Strange...
It works perfectly for me...
--- "Jason J. Ellingson" <[EMAIL PROTECTED]> a écrit
:
> DHCP Server... can't see the registered MACs at the
> bottom of the page. It
> is empty, even when you've added a MAC for DHCP...
>
> attempts to add a MAC twice results in error... MAC
> already
I would enjoy this solution very much! But I think that should be
trickier because you need 2 web server running..
In my opinion, a faster solution could be to prepare a siple opening
page, with some statistics and graphs, and from there a link to the
"real" webgui
However, we are working in pe
Hi guys!
In a fresh new install of pfSense 0.90, I have the folloeing error in
system_firmware_check.php:
Warning: raiseerror(PEAR.inc): failed to open stream: No such file or
directory in /etc/inc/xmlrpc_client.inc on line 562 Warning:
raiseerror(): Failed opening 'PEAR.inc' for inclusion
(includ
Hello,
I'm planning to upgrade to 0.90
Do you want me to do a full new install or just an
upgrade???
regards...
Damien
___
Appel audio GRATUIT partout dans le monde avec le nouveau Yah
HI
This morning upgraded to 0.90 .. And then did a update_file.sh
/etc/rc.newwanip. Enable/Disable DynDns. Reboot.
Appears to have registered correctly again. I can't force an IP change manually
so I can't see if its tracking.. We'll wait a few days and see. It should
change today or tomorro
I get the same when going to pkg_mgr.
-Original Message-
From: Tommaso Di Donato [mailto:[EMAIL PROTECTED]
Sent: Monday, October 31, 2005 11:26 AM
To: support@pfsense.com
Subject: [pfSense Support] Problems in version 0.90
Hi guys!
In a fresh new install of pfSense 0.90, I have the foll
I got to this point just running about 500 requests/sec in apache
benchmark. No keepalive.
Strike me as inexperienced here, but wouldn't you want to tweak PF a bit
for your environment? Did you try the "Firewall Optimization Options"
and set it to aggressive?
Methinks one would have a
I even wiped the system and installed fresh from the 0.89.2 Live CD. I did
not further modifications (no rules, nothing)... just went straight to
adding MACs to the DHCP Server and they don't show up. They are saving in
the config... just not showing on the screen.
Anything I can do to help debu
rm /tmp/config.cache and see if they show up afterwards. Also, have
you rebooted since the DHCP change (other than rm /tmp/config.cache
this shouldn't make any other difference, so don't get your hopes up
:))
--Bill
On 10/31/05, Jason J. Ellingson <[EMAIL PROTECTED]> wrote:
> I even wiped the sy
I get the same error in pfSense 0.89.2, it worked at some point but then I
reinstalled it and it stoped working again.
Frimmel, Ivan (ISS South Africa) sagde:
> I get the same when going to pkg_mgr.
>
> -Original Message-
> From: Tommaso Di Donato [mailto:[EMAIL PROTECTED]
> Sent: Monday
I have created a ticket for this: http://cvstrac.pfsense.com/tktview?tn=663
Scott
On 10/31/05, Randy B <[EMAIL PROTECTED]> wrote:
>
> > I got to this point just running about 500 requests/sec in apache
> > benchmark. No keepalive.
> >
>
> Strike me as inexperienced here, but wouldn't you want
Will look into it.
Scott
On 10/31/05, Ulrik S. Kofod <[EMAIL PROTECTED]> wrote:
>
> I get the same error in pfSense 0.89.2, it worked at some point but then I
> reinstalled it and it stoped working again.
>
>
> Frimmel, Ivan (ISS South Africa) sagde:
> > I get the same when going to pkg_mgr.
> >
Fixed in CVS. update_file.sh /etc/inc/services.inc
On 10/31/05, Tommaso Di Donato <[EMAIL PROTECTED]> wrote:
> It's me again.
> I have noticed another error in booting 0.90: I am running it in a
> Virtual Machine, attached you can find the error in bootup sequence:
> Warning: Invalid argument su
On Sun, 2005-10-30 at 23:14 +0100, Espen Johansen wrote:
> Hi Peter,
>
> I have seen you have done a lot of testing with apache benchmarking.
> I find it a little strange to use this as a test. Basically you will hit the
> roof of standing I/O operations because you introduce latency with pfsense.
On Sun, 2005-10-30 at 17:25 -0500, Scott Ullrich wrote:
> If you want to push 50,000 states do you think this box is enough
> juice? With that amount of states it seems you want to use much
> better hardware.
Well... I'm not going to have 50.000 states - I'm just stress testing
to see the limit
On Mon, 2005-10-31 at 06:21 -0600, Randy B wrote:
> > I got to this point just running about 500 requests/sec in apache
> > benchmark. No keepalive.
> >
>
> Strike me as inexperienced here, but wouldn't you want to tweak PF a bit
> for your environment? Did you try the "Firewall Optimization
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Sun, 2005-10-30 at 17:25 -0500, Scott Ullrich wrote:
> > If you want to push 50,000 states do you think this box is enough
> > juice? With that amount of states it seems you want to use much
> > better hardware.
>
> Well... I'm not going
Please describe the hardware your using fully. NICS, etc. This is
not normal behavior.
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Sun, 2005-10-30 at 23:14 +0100, Espen Johansen wrote:
> > Hi Peter,
> >
> > I have seen you have done a lot of testing with apache benchmarking.
> >
FYI a PIX 520 (the 300 mhz version) can not handle 50,000 entries in the
state table. It may on paper, but just because it has enough ram. I want
to say it starts to have problems at about 35,000, but then again all my
PIX firewalls were fully loaded with nics (6 10/100 I think).
Kind of funny to
I didn't see but are you using Nat? If so do things change with Nat
disabled? Also could you try disabling the Scrub option and seeing if
that makes a difference?
-Original Message-
From: Peter Zaitsev [mailto:[EMAIL PROTECTED]
Sent: Monday, October 31, 2005 10:55 AM
To: support@pfsense.c
On Mon, 2005-10-31 at 11:30 -0600, Fleming, John (ZeroChaos) wrote:
John,
> I didn't see but are you using Nat? If so do things change with Nat
> disabled? Also could you try disabling the Scrub option and seeing if
> that makes a difference?
I'm using bridging - no NAT
What is SCRUB and how to
Edit /tmp/rules.debug and remove the scrub directives.
then run pfctl -f /tmp/rules.debug
Please submit the hardware type, interace nics, etc.
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 11:30 -0600, Fleming, John (ZeroChaos) wrote:
>
> John,
>
> > I did
On Mon, 2005-10-31 at 11:28 -0600, Fleming, John (ZeroChaos) wrote:
> FYI a PIX 520 (the 300 mhz version) can not handle 50,000 entries in the
> state table. It may on paper, but just because it has enough ram. I want
> to say it starts to have problems at about 35,000, but then again all my
> PIX
For my own reference please ..
The role of a firewall is supposed to be a filter rather than a router
or a front end load balancer? If there is this much inbound traffic
clearly other solutions would be appropriate? Or am I wrong?
-Original Message-
From: Peter Zaitsev [mailto:[EMAIL P
Oh in that case you might as well try routed to see if it's any
different as well. Also like Scott said it would help to know the
complete hardware specs. Please expect complaints if your using Real Tek
nics ;).
BTW does anyone know how to change the way outlook quotes messages?
-Original Me
Frimmel, Ivan (ISS South Africa) wrote:
For my own reference please ..
The role of a firewall is supposed to be a filter rather than a router
or a front end load balancer? If there is this much inbound traffic
clearly other solutions would be appropriate? Or am I wrong?
If you are an
On Mon, 2005-10-31 at 20:20 +0200, Frimmel, Ivan (ISS South Africa)
wrote:
> For my own reference please ..
>
> The role of a firewall is supposed to be a filter rather than a router
> or a front end load balancer? If there is this much inbound traffic
> clearly other solutions would be appropria
>" BTW does anyone know how to change the way outlook quotes messages?"
Go to tools - options - preferences tab
Click "email options" button
Under replies and forwards set however you want!
-Tim
-Original Message-
From: Fleming, John (ZeroChaos) [mailto:[EMAIL PROTECTED]
Sent: Monday, O
Peter,
Why do you keep side-stepping my hardware messages?
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 20:20 +0200, Frimmel, Ivan (ISS South Africa)
> wrote:
> > For my own reference please ..
> >
> > The role of a firewall is supposed to be a filter rath
On Mon, 2005-10-31 at 12:03 -0500, Scott Ullrich wrote:
> Please describe the hardware your using fully. NICS, etc. This is
> not normal behavior.
Sure It is Dell Poweredge 750
512MB RAM, SATA150 disk, Celeron 2.4Ghz
ACPI APIC Table:
Timecounter "i8254" frequency 1193182 Hz quality 0
CPU:
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 12:03 -0500, Scott Ullrich wrote:
> > Please describe the hardware your using fully. NICS, etc. This is
> > not normal behavior.
>
> Sure It is Dell Poweredge 750
> 512MB RAM, SATA150 disk, Celeron 2.4Ghz
>
> ACPI API
On Mon, 2005-10-31 at 13:31 -0500, Scott Ullrich wrote:
> Peter,
>
> Why do you keep side-stepping my hardware messages?
Sorry. I sent one a while back and I just wanted to make sure once again
disabling firewall fixes the issue before sending description back to
you.
Let me know if you need any
ftp://reflection.ncsa.uiuc.edu/pub/pfSense/updates/pfSense-Full-Update-0.90.tgz
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 13:31 -0500, Scott Ullrich wrote:
> > Peter,
> >
> > Why do you keep side-stepping my hardware messages?
>
> Sorry. I sent one a while back
Send the output.txt of...
date >> /tmp/output.txt
netstat -m >> /tmp/output.txt
netstat -in >> /tmp/output.txt
sysctl hw.em0.stats=1 >> /tmp/output.txt
sysctl hw.em1.stats=1 >> /tmp/output.txt
sysctl hw.em2.stats=1 >> /tmp/output.txt
Can you send these while the machine is normal and when th
Benchmarking 111.111.111.158 (be patient) Completed 1 requests <-
isn't 10,000 the default limit of the state table? That sure would
explain a lot.
-Original Message-
From: Peter Zaitsev [mailto:[EMAIL PROTECTED]
Sent: Monday, October 31, 2005 12:56 PM
To: support@pfsense.com
Subject:
On 10/31/05, Fleming, John (ZeroChaos) <[EMAIL PROTECTED]> wrote:
> Benchmarking 111.111.111.158 (be patient) Completed 1 requests <-
> isn't 10,000 the default limit of the state table? That sure would
> explain a lot.
Yep. 10K is the default and it is adjustable from the System ->
Advanced
On Mon, 2005-10-31 at 13:26 -0600, Fleming, John (ZeroChaos) wrote:
> Benchmarking 111.111.111.158 (be patient) Completed 1 requests <-
> isn't 10,000 the default limit of the state table? That sure would
> explain a lot.
I boosted it to 10 of course
-
I wonder if part of the problem is PF isn't seeing the TCP tear down. It
seems a little odd that the max gets hit and nothing else gets through.
I guess it could be the benchmark isn't shutting down the session right
after its down transferring data, but I would think it would kill the
benchmark cl
On 10/31/05, Fleming, John (ZeroChaos) <[EMAIL PROTECTED]> wrote:
> I wonder if part of the problem is PF isn't seeing the TCP tear down. It
> seems a little odd that the max gets hit and nothing else gets through.
> I guess it could be the benchmark isn't shutting down the session right
> after it
Scott Ullrich wrote:
ftp://reflection.ncsa.uiuc.edu/pub/pfSense/updates/pfSense-Full-Update-0.90.tgz
It used this to upgrade my test-setup.
It shows the same symptoms Peter also sees.
"ab" timeouts after a very low number of completed requests.
Really strange.
(The pfSense-hardware is a
On 10/31/05, Rainer Duffner <[EMAIL PROTECTED]> wrote:
> It used this to upgrade my test-setup.
> It shows the same symptoms Peter also sees.
> "ab" timeouts after a very low number of completed requests.
>
> Really strange.
> (The pfSense-hardware is a bit mediocre, but it should do its duty)
>
>
Hi,
After the tests today ( I guess I disabled firewall mode for test and
then enabled it back) I got locked out of my pfsense box - it is
inaccessible both from WAN and LAN (which are bridged and so anti
lockout rule does not work).
There seems to be no way to operate web interface from con
If you do not provide an address on the LAN ip then there is no
anti-lockout rule. To get around it, add a lan address.
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> Hi,
>
> After the tests today ( I guess I disabled firewall mode for test and
> then enabled it back) I got locked out
Yea, you need to run all the command from the console (video, serial
whatever)
-Original Message-
From: Peter Zaitsev [mailto:[EMAIL PROTECTED]
Sent: Monday, October 31, 2005 1:57 PM
To: support@pfsense.com
Subject: [pfSense Support] Locked out in bridging mode
Hi,
After the tests tod
On Mon, 2005-10-31 at 15:04 -0500, Scott Ullrich wrote:
> If you do not provide an address on the LAN ip then there is no
> anti-lockout rule. To get around it, add a lan address.
I have LAN address at this point set to be the same as WAN address.
Also see below - pfctl was disabled after I
pfctl runs pfctl -f /tmp/rules.debug. What happens if you run this?
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 15:04 -0500, Scott Ullrich wrote:
> > If you do not provide an address on the LAN ip then there is no
> > anti-lockout rule. To get around it, add a l
On Mon, 2005-10-31 at 15:12 -0500, Scott Ullrich wrote:
> pfctl runs pfctl -f /tmp/rules.debug. What happens if you run this?
There is no "rules.debug" if you have disabled firewall in advanced
setting and rebooted.
That was my first surprise :)
---
So what your saying is after "disabling" the firewall and rebooting pf
is still enabled?
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 15:12 -0500, Scott Ullrich wrote:
> > pfctl runs pfctl -f /tmp/rules.debug. What happens if you run this?
>
> There is no "rules.d
Just upgraded to 0.90 and traffic shaping seems to be broken.
Even after rerunning the wizard I get:
# pfctl -f /tmp/rules.debug
bandwidth for qWANRoot higher than interface
/tmp/rules.debug:17: errors in queue definition
parent qWANRoot not found for qWANdef
/tmp/rules.debug:18: errors in queue
At 03:32 PM 10/31/2005, you wrote:
Just upgraded to 0.90 and traffic shaping seems to be broken.
Even after rerunning the wizard I get:
# pfctl -f /tmp/rules.debug
bandwidth for qWANRoot higher than interface
/tmp/rules.debug:17: errors in queue definition
parent qWANRoot not found for qWANdef
I'm pretty sure that I am up to date on all MFC's. Did I miss one?
On 10/31/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote:
> At 03:32 PM 10/31/2005, you wrote:
> >Just upgraded to 0.90 and traffic shaping seems to be broken.
> >
> >Even after rerunning the wizard I get:
> >
> ># pfctl -f /tmp/
On Mon, 2005-10-31 at 15:33 -0500, Scott Ullrich wrote:
> So what your saying is after "disabling" the firewall and rebooting pf
> is still enabled?
No. That is what is the mystery. The firewall is disabled after I
reboot. pf is not running but I can't connect to the firewall host
(both SSH an
I still don't have any idea what your trying to do. Send me your
config.xml off-list.
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 15:33 -0500, Scott Ullrich wrote:
> > So what your saying is after "disabling" the firewall and rebooting pf
> > is still ena
At 03:41 PM 10/31/2005, you wrote:
I'm pretty sure that I am up to date on all MFC's. Did I miss one?
http://cvstrac.pfsense.com/chngview?cn=7245
fixed the problem where the shaper vaporizes the BW settings in the GUI.
-
T
Which appears to have been MFC'd at:
http://cvstrac.pfsense.com/chngview?cn=7254
So it sounds like the problem is not fixed entirely?
Scott
On 10/31/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote:
> At 03:41 PM 10/31/2005, you wrote:
> >I'm pretty sure that I am up to date on all MFC's. Did
On Mon, 2005-10-31 at 14:39 -0500, Scott Ullrich wrote:
> On 10/31/05, Fleming, John (ZeroChaos) <[EMAIL PROTECTED]> wrote:
> > I wonder if part of the problem is PF isn't seeing the TCP tear down. It
> > seems a little odd that the max gets hit and nothing else gets through.
> > I guess it could b
Although...
# pfctl -f /tmp/rules.debug
bandwidth for qWANRoot higher than interface
Tells me that ummm, the bandwidth Peter told the system is more than
the interfaces bandwidth. Not much I can do to control that.
However, I did just make some changes to the shaper for .90 (I assume
the MFCs ma
Are you viewing the traffic queue status? This would be normal if you are...
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 14:39 -0500, Scott Ullrich wrote:
> > On 10/31/05, Fleming, John (ZeroChaos) <[EMAIL PROTECTED]> wrote:
> > > I wonder if part of the
At 03:46 PM 10/31/2005, you wrote:
Which appears to have been MFC'd at:
http://cvstrac.pfsense.com/chngview?cn=7254
So it sounds like the problem is not fixed entirely?
no, that's different. his errors referred to the BW being higher
than the iface BW, which implies it does know it?
---
On 10/31/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote:
> no, that's different. his errors referred to the BW being higher
> than the iface BW, which implies it does know it?
Which means that he needs to set the bandwidth correctly in WAN and
LAN I would guess.
Scott
On 10/31/05, Rainer Duffner <[EMAIL PROTECTED]> wrote:
> Scott Ullrich wrote:
>
> >ftp://reflection.ncsa.uiuc.edu/pub/pfSense/updates/pfSense-Full-Update-0.90.tgz
> >
> >
> >
>
>
> It used this to upgrade my test-setup.
> It shows the same symptoms Peter also sees.
> "ab" timeouts after a very low
On Mon, 2005-10-31 at 13:25 -0600, Fleming, John (ZeroChaos) wrote:
>
> Can you send these while the machine is normal and when the machine is
> choking? (send the output.txt file btw)
Normal:
# cat /tmp/output.txt
Mon Oct 31 07:50:52 PST 2005
564/336/900 mbufs in use (current/cache/total)
55
On Mon, 2005-10-31 at 14:47 -0600, Bill Marquette wrote:
> Although...
> # pfctl -f /tmp/rules.debug
> bandwidth for qWANRoot higher than interface
>
> Tells me that ummm, the bandwidth Peter told the system is more than
> the interfaces bandwidth. Not much I can do to control that.
> However, I
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> Well... You obviously could have checked that and printed the error
> during wizard run.
Patches accepted!
Scott
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional
At 03:50 PM 10/31/2005, you wrote:
On Mon, 2005-10-31 at 14:47 -0600, Bill Marquette wrote:
> Although...
> # pfctl -f /tmp/rules.debug
> bandwidth for qWANRoot higher than interface
>
> Tells me that ummm, the bandwidth Peter told the system is more than
> the interfaces bandwidth. Not much I c
On Mon, 2005-10-31 at 15:48 -0500, Scott Ullrich wrote:
> Are you viewing the traffic queue status? This would be normal if you are...
Heh,
yes good quess. These were running in the other window.
So here is the output for "stalled" case
# pfctl -ss | wc -l
51898
I have number of states
On Mon, 2005-10-31 at 16:04 -0500, Dan Swartzendruber wrote:
> >
> >Well... You obviously could have checked that and printed the error
> >during wizard run.
>
> dude, these guys are working their butts off, a little more civility
> would be appreciated, i'm sure.
Sorry. I did not meant to offe
At 04:10 PM 10/31/2005, you wrote:
On Mon, 2005-10-31 at 16:04 -0500, Dan Swartzendruber wrote:
> >
> >Well... You obviously could have checked that and printed the error
> >during wizard run.
>
> dude, these guys are working their butts off, a little more civility
> would be appreciated, i'm sur
>apr_poll: The timeout specified has expired (70007)
What is the above from? Your benchmark testing box?
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 15:48 -0500, Scott Ullrich wrote:
> > Are you viewing the traffic queue status? This would be normal if you
>
On Mon, 2005-10-31 at 16:20 -0500, Dan Swartzendruber wrote:
> A
> >Why not to set it to 1000Mbit ? Seriously If you're looking for
> >something fail safe it could be fails safe.
>
> this is not ever going to happen unless there is something
> misdefined. very few people need to shape more tha
Well for one your setting the _SAME_ ip on two interfaces, your wan
and LAN. Don't do this! Use a different IP or use a "fake" ip on
the LAN such as 192.168.1.1.
Scott
On 10/31/05, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> I still don't have any idea what your trying to do. Send me your
> co
On Mon, 2005-10-31 at 16:25 -0500, Scott Ullrich wrote:
> >apr_poll: The timeout specified has expired (70007)
>
> What is the above from? Your benchmark testing box?
Yes. This is output from apache benchmark program.
Benchmarking 111.111.111.158 (be patient)
Completed 1 requests
Complete
Are we absolutely sure this program works as intended? Personally I
wouldn't trust anything like this but smartbits.
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 16:25 -0500, Scott Ullrich wrote:
> > >apr_poll: The timeout specified has expired (70007)
> >
On Mon, 2005-10-31 at 16:27 -0500, Scott Ullrich wrote:
> Well for one your setting the _SAME_ ip on two interfaces, your wan
> and LAN. Don't do this! Use a different IP or use a "fake" ip on
> the LAN such as 192.168.1.1.
Scott,
I guess we're back to the reason why I set it this way :)
Th
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> Scott,
>
> I guess we're back to the reason why I set it this way :)
>
> The fake IP address results in a lot of rules generated which should
> apply to LAN but actually do not work because LAN is set to the IP
> which no one uses. For exa
On Mon, 2005-10-31 at 16:38 -0500, Scott Ullrich wrote:
> On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> > Scott,
> >
> > I guess we're back to the reason why I set it this way :)
> >
> > The fake IP address results in a lot of rules generated which should
> > apply to LAN but actually do
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> > So whats wrong with this? If your not using the ip, whats the bother?
>
> Well. My Lan is using IP 111.111.111.154/29 - this is the lan lockout
> rule I'd like to see generated. If I enter there some fake IP it
> breaks as well as few
Have you seen this? https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=110887
Looks like a apachebench problem to me.
Scott
On 10/31/05, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> Are we absolutely sure this program works as intended? Personally I
> wouldn't trust anything like this but smar
On Mon, 2005-10-31 at 16:31 -0500, Scott Ullrich wrote:
> Are we absolutely sure this program works as intended? Personally I
> wouldn't trust anything like this but smartbits.
Well...
It works if filtering is disabled on pfsese - this is what worries me.
If the program would be broken it shou
On Mon, 2005-10-31 at 16:56 -0500, Scott Ullrich wrote:
> Have you seen this?
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=110887
>
> Looks like a apachebench problem to me.
This is other bug - it instantly fails in that case, it is also fixed in
2.0.48 I'm testing with 2.0.54
On Mon, 2005-10-31 at 16:51 -0500, Scott Ullrich wrote:
> On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> > > So whats wrong with this? If your not using the ip, whats the bother?
> >
> > Well. My Lan is using IP 111.111.111.154/29 - this is the lan lockout
> > rule I'd like to see gen
Hi,
It looks like there is some newly added bug in 0.90 with empty LAN
address (WAN bridging)
# FTP proxy
rdr-anchor "pftpx/*"
rdr on em1 proto tcp from any to any port 21 -> 127.0.0.1 port 8021
pass in on em1 proto tcp from /29 to any port 5900:5930 keep state tag
qOthersDownH
pass out on
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 16:04 -0500, Dan Swartzendruber wrote:
> > >
> > >Well... You obviously could have checked that and printed the error
> > >during wizard run.
> >
> > dude, these guys are working their butts off, a little more civility
>
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 16:20 -0500, Dan Swartzendruber wrote:
> > A
> > >Why not to set it to 1000Mbit ? Seriously If you're looking for
> > >something fail safe it could be fails safe.
Just like your very well thought out default deny? I'l
After all of the problems from the last couple days its obvious that
an IP address is required on the LAN interface so I have reinstalled
the code that prevents someone from not entering an IP address. The
shaper is another area that gets broken by this careless move on my
part.
Scott
On 10/31/
On Mon, 2005-10-31 at 16:36 -0600, Bill Marquette wrote:
>
> I do find that offensive, we "obviously" could have done alot, the
> first of which is not release fixes quickly. Certainly if we made
> money off this product I wouldn't release an update until it had been
> fully tested. pfSense isn
On Mon, 2005-10-31 at 17:51 -0500, Scott Ullrich wrote:
> After all of the problems from the last couple days its obvious that
> an IP address is required on the LAN interface so I have reinstalled
> the code that prevents someone from not entering an IP address. The
> shaper is another area that
Sorry! Rome wasn't built in a day. If you can fix the problem and
submit patches then I'll be happy to commit them.
Scott
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> On Mon, 2005-10-31 at 17:51 -0500, Scott Ullrich wrote:
> > After all of the problems from the last couple days its
On 10/31/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote:
> The fact it is not production ready as you put it makes me cautious -
> this is why I go in bridging mode as this way I can bypass firewall
> physically by switching couple of cables which staff at remote facility
> can do for me.
Right, so y
Are we still in feature freeze? If not, has it been considered to add
authentication straight to a LDAP directory server as an alternative to Radius?
<>-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail
Was missing before reboot.
Was missing after reboot.
Was missing after removing the cache.
Was missing after reboot after removing the cache.
No joy.
Also, noticed that the metallic theme... bottom of reboot screen, the grey
box, it is off center to the right about 20 pixels. Looks correct on al
Hi All
I was wanting to use PFSense in a CF card setup on a i386 system when
the stable version is released. What I was wanting to know is:
1. Will a CF card version for i386 be available?
2. What will the differences between a CF card version of PFSense and
one that runs on a HDD be?
Thank
Hi Peter,
I'm sorry, but I for one have had quite enough emails from you by now.
You have clearly demonstrated that you do not understand enough about
firewalls, filtering, BSD etc. to use pfSense in it's current state.
And I have more then enough emails to read without this mailing list getting
f
Hi All
Sorry I posted to the wrong subject, here in my post again, with a more
appropriate subject.
I was wanting to use PFSense in a CF card setup on a i386 system when
the stable version is released. What I was wanting to know is:
1. Will a CF card version for i386 be available?
2. What w
On 10/31/05, Mark Wass <[EMAIL PROTECTED]> wrote:
> I was wanting to use PFSense in a CF card setup on a i386 system when the
> stable version is released. What I was wanting to know is:
>
> 1. Will a CF card version for i386 be available?
http://faq.pfsense.com/index.php?sid=4624&lang=en&action
This would be a very interesting option! I'm really waiting to se it...
-Mensaje original-
De: Tommaso Di Donato [mailto:[EMAIL PROTECTED]
Enviado el: Lunes, 31 de Octubre de 2005 02:56 a.m.
Para: support@pfsense.com
Asunto: Re: [pfSense Support] wegGUI modification
I would enjoy this so
Hi Scott
The link you sent me refers to Sokeris and WRAP users are these similar
to i386 machines?
Can you expand on what no package support means? Does it mean when
there is a new package to add to PFSense it won't be able to add to my
CF card install?
Thanks
Mark
Scott Ullrich wrote:
On 10/31/05, Wesley K. Joyce <[EMAIL PROTECTED]> wrote:
> Are we still in feature freeze? If not, has it been considered to add
> authentication straight to a LDAP directory server as an alternative to
> Radius?
1.0 is frozen. 1.1 isn't, however at this time most devel work is
still going towa
On 10/31/05, Mark Wass <[EMAIL PROTECTED]> wrote:
> Hi All
>
> Sorry I posted to the wrong subject, here in my post again, with a more
> appropriate subject.
>
> I was wanting to use PFSense in a CF card setup on a i386 system when the
> stable version is released. What I was wanting to know is:
On 10/31/05, Jason J. Ellingson <[EMAIL PROTECTED]> wrote:
> Was missing before reboot.
> Was missing after reboot.
> Was missing after removing the cache.
> Was missing after reboot after removing the cache.
>
> No joy.
Strange. Anyone else seeing this? I just finished powering off all
my hardw
1 - 100 of 107 matches
Mail list logo
