On Thu, Jul 23, 2009 at 9:09 PM, Lyle Giesel...@lcrcomputer.net wrote:
I setup a pfSense embedded using 1.2.3 rc1. When I connect to the
console port, I get
tcsetpgrpfailed, errno=25
It's normal and cosmetic only (and I believe fixed in nanobsd embedded).
On Fri, Jul 24, 2009 at 2:19 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
The deployment I was planning earlier that referenced the 1u case
reco from everybody just got accelerated, the PIX that I was replacing
died:)
I have a single wan(dhcp)(em0) and lan(192.168.0.1)(em1) interface,
On Fri, Jul 24, 2009 at 3:11 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
First of all make sure you can reach hosts on vlan3 from pfSense itself.
Right, I tried a ping from the web gui on OPT1 to a host and got nothing.
I am positive the switch is setup right, I am looking at it now
On Fri, Jul 24, 2009 at 7:30 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
OT:
BTW, you are subscribed into the CentOS mailing list, right?
somehow your name was known for me :)
Yup, and I do have working connectivity into the vlan from that switch
as I said I hooked up an RHEL host and
On Fri, Jul 24, 2009 at 8:43 PM, Victor Padrovpa...@gmail.com wrote:
Hello everyone,
I was wondering if there are any plans/suggestion to create different
language support mailing lists(spanish, german, french, etc.) as you
already have in the forums?
m0n0wall has adopted the policy of post
Looking for something, preferably open source but commercial is an
option, sort of like a host your own private speed test site. The idea
is when someone connects in via VPN they can easily hit a URL on a
server across the VPN and click a button to test throughput, latency,
and loss. The average
On Sat, Jul 25, 2009 at 4:29 PM, Scott Ullrichsullr...@gmail.com wrote:
On Sat, Jul 25, 2009 at 4:26 PM, Chris Buechlerc...@pfsense.org wrote:
Looking for something, preferably open source but commercial is an
option, sort of like a host your own private speed test site. The idea
is when
On Sun, Jul 26, 2009 at 9:01 PM, Reza A. Amblerr...@rndcomputing.com wrote:
Hi everyone,
I currently have pfSense version 1.2.2 installed. I have 3 interfaces WAN,
LAN, and T1 (Opt1). I setup siproxd originally with inbound as LAN and
outbound as WAN and everything was working smoothly. I
On Mon, Jul 27, 2009 at 12:01 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
Is there anything I should know about writing configs by hand
and importing the xml? Are there any things internally that may
invalidate this aside from obvious syntax errors?
Be *very* careful, there are all
On Mon, Jul 27, 2009 at 1:13 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
I am familiar with PIX/ASA and iptables which I am seeing don't quite
share the same rules as pfSense.
Not familiar with iptables, but it's very similar to PIX/ASA with only
two exceptions:
1) No concept of
On Mon, Jul 27, 2009 at 1:50 PM, Joshua Schmidlkoferjoshl...@gmail.com wrote:
I have a pfSense box with several interfaces and several IP addresses. I
just want to shape LAN-WAN. I have seen listed problems about
multi-interfaces shaping dilemmas, but I didn't see anything to indicate
that
On Mon, Jul 27, 2009 at 11:19 AM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
In replacing my pix, I was hoping to migrate to a vpn setup that
allowed me to continue to use radius from our Windows AD setup.
My requirements are explicitly set such that I must filter traffic
for groups of
On Tue, Jul 28, 2009 at 5:59 AM, Paul
Mansfieldit-admin-pfse...@taptu.com wrote:
Chris Buechler wrote:
You can filter OpenVPN. Short howto is here:
http://doc.pfsense.org/index.php/VPN_Capability_OpenVPN
if you're running multiple openVPN servers, how does pfSense know which
tun device
On Tue, Jul 28, 2009 at 1:10 PM, Evgeny
Yurchenkoevgeny.yurche...@frontline.ca wrote:
What I am trying to understand here is how should it work?
'IGMP proxy' means that it should proxy IGMP-packets. Ok,
now I got it working with some modification of its code.
Now IGMP from downstream
On Wed, Jul 29, 2009 at 12:54 PM, Lennyfive2one.le...@gmail.com wrote:
Just like I answered previously, without the pfSense Alteon was able to
handle the load without problems.
Cisco switch also didn't have any errors on the interface. Plus, I only
started to see errors, when the high load
On Wed, Jul 29, 2009 at 3:38 PM, Lennyfive2one.le...@gmail.com wrote:
That's all understandable when speaking of errors and packet loss, but would
it really cause the CPU hit 100% at 50kpps?
both em0 and em1?
By the way, it worked for 3 weeks with regular load (about 10kpps) and the
CPU was
On Thu, Jul 30, 2009 at 3:25 AM, Lennyfive2one.le...@gmail.com wrote:
I have in the past, not with the recent setup. As far as I understood it
doesn't help much in the latest releases of FreeBSD.
It can if you're getting killed by interrupts but that doesn't seem to
be the case.
On Thu, Jul 30, 2009 at 9:32 AM, Lennyfive2one.le...@gmail.com wrote:
bce0: Broadcom NetXtreme II BCM5708 1000Base-T (B2) mem
0xc800-0xc9ff irq 18 at device 0.0 on pci4
Are things any better/different if you use the onboard Broadcom NICs instead?
On Thu, Jul 30, 2009 at 1:17 PM, Lennyfive2one.le...@gmail.com wrote:
Actually I've never tried with this server. Only with the old one and then
the interrupt was pretty high.
But I remember you and the other guys advised against using Broadcom in
favor of Intel.
Are you suspecting the NIC
On Thu, Jul 30, 2009 at 8:33 PM, Evgeny
Yurchenkoevgeny.yurche...@frontline.ca wrote:
I was stupid enough sending multicast UDP traffic with TTL=1 (although
settings in my player were telling me 10).
Everything is working fine now.
That's great! I appreciate your efforts in sticking with
On Sat, Aug 1, 2009 at 2:36 PM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
Does this have some bounds as to the ports it will gen rules for?
It applies to all ports unless you tell it otherwise in the Outbound rules.
-
To
On Mon, Jul 20, 2009 at 7:48 PM, Nathan
Eisenbergnat...@atlasnetworks.us wrote:
Some of my pfsense boxes get a lot of SSH bruteforces; is there a package
like fail2ban out there which could automatically blacklist IPs after x bad
logins?
Mark Crane added a DenyHosts package recently that does
On Mon, Aug 3, 2009 at 1:41 PM, Nathan Eisenbergnat...@atlasnetworks.us wrote:
-Original Message-
From: cbuech...@gmail.com [mailto:cbuech...@gmail.com] On Behalf Of Chris
Buechler
Sent: Sunday, August 02, 2009 6:11 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Anything
On Mon, Aug 3, 2009 at 9:55 AM, Joseph L.
Casalejcas...@activenetwerx.com wrote:
You can filter OpenVPN. Short howto is here:
http://doc.pfsense.org/index.php/VPN_Capability_OpenVPN
if you're running multiple openVPN servers, how does pfSense know which
tun device is allocated to which
On Mon, Aug 3, 2009 at 4:40 PM, Nathan Eisenbergnat...@atlasnetworks.us wrote:
I too am running 1.2.2 and cannot get this package to work. I noticed that
under status - services, the denyhosts service is not running. Attempting
to start it fails.
It was probably built for FreeBSD 7.1 or
On Mon, Aug 3, 2009 at 8:50 AM, Michel Servaesmic...@mcmc.be wrote:
Hi,
I am planning (since my job move to another company) to install pfSense as
well.
But, one thing that took special consideration, are the packages...
They are great to improve the product even more, but they might also
On Wed, Aug 5, 2009 at 6:53 PM, Keenan Timskt...@gotroot.ca wrote:
If a packet arrives from a networks via a static route all firewall
rules are ignored. Everything passes. :-(
If the Packets arrive via the default route it works as expected.
Packets don't arrive 'from' a static route; the
On Wed, Aug 5, 2009 at 7:27 AM, Joseph Hardemanjharde...@colocube.com wrote:
Greetings Everyone,
Just wanted to make you aware, if you weren't already, that on Aug 3rd 2009
IANA has recently assigned two IP Ranges that were previously Bogon Ranges
out to the wild. The IP Ranges are:
175/8
On Wed, Aug 5, 2009 at 4:35 PM, mayak chunder-qwernma...@australsat.com wrote:
I'm having the same problems -- pptp on embedded doesn't behave like
full. I have now emabrked on the journey to openvpn ...
Otherwise said, pptp on embedded just doesn't stand up.
PPTP on embedded has the exact
On Thu, Aug 6, 2009 at 10:48 AM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
I'll ask very trivial question but please bear with me as I am new here.
What does 'commited this' mean?
This is for a package, packages don't have any relation to release
versions, in this case it'll be available
On Thu, Aug 6, 2009 at 10:24 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
So devlopers work hard from time to time commiting their work (kind of
moving it towards snapshots). And at some point somebody decides ok, it's
time to draw a line and creates the next snapshot which becomes
On Sat, Aug 8, 2009 at 2:26 PM, Jason
Lixfeldjason-lists.pfse...@lixfeld.ca wrote:
Is there an Easy Button for allowing inbound traceroute (traceroute sourced
from the WAN) in pfSense other than creating two rules on the WAN side that
permit inbound ICMP as well as inbound UDP source port range
On Wed, Aug 5, 2009 at 7:45 AM, Pete Boydpetes-li...@thegoldenear.org wrote:
Hi. I've added a second network card to an existing functioning pfSense
1.2.2 firewall and setup dual LAN successfully apart from, unless I set a
gateway address (of the new LAN IP interface) in the new LAN interface's
On Sun, Aug 9, 2009 at 6:04 PM, Bryan D.pfse...@derman.com wrote:
|On Wed, Aug 5, 2009 at 7:45 AM, Pete Boydpetes-li...@thegoldenear.org
|wrote:
| Hi. I've added a second network card to an existing functioning pfSense
| 1.2.2 firewall and setup dual LAN successfully apart from, unless I set a
On Mon, Aug 10, 2009 at 8:23 AM, Atkins, Dwane Patki...@uthscsa.edu wrote:
We are trying to install, and upgrade, from 1.2 RELEASE and 1.2.3 to 1.2.3
RC1. We are using Dell R200s. I am not sure if I possibly got a bad
download or the R200 needs a different snapshot? We are loading with the
On Mon, Aug 10, 2009 at 10:47 AM, Pete Boydpetes-li...@thegoldenear.org wrote:
Like I said, should pfSense _not_ be offering the broadcast address as a
choosable option for an IP address for a client computer?:
It will if you tell it to. The input validation there is only on
subnet boundary,
On Tue, Aug 11, 2009 at 3:39 AM, David Burgessapt@gmail.com wrote:
On Tue, Aug 11, 2009 at 1:19 AM, Kevin Kimanikevinkim...@gmail.com wrote:
Hi,
Am experiencing trouble with my Pfsense firewall by it not being able
to relay mail to the internal mail server. One person can be able to
send
On Tue, Aug 11, 2009 at 3:47 AM, Kevin Kimanikevinkim...@gmail.com wrote:
I have created a rule to allow traffic on the WAN to ports 25 which is
to be forwarded to the mail server.
You must have a NAT port forward and a firewall rule, make sure you
have both. Also see:
On Tue, Aug 11, 2009 at 4:11 AM, Kevin Kimanikevinkim...@gmail.com wrote:
Chris,
I have both rules (NAT port forward and firewall rule) in place since
when you create a port forward rule, there is a check box to
automatically create the new rule in the WAN interface. I have even
tried
On Wed, Aug 12, 2009 at 10:52 AM,
apiase...@midatlanticbb.comapiase...@midatlanticbb.com wrote:
Having a problem with vpn setup wondering if anyone else is also??
The VPN software is Cisco.
The Cisco has to have NAT-T enabled.
On Wed, Aug 12, 2009 at 4:55 PM,
apiase...@midatlanticbb.comapiase...@midatlanticbb.com wrote:
Chris Buechler wrote:
On Wed, Aug 12, 2009 at 10:52 AM,
apiase...@midatlanticbb.comapiase...@midatlanticbb.com wrote:
Having a problem with vpn setup wondering if anyone else is also??
The VPN
On Fri, Aug 14, 2009 at 3:52 PM, Tim Nelsontnel...@rockbochs.com wrote:
I'd have to enter the dyndns hostname in the firewall rules and the last time
I tried this, it did not work which was expected. So, thats why I'm looking
for a way to dynamically update the firewall rule directly. :-/
On Sat, Aug 15, 2009 at 3:43 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
No, it does not include all my code modifications (includes only config.c),
so it does not work.
Sorry guys but it seems I've just made something really stupid
On Mon, Aug 17, 2009 at 5:33 PM, Jesse Vollmarvollm...@gmail.com wrote:
Hey guys,
after googling this for a while, I'm not finding any clear instructions for
doing this. I currently have a multi-wan scenario with failover configured.
I just purchased another static IP block from one of the
On Tue, Aug 18, 2009 at 6:44 PM, Ian Levesquei...@crystal.harvard.edu wrote:
Hello,
I've got a WAN rule that allows traffic from a specific subnet in our
university's private network direct access to our LAN. We're basically
bridging two LANs across a WAN interface. The generated rule looks
On Tue, Aug 18, 2009 at 7:07 PM, Ian Levesquei...@crystal.harvard.edu wrote:
I'm still on 1.2.1 and am waiting to upgrade with the final 1.2.3 release.
If I make a change to /etc/inc/filter.inc now, it would be lost when I
upgraded pfSense, correct? I just want to avoid getting hit with this
On Tue, Aug 18, 2009 at 8:59 AM, Jesse Vollmarvollm...@gmail.com wrote:
I'm not using CARP and I would like to use them with NAT. According to that,
your reccomendation would be to use other VIPs. My only question is, will
they route properly since the ISP has this new subnet using a different
On Tue, Aug 18, 2009 at 9:30 PM, Leon Strongleon.str...@smx.co.nz wrote:
Hi all,
I'm wondering if you could provide some help with an issue i'm having
installing pfsense on an IBM HS20 blade system, both the 1.2.2 and 1.2.3RC1
snapshots hang when booting.. (it stalls after mounting the
On Tue, Aug 18, 2009 at 10:08 PM, Jesse Vollmarvollm...@gmail.com wrote:
Part of the problem is that I am not exactly sure how they are delivering
the IPs. The ISP is Charter. I purchased from them a static 5 pack which
is a /29 routed subnet according to them. Here is what they sent me (I
On Tue, Aug 18, 2009 at 10:39 PM, Jesse Vollmarvollm...@gmail.com wrote:
NAT is fine with me, but that gateway isn't a VIP on my WAN. Are you saying
that I would need to add it?
Ignore the gateway, you just need proxy ARP VIPs for the usable IPs.
The gateway is just an alias on your cable
On Wed, Aug 19, 2009 at 3:55 PM, li...@mgreg.comli...@mgreg.com wrote:
Hi All,
I've decided to give pfSense a go. When I initially installed it about (20
mins ago), everything seemed to work just fine. Now, however, I can ping and
SSH to all machines behind the pfSense box, but I can't access
On Wed, Aug 19, 2009 at 6:18 PM, li...@mgreg.com wrote:
Hi All,
I just installed pfSense and am absolutely loving it. One question though:
How do I go about allowing for loopback traffic? Basically I have some
internal web servers that I need to test via the external IP, but it seems
as
On Thu, Aug 20, 2009 at 12:35 AM, Manny A. Wisemannyw...@gmail.com wrote:
Hello everyone,
I have what I belive is a very nice hardware for running pfSense..
http://www.calltheusa.com/1.jpg
http://www.calltheusa.com/2.jpg
http://www.calltheusa.com/3.jpg
I installed the FULL version
On Thu, Aug 20, 2009 at 3:38 AM, Michel Servaesmic...@mcmc.be wrote:
Hi,
I am wondering, if the following would be possible - and how to start with it.
I have this SDSL and ADSL connection - in where our ADSL has a
download limit of 25GB/month
If one bypasses the 25GB - the connection
On Thu, Aug 20, 2009 at 6:25 PM, Ian Levesquei...@crystal.harvard.edu wrote:
On Aug 18, 2009, at 10:30 AM, Ian Levesque wrote:
I just noticed that my two pfSense boxen aren't syncing anymore. In the
logs, I see:
An error code was received while attempting XMLRPC sync with username
admin
On Fri, Aug 21, 2009 at 2:23 AM, stephane
ancelotsance...@numalliance.com wrote:
Hi,
I would like being able sending an email , when somebdoy connects or
disconnects to the openvpn in my pfsense router
is there a way doing this with the router ?
openvpn provides the capability thanks to a
On Fri, Aug 21, 2009 at 2:39 AM, Matthias Niggemeierm...@thias.de wrote:
Can you remember your last change? I had this problem when a rule comment
contains special characters.
Check all your rules and aliases to contain only a-z,A-Z,0-9,+,-,.,(,)
(some more as valid for XML (UTF8) without
On Sat, Aug 22, 2009 at 3:58 PM, Bill Marquettebill.marque...@gmail.com wrote:
On Sat, Aug 22, 2009 at 2:24 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
Trying to get my branch cloned on local system
%git clone http://gitweb.pfsense.org/pfsense-packages/EugeneY-OpenBGPD.git
after many lines
On Sun, Aug 23, 2009 at 9:23 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
Could somebody please clarify how to get this new version of igmpproxy for
pfSense-1.2.3-RC1?
I don't believe anyone updated the package, changing the port only
affects 2.0 snapshots where it's built in. I'll check
On Sun, Aug 23, 2009 at 10:03 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
It seems pf discards packets with IP Router Alert Option (RFC 2113).
According to RFC2236 this option is mandatory in IGMP packets. Indeed I see
one of most popular players-over-net VLC media player sends IGMP with
On Tue, Aug 25, 2009 at 3:15 AM, Richard Sperryrich...@wrinklebrain.com wrote:
Does anyone know of any Gig Ethernet tcp offload cards that are *fairly
inexpensive* that work with PF?
Every worthwhile server class gig NIC has TCP offload. Intel and
Broadcom the two most widely used.
On Wed, Aug 26, 2009 at 8:53 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
What do you use to develop pfSense? which editor?
Textmate on Mac, Komodo on Windows.
debugger?
Copy over code, run and test. I don't use a debugger of any sort, when
I'm looking for more info on what's happening
On Wed, Aug 26, 2009 at 11:14 PM, Jesse Vollmarvollm...@gmail.com wrote:
Is load balancing supported on vlan interfaces?
Yes. They're no different than any other.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For
On Wed, Aug 26, 2009 at 11:28 AM, Chris
Kleeschultechris.kleeschu...@it.libertydistribution.com wrote:
I can dhcp relay all my hosts except for Windows-based hosts.
I'm forwarding requests from XP SP3 across dhcrelay no problem
(FreeBSD 7.1 base OS, comparable to 1.2.3-RC1 - if you're running
On Thu, Aug 27, 2009 at 2:58 PM, luismiasturlui...@gmail.com wrote:
Hi again, I have the ipsec created between the pfsense (physical ip
address) and the remote cisco (public ip address).
I would like to know if it is possible to create the vpn against the
CARP address, I am not sure, is that
On Thu, Aug 27, 2009 at 5:54 PM, David Reesdree...@gmail.com wrote:
OK - I guess what I'm asking is this:
I've just checked my particular pfSense box and aside from the nearly
1000 ports it's listening to from 19000+ for my NAT reflection rules,
is there anything else keeping us from using a
On Thu, Aug 27, 2009 at 11:05 AM, Jesse Vollmarvollm...@gmail.com wrote:
I tried again this morning to change the allow rule on a vlan
interface to send traffic out on a gateway other than default and
after about five minutes of working like it should, all traffic
stopped. Hosts on that vlan
On Thu, Aug 27, 2009 at 6:51 PM, David Reesdree...@gmail.com wrote:
There are some foot shooting possibilities if you aren't careful.
Any details on those?
Binding to things that local services would bind to, and then those
fail to start.
Hmm, if I just submit a patch which addresses
On Thu, Aug 27, 2009 at 10:17 PM, Justin The
Cynicalcyni...@penguinness.org wrote:
Evgeny Yurchenko wrote:
I do not know what comcast business account is but two boxes must have
Option for statics, no ports blocked.
their own IPs (not virtual one per box) + as many CARP addresses as you
On Fri, Aug 28, 2009 at 12:16 AM, Justin The
Cynicalcyni...@penguinness.org wrote:
Evgeny Yurchenko wrote:
Justin The Cynical wrote:
So working with the previous example, assume that the single router is
using .1 with AON directing traffic out via all the available IP's.
If I was to
On Sun, Aug 23, 2009 at 9:23 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
Could somebody please clarify how to get this new version of igmpproxy for
pfSense-1.2.3-RC1?
Please test this igmpproxy binary:
http://cvs.pfsense.org/~cmb/20090828-igmpproxy
If it works, I'll update the package for
On Fri, Aug 28, 2009 at 9:54 AM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
Thanks Chris, I'll test it. Does it include this commit
https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/cbba0ef69dd4a01b6b8da8f04f8b742170a34591
?
Yes
On Fri, Aug 28, 2009 at 6:47 AM, luismiasturlui...@gmail.com wrote:
After a failover, ipsec will negotiate everything again no?
Right, it will.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands,
On Fri, Aug 28, 2009 at 11:14 AM, Guy Boisvertboisvert@videotron.ca wrote:
It is like pfSense does something weird when it has to handle half of an
IP connection:
Check Bypass filtering for traffic on same interface, under System
- Advanced. Stateful filtering won't work in that scenario.
On Fri, Aug 28, 2009 at 9:41 AM, Jesse Vollmarvollm...@gmail.com wrote:
Sorry, your comments have confused me just a bit. I have two physical WAN
connections that are doing failover and one LAN interface with vlans under
it. I want those vlans to use the failover rather than just the default
On Fri, Aug 28, 2009 at 3:44 PM, Guy Boisvertboisvert@videotron.ca wrote:
There is no firewall rules on VLAN3. This is simple routing with the
2910AL (Layer 3) that simply forward traffic to its default gateway which is
pfSense on VLAN0.
Oh, the VLANs are being routed by something else.
On Sun, Aug 30, 2009 at 2:44 AM, Nathan
Eisenbergnat...@atlasnetworks.us wrote:
Is there a known bug in 1.2.2 where if you change the password on both
systems AFTER setting up XMLRPC, you experience 801
authentication issues - even if you update the password in the CARP
configuration?
No,
On Mon, Aug 31, 2009 at 12:27 PM, Richard Amermanfi...@7technw.com wrote:
I'm having a routing issue with a new double pfSense setup I have
configured.
Here is a diagram of the setup:
http://tinyurl.com/mqko87
Both of the firewalls are pfSense 1.2.3-RC1 from the live-CD
They each have 4
On Wed, Sep 2, 2009 at 10:47 AM, Omar
Thameeno...@westside.urbanblight.com wrote:
Hi,
The bogons list on the website, http://files.pfsense.org/bogon-bn-nonagg.txt,
needs to be updated.
It's up to date, and updates automatically as needed.
There are a number of networks that have been
On Wed, Sep 2, 2009 at 5:26 PM, Omar
Thameeno...@westside.urbanblight.com wrote:
Sorry about that. It turns out that I have 1.2-RC4 running at home,
and that release references
http://files.pfsense.org/mirrors/bogon-bn-nonagg.txt,
which is out of date.
Ah, for something like 2 weeks that
On Wed, Sep 2, 2009 at 4:53 PM, Evgeny Yurchenkoevg.yu...@rogers.com wrote:
Scott Ullrich wrote:
On Wed, Sep 2, 2009 at 4:38 PM, Evgeny Yurchenkoevg.yu...@rogers.com
wrote:
Trying to install from
pfSense-Developers-2.0-ALPHA-ALPHA-20090901-1924.iso
on HP DL380 G4. MD5 is correct. Tried to
On Wed, Sep 2, 2009 at 10:59 AM, a_subscribti...@fiberby.dk wrote:
This is my setup
WAN PUBLIC/30 - is obviously connected to my isp.
LAN PRIVATE/24 - is natted users with no special needs.
OPT1 PUBLIC/29 - is handed out one by one to users with special needs.
OPT2 PUBLIC/29 - IS WHAT I
On Fri, Sep 4, 2009 at 3:20 AM, a_subscribti...@fiberby.dk wrote:
Hi
I have two pfsense running for approximately 1300 costumers each.
They hold between 10-15 vlans each, and is acting as dhcp servers.
All traffic is being natted.
It's a full install with no packages installed.
The
On Fri, Sep 4, 2009 at 9:28 AM, Hiren Joshij...@moonfruit.com wrote:
This is the problem I'm facing, I have a master and slave setup and my
ISP has just forced a load of new IPs on a different subnet, can anyone
offer pointers?
Is this a good idea?
On Mon, Sep 7, 2009 at 10:59 PM, Nenhum_de_Nosmatheus...@gmail.com wrote:
The requested URL /FreeBSD_RELENG_8_0/pfSense_HEAD was not found on this
server.
any other site I could download that ?
is there an easy way to update to 8.x based and not loose anything ?
No, there are no 8
On Wed, Sep 9, 2009 at 4:22 PM, Dominik Schipsdomi...@s235.de wrote:
Hello,
I'd like to ask how to backup pfSense the correct way?
If I use the WebGUI backup/restore option than I only get the xml config
file with my settings. But what is with my VPN cert/keys etc.
The config includes all
On Fri, Sep 11, 2009 at 1:22 PM, Guy Boisvert boisvert@videotron.ca wrote:
I can ping from 192.168.3.40 to any host on 192.168.0.0/24 subnet
(pfSense LAN interface segment). I can ping pfSense interface
(192.168.0.222) but i cannot ping anything on the internet. Tracert
dies past
On Sat, Sep 12, 2009 at 6:32 AM, tester tester6...@yahoo.com wrote:
I don't know what to do. It became painful to manage VoIP at home due to this
problem. Can you help me?
Likely one of 3 things here (I'm guessing #2)
http://doc.pfsense.org/index.php/VoIP_Configuration
Moreover, I've
On Mon, Sep 14, 2009 at 1:49 PM, tester tester6...@yahoo.com wrote:
Today I've tried snapshot pfSense-1.2.3-1G-20090913-0939-nanobsd.img.gz, then
updated to pfSense-1.2.3-1G-20090914-0214-nanobsd-upgrade.img.gz but I have
two problems.
Serial console and System logs got flooded with this
On Mon, Sep 14, 2009 at 2:46 PM, tester tester6...@yahoo.com wrote:
Is Embedded now replaced by NanoBSD? Will Embedded platform die shortly?
Yes and yes.
I hope things will get fixed (vr and wifi), otherwise I won't switch to
NanoBSD builds in a short time. That's a pity, because it seems
On Tue, Sep 22, 2009 at 11:10 PM, Evgeny Yurchenko evg.yu...@rogers.com wrote:
I can not ping 10.29.11.1 or 10.29.11.2 from any host connected to LAN
pfSense1. Traffic does not go over IPSec but instead natted and goes to
Internet.
On WAN (ng0):
20:29:13.951253 IP x.x.x.106 10.29.11.1: ICMP
On Sat, Sep 26, 2009 at 11:04 PM, Chris Flugstad ch...@cascadelink.com wrote:
I have public IP's on my LAN and outbound NAT off. I have a ip address that
is somewhat malicious and needed to block traffic to and from it.
i tried making fw rules but that didnt work
any ideas?
That's all you
On Sat, Sep 26, 2009 at 11:12 PM, Chris Flugstad ch...@cascadelink.com wrote:
I tried on WAN int with the destination of the LAN IP that is maliscious.
no dice. its still getting traffic through. tried on LAN int with
blocking single host (lan ip of mal ip) as the destination
You need one
On Sun, Sep 27, 2009 at 6:31 PM, Nenhum_de_Nos matheus...@gmail.com wrote:
I just don't know how to make pfsense use it. my plan is to load balance
my dsl connection using this 3G.
is this possible ?
Not yet.
http://redmine.pfsense.org/issues/show/36
On Tue, Sep 29, 2009 at 4:48 PM, Jeppe Øland jol...@gmail.com wrote:
Do you have this 192.x.x.x for WAN at your Stauts-Interfaces page?
No, it's not :-( that's what irritates me...
There is no other option, it had to be on the WAN interface at some
point if the firewall registered it. It's
On Wed, Sep 30, 2009 at 5:17 PM, Evgeny Yurchenko evg.yu...@rogers.com wrote:
How come older version *1.2.2* built on Sat Jan 17 17:24:57 EST 2009 has
This allows packets with ip options to pass otherwise they are blocked by
default i.e. with multicast routing/proxing. in Rules-Edit-Advanced
On Thu, Oct 1, 2009 at 10:41 AM, Vick Khera vi...@khera.org wrote:
I'm trying to figure out how to make my ftp service pass the PCI
security compliance (we take credit cards, so need the compliance). I
have pfSense 1.2.2 running the ftp proxy to my internal box, which is
a FreeBSD 7.2 server
On Thu, Oct 1, 2009 at 4:10 PM, Curtis LaMasters
curtislamast...@gmail.com wrote:
I've searched around and read about others with this issue. Basically
I have 5 different Vista laptops that cannot get a DHCP address unless
I modify the registry and disable a broadcast setting. Does anybody
On Thu, Oct 1, 2009 at 4:57 PM, Nathan Eisenberg
nat...@atlasnetworks.us wrote:
Is there a way to load balance a range of ports with one rule?
Same way you load balance one port. Create a rule that specifies the range.
-
To
On Thu, Oct 1, 2009 at 6:07 PM, Jim Pingle li...@pingle.org wrote:
Chris Buechler wrote:
On Thu, Oct 1, 2009 at 4:10 PM, Curtis LaMasters
curtislamast...@gmail.com wrote:
I've searched around and read about others with this issue. Basically
I have 5 different Vista laptops that cannot get
901 - 1000 of 1503 matches
Mail list logo