On Sun, May 23, 2010 at 11:34 AM, John Busch jbusch...@gmail.com wrote:
I am a student brainstorming how to configure a second fail-over WAN
link over my college's WiFi connection. There is a classroom building
across the street and I get a good WiFi connection from my living
room.
Right
On Sun, May 23, 2010 at 8:08 PM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
I'm setting up a firewall for a high school but the school management
requested that students should not able to access pornography sites,
currently i have enabled any any rule on the WAN and LAN interface of my
On Thu, May 20, 2010 at 2:31 PM, Fuchs, Martin
martin.fu...@trendchiller.com wrote:
Hi !
I’ve got a question !
We have the following setup:
WAN 195.x.x.x/29 --- WAN pfSense - LAN 10.x.x.x/16
|
On Thu, May 27, 2010 at 10:30 AM, Yehuda Katz yeh...@ymkatz.net wrote:
We had Verizon DSL for our primary WAN connection.
Our primary IP (the WAN interface IP) was 71.248.x.114
We had this entry in the Virtual IP list:
Type: Proxy ARP
Interface: WAN
IP Address: Network 71.248.x.112/28
To
On Thu, May 27, 2010 at 2:56 PM, Yehuda Katz yeh...@ymkatz.net wrote:
On Thu, May 27, 2010 at 1:41 PM, Evgeny Yurchenko evg.yu...@rogers.com
wrote:
Yehuda Katz wrote:
On Thu, May 27, 2010 at 1:02 PM, Chris Buechler cbuech...@gmail.com
wrote:
On Thu, May 27, 2010 at 10:30 AM, Yehuda Katz yeh
On Fri, May 28, 2010 at 11:53 AM, Cristian Del Carlo
cristian.delca...@gmail.com wrote:
Hi,
I installed for testing PFsense 2.0 on a ALIX.2D13 and I try the
captive portal function.
The problem is that the server did not redirect correctly to the
authentication page, firefox print a message
On Mon, May 31, 2010 at 1:56 AM, Justin The Cynical
cyni...@penguinness.org wrote:
Greetings.
I finally set up a failover box for CARP. And so far, everything seems
to be working fine, with one minor detail.
WAN IP range: .65 - .96
.66 - .68 are setup as CARP
.65 and .69 are the WAN
On Mon, May 31, 2010 at 5:49 PM, Justin The Cynical
cyni...@penguinness.org wrote:
On 5/31/10 1:58 PM, Chris Buechler wrote:
*snip*
The port forward to .65 works, but the .69 does not. If the machines
failover (.69 becomes the active machine), the forward for .69 works,
but the .65 does
On Tue, Jun 1, 2010 at 2:08 PM, Per Buer pe...@varnish-software.com wrote:
Hi.
We've installed pfSense 1.2.3 on a couple of Coyote Point 550i
appliences and so far we're very happy. It has 2GB of memory and a
Xeon 3000-something CPU. It's run to run some sort of FreeBSD so
Nanobsd should be
On Tue, Jun 1, 2010 at 6:22 PM, Gary Buckmaster g...@s4f.com wrote:
No, but since literally thousands of bugs were fixed since 1.2.2, its
entirely possible that whatever was actually causing the problem was fixed.
heh more like a dozen, and I don't recall any specific to MSS
clamping or
On Tue, Jun 1, 2010 at 11:09 PM, Justin The Cynical
cyni...@penguinness.org wrote:
If the idea of CARP is to have multiple IP's shared between a pair of
machines, and the address for the boxes themselves are not used for
anything, why burn a usable IP on them? Why not assign them an IP
On Mon, May 31, 2010 at 3:23 AM, bsd b...@todoo.biz wrote:
Hello,
I am looking for a guide or an answer that could help me to understand how
pfSense is architectured in term of directory (FreeBSD level)…
The goal of this question is to be able to solve various problems related to
the
On Tue, Jun 1, 2010 at 1:05 PM, Ian Bowers iggd...@gmail.com wrote:
I usually
reccommend a cisco router over a BSD box for WAN delivery duty since
they rarely if ever need patching
Cisco has put out more security updates in the past two months than we
have in the 5.5 years this project has
On Wed, Jun 2, 2010 at 8:34 AM, bsd b...@todoo.biz wrote:
Thank you very much for these answers,
The book is great, and I use It on regular basis.
Would be nice to include a little section in future release of the book that
will describe the architecture of pfSense related to FBSD.
We
On Wed, Jun 2, 2010 at 5:36 AM, Per Buer pe...@varnish-software.com wrote:
On Tue, Jun 1, 2010 at 9:59 PM, Chris Buechler cbuech...@gmail.com wrote:
One other consideration with any HTTP load testing with stateful
firewalls is to be careful with your methodology. (..)
Is there a way
On Thu, Jun 3, 2010 at 2:30 AM, Gokhan Mollamehmetoglu
gok...@ktu.edu.tr wrote:
Hi;
rotate filter.log in pfsense,is it possible?
Does that by default. It's a circular log file, it never grows past a
fixed size.
-
To
On Thu, Jun 3, 2010 at 1:24 PM, Atkins, Dwane P atki...@uthscsa.edu wrote:
http://forum.pfsense.org/index.php/topic,22088.0.html
I think I found my own answer. Will this ever be a part of pfsense or will
we need to continue to modify these files each upgrade?
It's been added to the GUI in
On Thu, Jun 3, 2010 at 2:41 PM, Cihan Saglamoz cihan.sagla...@gmail.com wrote:
Hi,
Is pfsense supports quad core cpus?
I have a pfsense running on a box with quad core cpu and 3 gb memory. It has
a server mainboard and Gbit intel NIC over it.
I am using it as a SYN Proxy after 60 mbits/s
On Thu, Jun 3, 2010 at 4:15 PM, Cihan Saglamoz cihan.sagla...@gmail.com wrote:
I set it to 250
In 60 mbits/s I see it about 140
The message got here. All 3 times.
At some level of pps you're going to kill the hardware you have, hard
to say if you're at that point, requires a lot
On Thu, Jun 3, 2010 at 5:09 PM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
i'm currently using pfsense 1.2.3 and just recently i'm having problems
accessing other websites as for now i can only access google website, i
thought the problem has to do with my PC but when i access internet
On Sat, Jun 5, 2010 at 10:04 PM, Nenhum_de_Nos matheus...@gmail.com wrote:
hail,
I tried to enable the traffic shaper on this release, but it said at least
one of the nic's is not supported for altq.
I have an axe based Linksys USB200M, and onboard via rhine pci card. vr is
said to support,
On Mon, Jun 7, 2010 at 12:31 PM, Nenhum_de_Nos math...@eternamente.info wrote:
On Sun, June 6, 2010 01:07, Chris Buechler wrote:
On Sat, Jun 5, 2010 at 10:04 PM, Nenhum_de_Nos matheus...@gmail.com
wrote:
hail,
I tried to enable the traffic shaper on this release, but it said at
least
one
On Mon, Jun 7, 2010 at 2:17 PM, Ryan radiote...@aaremail.com wrote:
Is there a way in PFsense 2.0 to have captive portal auto authenticate all
IPs on a subnet. What I am wanting to do is limit all users to 1 Mbps each
(up and down) without needed them to authenticate.
No, but you can do
On Mon, Jun 7, 2010 at 4:56 PM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
here's another logs from another site:
Jun 8 08:39:01 pfsense sshd[32290]: Invalid user emma from 125.208.2.125
Jun 8 08:39:01 pfsense sshd[32290]: Failed password for invalid user emma
from
125.208.2.125 port
On Mon, Jun 7, 2010 at 10:16 PM, Ron Lemon rjle...@gmail.com wrote:
Has anyone successfully created an IPSec VPN connection to a Juniper
Netscreen Appliance?
Yes. I've done it at least once, don't recall having to do anything
out of the ordinary. I know others have done it as well. Run racoon
On Wed, Jun 9, 2010 at 7:17 PM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
i'm trying to create a PPTP connection to one of my pfsense site through
PUTTY, is it possible to do this.
Putty strictly does SSH and telnet, you can't do PPTP using it. You
can do SSH port forwards if you just
On Fri, Jun 11, 2010 at 5:20 AM, Cihan Saglamoz
cihan.sagla...@gmail.com wrote:
Hi,
Is there a way for allowing passive ftp on pfsense?
Use the FTP helper.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For
On Fri, Jun 11, 2010 at 4:31 PM, Adam Thompson athom...@c3a.ca wrote:
I’m running pfSense (v1.2.3-RELEASE) as my gateway router right now. Being
located at a University I have a connection available for non-commercial
traffic that is separate from my default ISP.
I’m currently connecting
On Sun, Jun 13, 2010 at 8:52 PM, Josh anothernum...@atlanticbb.net wrote:
Here's my setup:
WAN - dhcp via cable modem
LAN - to switch with gigabit wired connections 192.168.1.x
OPT1 - to linksys WAP 192.168.2.x
Any devices on subnet 2 cannot access subnet 1, and vice versa, even though
I
On Fri, Jun 11, 2010 at 2:02 PM, Alan Worstell
aworst...@a-1networks.com wrote:
Hello,
I am trying to figure out if I can somehow create a larger than 4gb image. I
want to install the embedded version to a spinning hard drive (so it's only
mounted read-only and logs are written to ramdisk) and
2010/6/17 Adam Thompson athom...@c3a.ca:
WTF is the garbage at the end of system.log?
It's a binary log, you can't tail it. Use clog -f
One thing I do see (briefly!) in the routing table is a rather anomalous
route for 192.139.69.160/28 via 192.139.69.161. Which correlates perfectly
On Fri, Jun 18, 2010 at 4:08 PM, Code Ghar codeg...@gmail.com wrote:
In the pfSense book, there's a section (6.6.9.3) titled Maximum New
Connections / Per Second. It says that Any IP address exceeding that
number of connections within the given time frame will be blocked for one
hour. When
On Mon, Jun 21, 2010 at 2:31 AM, mayak-cq ma...@australsat.com wrote:
hi all,
i have successfully installed rysnc with pkg_add -r rsync and i can
start/run the daemon manually -- works as expected.
i am quite the bsd noob -- pfsense seems to differ from the bsd doc that
i looked at ...
On Wed, Jun 23, 2010 at 11:32 AM, Jeremy Cejka jce...@raytheonvtc.com wrote:
Heres the instance in which I am seeing and able to replicate this bug.
I upgraded from 1-2 Stable to 1-2-3, migrated the backup config into the new
machine(minus the packages)
Setup a rule from my machines ip
On Fri, Jun 25, 2010 at 10:55 AM, Domenico De Monte
i...@aiutoserver.com wrote:
Hi,
i use pfsense 1.2.3-RELEASE configured in bridge mode.
I am testing bridge mode and i have a situation like this:
pfsense ip = wan.ip(bge0) / lan.ip(bge1) (but in bridge it have to use only
wan.ip)
server
On Friday, June 25, 2010, Joseph Hardeman jharde...@colocube.com wrote:
Hi Everyone,
I have an interesting VLAN setup/problem question. I followed the pfSense
doc on setting up multiple vlans on the same interface (VLAN Trunking) and
the switch is setup with trunking going to the
On Fri, Jun 25, 2010 at 7:37 PM, JosephHardeman jharde...@colocube.com wrote:
That makes sense it being hardware issue or drivers. I don't remember what
NIC we put in that box, but it is an extra nic card. Which file do we need
to edit specifically to put the promisc command after, or rather
On Mon, Jun 28, 2010 at 2:56 AM, bsd b...@todoo.biz wrote:
Hello,
I have configured couple of devices for clients based on large disk size (160
Go or 250Go) - I would like to know if It is possible to increase the size of
the clog limit for log rotation… or if it is possible to entirely
On Mon, Jul 5, 2010 at 11:37 AM, David Rees dree...@gmail.com wrote:
I've got a system (1.2.3, set up in a cluster) which has a couple of
phantom rules - rules that exist in the config.xml file, but don't
show up so they can't be deleted.
It appears that somehow they lost their interface
On Tue, Jul 6, 2010 at 12:30 AM, Joseph Rotan joseph.ro...@gmail.com wrote:
Hi,
has anyone tried loading a .png file format to pfsense 1.2.3 captive portal
File Manager since only .jpg file format is only allowed.
png files are allowed. There is a limit on file size though, maybe
you're
On Wed, Jul 7, 2010 at 10:51 AM, Paul Mansfield
it-admin-pfse...@taptu.com wrote:
On 05/07/10 16:37, David Rees wrote:
I've got a system (1.2.3, set up in a cluster) which has a couple of
...
phantom rules - rules that exist in the config.xml file, but don't
...
It appears that somehow they
On Tue, Jul 13, 2010 at 8:49 PM, Michael Schuh michael.sc...@gmail.com wrote:
2010/7/14 Tim Dickson tdick...@aubergeresorts.com:
It is posible to make load balancing whit 2 acounts of 30mbps from the
same ISP?
For the current release you have to put another device in front of one of
the
On Wed, Jul 14, 2010 at 3:18 AM, Serge FACCHIN sergefacc...@free.fr wrote:
Hi,
we get issues with pfsense2.0 in LiveCD mode :
Environment:
Tested in prod Dell T3400 4Go RAM 2 additionnal gigabit linksys RT
gigabit ethernet card
Tested as spare Dell Optiplex 620 4Go RAM 2
On Wed, Jul 14, 2010 at 1:06 PM, Bill Marquette
bill.marque...@gmail.com wrote:
On Tue, Jul 13, 2010 at 1:19 PM, Adam Thompson athom...@c3a.ca wrote:
-Original Message-
From: Bill Marquette [mailto:bill.marque...@gmail.com]
Sent: Monday, July 12, 2010 8:30 PM
To: support@pfsense.com
On Wed, Jul 14, 2010 at 2:32 PM, Adam Thompson athom...@c3a.ca wrote:
So... does that mean I can't accomplish this with 1.2.x at all?
You can change filter.inc to add reply-to to WAN rules.
-
To unsubscribe, e-mail:
On Sat, Jul 17, 2010 at 8:25 PM, Gino O'Donnell gino@gmail.com wrote:
(Bought the pfsense book and it doesn't cover this subject very well)
I'm trying to figure out if this is actually doable on pfSense 1.2.3 or 2.0.
I have a main /30 that 3 other networks are routed to on a single
On Sat, Jul 17, 2010 at 8:32 PM, Chris Buechler cbuech...@gmail.com wrote:
On Sat, Jul 17, 2010 at 8:25 PM, Gino O'Donnell gino@gmail.com wrote:
(Bought the pfsense book and it doesn't cover this subject very well)
I'm trying to figure out if this is actually doable on pfSense 1.2.3 or 2.0
On Sun, Jul 18, 2010 at 9:23 PM, Kevin Tollison ktolli...@gmail.com wrote:
pfsense 1.2.3rc3 is on the list of successful attacks. Does anyone know if
this is still possible in 1.2.3 Final or 2.0b3.
On Sun, Jul 18, 2010 at 10:10 PM, Matthew Taylor mtay...@mtcsonline.net wrote:
Has anyone setup pfSense with ATT uverse equipment ?
Yes. I have a /29 static block on mine, have to go through a couple
steps to disable the firewall on the box, but it's actually a really
nice box and very
On Mon, Jul 19, 2010 at 1:04 PM, Matthias Niggemeier m...@thias.de wrote:
Hi there,
I have to configure IPSec to a customers site using pfSense 1.2.3. Normally
not a big problem, but this is the first time I need to do NAT over VPN;
i.e. the customer gives us only one ip address for the
On Fri, Jul 23, 2010 at 1:51 AM, Paul Peziol joyride...@gmail.com wrote:
I will update this for others incase they run across this. Had some time to
look at this again. The ip was showing correctly in the logs on the dynamic
side at home.Didnt think to compare the logs from the office side. I
On Fri, Jul 23, 2010 at 4:45 PM, stephen at stephenjc
step...@stephenjc.com wrote:
Verizon DSL gateway from the ppoe is not on same network so when I try to
set it as the default gw it gives an error about the subnet
It ignores that for dynamic gateways, sounds like you probably have an
old
On Tue, Jul 27, 2010 at 5:48 PM, Nikos Zaharioudakis nza...@gmail.com wrote:
Greetings everybody and thank you for a so nice product ! :-)
I have a small clarification question though.
I need to share 2 or more dsl lines behind a pfsense box (it's going to be a
virtual machine, but let's keep
On Mon, Jul 26, 2010 at 2:56 AM, Jonathan Dieter jdie...@gmail.com wrote:
Forwarding because this didn't seem to go through the first time.
It did, just no one's had time to test it and commit. Best to submit
patches to redmine.pfsense.org so they don't slip through the cracks.
I opened tickets
On Mon, Jul 12, 2010 at 9:33 AM, Jonathan Dieter jdie...@lesbg.com wrote:
In current 2.0BETA3, it seems that there's no way to write one's own
configuration settings into dhcpd.conf. For example, if I want to
chain-load gPXE, there's nowhere to put the following:
if exists user-class and
On Thu, Jul 29, 2010 at 10:38 PM, Anil Garg garg_art2...@yahoo.com wrote:
Is the embedded version of PFSENSE 2.0 enabled with VGA?
Not at this time. Renato was working on building both serial and VGA
images, pretty sure he's still going to complete that. So there
probably will be at some point.
On Fri, Jul 30, 2010 at 11:12 AM, Atkins, Dwane P atki...@uthscsa.edu wrote:
In the release notes for pfsense 2.0, it is mentioned that multi –interface
capabilities will be a new feature. Is there a link or can someone better
explain the terminology to us? Does this mean that if we have one
On Sat, Jul 31, 2010 at 4:17 AM, Anil Garg garg_art2...@yahoo.com wrote:
I think VGA with embedded is now major convenience issue.
I think we'll probably see it for 2.0, but anyone who does any serious
network work has no shortage of serial gear. There isn't a decent
managed switch or
On Sat, Jul 31, 2010 at 4:49 PM, Fabian Abplanalp
fabian.abplan...@bug.ch wrote:
Sawadeekap
I'm running pfSense 2.0 BETA4 on a Supermicro ATOM Barebone (5010A-PHF).
Everything works more or less as expected, except I see always a CPU usage
of 25% (Dualcore with HT) in the GUI.
Is that ok?
On Sat, Jul 31, 2010 at 4:55 PM, Fabian Abplanalp
fabian.abplan...@bug.ch wrote:
Am 31.07.2010 22:52, schrieb Chris Buechler:
Maybe. Maybe not. Impossible to say based on your description, system
is what's using the CPU, so if you're pushing a decent amount of
traffic then yeah it's probably
On Sun, Aug 1, 2010 at 4:29 AM, Fabian Abplanalp
fabian.abplan...@bug.ch wrote:
Am 01.08.2010 02:02, schrieb Chris Buechler:
On Sat, Jul 31, 2010 at 4:55 PM, Fabian Abplanalp
fabian.abplan...@bug.ch wrote:
Am 31.07.2010 22:52, schrieb Chris Buechler:
Maybe. Maybe not. Impossible to say
On Mon, Aug 2, 2010 at 10:13 PM, Jeppe Øland jol...@gmail.com wrote:
On Mon, Aug 2, 2010 at 7:47 AM, Vick Khera vi...@khera.org wrote:
none of the devices on which I run embedded even *have* VGA, so I disagree.
If you have a full system, just run the full release.
I know the embedded version
On Mon, Aug 2, 2010 at 11:10 PM, Jeppe Øland jol...@gmail.com wrote:
On Mon, Aug 2, 2010 at 7:47 AM, Vick Khera vi...@khera.org wrote:
none of the devices on which I run embedded even *have* VGA, so I disagree.
If you have a full system, just run the full release.
I know the embedded version
On Wed, Aug 4, 2010 at 2:22 PM, Jeppe Øland jol...@gmail.com wrote:
On Wed, Aug 4, 2010 at 10:14 AM, Tim Nelson tnel...@rockbochs.com wrote:
While booting a system from a USB--SATA attached hard drive, the boot
process fails when
trying to mount root since the drive has not been fully
On Wed, Aug 4, 2010 at 8:41 AM, Nenhum_de_Nos math...@eternamente.info wrote:
and with regular 8.1R it worked fine.
It's highly unlikely to be any different (where all else is equal), we
don't change anything related to USB or that driver.
On Tue, Aug 3, 2010 at 10:22 AM, Karl Fife karlf...@gmail.com wrote:
If you want to run the full version on embedded, there are lots of SSD's
these days with wear-leveling subsystems to address the write endurance
issue of nand flash memory. Some SSD's (such as Intel's newest SSD family)
even
On Thu, Aug 5, 2010 at 1:51 AM, David Burgess apt@gmail.com wrote:
I've been running the 2.0 betas for a few months and I'm quite happy
with it. Some network and hardware upgrades present me with a few
questions, and maybe I'm overthinking it, but I thought I would ask
the opinion of the
On Thu, Aug 5, 2010 at 2:08 AM, Tortise tort...@paradise.net.nz wrote:
- Original Message - From: Chris Buechler cbuech...@gmail.com
To: support@pfsense.com
Sent: Thursday, August 05, 2010 6:01 PM
Subject: Re: [pfSense Support] multi-wan, multi-lan security
Doing VLANs properly all
On Thu, Aug 5, 2010 at 7:35 AM, Tiago tpi...@scenario.ind.br wrote:
Hello guys
I use pfsense 1.2.3 and everything is ok...
But there is a user in my network that use a msn messenger on the browser...
I tried to stop this using DNS Forwarder but the site changes every
day...The website is
On Thu, Aug 5, 2010 at 1:25 PM, Bao Ha b...@hacom.net wrote:
Perhaps, Cisco is expecting a firewalled network to use managed
switches. Is it best practice? Why is there a resistance to VLAN in
the pfSense community?
I don't think anyone in this thread is expressing resistance to VLANs
in
On Wed, Aug 4, 2010 at 7:39 AM, Hiren Joshi j...@moonfruit.com wrote:
Hi,
I'm running a master/slave setup of 1.2.3 and about to install haproxy,
I have 2 options under packages:
BETA-0.29
and
BETA-0.30
My question, why is the newer one marked as stable?
As we were doing some work on
On Fri, Aug 6, 2010 at 7:40 PM, Nathan Eisenberg
nat...@atlasnetworks.us wrote:
That's poetry.
It might be, if it were true. I'm not sure that it is, though.
From a distribution layer (/30 for routing to a firewall from a router), I
can't think of what you'd need to intentionally do to
On Fri, Aug 6, 2010 at 8:50 PM, Nathan Eisenberg
nat...@atlasnetworks.us wrote:
You're missing the entire point. If you have one switch, VLAN 2 is
your LAN, and VLAN 3 is your unfiltered Internet, and you put both 2
and 3 untagged on the same port... there ya go. From there the amount
of
On Fri, Aug 6, 2010 at 9:37 PM, Tortise tort...@paradise.net.nz wrote:
- Original Message - From: Nathan Eisenberg
nat...@atlasnetworks.us
To: support@pfsense.com
Sent: Saturday, August 07, 2010 12:50 PM
Subject: RE: [pfSense Support] multi-wan, multi-lan security
Say I'm not
On Mon, Aug 9, 2010 at 12:07 PM, Paul Mansfield
it-admin-pfse...@taptu.com wrote:
thinking aloud...
if your provider provides ipv6 as well as ipv4 and devices on your lan
are also ipv6, then you're more likely to have a major security breach??
I was thinking of that scenario earlier in the
On Tue, Aug 10, 2010 at 7:59 AM, Mark Wiater mark.wia...@greybeam.com wrote:
Hi,
I use Rancid (http://www.shrubbery.net/rancid/) to keep track of changes to
my firewalls.
To make Rancid work with web based tools, I wrote a script for Rancid that
accesses the web interface's
On Tue, Aug 10, 2010 at 1:03 PM, Benjamin LAUGIER
benjamin.laug...@gmail.com wrote:
In fact, the main problem with failover, as far as I know, is that pfSense
only checks that the physical link is up and that the local gateway is
pingable.
That's not true, you define whatever monitor you
On Tue, Aug 10, 2010 at 11:10 AM, Chris TheEnd ch...@theendrecords.com wrote:
Hi,
First time emailing the list. I have setup PFsense routers before but never
creating and access point for wireless connections.
I was having a problem last night setting up a new router with pfsense
1.2.3.
On Wed, Aug 11, 2010 at 12:47 AM, Joe Laffey j...@laffey.tv wrote:
On Tue, 10 Aug 2010, Joe Laffey wrote:
I am trying to connect to a pfsense 1.2-RC1 box from an Android (Droid-X)
phone.
I set up the PPTP as described in the docs. I have the ips all set right,
and added the firewall rule.
On Tue, Aug 10, 2010 at 5:08 PM, Fabricio Ferreira gu...@bol.com.br wrote:
Thanks Everyone!
Actually I made it work, but not using the same monitoring address on both
interfaces.
Yeah you can't do that, as the monitor IP always is forced out only
one connection (I think the book is probably
On Thu, Aug 12, 2010 at 2:13 PM, Jonathan Reed jreed...@gmail.com wrote:
I'm ignorant to how bridging is suppose to work, but whats happening doesnt
seem logical.
I've bridged LAN and OPT. When the LAN int goes down - ie my computer is
shut off - then my bridge on also goes does. It seems the
On Thu, Aug 12, 2010 at 2:17 PM, Austin G. Smith asm...@neweffectit.com wrote:
I just performed an update on a 1.2.0-RELEASE-FULL firewall last night.
Today we started having issues with traffic being denied from IPSEC VPN
sites outside of the internal pfsense networks. However, traffic
On Thu, Aug 12, 2010 at 4:59 PM, Victor Pasten vpas...@connected.cl wrote:
but, what more I must do in my asterisk server?.
Probably nothing given the symptoms, see previous comments on the
problem being what your phones are behind, not what your server is
behind.
On Thu, Aug 12, 2010 at 8:13 PM, Cinaed Simson cinaed.sim...@gmail.com wrote:
On 08/12/2010 03:44 PM, Tim Dickson wrote:
I don't know the IP addresses of the SSH servers on the Internet.
Then only allow to the SSH servers you know/want? You can go either way...
block all and allow only
On Fri, Aug 13, 2010 at 3:53 PM, Joe Laffey j...@laffey.tv wrote:
Hey, folks,
How reliable is the upgrade process? I have a 1.2 RC1 setup that I would
like to bring up to the latest release. Is the upgrade truly seamless?
Everything is preserved?
Anyone have any issue upgrading?
On Mon, Aug 16, 2010 at 12:46 PM, Steve Haavik shaa...@soc.lib.md.us wrote:
You could also try Nmap (http://nmap.org/), but I don't know if it's really
agressive enough to fill a state table.
nmap is among the best quick and easy ways to open a whole bunch of
states. It's what I use most of
On Tue, Aug 17, 2010 at 7:23 AM, Paul Cockings
opensourceproje...@mail26.com wrote:
Hi Pfsense folk,
I am slightly confused about VLAN support on Alix board. I'm considering an
Alix 2D3 LX800 (http://linitx.com/viewproduct.php?prodid=12647) + Pfsense
for a small project
On one of the NICs
On Tue, Aug 17, 2010 at 10:14 AM, Aarno Aukia aarnoau...@gmail.com wrote:
Hello,
We're seeing an interesting dhcp problem with one ISPs (Swisscom) VDSL
product, where the dhclient tries to renew the WAN IP address with
unicast to udp port 68 but from a random high port instead of the
On Mon, Aug 23, 2010 at 8:37 PM, Nathan Eisenberg
nat...@atlasnetworks.us wrote:
$natrules .= filter_nat_rules_generate_if($wanif,
{$lansa}/{$lancfg['subnet']}, 5060, , 5060,
null, 5060, false);
This line in /etc/inc/filter.inc breaks SIP behind NAT.
On Tue, Aug 24, 2010 at 4:47 PM, Danny metal...@gmail.com wrote:
Hi,
Normally I don´t send mails to this list, because most of the times,
googling, reading the forum, and of course playing with make me solve
problems...
In the last month I asked this list for support with 3 different issues
On Wed, Aug 25, 2010 at 2:20 AM, David Burgess apt@gmail.com wrote:
I'm using a pair of onboard (vr) NICs on a net5501-80 (500 MHz Geode)
with vlans to firewall a 36/4 mlppp connection. During heavy download
top reports interrupts around 40-50% CPU usage with most of the
remainder being
On Wed, Aug 25, 2010 at 12:05 PM, Atkins, Dwane P atki...@uthscsa.edu wrote:
I have a user who has a Motorola Backflip. It comes up with the Captive
Portal pages, but afterward authenticating, he receives a 411 – Length
required error page. Has anyone dealt with this before?
Never heard of
On Wed, Aug 25, 2010 at 4:18 PM, Atkins, Dwane P atki...@uthscsa.edu wrote:
I have the user seeing if they can download Dolphin. Yeah, I recognized the
dates and knew they were close to the Unix Epoch, but why would they be the
release times for DHCP address. Do you think it is time for a
On Wed, Aug 25, 2010 at 7:19 AM, Hans Maes h...@bitnet.be wrote:
Hi,
I'm running a few (6 at the moment) pfsense 1.2.3-RELEASE boxes on a rather
large scale wireless network, as border routers and firewalls between the
internet uplinks and the rest of the network. (network background info:
On Tue, Aug 31, 2010 at 12:43 AM, Tom tom.val...@gmail.com wrote:
pfsrctrpl seems to translate to src-nodes
Edit /etc/inc/filter.inc, find these two lines:
$rules .= \n;
$rules .= set skip on pfsync0\n;
above those, add:
$rules .= set limit src-nodes 23456\n;
or
On Tue, Aug 31, 2010 at 12:55 AM, Glenn Kelley gl...@typo3usa.com wrote:
unless something has changed - i never did find a way to do this 100%.
I had a similar setup for a call center - folks doing collections of all
things... anyhow - I had them spring for a 2nd cable modem and setup 2
On Tue, Aug 31, 2010 at 3:18 PM, Zhu Sha Zang zhushaz...@yahoo.com.br wrote:
Has anyone using and *really working* with spamd inside pfsense 2.0 BETA 4.
Not that I'm aware of. Probably doesn't work. I'm not sure it works on
any version. May not be hard to fix if you poke at the underlying
bits.
On Tue, Aug 31, 2010 at 1:26 AM, Tom tom.val...@gmail.com wrote:
worked great..
one firewall is 1.2.3 and it was exactly as you mentioned.
the other firewall is 1.2.2 and there is no set skip on pfsync line but I
added it in the same section before the
$rules .= \n;
touched a rule to force
On Thu, Sep 2, 2010 at 5:05 AM, Dan Candea d...@quah.ro wrote:
hello
maybe this question was already put, but I could find it in the archives.
Is there any support for radius in racoon?
You'll have to use 2.0 or compile it yourself for that.
On Fri, Sep 3, 2010 at 2:42 PM, Jeremy Bennett
jbenn...@hikitechnology.com wrote:
PFSense 1.2.3 Embedded Release on an Alix 2c3
Local network is 10.0.1.x subnet
Trying to get port forwarding setup so that inbound connections on static
public IP/WAN/port 80 get forwarded to LAN 10.0.1.4
1201 - 1300 of 1503 matches
Mail list logo