, but this is only for a small home network, I'm trying to combine old low powered systems) would you be able to do at least a minimal network performance test, eg, boot linux and use netcat to test raw throughput? It's running centos 5 anyway, so I'll do that shortly, bear in mind I'm using a quad port 100Mb fxp type pci card, not the onboard Realtek one though (centos doesn't come with a driver to support it for some strange reason) -- Simon Dick [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ NOD32 3184 (20080613) Information __ This message was checked by NOD32 antivirus system. http://www.eset.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Simon Dick [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] pfSense support for usb to serial converter
.. Original Message ... On Mon, 17 Dec 2007 19:49:15 -0500 Chris Buechler [EMAIL PROTECTED] wrote: Chris Kuhn wrote: small update: on my other (recently setup) BSD system, which is: FreeBSD 6.2-RELEASE #0: Fri Jan 12 10:40:27 UTC 2007 I see in /usr/src/sys/dev/usb that uftdi.c and usbdevs contain a definition for this device. I'm not sure exactly what kernel change would be necessary to add this. What does it show up as in dmesg on a stock FreeBSD system? Sounds like just loading the uftdi module would be enough if ucom is already there - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Sun hme and question on VPNs
On Thu, 2005-09-08 at 10:59 -0400, Scott Ullrich wrote: On 9/8/05, Normando Marcolongo [EMAIL PROTECTED] wrote: Hi! I just tried to install a pfSense on an Intel server mainbord and a Sun QFE (4 x hme). pfSense recognizes only the onboard fxp interface but no sign of the SunQFE. I know it works cause on linux all works well. It seems as the hme driver has not been compiled in the kernel... Anyway I'm a FreeBSD newbie and I mey be missing something. You sure FreeBSD supports this driver? It's supported under sparc64 architecture, and as it's not under sparc64 sys dir it looks like it's meant to work on i386, but I very much doubt if it's compiled on or perhaps even tested much outside the sparc64 platform -- Simon Dick [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]