[pfSense] Is there a "would it pass"/what-if capability?

2013-03-19 Thread Bryan D.
I've searched both the list archives and forums, though I wasn't sure what phrase would yield results, and have not found an answer to the question: --- Is there a way to ask pfSense something like "would a packet arriving on from be passed to on ?" In short, is there a way to quickly tes

[pfSense] HA and bgp

2013-03-19 Thread Zach Underwood
I am setting up a pair of pfsense servers in front of a web hosting setup. I have two firewalls, two network switches(layer 3 stacked), and two isp links using BGP. I plan on using OSPF on the network switches to pass the routeing tables to pfsense. The way I am think of doing is this way https://d

[pfSense] Ping IF ALIAS

2013-03-19 Thread Diego Barrios
Hi list, I have an "if alias" configured with some NATs working without any problem, but i can`t ping the if ip address. Is there some special config for this? Firewall rules are ok, the IP address and subnet mask are both correct. I receive "destination host unreachable". Thanks Sek

Re: [pfSense] Legit HTTP Requests, lots... IP Spoof? Any way to shut it down?

2013-03-19 Thread Dave Warren
On 2013-03-19 08:52, Chuck Mariotti wrote: I agree with you that it seems like it is something that is not deliberate because the IP's are mostly all local, the browser agent is all iPhone with varying OS versions and Webkit versions... (HTTP_USER_AGENT:Mozilla/5.0 (iPhone; CPU iPhone OS 6_1_

Re: [pfSense] Legit HTTP Requests, lots... IP Spoof? Any way to shut it down?

2013-03-19 Thread Chuck Mariotti
>sounds like the scanning app or browser runs to the end of its life in >background on the mobiles >and the urls getting updated in a regular cycle. >either triggered by accessing new QR's or by accessing other webpages. >any time scheme/pattern visible? means: only to specific times and than in

Re: [pfSense] Legit HTTP Requests, lots... IP Spoof? Any way to shut it down?

2013-03-19 Thread Michael Schuh
2013/3/19 Chuck Mariotti > < It's effectively impossible to blind spoof TCP, so since you're > completing the TCP session you can be assured the traffic is really coming > from where it claims to be. > < > < Is it a high rate from a smallish number of IPs, or a low rate from a > large number? Wha

Re: [pfSense] Legit HTTP Requests, lots... IP Spoof? Any way to shut it down?

2013-03-19 Thread Chuck Mariotti
< It's effectively impossible to blind spoof TCP, so since you're completing the TCP session you can be assured the traffic is really coming from where it claims to be. < < Is it a high rate from a smallish number of IPs, or a low rate from a large number? What specifically do the HTTP requests