Re: [pfSense Support] SSH

On 9/19/05, Jörgen Haraldsson <[EMAIL PROTECTED]> wrote: HiI just wounder.why is ssh login so extreamly slow ? What are you running pfsense on?  And can you define slow?  Which part, the login, the usage, what's the benchmark being used to determine SSH being slow. And how can i remove the console

Re: [pfSense Support] Argg! My PfSense just died!

On 9/19/05, Mojo Jojo <[EMAIL PROTECTED]> wrote: Any idea why my Pf died in the middle of running? I didn't do an upgrade, itwas a system running on a fresh install of 0.84 days before.Also, besided the booting problem, I am wondering why it just stopped working which is what caused me to reboot it

Re: [pfSense Support] Dual Wan with PPPOE and Static isp

On 9/20/05, raphael <[EMAIL PROTECTED]> wrote: Does anyone already tested and validated the dual wan using pppoe on thefirst link ? Yes, that's my configuration at home.   PPPOE on WAN and DHCP (cable) on OPT1.  LAN is my internal network (gee imagine that) and OPT2 is my DMZ.   BTW, I downgraded

Re: [pfSense Support] Dual Wan with PPPOE and Static isp

On 9/20/05, raphael <[EMAIL PROTECTED]> wrote: > Bill Marquette wrote: > > > On 9/20/05, *raphael* <[EMAIL PROTECTED] > > <mailto:[EMAIL PROTECTED]>> wrote: > > > > Does anyone already tested and validated the dual wan using pppoe > >

Re: [pfSense Support] Load balancing-aggregate more WAN connections

Nope, it's not possible to aggregate a single TCP flow over multiple connections. With load balancing you can at least get TCP flows going at full speed, but you won't bet a single flow at the speed of all connections. --Bill On 9/22/05, Robo.K. <[EMAIL PROTECTED]> wrote: > > Hi, is possible wi

Re: [pfSense Support] shaper wizard

Please send: status.php#config.xml and status.php#cat%20/tmp/rules.debug to bill.marquette _at_ gmail.com and I'll take a look. As far as I know the wizard should generate correct rules if the settings aren't messed with after the wizard completes (that's been the source of 95% of the shaper rela

Re: [pfSense Support] sockets over pfsense nat very slow

On 9/25/05, Jeroen Hermans <[EMAIL PROTECTED]> wrote: > I have the following situation at a site: > > - 1 pfsense box connected to the internet and lan (194.1.1.41) > - lan behind pfsense box (nat) (194.1.1.0/24) > - proxy (squid) box in lan (194.1.1.31) > - a few clients in the lan > > The last fe

Re: [pfSense Support] dual WAN failover

On 9/25/05, Matt Fanady <[EMAIL PROTECTED]> wrote: > > > > Hello, > I've got a PC with 3 identical NIC's in it. I have a landline internet > connection and a satellite internet connection. I would like to use PFsense > to use the landline when it's up, and then fail over to the satellite if the

Re: [pfSense Support] Changelist?

and http://cvstrac.pfsense.com/timeline.rss for those that love to watch changes in near real time ;) --Bill On 9/25/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > http://cvstrac.pfsense.com/timeline > > On 9/25/05, Jeroen Geusebroek <[EMAIL PROTECTED]> wrote: > > Hi, > > > > Is there a changelis

Re: [pfSense Support] sockets over pfsense nat very slow

On 9/25/05, Jeroen Hermans <[EMAIL PROTECTED]> wrote: > >Hmmm...slow the first time and fast the second possibly sounds like an > >issue in DNS resolution somewhere. Are you using pfSense as your DNS > >server for the LAN? Can you telnet to any host via IP address and see > >if the results differ

Re: [pfSense Support] Argg! My PfSense just died!

On 9/25/05, Mojo Jojo <[EMAIL PROTECTED]> wrote: > >> > Ever heard of CARP? We have that you know. > >> > > Yes, it's one of the reasons I chose your product over others.. However, I > was going to set it up in case of unplanned failure of hardware or software. > In this case, I am basically plann

Re: [pfSense Support] wrap 85.2

Oddly I haven't seen this on my wrap installs :-/ There was a broken commit of /etc/filter.inc that would have exhibited this behavior on a wrap, but that didn't make it into 0.85.2 (just confirmed on one of my installs) "Warning: touch(): Unable to create file /filter_dirty" makes me think we mi

Re: [pfSense Support] wrap 85.2

ep, there was a small typo in filter.inc. It's fixed now. > > > > > > Scott > > > > > > > > > On 9/26/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > > > > > >> Oddly I haven't seen this on my wrap installs :-/

Re: [pfSense Support] Interesting failure

Probably not when certain people split a dozen or so functions out into their own file :) 0.85.4 has all the latest fixes. At this time, there isn't much patched post 0.85.4 (unless you try running ipv6 tunneling :)), I'd recommend moving to it. --Bill On 9/27/05, Dan Swartzendruber <[EMAIL PRO

Re: [pfSense Support] 050.2 CARP won't go Master or Backup

Only problems I've had with carp recently weren't actually due to carp, but the dhcp daemon. There's a hold down timer somewhere that won't let it come up as primary for 300 or 360 seconds (my bet is there two different timeouts, a 60 second timeout and a 300 second one). So if you're running a

Re: [pfSense Support] 050.2 CARP won't go Master or Backup

On 9/27/05, Frimmel, Ivan (ISS South Africa) <[EMAIL PROTECTED]> wrote: > HI > > PPPoe is on WAN .. CARP is on LAN with carp sync on OPT1. > > OK so you guys are going to laugh at me. I do feel stupid. As a fault finding > procedure and just to get connectivity back I halted router2, which is UTP

Re: [pfSense Support] 85.2 traffic Shapper TOS error

Are both supposed to be selected? I suspect for this to work we'll need to convert those to the hex values and do a bitwise AND on them. I trust you'll be able to test any changes we make? --Bill On 9/27/05, William Armstrong <[EMAIL PROTECTED]> wrote: > The error is not on TF wizard.. > > I tr

Re: [pfSense Support] unexpected dhcp lease

Are these two logical networks on the same physical network? I'm noticing the request came in on both fxp0 and xl0 - that seems kinda odd. Sep 28 14:35:03 dhcpd: DHCPREQUEST for 192.168.2.254 (192.168.2.4) from 00:12:79:ad:c6:fc (TRC-dc5100) via fxp0: wrong network. Sep 28 14:35:03 dhcpd: DHCPREQ

Re: [pfSense Support] Proxy Arp

Hmmm, interesting. I'll look into why it's setting a /27. --Bill On 9/28/05, James Roberson <[EMAIL PROTECTED]> wrote: > Its running for the VIP, vr0 is the wan (I added the x's). > > root 485 0.0 0.3 1192 764 ?? Ss1:30PM 0:00.00 > /usr/local/sbin/choparp vr0 auto xxx.xxx.149.2

Re: [pfSense Support] 1:1 NAT loopback

Well, it's not "supposed" to work. I'm still not sure how it was made to work in this fashion. But, I can offer one suggestion on a way that it might work. On the outbound NAT screen, you'll need to create a NAT bound to the LAN interface NATing everything from LAN destined for LAN to the LAN IP

Re: [pfSense Support] 050.2 CARP won't go Master or Backup

On 9/29/05, Frimmel, Ivan (ISS South Africa) <[EMAIL PROTECTED]> wrote: > HI > > Firstly I didn't have time yet to do another update_file.sh so the problem > may already be fixed.. but in the interim: > > After the update_file.sh I did yesterday morning .. I have an intermittent > issue which I t

Re: [pfSense Support] 802.11q vlans

Is the switch port configured for tagging, or did you configure it to allow vlans 1-4 to talk to port 2? The VLAN setup in pfSense utilises 802.1q tagging, enabling vlans on a port doesn't necessarily configure that port for tagged frames. --Bill On 9/29/05, alan walters <[EMAIL PROTECTED]> wrot

Re: [pfSense Support] import monowall xml files

This used to work, but our config has significantly diverged from m0n0. I suspect if you used a config from where we forked it'd probably work, but assuming m0n0 changed _anything_ in their config file since then, it's unlikely to convert over. I think we're at the point where either someone need

Re: [pfSense Support] 802.11q vlans

On 9/29/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote: > i assumed he had all that correct, since he said > he could see the traffic going into the pfsense > port. i was going to ask the same question, > myself. this has to be a config problem, as i'm using this exact same setup. I agree, whi

Re: [pfSense Support] import monowall xml files

OK, I'm wrong, this works as advertised. --Bill On 9/29/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > This used to work, but our config has significantly diverged from > m0n0. I suspect if you used a config from where we forked it'd > probably work, but assuming m

Re: [pfSense Support] Traffic shaping. Parent Queue

Wrong. A parent queue denotes a child queue. Create 4 queues and assign your rules to the two child queues. Better yet, use the ezshaper wizard, it's there so you don't have to try and figure out how it all works. --Bill On 9/29/05, Audun Brekke <[EMAIL PROTECTED]> wrote: > > > > There seems t

Re: [pfSense Support] Questions about Load Balancing

Not unique, we just don't have an easy way to implement ratio based load balancing at this time. BTW, it'd be connection based anyway, not true bandwidth balancing. I'd recommend putting some clients on one connection, some on the other and manually balance the links using rules. --Bill On 9/29

Re: [pfSense Support] Questions about Load Balancing

Or another suggestion, something that I would do here if my second connection wasn't 10x faster than the primary is to say send gaming out one link and send browsing out the other. :) --Bill On 9/29/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > Not unique, we just don't

Re: [pfSense Support] Questions about Load Balancing

On 9/29/05, Wesley K. Joyce <[EMAIL PROTECTED]> wrote: > Hey Moacry, do you notice if it appropriately distributes the load? > > I just had a thoughti, if I set the bandwith on the interface to the actual > broadband service rate as oppposed to NIC connection speed, would that affect > the load b

Re: [pfSense Support] beep on ready suggestion

Note sure if/where we install http://pfsense.com/cgi-bin/cvsweb.cgi/tools/pfPorts/beep/ to, but use and friends to beep to your hearts content. --Bill On 9/30/05, Jonathan Woodard <[EMAIL PROTECTED]> wrote: > I don't exactly remember which version i started out with but many > burned .iso's lat

Re: [pfSense Support] Traffic shaper. Parent Queue.

CBQ and priq have been removed. Sorry, there's too much left to do to the shaper and I'm only one person. --Bill On 9/30/05, Audun Brekke <[EMAIL PROTECTED]> wrote: > > > > The wizard writes this lines in the config: > > > > ##3 > > # User Aliases > > > > set loginterface rl0

Re: [pfSense Support] beep on ready suggestion

http://img.m0n0.ch/docbook-current/faq-hiddenopts.html I'm assuming beep is in our standard build (I don't have one in front of me). Just add: /usr/local/bin/beep to the tree in config.xml --Bill On 9/30/05, Jonathan Woodard <[EMAIL PROTECTED]> wrote: > LOL, thanks bill. however, i'm about as

Re: [pfSense Support] WAN issues

On 10/2/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote: > At 10:07 AM 10/2/2005, you wrote: > > I finally got it to work! I had to recycle the modem for a min and then > release the IP and renewed it and the WAN IP showed up on WAN interface. > glad to hear it. i guess it was just a glitch...

Re: [pfSense Support] IPSecPassThru not working with .86 Wrap?

On 10/3/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > All- > > Today I upgraded my Wrap .84 to .86 via the Mini-Wrap Upgrade file. > > My Cisco VPN (software client on my laptop to connect to my office) no > longer connects. > > Logs from the pfsense firewall (forwarded to a server via syslog)

Re: [pfSense Support] IPSecPassThru not working with .86 Wrap?

OK, this is now fixed in CVS. Expect this fix in the next release. --Bill On 10/3/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > upgrade.tgz is a safe bet if you have a full install. upgrade.tgz is > used by the BSD Installer to have an easy upgrade path although that > may be slated for remov

Re: [pfSense Support] Traffic shaper-rules

Yeah, the bandwidth in the queue screen doesn't really work quite right :-/ Try setting the upperlimit field. It's kind of difficult for me to test some of this stuff out any more - my home network is under strict change control and I don't have all the equipment needed to keep a test network for

Re: FW: [pfSense Support] Traffic shaper-rules

On 10/4/05, Robo.K. <[EMAIL PROTECTED]> wrote: > > Sorry, i am crazy. Now its working. But I don`t know what > happens. :-}}} The shaper is stateful. Changes to it will not impact in-flight connections, only new. --Bill - To u

Re: [pfSense Support] Error in traffic shaper in 0.86

Hmmm...was the queue"128klienti,zhlt" ??? I don't think comma's are allowed in queue names, I'll have to fix (hrm, or create!) the input validation on that field. --Bill On 10/4/05, Robo.K. <[EMAIL PROTECTED]> wrote: > > After running ezshaper wizard is all ok. > When i create new queue 128kbit/

Re: [pfSense Support] Ntop on several interfaces

On 10/4/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > On 10/4/05, Chris Buechler <[EMAIL PROTECTED]> wrote: > > Chris Buechler wrote: > > > > > this isn't permitted (as of now) in the GUI, but you can run ntop on > > > multiple interfaces by using multiple -i flags. > > > > > > oops, haven't updat

Re: [pfSense Support] Question about mini_httpd

On 10/6/05, Marcin Jessa <[EMAIL PROTECTED]> wrote: > On Thu, 6 Oct 2005 10:56:36 +0200 > Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > > > Is it possible to configure a page in the webgui that is accessible > > w/o authentication? even in a sub-dir... > > Sure, just make sure it does not contain

Re: [pfSense Support] 256MB Wrap Image?

Hmmm, maybe I'm missing something here. What's wrong with the 128M image? It fits on my 256M flashes w/out problems. And seeing as the WRAPs no longer support packages it's kind of pointless to add more space to them (I think - but then I'm obviously missing something :)) --Bill On 10/7/05, Mi

Re: [pfSense Support] suggestion for LAN rule menu

On 10/7/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote:> > allowable protocol can be tcp/udp, and it add separate rules for tcp> and udp.  cool.  unfortunately, you then have to add one manually for > icmp  assuming one wants to be able to ping outside hosts.  how about> tcp/udp/icmp also/instead

Re: [pfSense Support] suggestion for LAN rule menu

On 10/7/05, Dan Swartzendruber <[EMAIL PROTECTED]> wrote: > p.s. the reason i bumped into this was looking at my ntop data, i noticed a > small amount of non-IP data going out the WAN port. no idea what - i have a > windows box (XP) but it should be doing NETBIOS over TCP (or whatever the > optio

Re: [pfSense Support] Traffic shaper question + no parent problem

Not at this time. --BillOn 10/8/05, Szasz Revai Endre <[EMAIL PROTECTED]> wrote: 1) Is it possible, in the traffic shaper - to create another parent queue (parent to HFSC) - and to add some rules to this queue, so that traffic coming andgoing from specific ip adresses would go through this queue (

Re: [pfSense Support] Traffic shaper question + no parent problem

That's because you added them wrong and I'm not 100% positive the existing shaper will work in that configuration.  Bottom line is that only the EZ-Shaper output is supported at this time.  I'm working on more shaper changes (stuff that will likely break whatever custom stuff you do anyway), but I

Re: [pfSense Support] Traffic shaper question + no parent problem

evels (parent and child). --BillOn 10/9/05, Bill Marquette <[EMAIL PROTECTED]> wrote: That's because you added them wrong and I'm not 100% positive the existing shaper will work in that configuration.  Bottom line is that only the EZ-Shaper output is supported at this time.  I

Re: [pfSense Support] Traffic shaper question + no parent problem

On 10/9/05, Szasz Revai Endre <[EMAIL PROTECTED]> wrote: So it should be possible to create 2 parentqueues(overall_lan,overall_wan), which under them would contain theactual shaper wizard config, or create 2 more separatequeues(overall_lan,overall_wan) aside from what the shaper wizard created.. I

Re: [pfSense Support] Sesamie Street on 086.2

So who's gonna make the sesame street one?  I'll put that on my son's firewall! ;-P --BillOn 10/9/05, Holger Bauer <[EMAIL PROTECTED]> wrote: we can start selling ringtones at some point for $1? lolHolger-Ursprüngliche Nachricht-Von: Scott Ullrich [mailto:[EMAIL PROTECTED]]Gesendet: Sonnta

Re: [pfSense Support] Traffic shaper question + no parent problem

On 10/9/05, Szasz Revai Endre <[EMAIL PROTECTED]> wrote: Okay, so I linked the qWanRoot and qLanRoot to the overallWan andoverallWan respectively, each of them being "parent queues" (parentsto the real root queue(hfsc))but this is the generated config(rules.debug )altq on fxp1 hfsc  queue {  qWANRo

Re: [pfSense Support] IPSec tunnel and Remote Desktop

I don't have a box in front of me right now, but from memory, try setting the MTU in the WAN screen - if I remember right, that'll force PF to do MSS fixups.--BillOn 10/10/05, Chris Buechler <[EMAIL PROTECTED]> wrote: Fleming, John (ZeroChaos) wrote:>I'm guessing we might need to do some mss fixup

Re: [pfSense Support] CF Installation options limitations

On 10/10/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: Hello,   I've been struggling trying to install pfSense on my system for several days now.  My system only has 1 IDE channel.  I am planning on running off of a Compact Flash through an IDE adapter.  This way, my system will h

Re: [pfSense Support] Traffic shaper question + no parent problem

On 10/8/05, Szasz Revai Endre <[EMAIL PROTECTED]> wrote: 1) Is it possible, in the traffic shaper - to create another parent queue (parent to HFSC) - and to add some rules to this queue, so that traffic coming andgoing from specific ip adresses would go through this queue (which would  have separat

Re: [pfSense Support] Traffic shaper question + no parent problem

On 10/10/05, Bill Marquette <[EMAIL PROTECTED]> wrote: I've been thinking a little more about this.  Is the MAN part of your local subnet?  IE, if the pfSense WAN interface was on 24.0.0.0/8 is the MAN the same subnet, or is it just something you have to go through?  I think I can ma

Re: [pfSense Support] UDP consistent translation

On 10/12/05, Kevin Wolf <[EMAIL PROTECTED]> wrote: > It seems my problems playing GunZ are related to the fact that pfSense > doesn't seem to do UDP consistent translation... is there any way around > this, a hidden option somewhere? I tested with the tool from this site: > http://midcom-p2p.sourc

Re: [pfSense Support] Outgoing Load Balancing mini-howto

On 10/13/05, Rajkumar S <[EMAIL PROTECTED]> wrote: > Hi, > > I have some clarifications about the Outgoing Load Balancing mini-howto. I > assume this is > about sharing two internet links so that outbound traffic flows to both of > them. > > > 1. visit services -> load balancer > 2. delet

Re: [pfSense Support] Outgoing Load Balancing mini-howto

On 10/13/05, Frimmel, Ivan (ISS South Africa) <[EMAIL PROTECTED]> wrote: > And does CARP have to be running? Nothing to do with CARP :) --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL P

Re: [pfSense Support] Outgoing Load Balancing mini-howto

On 10/13/05, Rajkumar S <[EMAIL PROTECTED]> wrote: > Create NAT-Rules for your WAN-POOL > > 1. visit firewall>NAT>Outbound > 2. enable advanced outbound nat > 3. check the automatically created rules. > 4. create rules for all your internal networks to map to OPT interfaces.. > (on

Re: [pfSense Support] Packet size

On 10/13/05, Jeroen Geusebroek <[EMAIL PROTECTED]> wrote: > On 10/13/05, Thomas Booms <[EMAIL PROTECTED]> wrote: > > > Why do the developers wrote this note in the last version? *Note: In/out > > counters will wrap at 32bit (4 Gigabyte) ! > > * > > I have these values currently: In/out packets 7522

Re: [pfSense Support] UDP consistent translation

On 10/12/05, Kevin Wolf <[EMAIL PROTECTED]> wrote: > I'm sorry, your solution actually worked. I forgot to move the new rule > above the default, so it had priority! D'oh!!! Good to hear...I was actually about to suggest that you double check that ;) > Thank you for the help, it was much apprec

Re: [pfSense Support] RE: Wrap upgrading from 0.70.4 to latest version

On 10/13/05, Susanto Leman <[EMAIL PROTECTED]> wrote: > Hi, > Thanks for your reply. The image is with "embedded". Because according to > the tutorial in flash, the image should be with "wrap". > Will it work with my wrap box ? just need to confirm. > ;-) > -santo- The tutorial is probably a hair

Re: [pfSense Support] Change mode of Traffic shaper.

On 10/14/05, Robo.K. <[EMAIL PROTECTED]> wrote: > > Hi, > i use version 0.86.4 and after initial configuration / via wizard/ of > pfsense and choose type of traffic shaper , if i want change type of traffic > shaper later, > for example from FSC to class based, this item in Advanced menu is missing

Re: [pfSense Support] Change mode of Traffic shaper.

On 10/14/05, Robo.K. <[EMAIL PROTECTED]> wrote: > Aha! I`ll be a patient. > Thank you. Please be aware that the other schedulers may never come back. But until the HFSC scheduler implementation is solid (and queue/rule changes are straightforward), we won't even look at priq and cbq. I am certa

Re: [pfSense Support] Change mode of Traffic shaper.

On 10/15/05, Robo.K. <[EMAIL PROTECTED]> wrote: > Thanks for notices, because last nigh I was trying set-up pfsense to priq > and cbq without success, because manual creating queue in HFSC don`t work > for the present. > There are good news, that HFSC is your priority.Good for you! :-} > And import

Re: [pfSense Support] documentation for package creation

Start here: http://www.pfsense.com/index.php?id=30 I believe that doc is a bit out of date, but it should get you started asking the right questions. --Bill On 10/15/05, Rajkumar S <[EMAIL PROTECTED]> wrote: > Hi, > > Is there any documentation available for creating packages for pfSense? I > pl

Re: [pfSense Support] Question about pf and ipfw...

On 10/15/05, Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > Hi! > I recently read a post about captive portal, and the related use of ipfw. > If I understood well, it is possible to use at the same time pf and ipfw. Is > it true? I mean, can I use ipfw for doing a particular king of traffic > redi

Re: [pfSense Support] Question about pf and ipfw...

On 10/16/05, Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > On 10/15/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > > > > Not sure I follow with the "redirection" part. But if I understand > > correctly, yes we can use both ipfw and pf in conjunctio

Re: [pfSense Support] Dynamic interfaces & pf

On 10/16/05, Eric Masson <[EMAIL PROTECTED]> wrote: > Hello, > > I've managed to install and setup ssltunnel-client on my 0.84.6 embedded > image (should I upgrade to 0.86.4, I didn't find any changelog on the > website) > > Tunnel goes up, additionnal routes are triggered by ppp, everything's > fi

Re: [pfSense Support] Question about pf and ipfw...

On 10/16/05, Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > > Module probably isn't loaded (it's only loaded if CP is in use I > > believe). > Mmmh, I think it is (I loaded it by hand with "kldload ipfw.ko"): > > # kldstat > Id Refs AddressSize Name > 14 0xc040 68cca0 kernel

Re: [pfSense Support] VPN & NAT Traversal

On 10/16/05, stephan schneider <[EMAIL PROTECTED]> wrote: > Hello Folks, > > i am trying to get a (NATed) connection to an external VPN using > the cisco vpn client. Unfortunately it just doesn't work - > no connection. I added the port 500 (isakmp) and allowed ESP to pass > the firewall. But I thi

Re: [pfSense Support] Protocol binding to different WAN connection

On 10/16/05, Manuj Aggarwal <[EMAIL PROTECTED]> wrote: > Hi > > I have 2 WAN connections. The first WAN is ADSL (PPPoE). The second > connection is a high speed cable modem. I wanted to set cable modem as > the first WAN connection - but since OPT1 does not support PPPoE I was > forced to set it up

Re: [pfSense Support] Newest Version ... ?

Not yet. --Bill On 10/16/05, David Strout <[EMAIL PROTECTED]> wrote: > Is there a newer release than 0.86.4 ... been > waiting for a mirror update to get the newest > 0.86.8 or 0.87 release but haven't seen anything > newer than 0.86.4 > > Just looking forward to getting the > webConfigurator use

Re: [pfSense Support] Incoming connections?

I just answered this in the FAQ, but it needs to be approved still :) Short answer is, you want to do a Port Forward for this. --Bill On 10/16/05, Manuj Aggarwal <[EMAIL PROTECTED]> wrote: > Hi > > I want to run a webserver behind PFSense. > Is there a way to allow incoming connections for a cer

Re: [pfSense Support] Incoming connections?

OK, the entry is approved now. http://faq.pfsense.org/index.php?action=artikel&cat=10&id=53&artlang=en --Bill On 10/16/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > I just answered this in the FAQ, but it needs to be approved still :) > Short answer is, you want to do

Re: [pfSense Support] Dynamic interfaces & pf

On 10/16/05, Eric Masson <[EMAIL PROTECTED]> wrote: > Bill Marquette <[EMAIL PROTECTED]> writes: > > Hi Bill, > > > Look at how OpenVPN works. Hint, you'll probably end up doing > > something along the lines of copying those files and doing a > > s/O

Re: [pfSense Support] When will RC1 be released

We're at .86.4 (which is on mirrors). There should be a .87 in the next day or two after it's had a final chance at testing by the devs. RC1, not sure where you heard we were there yet :) The fact that the tree has been tagged for version 1 means that we're just about ready for beta. --Bill On

Re: [pfSense Support] No Internet Traffic after 1 Day

On 10/18/05, Damien Dupertuis <[EMAIL PROTECTED]> wrote: > :-( It don't worked for me :-( > > I've been running it without the dyndns client for 8 > days without a glitch... > > Maybe I should re-enable dyndns and see what > happends... > > regards... I'm on 86.4 on the only box I have that does p

Re: [pfSense Support] XMLRPC Work?

On 10/18/05, Chris May <[EMAIL PROTECTED]> wrote: > Is there a way to get the XMLRPC to work properly or is that not fixed > yet. I would like mine to function, even if the server is down, is there > a way for me to host my own version of XMLRPC locally on my apache server? If what you perceive to

Re: [pfSense Support] Solution: Re: [pfSense Support] VPN & NAT Traversal (CISCO VPN Client)

On 10/18/05, Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > Mmmh, sounds very strange.. IPsec NAT-T usually is achieved as IPsec over > UDP.. > (http://wiki.openswan.org/index.php/Firewalls) > ...and from what I know, Cisco VPN is using exaclty this. > > What kind of implementation is currentl

Re: [pfSense Support] PFsense as PN server

On 10/19/05, Rainer Duffner <[EMAIL PROTECTED]> wrote: > Scott Ullrich wrote: > Can somebody provide links to PCI-Crypto-Accelerator-cards that are > "confirmed to work in production environments"? > From the driver-list, the only one I could quickly locate is the one > from Soekris - but that one

Re: [pfSense Support] Files ... ??

On 10/19/05, David Strout <[EMAIL PROTECTED]> wrote: > How come there are no files on any of the mirrors? > -- > David L. Strout > Engineering Systems Plus, LLC http://pfsense.blogspot.com/2005/10/number-of-issues-updates-pulled.html --Bill ---

Re: [pfSense Support] php vs pfsense

On 10/19/05, Szasz Revai Endre <[EMAIL PROTECTED]> wrote: > Can I make a normal php4 (pkg_add) package work with pfsense? Possibly, what's wrong with our php? --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional com

Re: [pfSense Support] dual/quad nic support

On 10/19/05, jonathan gonzalez <[EMAIL PROTECTED]> wrote: > Hi group, > > i would like to know if the dual/quad nic's are valid to pfsense, > specially thinking in the traffic shaping feature (of course i know that > it deppends the nic driver/module). I assume you mean the Intel nics? These shou

Re: [pfSense Support] Compact Flash images!

On 10/19/05, Imre Ispanovits <[EMAIL PROTECTED]> wrote: > I've just installed the 128MB img on to an old Compaq sff PC. > It loads fine, with one exception. > The admin name and password can't be neither changed nor restored with the > backup config. Practically it gets corrupted. Only resetting we

Re: [pfSense Support] Advanced Outbound NAT (0.88)

On 10/19/05, Kevin Wolf <[EMAIL PROTECTED]> wrote: > Alright, I can't for the life of me get it to work now. > > I know I had it working in 0.86.4. I setup a normal port forwarding > rule + firewall entry, enabled advanced outbound NAT, added a rule for > interface WAN source 192.168.1.200/32 (com

Re: [pfSense Support] pfSense 0.86 ppp-linkdown available

ppp-linkup is missing??? Hmmm. --Bill On 10/20/05, Christian Veith <[EMAIL PROTECTED]> wrote: > Hi Scott. > > You´re right the pppoe connection is established through the mpd. > > I´ve found the Error for linkdown script. > > the script is not listed in the mpd.conf in /var/etc/ > > ppp-linkup i

Re: [pfSense Support] Traffic shaping dropdown unit option not working

On 10/20/05, jonathan gonzalez <[EMAIL PROTECTED]> wrote: > Hi group, > > in the menu option Interfaces -> WAN the third entry (Bandwidth > Management (Traffic Shaping)) has a bug. > > If i introduce my dsl value and select the appropiate unit, in this case > Kilobit/s, after push the 'save' button

Re: [pfSense Support] pfSense 0.86 ppp-linkdown available

Create one in /usr/local/sbin and update the code in /etc/inc/interfaces.inc to put the appropriate line in mpd.conf. Be warned that interfaces.inc will get replaced on every upgrade, make a patch that auto-detects if there's a custom linkdown script and adds it to the config and we'll consider it

Re: [pfSense Support] connecting multiple subnet

On 10/21/05, dny <[EMAIL PROTECTED]> wrote: > i just setup pfsense with 1 wan and 2 lan > lan1: 192.168.168.xxx > lan2: 192.168.18.xxx >>wifi > > now, i have difficulty get into my wireless web config. > off course, i'm on different subnet. > > is there a way to make a 'hole' to allow certain pc fr

Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP

On 10/21/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > On 10/21/05, Thomas <[EMAIL PROTECTED]> wrote: > > Guys > > > > I'm still eager to try this. Unfortunately, I need the ng_ether.ko, > > ng_bridge.ko and ng_eiface.ko modules that are not part of the pfSense > > Embedded image (no reason why th

Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP

On 10/21/05, Bill Marquette <[EMAIL PROTECTED]> wrote: > I suspect what he's trying to do with eiface is create multiple > virtual interfaces on the firewall and bridge them to the external > NIC. Presumably each of these interfaces would have their own MAC > addres

Re: [pfSense Support] Support for Gigabit adapters

On 10/21/05, Manuj Aggarwal <[EMAIL PROTECTED]> wrote: > I want to create a GB lan between my computers. The adapters in PFSense are > all 100 MBit. If I replace the LAN switch to a GB switch along with the NICs > in my client machines - will that be sufficient or do I have to change the > NICs in

Re: [pfSense Support] Unusual Problem

On 10/21/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > Please modify /cf/conf/config.xml and add the following tag to the > area: > > > > This will keep pfSense from running link0 on the card. It's a hunch, > but it may not be this problem. Worth a shot atleast. > > Scott This probably doesn'

Re: [pfSense Support] Dyndns Issues in 0.88

On 10/21/05, Brian <[EMAIL PROTECTED]> wrote: > Would the port forwarding issue also affect PPTP connections? That is > what I am trying to do. unknown, try it and let us know ;) --Bill - To unsubscribe, e-mail: [EMAIL PROTECTE

Re: [pfSense Support] connecting multiple subnet

On 10/21/05, dny <[EMAIL PROTECTED]> wrote: > i create a firewall rule on lan2 interface: > > pass > proto: tcp > source: lan subnet > dest: lan2 subnet > dest port: http > > but it doesnt work. > i still cant access my wireless web config from lan > (it's linksys wrt54g w/ dd-wrt firmware) If you

Re: [pfSense Support] does traffic graph and snmp works on 86.4?

On 10/21/05, dny <[EMAIL PROTECTED]> wrote: > i wonder my pfsense .86.4 the traffic graph doesnt work? > > i tried with fx 1.07 and also fx 1.5 beta 2 with the latest svg plugin. > i show up very large red and black text on top: > in, out, auto scale, graph show, etc > all text is collapse on top o

Re: [pfSense Support] connecting multiple subnet

On 10/22/05, dny <[EMAIL PROTECTED]> wrote: > wrt54g is on the lan interface. > i can access it from lan2 > > > have a route pointing the LAN subnet at the gateway IP on lan2 on the > > pfsense box? > > > > this might be the problem. > where/how do i create a route to do this? No idea, I've never

Re: [pfSense Support] pfsense 0.88

On 10/22/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote: > I of course could set pfsense to "router" mode but I guess kind of > bridging is what I'd like the most. Then bridge the interfaces. > Basically I'm concerned about "what if it fails?" - keeping same as > external IPs would allow me to simp

Re: [pfSense Support] pfsense 0.88

On 10/22/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote: > On Sat, 2005-10-22 at 08:34 -0500, Bill Marquette wrote: > > On 10/22/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote: > > > I of course could set pfsense to "router" mode but I guess kind of > > >

Re: [pfSense Support] Diagnostics: DHCP leases v0.88

On 10/22/05, Imre Ispanovits <[EMAIL PROTECTED]> wrote: > Hi, > > I noticed that on the "Diagnostics: DHCP leases" page all static leases > (I have only this kind) shows as offline. > I am using v.88 CF image on a PC (Bao's image), but I guess that this is not > Cf dependent. _all_ of them? Even

Re: [pfSense Support] pfsense 0.88

On 10/22/05, Peter Zaitsev <[EMAIL PROTECTED]> wrote: > I guess I still can use all FireWall and Traffic shaping functions in > such case but I can't do any NAT ? NAT should work, you'll have to play with virtual IPs to make that work right in your setup. > Now I'm trying to figure out How bridgi

<    1   2   3   4   5   6   7   8   9   10   >