On Sat, Nov 29, 2008 at 10:34 PM, DLStrout <[EMAIL PROTECTED]> wrote:
> So let's see if I am getting this
>
> If the "intermediate router" sees the "destination
> address" as part of its "connected network" then
> it passes the packet to the destination directly.
> Then the destination host se
So let's see if I am getting this
If the "intermediate router" sees the "destination
address" as part of its "connected network" then
it passes the packet to the destination directly.
Then the destination host sees its "default
gateway" as the pfSense box and passes the return
traffic to it
On Sat, Nov 29, 2008 at 6:51 PM, DLStrout <[EMAIL PROTECTED]> wrote:
> I did as you'd said below and found no difference,
> but one thing I did notice is that when doing the
> upgrade that ("I thought") broke reflective
> routing appears to have "unchecked" the option
> under the advanced section a
I did as you'd said below and found no difference,
but one thing I did notice is that when doing the
upgrade that ("I thought") broke reflective
routing appears to have "unchecked" the option
under the advanced section about bypassing rules
for networks that share the same interface.
I have always
On Thu, Nov 27, 2008 at 9:49 PM, DLStrout <[EMAIL PROTECTED]> wrote:
> It looks like it is getting hung up on the way
> back out of the virtual (test) environment
>
> Nov 27 21:41:55 LAN 192.168.22.22:5900
>192.168.1.2:33150 TCP
>
> The rule that triggered this action
It looks like it is getting hung up on the way
back out of the virtual (test) environment
Nov 27 21:41:55 LAN 192.168.22.22:5900
192.168.1.2:33150 TCP
The rule that triggered this action is:
@62 block drop in log quick all label "Default
deny rule"
And I have the
, LLC
- Original Message -
Subject: Re: [pfSense Support] Reflective routing
broken in newest 1.2.1-RC2 SNAP
From: [EMAIL PROTECTED]
To: support@pfsense.com
Date: 11-27-2008 7:37 pm
> On Thu, Nov 27, 2008 at 11:57 AM, DLStrout
<[EMAIL PROTECTED]> wrote:
> > If I back
/SA keep state label
"FTP PROXY: Allow traffic to localhost"
pass in quick on le1 inet proto tcp from any port
= ftp-data to (le1) port > 49000 flags S/SA keep
state label "FTP PROXY: PASV mode data connection"
anchor "imspector" all
anchor "miniupnpd" all
blo
On Thu, Nov 27, 2008 at 11:57 AM, DLStrout <[EMAIL PROTECTED]> wrote:
> If I back down (using the console UG method - 13)
> to the image below (from mirror) and restore the
> backed-up configuration (interfaces portion only)
> ... all seems to work as before.
>
It works fine on the latest snapshot
On Thu, Nov 27, 2008 at 6:16 PM, DLStrout <[EMAIL PROTECTED]> wrote:
> Let me know if I can provide anything else.
I want to see the working rule(s).
Scott
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-
nything else.
--
David L. Strout
Engineering Systems Plus, LLC
- Original Message -----
Subject: Re: [pfSense Support] Reflective routing
broken in newest 1.2.1-RC2 SNAP
From: [EMAIL PROTECTED]
To: support@pfsense.com
Date: 11-27-2008 2:01 pm
> On Thu, Nov 27, 2008 at 11:57 AM, DLStro
On Thu, Nov 27, 2008 at 2:01 PM, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> On Thu, Nov 27, 2008 at 11:57 AM, DLStrout <[EMAIL PROTECTED]> wrote:
>> If I back down (using the console UG method - 13)
>> to the image below (from mirror) and restore the
>> backed-up configuration (interfaces portion o
On Thu, Nov 27, 2008 at 11:57 AM, DLStrout <[EMAIL PROTECTED]> wrote:
> If I back down (using the console UG method - 13)
> to the image below (from mirror) and restore the
> backed-up configuration (interfaces portion only)
> ... all seems to work as before.
At this point we are talking about two
If I back down (using the console UG method - 13)
to the image below (from mirror) and restore the
backed-up configuration (interfaces portion only)
... all seems to work as before.
pfSense-Full-Update-1.2.1-RC2.tgz 19-Nov-2008
21:5439M
--
David L. Strout
Engineering Systems Plus, LLC
c to
localhost"
pass in quick on le0 inet proto tcp from any to
$loopback port 21
keep state label "FTP PROXY: Allow traffic to
localhost"
pass in quick on le1 inet proto tcp from port 20
to (le1) port >
49000 flags S/SA keep state label "FTP PROXY: PASV
mode data
connection"
On Thu, Nov 27, 2008 at 10:55 AM, DLStrout <[EMAIL PROTECTED]> wrote:
> I just updated our 1.2.1-RC2 to the newest SNAP:
>
> 1.2.1-RC2
> built on Thu Nov 27 13:35:44 EST 2008
>
> I had been having issues w/ reflective routing in
> past 1.2.1 SNAPs but it got resolved back a couple
> weeks ago with
As a follow up to this post ... here is the ticket
that fixed this issue earlier in the 1.2.1 testing
SNAP
http://cvstrac.pfsense.org/chngview?cn=26056
--
David L. Strout
Engineering Systems Plus, LLC
- Original Message -
Subject: [pfSense Support] Reflective routing
broken in newest
I just updated our 1.2.1-RC2 to the newest SNAP:
1.2.1-RC2
built on Thu Nov 27 13:35:44 EST 2008
I had been having issues w/ reflective routing in
past 1.2.1 SNAPs but it got resolved back a couple
weeks ago with a new SNAP.
After this morning update I see that it is broken
again. I preform th
18 matches
Mail list logo
