AW: [pfSense Support] IPSec crl

@pfsense.com Betreff: Re: [pfSense Support] IPSec crl On 8/17/2011 4:56 PM, Fuchs, Martin wrote: > Hi, > Does the IPSec config make use of crl's defined in the certified-Manager ? > I cannot See any references To used crl in the cert-Manager when a crl > is d= efined there, neither can

AW: [pfSense Support] Happy Birthday Chris

>From Germany too ;-) Have fun and enjoy your day ;-) Regards, martin -Ursprüngliche Nachricht- Von: Serg [mailto:serg.dvorian...@gmail.com] Gesendet: Donnerstag, 18. August 2011 13:26 An: support@pfsense.com Betreff: Re: [pfSense Support] Happy Birthday Chris Happy Birthday Chris! --

[pfSense Support] IPSec crl

Hi, Does the IPSec config make use of crl's defined in the certified-Manager ? I cannot See any references To used crl in the cert-Manager when a crl is d= efined there, neither can i Chose a crl in the IPSec-config.=20 This is a Security-Risk i think, that should Be fixed 2.0 leaves the door = or

[pfSense Support] IPSec crl

von unterwegs gesendet ... - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org

AW: [pfSense Support] pfSense 2.0 IPSec-VPN with Certs

Hi ! ASN.1 and the remote CA Cert made it work :) Thanks ! Von: Dan Candea [mailto:dan.can...@quah.ro] Gesendet: Dienstag, 9. August 2011 14:21 An: support@pfsense.com Betreff: Re: [pfSense Support] pfSense 2.0 IPSec-VPN with Certs On 03.08.2011 14:46, Fuchs, Martin wrote: Hi ! Does anyone

[pfSense Support] pfSense 2.0 IPSec-VPN with Certs

Hi ! Does anyone have mutual-RSA-IPSec VPN working with 2.0 ? All settings I tried do not work, I always get errors: racoon: ERROR: failed to get subjectAltName racoon: ERROR: racoon: ERROR: no peer's CERT payload found. These errors are away as soon as I use PSKs, so I think it hust have someth

AW: [pfSense Support] To integrate AD users to specific rule groups

Hi ! Hmmm, any chance to get this working without installing samba on the firewall-system ? And which squid-version did you use ? the package-provided or 3.x ? Regards, Martin Von: Younes EL AMRAOUI [mailto:oun...@gmail.com] Gesendet: Montag, 1. August 2011 08:34 An: support@pfsense.com Betref

Re: [pfSense Support] To integrate AD users to specific rule groups

Hi ! Which version did you build and which patch did you use ? Sounds interesting ;-) Regstes, Martin von unterwegs gesendet ... Am 31.07.2011 um 13:26 schrieb "Younes EL AMRAOUI" mailto:oun...@gmail.com>>: Hi, I have do the same thing that you searching for, by using Samba(nmbd,smbd,winbind

[pfSense Support] AW: snort broken ?

://forum.pfsense.org/index.php/topic,37557.msg199104.html#msg199104 From: Fuchs, Martin [mailto:martin.fu...@trendchiller.com]<mailto:[mailto:martin.fu...@trendchiller.com]> Sent: Friday, July 08, 2011 5:49 PM To: 'support@pfsense.com' Subject: [pfSense Support] snort broken ? Hi ! Is anyone able

[pfSense Support] snort broken ?

Hi ! Is anyone able to install snort from the packages selection ? Regards, martin

AW: [pfSense Support] psSense , AD, Kerberos, FreeBSD, Samba,Squid,SquidGuard

NTLM is auth against the AD via integrated auth (IE) Basic is auth via tying username and password... Von: Younes EL AMRAOUI [mailto:oun...@gmail.com] Gesendet: Donnerstag, 23. Juni 2011 21:22 An: support@pfsense.com Betreff: Re: [pfSense Support] psSense , AD, Kerberos, FreeBSD, Samba,Squid,Squi

Re: [pfSense Support] Current Production Version

Is's RC2 atm. It may contain a few bugs though. For production I'd recommend 1.2.3 so far, but RC3 will arrive soon. Regards, Martin Am 17.06.2011 um 20:00 schrieb "Nathan Eisenberg" : > Apologies for the dumb question... Is the general consensus that 2.0-RC1 is > production ready, or is 1.2.

[pfSense Support] CertManager

Hi ! I have an old cert that was used as the webui cert. I replaced this and wanted to delete the old cert, but the certmanager tells me it's still in use by IPSec Tunnel... I have IPSec-Tunnels but no one with certs... I already looked into my config in the IPSec-settings but I really cannot fin

[pfSense Support] Pfsense 2.0 dyndns

Hi ! Do we know about any dyndns issues ? I have some systems where sometimes dyndns does not update, the client shows it in red, but does not update ? Shouldn't this be done when it's printed in red ? Only manually saving or reconnect triggers the update of dyndns... Any ideas ? Regards, Martin

AW: [pfSense Support] PPTP password issue

Did you try playing around with the user privileges in the user manager ? Iirc there is something like pptp access ? Regards, martin -Ursprüngliche Nachricht- Von: Ernst den Broeder [mailto:erns...@gmail.com] Gesendet: Mittwoch, 13. April 2011 16:32 An: support@pfsense.com Betreff: [pfS

Re: [pfSense Support] pfSense 2.0 IPsec on Mac OS X 10.6

That's strange, my config works with NAT-T too, but i never had problems with non-natted, natted or any other network. Am 12.04.2011 um 21:46 schrieb "Paul Mather" : > On Apr 12, 2011, at 3:17 PM, Vick Khera wrote: > >> On Tue, Apr 12, 2011 at 2:04 PM, Fuchs, M

Re: [pfSense Support] pfSense 2.0 IPsec on Mac OS X 10.6

12, 2011 at 2:04 PM, Fuchs, Martin <<mailto:martin.fu...@trendchiller.com>martin.fu...@trendchiller.com<mailto:martin.fu...@trendchiller.com>> wrote: I have IPSec from my iPhone To pfsense here... Have a look at the Forums. It took some Time but now it works... I found in the

Re: [pfSense Support] pfSense 2.0 IPsec on Mac OS X 10.6

I have IPSec from my iPhone To pfsense here... Have a look at the Forums. It took some Time but now it works... Am 12.04.2011 um 17:24 schrieb "Vick Khera" mailto:vi...@khera.org>>: On Tue, Apr 12, 2011 at 11:21 AM, Vick Khera <vi...@khera.org> wr

[pfSense Support] german pfSense article on PC-Welt

Hi ! There a german article about pfSense 2.0 RC1 on PC-Welt: http://www.pcwelt.de/ratgeber/m0n0wall-Fork-pfSense-Firewall-und-Router-mit-Open-Source-1507333.html regards, martin

AW: [pfSense Support] www.pfsense.org down?

> FWIW, I used to sell a lot of HP ProCurve gear; the only switches of > theirs I ever had to return were 1800-series switches (and _one_ 2524, > IIRC). A very small proportion, to be sure, effectively zero warranty > service rate compared to Cisco, but relatively speaking... I suspect > it ha

AW: [pfSense Support] pfSense as subordinate CA

e.com Betreff: Re: [pfSense Support] pfSense as subordinate CA On Wed, Mar 23, 2011 at 7:03 AM, Fuchs, Martin wrote: > I'd like to use my Windows 2008R2 CA as the main CA and pfSense as a > subordinate CA. > > When I import an existing certificate of a subordinate ca, I cannot

[pfSense Support] pfSense as subordinate CA

Hi ! Is it possible to configure pfSense as a subordinate CA ? I'd like to use my Windows 2008R2 CA as the main CA and pfSense as a subordinate CA. When I import an existing certificate of a subordinate ca, I cannot chose this ca, when creating new certs with pfsense... (it displays the ca then

[pfSense Support] AW: update bogons

Just one question remains: how are updates scheduled in 1.2.3 and how is it done in 2.0, even though this is nearly obsolete ? Von: Fuchs, Martin [mailto:martin.fu...@trendchiller.com] Gesendet: Freitag, 18. März 2011 11:35 An: support@pfsense.com Betreff: [pfSense Support] AW: update bogons

[pfSense Support] AW: update bogons

Solved: by searching the forum: http://forum.pfsense.org/index.php?topic=21144.0 http://forum.pfsense.org/index.php/topic,13278.0.html Von: Fuchs, Martin [mailto:martin.fu...@trendchiller.com] Gesendet: Freitag, 18. März 2011 11:08 An: support@pfsense.com Betreff: [pfSense Support] update

[pfSense Support] update bogons

Hi ! Today we encountered some problem with pfSense 1.2.3 (in production), because of this we were not able to update by now... We boiled it down to the bogons-filter on the WAN-interface (which is senseless by now since all IP-blocks are delivered). How often is this list updated by default and

[pfSense Support] packahe reinstallation on every reboot

Hi ! On 2.0 EVERY reboot my packages are deinstalled and then reinstalled... Is this intended behavior ? - Why ? Regards, martin

AW: [pfSense Support] Re: Intel Gigabit - em0: Watchdog Timeout

Same problem here, but seems to work without problems... so far... ;-) -Ursprüngliche Nachricht- Von: Jim Pingle [mailto:li...@pingle.org] Gesendet: Freitag, 4. März 2011 17:19 An: support@pfsense.com Cc: Moshe Katz Betreff: Re: [pfSense Support] Re: Intel Gigabit - em0: Watchdog Timeout

[pfSense Support] pfSense 2.0 & Dashboard-Widgets (CPU)

Hi ! After an upgrade from 1.2.3 to 2.0 RC1 i'm missing the dashboard-cpu-usage-widget... I have an error in my Dashboard which tells me that the files are missing :( Will this widget be updated or is it suspended ? Regards, martin

[pfSense Support] pfsense 1.2.3 ipsec stopping to work after too many unsuccessful connects

Hi ! I run pfsense 1.2.3 and use 4 ipsec tunnels with dynamic endpoints. Everything works fine, but when one endpoint continuously gets a new WAN-IP due to numerous reconnects, raccoon stops working and has to be started manually... Can anyone confirm this issue ? Regards, martin

[pfSense Support] AW: USB Wifi nic

Should work if you pass it by using VMDirectPath -Ursprüngliche Nachricht- Von: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Gesendet: Mittwoch, 19. Januar 2011 22:57 An: 'support@pfsense.com' Betreff: [pfSense Support] USB Wifi nic I have a vm running under esxi 4.1 that I need t

AW: [pfSense Support] Squid traffic management Maximum download size not working

:) Von: Shali K.R. [mailto:sh...@vidyaacademy.ac.in] Gesendet: Freitag, 7. Januar 2011 11:39 An: support@pfsense.com Betreff: Re: [pfSense Support] Squid traffic management Maximum download size not working Thank you sir its working fine now On Fri, Jan 7, 2011 at 4:00 PM, Fuchs, Martin

AW: [pfSense Support] Squid traffic management Maximum download size not working

Hi ! I found the error, i'll try to fix it as soon as time permits... Until then please change the following lines /usr/local/pkg/squid.inc: line 896: FROM $conf .= 'reply_body_max_size ' . ($down_limit * 1024) . " allow all\n"; TO $conf .= 'reply_body_max_size ' . ($down_limit * 1024

[pfSense Support] IPSec dies after more reconnects

Hi ! I have 3 ipsec tunnels. One of these endpoints has bad wan-connectivity, so it connects some times day. This problem exists since a week. I had to restart my raccoon-service on the central firewall every day, because it is stopped there ? Has anyone a similar problem or is there a watchdog

AW: [pfSense Support] OpenVPN and CARP

On 23 June 2010 13:01, Fuchs, Martin wrote: > Hi ! > > I already looked up the forums, but i have a problem i cannot solve on > my own... > > I have two pfSenses with CARP. > > Internal LAN-CARP is 10.11.1.1 and external WAN-CARP let's say is > 12.12.12.12

AW: [pfSense Support] IPSec from WAN to DMZ (with racoon on WAN)

... GRE has nothing to do with IPsec. My suspicion is you haven't disabled NAT for the publicly addressed interface, so replies are getting translated to the WAN IP by your outbound NAT. YEAH ! It works... Late answer, but thanks a lot... my fault... Regards, martin --

[pfSense Support] OpenVPN and CARP

Hi ! I already looked up the forums, but i have a problem i cannot solve on my own... I have two pfSenses with CARP. Internal LAN-CARP is 10.11.1.1 and external WAN-CARP let's say is 12.12.12.12 (gw1.bk), where pfSense_1 WAN is 12.12.12.13 (gw2.bk) and pfSense_2 WAN is 12.12.12.14 (gw3.bk). W

[pfSense Support] Nagios/Icinga icons for pfSense

Are now available here: http://pfsense.trendchiller.com/pfSense_nagios_icons.zip I was so annoyed to not have the pfSense-logo in my status-map... Regards, Martin

AW: [pfSense Support] IPSec from WAN to DMZ (with racoon on WAN)

-- Trevor Benson dCAP, LPIC-1, CLA, Network+, MCP, CNA A1 Networks - Network Engineer DID (707)703-1041 FAX (707)703-1983 On May 20, 2010, at 11:31 AM, Fuchs, Martin wrote: Hi ! I've got a question ! We have the following setup: WAN 195.x.x.x/29 --- WAN pfSense -

[pfSense Support] IPSec from WAN to DMZ (with racoon on WAN)

Hi ! I've got a question ! We have the following setup: WAN 195.x.x.x/29 --- WAN pfSense - LAN 10.x.x.x/16 | DMZ 195.x.x.x/29 On pfSense WAN there is racoon enabled

[pfSense Support] racoon binding to separate interfaces

Hi ! Is racoon bound to all interfaces by default ? It there the possibility to change this (for testing) ? I try to route ipsec thru pfsense (ipsec endpoint itself(x.x.x.90)) to an official ip in the dmz (x.x.x.110). The other endpoint gets replies from .90, but wants to establish a connection

AW: [pfSense Support] no packages for 2.0

Same here -Ursprüngliche Nachricht- Von: David Burgess [mailto:apt@gmail.com] Gesendet: Montag, 19. April 2010 19:58 An: support Betreff: [pfSense Support] no packages for 2.0 The Available Packages page for 2.0 beta x86_64 full snapshot from Friday shows no packages, with the warnin

AW: [pfSense Support] About promiscuous mode

package ! On Fri, Jan 22, 2010 at 4:09 PM, Fuchs, Martin mailto:martin.fu...@trendchiller.com>> wrote: -Ursprüngliche Nachricht- Von: Koray AGAYA [mailto:insanad...@gmail.com<mailto:insanad...@gmail.com>] Gesendet: Freitag, 22. Januar 2010 14:38 An: support@pfsense.com<

AW: [pfSense Support] About promiscuous mode

-Ursprüngliche Nachricht- Von: Koray AGAYA [mailto:insanad...@gmail.com] Gesendet: Freitag, 22. Januar 2010 14:38 An: support@pfsense.com Betreff: [pfSense Support] About promiscuous mode Hi, I use 1.2.3-RELEASE Pfsense, System log have a error, I dont understand What is problem ? Jan

AW: [pfSense Support] do we support ipsec-nat ?

On Mon, Oct 26, 2009 at 9:31 AM, Fuchs, Martin wrote: > Hi ! > > Do we support IPsec-NAT ? > -Ursprüngliche Nachricht- Von: cbuech...@gmail.com [mailto:cbuech...@gmail.com] Im Auftrag von Chris Buechler Gesendet: Dienstag, 27. Oktober 2009 00:42 An: support@pfsense.com

[pfSense Support] do we support ipsec-nat ?

Hi ! Do we support IPsec-NAT ? We had a discussion today about monitoring some clients systems with identical client subnets... Does pfsense support natting ipsec tunnels ? a colleague told me that for example cisco, wg, etc... does a 1:1 nat for translating the remote subnets... Regards, mart

AW: [pfSense Support] more users for the webgui (running 1.2.3 rc3)

You'll have to wait for 2.0... It's a feature there... Regards, Martin -Ursprüngliche Nachricht- Von: Michel Servaes [mailto:mic...@mcmc.be] Gesendet: Montag, 19. Oktober 2009 11:28 An: support@pfsense.com Betreff: [pfSense Support] more users for the webgui (running 1.2.3 rc3) Hi, I

AW: AW: [pfSense Support] 192.0.2.112

-Ursprüngliche Nachricht- Von: Chris Buechler [mailto:cbuech...@gmail.com] Gesendet: Dienstag, 29. September 2009 23:05 An: support@pfsense.com Betreff: Re: AW: [pfSense Support] 192.0.2.112 On Tue, Sep 29, 2009 at 4:48 PM, Jeppe Øland wrote: >>> > Do you have this 192.x.x.x for WAN at y

AW: AW: [pfSense Support] 192.0.2.112

-Ursprüngliche Nachricht- Von: Chris Buechler [mailto:cbuech...@gmail.com] Gesendet: Dienstag, 29. September 2009 23:05 An: support@pfsense.com Betreff: Re: AW: [pfSense Support] 192.0.2.112 On Tue, Sep 29, 2009 at 4:48 PM, Jeppe Øland wrote: >>> > Do you have this 192.x.x.x for WAN at y

AW: AW: [pfSense Support] 192.0.2.112

-Ursprüngliche Nachricht- Von: Evgeny Yurchenko [mailto:evg.yu...@rogers.com] Gesendet: Dienstag, 29. September 2009 20:09 An: support@pfsense.com Betreff: Re: AW: [pfSense Support] 192.0.2.112 Fuchs, Martin wrote: > On Tue, Sep 29, 2009 at 1:26 PM, Michel Servaes wrote: >

AW: [pfSense Support] 192.0.2.112

On Tue, Sep 29, 2009 at 1:26 PM, Michel Servaes wrote: > > Is 192.0.2.112 not a public range ? 192.0.2.0/24 is reserved for documentation/example uses, RFC 3330. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For addi

[pfSense Support] 192.0.2.112

Hi ! A friend of mine has a strange problem: everytime he reboots his pfsense his dyndns updates with 192.0.2.112 He had this problem with 1.2.2 and now updatet to 1.2.3 RC3 and it still exists... Anyone hast he same issues ? Any ideas ? Regards, Martin

AW: [pfSense Support] GBE toe

I prefer intel... :-) -Ursprüngliche Nachricht- Von: cbuech...@gmail.com [mailto:cbuech...@gmail.com] Im Auftrag von Chris Buechler Gesendet: Dienstag, 25. August 2009 20:19 An: support@pfsense.com Betreff: Re: [pfSense Support] GBE toe On Tue, Aug 25, 2009 at 3:15 AM, Richard Sperry wro

AW: [pfSense Support] VPN Questions

Ahh, yes.. that's correct..., then i have misunderstood the question yesterday... But on this server you can setup your different dns-request-forwardings, etc.. -Ursprüngliche Nachricht- Von: cbuech...@gmail.com [mailto:cbuech...@gmail.com] Im Auftrag von Chris Buechler Gesendet: Diensta

AW: [pfSense Support] VPN Questions

It is intended to do so... Regards, martin -Ursprüngliche Nachricht- Von: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Gesendet: Montag, 3. August 2009 15:55 An: support@pfsense.com Betreff: RE: [pfSense Support] VPN Questions >>> You can filter OpenVPN. Short howto is here: >>>

AW: [pfSense Support] openssh flaw

In 1.2.2 (release version) we use OpenSSH_4.5p1 Regards, Martin -Ursprüngliche Nachricht- Von: David Burgess [mailto:apt@gmail.com] Gesendet: Donnerstag, 21. Mai 2009 21:37 An: support Betreff: [pfSense Support] openssh flaw http://linux.slashdot.org/article.pl?sid=09/05/21/1824220

AW: [pfSense Support] Attention Firebox X Series Users - Testing Needed

As far as i know the fireboxes support single-sided dimms with 512 mb... 1gb is recognized as 512mb only :-( Regards, martin -Ursprüngliche Nachricht- Von: Tim Nelson [mailto:tnel...@fudnet.net] Gesendet: Freitag, 24. April 2009 04:43 An: support@pfsense.com Betreff: Re: [pfSense Suppo

[pfSense Support] AW: Is there any reason I can't Remote desktop through an ipsec tunnel?

: support@pfsense.com Betreff: [pfSense Support] RE: Is there any reason I can't Remote desktop through an ipsec tunnel? That's a good point. Where would I see if that was an issue? Thanks, -Marty From: Fuchs, Martin [mailto:martin.fu...@trendchiller.com] Sent: Thursday, March 26, 2009

[pfSense Support] AW: Is there any reason I can't Remote desktop through an ipsec tunnel?

Perhaps some kind of MTU issue ? RDP often has MTU issues ;-) Regards, Martin Von: Marty Nelson [mailto:mnel...@transdyn.com] Gesendet: Donnerstag, 26. März 2009 23:30 An: support@pfsense.com Betreff: [pfSense Support] Is there any reason I can't Remote desktop through an ipsec tunnel? I have

[pfSense Support] AW: ACPI/APIC in loader.conf - watchdog timeouts

A friend of mine will test this apic.disable with his WG config... Hope it helps... Regards, Martin ! Von: Dimitri Rodis [mailto:dimit...@integritasystems.com] Gesendet: Montag, 23. März 2009 05:39 An: support@pfsense.com Betreff: [pfSense Support] ACPI/APIC in loader.conf - watchdog timeouts S

AW: AW: [pfSense Support] Squid authentication against AD.

Hmmm,... sounds interesting... -Ursprüngliche Nachricht- Von: Gary Buckmaster [mailto:g...@centipedenetworks.com] Gesendet: Freitag, 13. März 2009 14:52 An: support@pfsense.com Betreff: Re: AW: [pfSense Support] Squid authentication against AD. Fuchs, Martin wrote: > > Would o

AW: [pfSense Support] Squid authentication against AD.

Would only be possible with integrated authentication in IE and with squid using it... Afaik it works with isa and even there only with IE... so... no... Regards, Martin Von: Wayne Langdon [mailto:wa...@langdon.co.za] Gesendet: Freitag, 13. März 2009 12:56 An: support@pfsense.com Betreff: [pfSen

AW: [pfSense Support] Re: Can't get more than 15kpps.

than 15kpps. Yeah, but I'm already using a Dual NIC - I wrote that. I only use WAN and OPT1 - they're both on the same card. On Sun, Mar 8, 2009 at 3:01 PM, Fuchs, Martin mailto:martin.fu...@trendchiller.com>> wrote: We once had a similar problem and solved it by using multipor

AW: [pfSense Support] Re: Can't get more than 15kpps.

We once had a similar problem and solved it by using multiport cards, so when the traffic leaves the physical card to be routed to another card there are more interrupts generated as when the traffic only is routed between the interfaces of one physical cars, we used 2-port or 4-port em0 and it

AW: [pfSense Support] what VPN to use

Use OpenVPN We use it here with 10 sites and 100 road-warriors... Works like a charm :-) -Ursprüngliche Nachricht- Von: Nick Upson [mailto:nick.up...@gmail.com] Gesendet: Freitag, 6. Februar 2009 15:50 An: support@pfsense.com Betreff: [pfSense Support] what VPN to use Hi, I'm intendin

AW: [pfSense Support] Squid / swap.state issue

Try using the log-rotate-feature... So every night your swap.state should be compacted... Are you on the latest pfsense release and the newest squid package ? Regards, Martin -Ursprüngliche Nachricht- Von: Wayne Langdon [mailto:wa...@langdon.co.za] Gesendet: Freitag, 30. Januar 2009 05:

AW: [pfSense Support] FTP Server in Routed DMZ

r accounts or passwords, this in combination with an buggy ftp-server is really dangerous but this is eventually off topic.for this list 2009/1/20 Fuchs, Martin : > Hi ! > > I opened up port 20 for active FTP data from the DMZ now and the upper ports > defined in the server for

AW: [pfSense Support] FTP Server in Routed DMZ

l the time. Special attention is only needed if another Service listen on the ports that you must open for ftp-server ( in almost cases not given). cheers michael 2009/1/20 Fuchs, Martin : > No problem ;-) > > Thats the answer i expected... > > So there is really no way to accom

AW: [pfSense Support] FTP Server in Routed DMZ

for the users in your holy internal LAN. 2009/1/20 Fuchs, Martin : > Should the FTP-helper service be activated or deactivated on the > WAN-Interface ? > > -Ursprüngliche Nachricht- > Von: Michael Schuh [mailto:michael.sc...@gmail.com] > Gesendet: Dienstag, 20. Janu

AW: [pfSense Support] FTP Server in Routed DMZ

FTP server and all gets fine. regards michael. 2009/1/20 Fuchs, Martin : > Hi ! > > I have set up a FTP server in my DMZ with an official IP address. > From WAN -> DMZ the IPs are routed (no NAT). > I opened up port 21 from WAN -> DMZ for FTP but of course I cannot transf

[pfSense Support] FTP Server in Routed DMZ

Hi ! I have set up a FTP server in my DMZ with an official IP address. >From WAN -> DMZ the IPs are routed (no NAT). I opened up port 21 from WAN -> DMZ for FTP but of course I cannot transfer any files. It seems to require some more ports, so I thought the FTP-helper on the WAN-side could be he

AW: AW: [pfSense Support] em0: Watchdog timeout -- resetting

--Ursprüngliche Nachricht- Von: Paul Mansfield [mailto:it-admin-pfse...@taptu.com] Gesendet: Montag, 5. Januar 2009 12:01 An: support@pfsense.com Betreff: Re: AW: [pfSense Support] em0: Watchdog timeout -- resetting Fuchs, Martin wrote: > And perhaps try to set the port speed in pfsense AND

AW: [pfSense Support] em0: Watchdog timeout -- resetting

And perhaps try to set the port speed in pfsense AND the switch, e.g. 1000MBit FD... Sometimes this helps, too Regards, Martin -Ursprüngliche Nachricht- Von: apiase...@midatlanticbb.com [mailto:apiase...@midatlanticbb.com] Gesendet: Sonntag, 4. Januar 2009 04:17 An: support@pfsense.com

AW: AW: [pfSense Support] pfsense 1.3

pport@pfsense.com' Betreff: Re: AW: [pfSense Support] pfsense 1.3 On Sun, 21 Sep 2008, Fuchs, Martin wrote: > And yes... Certificates will be possible over web :-) Out of curiosity, what do we mean by certificates over web? Right now we can paste the certs for the server into the openvpn setti

AW: [pfSense Support] pfsense 1.3

And yes... Certificates will be possible over web :-) -Ursprüngliche Nachricht- Von: Eugen Leitl [mailto:[EMAIL PROTECTED] Gesendet: Sonntag, 21. September 2008 14:51 An: support@pfsense.com Betreff: Re: [pfSense Support] pfsense 1.3 On Sun, Sep 21, 2008 at 02:49:05PM +0200, Mikel Jimenez

AW: [pfSense Support] Trouble with NAT states

Hi ! We're currently working on this afaik... Regards, Martin -Ursprüngliche Nachricht- Von: Fridtjof Busse [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 5. September 2008 10:52 An: support@pfsense.com Betreff: [pfSense Support] Trouble with NAT states Hi, I'm running pfSense 1.2-RELEA

AW: [pfSense Support] Squid Help

Have a look at the access control tab... You can configure it all there... -Ursprüngliche Nachricht- Von: Ronald L. Rosson Jr. [mailto:[EMAIL PROTECTED] Gesendet: Sonntag, 24. August 2008 21:24 An: support@pfsense.com Betreff: [pfSense Support] Squid Help I have recently added squid to my

AW: AW: [pfSense Support] filesystem runs out of space

Jep, thanks a lot ! There were no bit files... Just a reboot oft he box and the usage was not 94% but 0 %... Strange, but true ;-) Regards, Martin -Ursprüngliche Nachricht- Von: Chris Buechler [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 22. August 2008 17:32 An: support@pfsense.com B

AW: [pfSense Support] filesystem runs out of space

Cool ! Thanks a lot ! -Ursprüngliche Nachricht- Von: Chris Buechler [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 22. August 2008 15:10 An: support@pfsense.com Betreff: Re: [pfSense Support] filesystem runs out of space On Fri, Aug 22, 2008 at 8:33 AM, Fuchs, Martin <[EMAIL PROTEC

[pfSense Support] AW: filesystem runs out of space

%/var/dhcpd/dev can that be ? i have NO packages installed... -Ursprüngliche Nachricht- Von: Fuchs, Martin [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 22. August 2008 14:34 An: 'support@pfsense.com' Betreff: [pfSense Support] filesystem runs out of space Hi ! At one of my system

[pfSense Support] filesystem runs out of space

Hi ! At one of my systems I have a strange issue, the file-system runs out of space... So is there the possibility to have some "ls" combination or else that can check fort he biggest files in the fs instead of having me to search in thousands of directories ? Thanks, martin -Ursprünglic

AW: AW: [pfSense Support] OpenVPN Server & Client

do an ifconfig, how many tun interfaces do you have? Fuchs, Martin escreveu: > Hi, David ! > > I have client and servermode working with pfsense on one system and it > works like a charm... > My server is running on UDP/1194 and the clients (2 of hem) are > running on UDP/dynamic p

AW: [pfSense Support] OpenVPN Server & Client

Hi, David ! I have client and servermode working with pfsense on one system and it works like a charm... My server is running on UDP/1194 and the clients (2 of hem) are running on UDP/dynamic port... no problem with it at all... Please recheck your config and make sure the OpenVPN services are

[pfSense Support] AW: [SPAM] Re: [pfSense Support] OpenVPN::Muitiple Clients

Try to add the following to your clients config: ping 10 ping-restart 60 that should help... regards and good luck... martin -Ursprüngliche Nachricht- Von: Diego A. Gomez [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 22. Juli 2008 17:20 An: support@pfsense.com Betreff: [SPAM] Re: [pfS

AW: [pfSense Support] OpenVPN::Muitiple Clients

Hi, Diego ! 1.) try the Dynamic IP-option for DHCP-clients 2.) use an address pool that is big enough for all users 3.) use different certs and everything for each user 4.) have the Maximum clients option set for enough users then it should work... regards, Martin __

AW: [pfSense Support] Selling Net4501 and Net4801

1 net4801: 233 Mhz CPU, 128 Mbyte SDRAM, 3 Ethernet, 1 serial, USB connector, CF socket, 44 pins IDE connector, 1 Mini-PCI socket, 3.3V PCI connector. net4501: 133 Mhz CPU, 64 Mbyte SDRAM, 3 Ethernet, 1 Serial, CF socket, 1 Mini-PCI socket, 3.3V PCI connector. Anders -Oprindelig meddelelse-

AW: [pfSense Support] Selling Net4501 and Net4801

Net4801-60 ? Regards, Martin -Ursprüngliche Nachricht- Von: Anders Dahl [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 11. Juli 2008 09:26 An: support@pfsense.com Betreff: [pfSense Support] Selling Net4501 and Net4801 Hi all I have some Soekris Net4501 and Net4801 leftover. Since I'm usi

AW: [pfSense Support] SSL VPN

Watchguard also has some "SSL-VPN" and I know the sales-man entering the boss' office... But pfSense won... We use OpenVPN cause the boss looks at the bucks it costs... and that was the argument :-) Try OpenVPN on pfSense... you'll love it... Only thing with WatchGuard: it uses SSL-VPN via br

AW: [pfSense Support] Wanted: Tips for a VLAN capable switch (for home use)

get a hp procurve 1800-24g it's passive (without fans) it's about 350 $ regards, Martin Von: Ryan L. Faircloth [EMAIL PROTECTED] Gesendet: Donnerstag, 12. Juni 2008 04:33 An: support@pfsense.com Betreff: RE: [pfSense Support] Wanted: Tips for a VLAN capable swit

AW: [pfSense Support] Where do I put squid ?

Try this: Add a portforward at interface LAN, external adress any (not interface adress), protocol TCP, external port range 80, NAT IP proxy at OPTx, local port 80. Save, apply. Hope, it works, Martin -Ursprüngliche Nachricht- Von: Mike Lever [mailto:[EMAIL PROTECTED] Gesendet: Sonnta

AW: [pfSense Support] Squid transparent proxy and Vista

] Gesendet: Samstag, 3. Mai 2008 22:08 An: support@pfsense.com Betreff: Re: [pfSense Support] Squid transparent proxy and Vista change the MTU (lower) - Original Message - From: "Fuchs, Martin" <[EMAIL PROTECTED]> To: Sent: Saturday, May 03, 2008 3:31 PM Subject: [pfSens

[pfSense Support] Squid transparent proxy and Vista

Hi all ! I have a strange issue: A friend of mine has Windows Vista. On the pfSense i have enabled squid in transparent mode and http (TCP/80) switched OFF in firewall-rules LAN->WAN. Windows XP has no issues, everything works fine... Windows Vista tells us to have no internet connection. It det

AW: [pfSense Support] PPPoE gets disconnected on WAN port

I suggest you to use intel nics... they work very well right out of the box... -Ursprüngliche Nachricht- Von: Tortise [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 16. April 2008 21:41 An: support@pfsense.com Betreff: Re: [pfSense Support] PPPoE gets disconnected on WAN port Also what ar

AW: [pfSense Support] Filtering OpenVPN Road Warrior Clients

In 1.3 it will be possible… Von: Jared B. Griffith [mailto:[EMAIL PROTECTED] Gesendet: Samstag, 5. April 2008 03:38 An: support@pfsense.com Betreff: [pfSense Support] Filtering OpenVPN Road Warrior Clients Is it possible to filter OpenVPN Road Warrior clients on the 1.2 Release? If not, is

AW: [pfSense Support] openvpn tunnel using public ip's from 1 side

Else... if you want to use this with release 1.2 have a look at pfsense.trendchiller.com... There's an update script... it downloads the patchest o your full-install... Regards, Martin -Ursprüngliche Nachricht- Von: Fuchs, Martin [mailto:[EMAIL PROTECTED] Gesendet: Donnerst

AW: [pfSense Support] openvpn tunnel using public ip's from 1 side

Fix for this committed to cvs... RELENG and HEAD -Ursprüngliche Nachricht- Von: Graham Beneke [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 2. April 2008 15:47 An: support@pfsense.com Betreff: Re: [pfSense Support] openvpn tunnel using public ip's from 1 side Curtis LaMasters wrote: > I

AW: AW: [pfSense Support] IP Aliases

Well, no... we have a GW: 62.x.56.41 and the IPs 62.xx.56.42-50 I use PArp, sorry, no CARP, but Proxy-Arp and have these IPs possible for natting and else... -Ursprüngliche Nachricht- Von: Paulo Almeida [mailto:[EMAIL PROTECTED] Gesendet: Montag, 3. März 2008 15:42 An: support@pfsense.c

AW: [pfSense Support] IP Aliases

With CARP it's working here :-) Ok, we just have 8 IPs but more should also be suitable... -Ursprüngliche Nachricht- Von: Paulo Almeida [mailto:[EMAIL PROTECTED] Gesendet: Montag, 3. März 2008 11:44 An: support@pfsense.com Betreff: [pfSense Support] IP Aliases Hi, We have a Watchguard

AW: [pfSense Support] IPSEC

So then go on and use OpenVPN site-to-site... it works woth 2 dynamic IPs... Dynamic IPs for IPSec will be in 1.3... Regards, Martin Von: Anil Garg [mailto:[EMAIL PROTECTED] Gesendet: Donnerstag, 28. Februar 2008 04:51 An: support@pfsense.com Betreff: [pfSense Support] IPSEC H

AW: [pfSense Support] FreeRADIUS Package

Or just replace the chenged files in your pfsense-install (using putty or WinSCP when using windows) The files are mostly placed under /usr/local/xxx (have a look there) Try your changes and fix all errors... then send your patches using diff-rub to [EMAIL PROTECTED] :-) Martin -Ursprüng

AW: [pfSense Support] Wifi NIC

Afaik it will be supported in freebsd 7 Von: Espen Johansen [mailto:[EMAIL PROTECTED] Gesendet: Donnerstag, 24. Januar 2008 22:07 An: support@pfsense.com Betreff: Re: [pfSense Support] Wifi NIC As far as I know there is still no MIMO cards supported in FreeBSD. You might have some luck wi

  1   2   3   4   >