Re: [pfSense Support] carp and firewall setups

2007-11-14 Thread Geoff Crompton
Espen Johansen wrote: > You need a /29 on your wan to use pfsense and carp. > > -lsf Thanks Espen, you've confirmed what I thought about the WAN. Any thoughts about multiple LAN subnets and carp? > > On Nov 14, 2007 2:40 AM, Geoff Crompton > <[EMAIL PROTECTED] > > wro

Re: [pfSense Support] carp and firewall setups

2007-11-14 Thread Espen Johansen
You need a /29 on your wan to use pfsense and carp. -lsf On Nov 14, 2007 2:40 AM, Geoff Crompton <[EMAIL PROTECTED]> wrote: > Hi, > > I'm just trying to educate myself about carp, and if pfSense can do what > we want. I'm trying out an 1.2RC3-embedded on a pair of net4801 devices. > We have a se

Re: [pfSense Support] Can't get thru LogMeIn behind pfSense

2007-11-14 Thread Chris Buechler
Raleigh Guevarra wrote: Hi there, Kindly help me out on how to set the firewall right to let LogMeIn connections thru... The default rules allow LogMeIn, if it doesn't work you must have changed your LAN rules. I believe you need to allow HTTPS to their servers and that'll suffice. Chec

Re: [pfSense Support] QOS over IPsec tunnels

2007-11-14 Thread Bill Marquette
I'm not sure, but you might be able to modify the rule to match the ipsec tunnel itself (which is seen on WAN). --Bill On Nov 14, 2007 10:41 AM, Wade Blackwell <[EMAIL PROTECTED]> wrote: > Thanks Bill, > Follow on question, what is the best way to configure QOS where > my qVOIPUp que will no

Re: [pfSense Support] QOS over IPsec tunnels

2007-11-14 Thread Wade Blackwell
Thanks Bill, Follow on question, what is the best way to configure QOS where my qVOIPUp que will not get hit due to the WAN interface never being seen as the egress? Wade B On Nov 14, 2007 6:30 AM, Bill Marquette <[EMAIL PROTECTED]> wrote: > Unfortunately we have no way (today) of perfo

Re: [pfSense Support] QOS over IPsec tunnels

2007-11-14 Thread Bill Marquette
Unfortunately we have no way (today) of performing QOS inside the tunnel. This is due to how IPSec in the FreeBSD kernel works and how altq works. Also, the enc(4) interface can only block traffic inbound to the firewall over the tunnel. --Bill On Nov 13, 2007 4:25 PM, Wade Blackwell <[EMAIL P

[pfSense Support] Yanıt: AW: [pfSense Support] Yanıt: AW: [ pfSense Support] Squid Transparent Proxy port forwa rding

2007-11-14 Thread Alparslan Ozturk
Dear Martin, I don't saw any option for "no rdr" rules on "Firewall: NAT: Port Forward: Edit" may be no rdr rule work but pfsense doesn't suppot this like rules rule1: no rdr on em2 inet proto tcp from any to 193.34.133.0/24 port = http -> 193.34.133.75 port 8080 rule2: rdr on em2 inet proto