Joshua Schmidlkofer joshl...@gmail.com wrote:
Dear Support,
I have multiple WANs at one site, and it I have a few different
places which I am connecting tunnels to. It appears that creating new
connections to the end points is a little unpredictable.
I can't seem to control which interface
Dear Support,
I have multiple WANs at one site, and it I have a few different
places which I am connecting tunnels to. It appears that creating new
connections to the end points is a little unpredictable.
I can't seem to control which interface the initial contact packets
comes from. I don't
Dear Support,
I have a client with a pfSense install and he is required to
interface with a large research hospital. The hospital requires that
all IPsec endpoints and encrypted hosts fall within Internet routable
IP-space
Out pfSense box is as follows:
1.1.1.1 -- WAN Gateway
1.1.1.2 --
On Thu, Apr 22, 2010 at 17:48, Chris Buechler cbuech...@gmail.com wrote:
On Thu, Apr 22, 2010 at 7:51 PM, Dimitri Rodis
dimit...@integritasystems.com wrote:
I would really like to see this work reliably at some point. From what I can
tell, this problem is not limited to just Fireboxes, it is
I have a site in Jacksonville, FL. We have two Watchguard Firebox
X700s, with upgraded RAM and a pfSense embedded deployment.
Since installation we have had WEIRD problems with the VPN. We
THOUGHT it was the vpn. However, weeks and work revealed an apparent
switch problem. Basically, what
Does pfSense' log say CARP is moved from Active to Passive?
Evgeny.
Evgeny,
It appears we are getting some of that: (JAX2)
Apr 19 14:48:13 kernel: carp1: link state changed to DOWN
Apr 19 14:48:13 kernel: carp1: MASTER - BACKUP (more frequent
advertisement received)
Apr 19 14:48:10 kernel:
Yes, do not blame your switch, something is wrong with your pfSense cluster.
Most probably your re1 becomes overloaded with traffic.
Evgeny.
Ok new problem: re:1 watchdog timeout. I think we have properly
disabled ACPI. Anyone have any other advice?
Ok new problem: re:1 watchdog timeout. I think we have properly
disabled ACPI. Anyone have any other advice?
Change hardware. Those cheap NICs in the Watchguards have all kinds of
problems.
Chris,
Thanks, I appreciate your input. I think we'll take your advice. =(
Weak-sauce
On 9/22/09 8:07 PM, Morgan Reed wrote:
On Wed, Sep 23, 2009 at 10:26, Luke Jaegerad...@pvpa.org wrote:
Are there any known issues with quad NIC cards on a pfSense box?
Should be fine, your average (decent) quad NIC is a PCI(express)
bridge on a card with what essentially amounts to
On 7/27/09 10:13 AM, Joseph L. Casale wrote:
I am familiar with PIX/ASA and iptables which I am seeing don't quite
share the same rules as pfSense.
If I have a vlan and or opt interface that I am routing traffic into
from the LAN interface, is there a way to write one rule on the OPT
interface
On 7/27/09 9:01 AM, Joseph L. Casale wrote:
Is there anything I should know about writing configs by hand
and importing the xml? Are there any things internally that may
invalidate this aside from obvious syntax errors?
I have never hand-rolled an entire configuration. I have done stuff
I have a pfSense box with several interfaces and several IP addresses.
I just want to shape LAN-WAN. I have seen listed problems about
multi-interfaces shaping dilemmas, but I didn't see anything to indicate
that shaping would *not* work on a multi-interface machine. This is
the error
On 4/18/09 11:17 AM, Dimitri Rodis wrote:
Attention Firebox X500/700/1000 Users using pfSense:
Watchdog timeouts getting' you down? Thinkin' about throwin' that old
Firebox in to the fireplace? Don't do that just yet! J
Thanks to the pfSense devs, along with Pyun YongHyeon, the maintainer
Support,
I want to integrate pfSense, or rather, a series of pfSense boxen with
something like fail2ban. Is there an interface for temporary rules?
Are there faculties for timed operations? I am thinking of getting a
python packages for my pfSense box and just making a fail2ban server
Part of this is there, and parts of it remain to be completed. It
isn't terribly involved though, we can get this done including the
dial up support (even throw in a support contract too) for
considerably less money than the Cisco solution.
We tapped the second keg at the Hackathon
Is there any known / supported way with pfSense to use an old fashion
modem?I have a customer with a large number of 56K Frame Relay
lines. He is moving most of them to DSL and pfSense + IPsec. His one
request was regarding the ability to have a dial-up standby in case
there is a sustained
Support,
My pfSense-foo is weak, and I don't follow the support list closely,
but I am subscribed. I just added a DLINK 802.11g card (atheros
chipset) to my pfsense firewall. I am impressed with hostap, etc,
etc, etc. It all kicks ass. Right up to the part where bridging LAN
and OPT1 (fxp0
To clarify, I do not need help with pf, I did get the rules setup correctly.
Sincerely,
Joshua
On Sun, Mar 8, 2009 at 1:31 PM, Joshua Schmidlkofer joshl...@gmail.com wrote:
Support,
My pfSense-foo is weak, and I don't follow the support list closely,
but I am subscribed. I just added
Wow, thanks for the link and the advice. I didn't think that you
would have to put an EXPLICIT rule just for DHCP on there. We have so
many other hot things in pfsense, this would be a very hot idea for a
check-box or some other means.
On Sun, Mar 8, 2009 at 6:59 PM, Michael Schmitt
I don't see what I have messed up. What other information can I provide
you with?
I was primarily interested in how you were assigning IPs to clients, and
what kind of authentication (local, RADIUS, etc.). All those various
scenarios are very widely tested though.
Local Authentication.
I have pfSense 1.2-release on a multi-lan box. We have 9 Interfaces with 6
six active. Only a single WAN, all the rest are used with dedicated leased
lines. We have IPsec in tunnel mode for several remote offices as well.
We added PPTP services, via the internal PPTP server, however we aren't
that simply be the
LAN. I tried to Google to find the answer, but I couldn't seem to find it.
Sincerely,
Joshua
On Thu, May 22, 2008 at 7:39 PM, Chris Buechler [EMAIL PROTECTED] wrote:
On Thu, May 22, 2008 at 6:43 PM, Joshua Schmidlkofer [EMAIL PROTECTED]
wrote:
I have pfSense 1.2-release
what I have messed up. What other information can I provide you
with?
Sincerely,
Joshua
On Thu, May 22, 2008 at 9:21 PM, Joshua Schmidlkofer [EMAIL PROTECTED]
wrote:
Not sure what you want
Here is the snippet from the pptpd config:
modeserver/mode
redir
23 matches
Mail list logo