2011/7/30 Vaughn L. Reid III vaughn_reid_...@elitemail.org
The Squid Package for PFSense looks like it will authenticate to a local
database, Radius, LDAP, or NT Domain. There are also some ACL capabilities
in the SquidGuard package. I'm not aware of any way to configure firewall
rules on
On Tue, Jul 19, 2011 at 3:58 PM, Chris Brennan xa...@xaerolimit.net wrote:
OK, I understand now. Thank you. I can browse to my IP and see my local
web-server from my VPS. The reason I point this out is because when I
had my linksys (WRT54G) in place, I could navigate to
On Sun, Jun 5, 2011 at 12:33 AM, Simon Cornelius P Umacob
simon...@gmail.com wrote:
Hi Yehuda,
I've encountered this problem some time ago too. The simple fix was
to limit the country field to two characters only. I'm not sure why
you're exception never makes its way to the page (there's
I am working on http://redmine.pfsense.org/issues/1437 and running into a
strange problem and I thought I would ask about it before I spend a long
time digging through the source.
I thought the only foolproof way to return openssl errors would be to wrap
them in an exception and throw it, but it
If there any chance the documentation on http://devwiki.pfsense.org/ about
the Git setup will be updated to include how to connect to the mainline on
GitHub instead of rcs?
- Y
On Sat, May 7, 2011 at 8:48 PM, Dimitri Rodis dimit...@integritasystems.com
wrote:
I hate to break it to you guys, but this has been an issue for quite a
while in the 2.0 builds (8-9 months now). Not quite sure what started it
happening, but I did experience this behavior way back then, and
On Thu, May 5, 2011 at 11:56 AM, Karl Fife karlf...@gmail.com wrote:
To prevent 'automatic' configuration of routers, pfSense DHCP can be
configured trivially to only issue DHCP leases to known hosts (based on mac
address), but naturally it wouldn't prevent someone from manually
configuring
On Thu, May 5, 2011 at 4:58 PM, Josh Karli josh.ka...@gmail.com wrote:
Has anyone had any success in setting up a wireless N AP? According to the
2.0-RC1 record of tests on wireless cards, only the Marvell 802.11n card
works, but the only n card I could find of theirs is mini-PCIe. Does anyone
On Wed, May 4, 2011 at 6:09 AM, Shali K.R. sh...@vidyaacademy.ac.in wrote:
Dear Sir,
i cant find any OT: A Dansguardian package in packages section, do i
need to configure it manually?
On Wed, May 4, 2011 at 2:16 PM, Benjamin Fromme
benjamin.fro...@login-online.de wrote:
OT: A
On Fri, Apr 29, 2011 at 4:49 PM, Mehma Sarja mehmasa...@gmail.com wrote:
Alix running pf 20 RC1 nano. Trying to change from default 192.168.1.x
network to 192.168.100.x on the LAN interface - nothing fancy.
WHAT I DID
With DHCP enabled and serving on 192.168.1.x, tried to change LAN ip using
On Thu, Apr 28, 2011 at 6:55 PM, Lupel chown.nob...@gmail.com wrote:
I've also tried to boot and install with pfSense 1.2.3 image and
everything worked just fine. Seems to be a problem with pfSense-2.0-RC1
or at least with its installer. Is it possible?
pfSense 1.2.3 was based on FreeBSD 7.2
On Fri, Apr 15, 2011 at 11:18 AM, Adam Thompson athom...@athompso.netwrote:
Yes, this has been discussed here recently (check the archives).
cURL will work properly as long as you do a few things:
1. send the POST variables to the login form first,
2. track cookies across multiple cURL calls.
I generated a CSR from the pfSense certificate manager and had it signed by
StartSSL.
StartSSL changes the certificate subject (and you can not predict beforehand
what it will be).
OpenSSL and IIS accept the signed certificate anyway, but pfSense gives this
error:
The certificate subject
On Thu, Apr 14, 2011 at 9:06 PM, Yehuda Katz yeh...@ymkatz.net wrote:
I generated a CSR from the pfSense certificate manager and had it signed by
StartSSL.
StartSSL changes the certificate subject (and you can not predict
beforehand what it will be).
OpenSSL and IIS accept the signed
On Wed, Mar 23, 2011 at 2:56 PM, David Barbero s...@loquefaltaba.comwrote:
Alberto Mijares amijar...@gmail.com ha escrito:
Squid can not store in cache the content from https traffic; however,
you are still able to create ACL's to control the access to this
URI's.
Check out your ACL.
On Wed, Mar 23, 2011 at 5:14 PM, Michael Schuh michael.sc...@gmail.comwrote:
for a bit fun:
put *.facebook.com into your dns-masquerader and lead him to the
internal IP of the firewall
or to 127.0.0.1 :D (* - www, or whatever else, i am not aware if the
dns-forwarder can match wildcards)
On Tue, Mar 22, 2011 at 5:38 PM, Luke Jaeger ad...@pvpa.org wrote:
I'll try this - it will also let me know real fast who doesn't have their
proxy settings configured right!
On Mar 22, 2011, at 1:09 PM, Seth Mos wrote:
Deny all outbound access to ports 80 and 443, except from the proxy
On Fri, Mar 18, 2011 at 6:27 PM, Joseph L. Casale jcas...@activenetwerx.com
wrote:
Possibly if the initials are set at install, I could utilize the existing
ones
in the backed up config?
Usually, I download a config backup from the new machine and do a
side-by-side compare (with a program
On Tue, Mar 8, 2011 at 5:12 AM, ozan ucar m...@ozanucar.com wrote:
Hello,
Been there, done that. This is a drive problem. Here is how to fix it
Is it too much to request that when you post to this list about a new issue,
that you use a descriptive subject line?
I just got this email with the
On Friday, March 4, 2011, Jim Pingle li...@pingle.org wrote:
On 3/4/2011 9:59 AM, Moshe Katz wrote:
I am now trying to set up a third box. It is a Dell Optiplex gx240. It
has an on-board 3Com 3C920-based 10/100 port. I added a dual-port Intel
card (the same one as the first box). Using
On Tue, Jan 4, 2011 at 8:53 AM, Jostein Elvaker Haande
jehaa...@gmail.comwrote:
On 4 January 2011 13:53, Koray AGAYA insanad...@gmail.com wrote:
Hi,
Can I add computers mac adresses ( squid logs ) is it possible ?
Thank you for everything
Seeing as I'm a bit on the generous side
Is there a reason the i386 build log uses EST and the AMD64 log uses UTC?
- Yehuda
What is the proper procedure for sending in a widget for inclusion in
pfsense?
I wrote a widget to do wake-on-lan from the main page.
- Yehuda
On Sun, Nov 21, 2010 at 2:58 AM, Guruprasad g...@baysoft.in wrote:
I am using PFSense firewall in my office. I have a windows based mail
server in LAN and all the systems in LAN send mails thru the
mailserver(icewarp merak mail server). There is no spam problem.
But the moment I allow my
On Sun, Nov 7, 2010 at 8:33 PM, Lyle Giese l...@lcrcomputer.net wrote:
slamp slamp wrote:
http://checkip.dyndns.org/
how is this possible? i am behind a standard install of pfSense
1.2.3-RELEASE which means i am NAT'd. how is pfsense publishing my
private IP?
What makes you think
I just installed 2.0-BETA4, logged in as admin, and created a new user.
I have not been able to find a logout link so I can try using that user.
Is it there and I just don't see it or is it really not there?
- Yehuda
On Fri, Jul 2, 2010 at 8:03 AM, Luke Jaeger ad...@pvpa.org wrote:
I can't block tcp 443 on a wholesale basis; we need it for lots of stuff.
If I can do it for a single domain, I'm there.
The idea is to set up a non-transparent proxy for all traffic and block any
traffic not using the proxy.
On Mon, Jun 7, 2010 at 7:27 AM, Joseph Rotan joseph.ro...@gmail.com wrote:
Bula Aarno,
thanks for the tip, but i'm a bit confused on the logs displayed below:
Jun 7 23:13:29 pfSense sshd[7808]: Failed password for root from
220.189.230.151 port 48088 ssh2
Jun 7 23:13:31 pfSense
On Mon, Jun 7, 2010 at 4:56 PM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
here's another logs from another site:
How can i block all this invalid users from attempting to access my pfsense
through SSH.
I always recommend when I set up pfSense that the port for SSH be changed
to
On Fri, Jun 4, 2010 at 3:30 PM, Tim Nelson tnel...@rockbochs.com wrote:
However, the more savvy users will just find some proxy out there to use.
'Proxy' has become a new buzzword for the social networking crowd as of late
it seems...
It doesn't even require a very savvy user. There are free
We had Verizon DSL for our primary WAN connection.
Our primary IP (the WAN interface IP) was 71.248.x.114
We had this entry in the Virtual IP list:
Type: Proxy ARP
Interface: WAN
IP Address: Network 71.248.x.112/28
To get that to work, we had to set the WAN interface IP to each of the
virtual IPs
On Thu, May 27, 2010 at 1:02 PM, Chris Buechler cbuech...@gmail.com wrote:
On Thu, May 27, 2010 at 10:30 AM, Yehuda Katz yeh...@ymkatz.net wrote:
We had Verizon DSL for our primary WAN connection.
Our primary IP (the WAN interface IP) was 71.248.x.114
We had this entry in the Virtual IP list
On Thu, May 27, 2010 at 1:41 PM, Evgeny Yurchenko evg.yu...@rogers.com wrote:
Yehuda Katz wrote:
On Thu, May 27, 2010 at 1:02 PM, Chris Buechler cbuech...@gmail.com
wrote:
On Thu, May 27, 2010 at 10:30 AM, Yehuda Katz yeh...@ymkatz.net wrote:
We had Verizon DSL for our primary WAN connection
On Sun, May 23, 2010 at 3:45 PM, Chris Buechler cbuech...@gmail.com wrote:
On Sun, May 23, 2010 at 11:34 AM, John Busch jbusch...@gmail.com wrote:
I think a catch would be that the college has a captive portal on
their WiFi. It redirects to an intranet page requiring credentials
prior to
On Sat, Apr 17, 2010 at 2:17 PM, Karl Fife karlf...@gmail.com wrote:
We have a couple of pfSense installations that want to 'lock down' their
windows workstations with Win 2K8 Server and Active Directory. As you may
know, normally this requires that Win Server be the DNS DHCP server.
To
On Sun, Jan 31, 2010 at 7:39 AM, Remko Lodder re...@elvandar.org wrote:
On Jan 31, 2010, at 12:14 PM, Martin Kruse Jensen wrote:
Remko Lodder skrev:
On Jan 31, 2010, at 11:27 AM, Martin Kruse Jensen wrote:
Hi.
I'm having some problems setting up NAT when using multiple external
On Thu, Jan 21, 2010 at 3:58 PM, Chris Buechler cbuech...@gmail.com wrote:
That's a problem with the cert. That means the CA that signed your
cert isn't trusted by those browsers. That's what you get at times
with cut rate CAs like Godaddy, though that's where we get our certs
and I haven't
Sounds to me like a NAT Reflection issue
On Wed, Jan 20, 2010 at 5:51 PM, Oliver Hansen oliver.han...@gmail.comwrote:
On Wed, Jan 20, 2010 at 2:18 PM, Chris Buechler cbuech...@gmail.comwrote:
On Wed, Jan 20, 2010 at 2:55 PM, Oliver Hansen oliver.han...@gmail.com
wrote:
--snip--
38 matches
Mail list logo