Re: [pfSense Support] Re: FTP Server or samba server for PFSense

On 7/14/2010 11:18 AM, Laurentiu STEFAN wrote: > Can some one help me whit this problem too? > > 2010/7/14 Laurentiu STEFAN > > > I have an IBM Inellystation whith 2 Pentium 2 - 350Mhz processor, > 512 RAM and 150 GB Hdd. > I want to install the PF

Re: [pfSense Support] Minimal configuration for pfSense.

On 7/14/2010 3:17 PM, Laurentiu STEFAN wrote: > It's OKa to use an IBM Pentium MMX 200MHZ, 64MB Ram, 3GB SCSI, 3X LAN > for pfSense (Mask, firewall & load balancing whith 10 PC behind)? That's not very much RAM. If it doesn't use any packages, and no VPNs, it might work. Barely. But it will proba

Re: [pfSense Support] 2.0 beta1 embedded to beta3 upgrade

On 7/28/2010 2:12 PM, stephen at stephenjc wrote: > I have tried from the terminal to upgrade from beta1 to beta3. It says > everything is ok and reboots but always comes backup as beta1. >From a snap that old you will probably have to do a GUI firmware update. Both the console upgrade and auto u

Re: [pfSense Support] USB Keyboard - Boot Hangs

On 8/4/2010 1:24 PM, Tim Nelson wrote: > Greetings (again) fellow pfSense'rs- > > I'm also having issues with booting a system with a USB keyboard. The > keyboard works perfectly fine, but when pfSense attempts to initialize all > devices, there are problems and the system hangs: > > Starting d

Re: [pfSense Support] /boot/loader.conf vs /system_advanced_sysctl.php in 2.0

On 8/12/2010 1:54 PM, David Burgess wrote: > In 1.2.3 I had very good results adding the following lines to > /boot/loader.conf while using the squid package in transparent mode: > >> hint.apic.0.disabled=1 >> kern.ipc.nmbclusters="32768" >> kern.maxfiles="65536" >> kern.maxfilesperproc="32768" >>

Re: [pfSense Support] Large Aliases

On 8/23/2010 3:12 PM, Seth Mos wrote: > Hi, > > Op 23 aug 2010, om 21:08 heeft Jim Cheetham het volgende geschreven: > >> Perhaps there's another way; what are you doing this for? Instead of >> basing rules on a large set of aliases that you have to update >> regularly, is there some other charac

Re: [pfSense Support] Large Aliases

On 8/23/2010 6:20 PM, Joseph L. Casale wrote: >>> Also, in 2.0 we have support for nested aliases. What you can do with >>> this is pretty straightforward ofcourse. You can then update 1 specific >>> alias which is part of the parent alias. >>> >>> This should make management a lot easier, the chan

Re: [pfSense Support] Appliance Recommendation for 100 Mbps (DOCSIS 3.0) Service

On 9/2/2010 12:03 PM, Curtis Maurand wrote: > I found one Vyatta feature that trumped pfsense where I am. the ability > to route VPN via a secondary address/lan on one of the NIC's. I could > not make that happen w/pfsense. Otherwise I would be using it, here. > In another location that I'm res

Re: [pfSense Support] PFsense 2.0 roadmap

On 9/7/2010 5:08 AM, Tonix (Antonio Nati) wrote: > Is there any updated roadmap for pfsense 2.0? > When stable version is planned to be released? Closest thing to a roadmap is here: http://redmine.pfsense.org/projects/pfsense/roadmap The release will happen when it's ready, but hopefully that tr

Re: [pfSense Support] PFsense 2.0 roadmap

On 9/8/2010 1:42 PM, Tonix (Antonio Nati) wrote: >> http://redmine.pfsense.org/projects/pfsense/roadmap > Thanks... I see no dates at all. Correct. No dates. It will be ready when it's ready. :) > About 2.0, I see no documentation around. Is there a list where to ask > for 2.0 features explained

Re: [pfSense Support] power-out and Alix-boards

On 9/12/2010 8:44 AM, Michel Servaes wrote: > Checking via the serial-cable, I can go into shell... but trying to do a > "Set LAN ip", won't work at all... (it just comes back at me telling me > that /libexec/ld-elf.so.1: shared object "libxml2.so.5" not found, > required by php). That has less to

Re: [pfSense Support] Write 512MB image onto 4GB CF-card ?

On 9/16/2010 3:34 PM, Michel Servaes wrote: > Would it hurt, to write a 512MB image onto a 4GB CF-card ? > I don't need the extra space, and this shortens my write-time > drastically :) > > I'm trying it right now... if no-one knows, I'll tell how it turned out > anyway (if intrested). It works

Re: [pfSense Support] Any know issues with PPT and 2.0?

On 9/29/2010 4:29 PM, Wade Blackwell wrote: > Version *2.0-BETA1 * > built on Tue Mar 2 18:51:32 EST 2010 > FreeBSD 8.0-STABLE Before you do anything else, update to a current snapshot. There were hundreds if not thousands of commits and fixes since then. Jim ---

Re: [pfSense Support] Any know issues with PPT and 2.0?

On 9/29/2010 7:14 PM, Jorge Fábregas wrote: > Does the update feature thru the WebGUI works? > > p.d. I tried it a couple of weeks ago but couldn't make it work (something > about the update package not being signed). It depends on where you start from and how you are updating. Auto update was b

Re: [pfSense Support] pfSense 2.0 and SpamAssassin

On 10/13/2010 1:37 PM, James Bensley wrote: > Hi List, > > I would like to put Spam Assassin on a pfSense 2.0 box and I see that > here (http://www.pfsense.com/packages/pkg_config.xml) it is listed as > a package to install but doesn't show up in my package list on my 2.0 > box, is this the packag

Re: [pfSense Support] TinyDNS on 2.0beta4 ?

On 10/15/2010 2:52 PM, Adam Thompson wrote: > Chris/anyone, > Does the TinyDNS package work correctly under 2.0BETA4? Yes, we have one customer running it on 2.0 with around 15,000 records. Jim - To unsubscribe, e-mail: support-

Re: [pfSense Support] Enclosure recommendations for a Mini ITX Motherboard

On 10/16/2010 6:07 AM, Seth Mos wrote: > Hi, > > Op 16 okt 2010, om 03:49 heeft Mehma Sarja het volgende geschreven: >> This is getting interesting, someone on the list mentions that 2.5" drives >> are not reliable for 24x7x365 situations - so are you using a 3.5" drive? My >> setup is at home a

Re: [pfSense Support] ADSL2+ PCI Card (from LinITX.com) in a pfSense Box ?

On 10/19/2010 8:36 AM, Vincent Hoffman wrote: > On 19/10/2010 12:32, Paul Mansfield wrote: >> if I knew the equivalent of linux's "lspci" I could tell you what it is. > > For FreeBSD/pfsense try pciconf -lv > > for windows something like SIW (http://www.gtopala.com/) maybe? On Windows, I prefer

Re: [pfSense Support] OpenVPN multi-wan in 2.0 - local port re-use?

On 10/25/2010 4:15 AM, Ermal Luçi wrote: > On Mon, Oct 25, 2010 at 6:31 AM, Chris Buechler wrote: >> On Mon, Oct 25, 2010 at 12:00 AM, Adam Thompson wrote: >>> Using 2.0 from a few days ago… >>> >>> In the OpenVPN setup, I can (must) choose which interface each OpenVPN >>> server is listening on.

Re: [pfSense Support] OpenVPN multi-wan in 2.0 - local port re-use?

On 10/25/2010 7:54 AM, Jim Pingle wrote: > On 10/25/2010 4:15 AM, Ermal Luçi wrote: >> On Mon, Oct 25, 2010 at 6:31 AM, Chris Buechler wrote: >>> On Mon, Oct 25, 2010 at 12:00 AM, Adam Thompson wrote: >>>> Using 2.0 from a few days ago… >>>> >>&g

Re: [pfSense Support] carp with bridge

On 10/28/2010 12:25 PM, Gerald Waugh wrote: > We desire to add carp to our current pfsense firewall > Purchased a second server for the slave/secondary > > Currently bridging the WAN/Opt(Servers) interfaces on the master/primary > Using pfsense 1.2.3 > > Looking for howto links and any other info

Re: [pfSense Support] carp with bridge

On 10/28/2010 1:43 PM, David Burgess wrote: > On Thu, Oct 28, 2010 at 11:35 AM, Gerald Waugh > wrote: > >> We use bridging as the pfsense machine firewalls servers with public IP >> addresses. Clues on how to accomplish with routing appreciated. > > You have a public subnet from your ISP, 1.1.1.

Re: [pfSense Support] carp with bridge

On 10/28/2010 3:22 PM, Gerald Waugh wrote: > Appears to be ongoing expense to have to get another subnet from ISP. > We have a /24 now and the servers use this, > We use bridging to get them through the pfsense firewall, and works great. > Just looking for the redundancy carp provides. Yes, but th

Re: [pfSense Support] :: array('filter'=>array(0=>rule, 1=>rule)) conversion

On 11/8/2010 7:54 AM, Ozan UÇAR wrote: > I'm working on adding DansGuardian configuration in config.xml. In > order to achieve this, I need to be able to write some arrays I put > into $config to config.xml. I.e. > extensions => array('banned'=>array(), 'excluded'=>array()) etc. > [snip] > > I hav

Re: [pfSense Support] inconsistent handling of VPN remote endpoints

On 11/11/2010 8:48 AM, Vick Khera wrote: [snip] > I think it would be really nice if the VPN endpoints would all behave > like the fixed endpoint IPsec connections so I did not need to add > rules to the LAN filter to avoid the failover pool rule. Barring > that, it would be really handy to have o

Re: [pfSense Support] PPTP VPN question

On 12/9/2010 5:49 PM, David Miller wrote: > How does one configure routes across a VPN connection? > > IE, I have a pfsense 2.0beta box with external address 1.2.3.4 connected > to 10.2.1.0/24 on the inside. If the box gives out 172.30.40.50 as a > VPN ppp0 address, how do I tell the client to ro

Re: [pfSense Support] PPTP VPN question

On 12/9/2010 6:13 PM, David Miller wrote: > On 12/9/10 6:01 PM, Jim Pingle wrote: >> It's in the book. Page 291, section 14.10 PPTP Routing Tricks. > > Great reply and unbelievably quick too! Thanks Jim. > > 291/292 describe how to tell the pfsense box about routes t

Re: [pfSense Support] Disconnects

On 12/10/2010 8:30 AM, Nicolas Roussi wrote: > During the disconnects I still have access to the admin gui of pfSense from a > wireless client but nowhere else. The only entry in the system logs is some > ARP messages that state that some MAC address changed IP to some other value. > I was think

Re: [pfSense Support] Rc.conf

On 12/10/2010 9:27 AM, Chris Buechler wrote: > On Thu, Dec 9, 2010 at 11:36 PM, DHoc IT wrote: >> What's the equivalent of rc.conf file on pfSense? > > There isn't one. config.xml is essentially the equivalent, that's what > the startup scripts use. > >> I'm asked to provide proof >> of having t

Re: [pfSense Support] Disconnects

On 12/10/2010 10:06 AM, Nicolas Roussi wrote: > On Dec 10, 2010, at 8:39 AM, Jim Pingle wrote: > >> On 12/10/2010 8:30 AM, Nicolas Roussi wrote: >>> During the disconnects I still have access to the admin gui of pfSense from >>> a wireless client but nowhere else

Re: [pfSense Support] Man Pages

On 12/14/2010 4:26 AM, James Bensley wrote: > Just our of curiosity, why does pfSense have no man pages? To save hard drive space, download space, etc. The stock ones from FreeBSD can all be accessed on the web: http://www.freebsd.org/cgi/man.cgi Jim

Re: [pfSense Support] custom files in /var/etc/ gone after reboot

On 12/15/2010 11:45 AM, Scott Benson wrote: > Hello everyone, >We have multiple deployments of pfsense running for clients and > recently after one unexpected power failure the custom files we put in > /var/etc disappeared. Then last night we rebooted another pfsense box > and it did the same

Re: [pfSense Support] console menu closes when enter pressed

On 12/15/2010 12:27 PM, Moshe Katz wrote: > I noticed that if I just hit enter on the pfSense console without typing > an option first, it exits the console. If I am on ssh, it closes the > connection and if I am on the local terminal, where I have it set to > prompt for a password, it asks the pa

Re: [pfSense Support] custom files in /var/etc/ gone after reboot

On 12/15/2010 1:50 PM, Scott Benson wrote: > On 12/15/10 10:05 AM, Jim Pingle wrote: >> What some people do is put their files there in /conf/ and setup a >> shellcmd to copy them into place at boot time. >> > Where would you put this shellcmd to make it stay afte

Re: [pfSense Support] NAT Traversal for IPSec mobile clients??

On 12/22/2010 3:47 AM, Maik Heinelt wrote: > Since about 2 days, I try to get work the mobile client in pfSense 1.2.3. > > Now, I noticed, that pfSense 1.2.3RC1 is different to my current version > pfSense 1.2.3. > I miss the NAT Traversal setting for the mobile client. > Where is it in 1.2.3 ???

Re: [pfSense Support] Auto-update Check fails

On 12/23/2010 10:17 AM, Oliver Hansen wrote: > I needed to upgrade a few routers that were 1.2.2 to 1.2.3 this week and > I found the auto-update check failed with the following message: > > "Could not contact pfSense update server > http://updates.pfSense.com/_updaters."; > > > Am I the only on

Re: [pfSense Support] New Alias Rules

On 1/4/2011 11:21 AM, James Bensley wrote: > Hi List, > > If I make 3 alias' for some static port mappings so lets say I make, > -"port1" with the port #100 > -"port2" with the port #200 > -"port3" with the port #300 > > and then make another alias called "myports" with three ports defined > wher

Re: [pfSense Support] freeradius not installing

On 1/6/2011 8:18 AM, Shibashish wrote: > Freeradius not installing, can anyone please fix this? > > Downloading package configuration file... done. > Saving updated package information... done. > Downloading freeradius and its dependencies... done. > Checking for successful package installation...

Re: [pfSense Support] freeradius not installing

[Please don't top post] On 1/6/2011 8:46 AM, Shibashish wrote: > On Thu, Jan 6, 2011 at 6:52 PM, Jim Pingle <mailto:li...@pingle.org>> wrote: > > On 1/6/2011 8:18 AM, Shibashish wrote: > > Freeradius not installing, can anyone please fix this? >

Re: [pfSense Support] Import shared key from XML

On 1/12/2011 5:48 AM, bsd wrote: > Hello, > > I am trying to import a Shared Key from a previous XML file, It looks like > the key found in the XML file can not be directly copy / pasted in the shared > key box. > > Do you know what I have to "cut out" to make It work ? > > The key looks si

Re: [pfSense Support] Import shared key from XML

[please don't top post] On 1/12/2011 10:13 AM, bsd wrote: > Le 12 janv. 2011 à 13:53, Jim Pingle a écrit : > >> On 1/12/2011 5:48 AM, bsd wrote: >>> Hello, >>> >>> I am trying to import a Shared Key from a previous XML file, It looks like >>&

Re: [pfSense Support] pfSense Beta 5 - upgrade/reboot issue

On 1/12/2011 2:11 PM, Dimitri Rodis wrote: > The last 3-4 upgrades that I’ve done using nano are not automatically > rebooting after the upgrade is complete, even though it says it is on > the console (and last night I left it to see if it eventually would, and > it did not and I logged in this mor

Re: [pfSense Support] Not able to add virtual carp ip on different subnet

On 1/13/2011 5:29 AM, Shibashish wrote: > My WAN ip is xx.xx.87.44 > > I am trying to add a Virtual IP CARP as xx.xx.93.193, but i am not able to. > > Sorry, we could not locate an interface with a matching subnet for > xx.xx.93.193/27. Please add an ip in this subnet on a real interface. > > I

Re: [pfSense Support] Not able to add virtual carp ip on different subnet

On 1/13/2011 8:15 AM, Shibashish wrote: [please don't top post] > On Thu, Jan 13, 2011 at 6:38 PM, Jim Pingle <mailto:li...@pingle.org>> wrote: > > On 1/13/2011 5:29 AM, Shibashish wrote: > > My WAN ip is xx.xx.87.44 > > > > I am trying

Re: [pfSense Support] autorollback?

On 1/13/2011 3:26 PM, Francois-Alexandre St-Onge Aubut wrote: > > dont apply changes? > > On 11-01-13 03:11 PM, Charles N Wyble wrote: > Does pfsense have a feature like cisco/juniper where if you don't > confirm the change it rolls it back? > > How difficult would something like this be to impl

Re: [pfSense Support] 2.0 B5 Update Breaks Web GUI - 08-Jan-2011 15:37

On 1/14/2011 1:40 PM, Mark Street wrote: [please don't top post] > OK, the broken webgui "feature" is getting a bit old... After three more > snapshot firmware updates from the command line the Webgui is still not > functional... I took a look in the webgui error logs and they are empty.. > re

Re: [pfSense Support] How to build a Developer ISO

On 1/30/2011 11:29 PM, Mark Jones wrote: > Well, I'm pretty close to admitting defeat. I've followed the guidance given > @ > > http://devwiki.pfsense.org/DevelopersBootStrapAndDevIso > > I've used FreeBSD 8, 7.2 and 7.1, and in all cases am unable to build a > developer ISO. I've built portm

Re: [pfSense Support] Can't build Regular ISO either

On 2/1/2011 7:48 AM, Mark Jones wrote: > Since I learned yesterday that the dev ISO is no longer used, I tried to > build a regular ISO and the output of doing that is below. I’m trying > to build 1.2.3 on 7.2 because this is going into a production > environment and based on what I see 2.0 is sti

Re: [pfSense Support] Can anyone build a 1.2.3 ISO?

On 2/2/2011 9:01 AM, Mark Jones wrote: > I’ve now tried it everywhere > 7.1 > 7.2 > 8.1 1.2.3 will only build on 7.2 (and maybe 7.3, there were some patches out there for that) > It seems impossible to build a dev ISO (no longer supported, thanks for > the info) nor a regular ISO That may be the

Re: [pfSense Support] Can anyone build a 1.2.3 ISO?

On 2/2/2011 11:35 AM, Mark Jones wrote: > The Beta label on 2.0 is holding us back. (Also, last night I tried building > 2.0 on 8.1 and it failed, but I don't even see any errors, nor do I know > where they are squirreled away.) We are running on 7.2 with 1.2.3 and it > works. What we are try

Re: [pfSense Support] install pfsense from usb stick

On 2/12/2011 5:43 PM, Hans Maes wrote: [snip] > I'm sure this would be a very useful entry in the pfsense online > documentation as well, since I found quite a lot of people online asking > the same question but never found a working procedure. No need to make one yourself. 2.0 includes them alrea

Re: [pfSense Support] Master Backup not in sync - VIP proxy ARP

On 2/24/2011 9:49 AM, Shibashish wrote: > I have 2 pfSense box with Carp sync and failover configured. I have 2 > Virtual IPs of the type Proxy ARP on the Master FW which do not get sync > to the Backup FW. Is this a feature or a bug? Do i have to add the vip > manually to backup fw server ? > > A

Re: [pfSense Support] Intel Gigabit - em0: Watchdog Timeout

On 3/4/2011 9:59 AM, Moshe Katz wrote: > I currently have two pfSense boxes with Intel Gigabit cards. The first > is a Dell Optiplex gx270 (Pentium 4, 512mb RAM). It has one built-in > Intel Gigabit port and two dual-port PCI cards. This gives me em0 - > em4. As far as I can tell, this box is w

Re: [pfSense Support] Re: Intel Gigabit - em0: Watchdog Timeout

[please don't top post] On 3/4/2011 10:38 AM, Moshe Katz wrote: > On Friday, March 4, 2011, Jim Pingle wrote: >> >> Is this on a 2.0 snapshot? If so, what date? >> >> Since the switch to the Yandex Intel drivers a couple days ago my VMs >> all constantly

Re: [pfSense Support] Re: Intel Gigabit - em0: Watchdog Timeout

On 3/4/2011 11:15 AM, Moshe Katz wrote: > Does em0 seem to work OK for you otherwise? Just log/console spam? > > I just noticed that it doesn't just make the console useless, it also > spams the system log, filling that up as well. > > If it operates OK but just has annoying logs,

Re: [pfSense Support] OpenVPN issues

On 3/8/2011 3:02 PM, k_o_l wrote: > I had working OpenVPN with pfsense 1.2.3, however with 2.0-RC1 the > server is handing the wrong mask and no gateway to the clients, I have > tried the wizard and changing different subnets, no matter what the > server is handing out /30 instead of /32. Firewalls

Re: [pfSense Support] OpenVPN issues

On 3/8/2011 5:21 PM, k_o_l wrote: >> From: Jim Pingle [mailto:li...@pingle.org] >> On 3/8/2011 3:02 PM, k_o_l wrote: >>> I had working OpenVPN with pfsense 1.2.3, however with 2.0-RC1 the >>> server is handing the wrong mask and no gateway to the clients, I have >

Re: [pfSense Support] OpenVPN issues

On 3/8/2011 5:38 PM, k_o_l wrote: > Just under address pool I had 10.168.2.0/24, I'm fine with not getting /24 > with the new setup, as long as I can communicate client-to-client and of > course resolve the issue with the quad zero gateway That's fine, it will take /30's out of that /24 - that's

Re: [pfSense Support] fail update package on pfsense 1.2.3

On 3/13/2011 5:14 PM, Joseph Rotan wrote: > Hi, > > i've been trying to run this command pkg_add -r samba3 on my pfsense > 1.2.3 but keep on getting the following error: > > Error:FTP Unable to get > ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-7.2-release/Latest/samba3.tbz > : File un

Re: [pfSense Support] XML Api to create NAT and Rules ?

On 3/14/2011 7:17 AM, Xavier Beaudouin wrote: > Hello, > > I dunno if I am wrong or not, but I have a vague memory about PFSense that we > can add / removes rules using XML-RPC or something like this. > > Unfortunatly I cannot find any API and description somewhere on pfsense > sites? > > Any

Re: [pfSense Support] XML Api to create NAT and Rules ?

On 3/14/2011 9:23 AM, Xavier Beaudouin wrote: >> On 3/14/2011 7:17 AM, Xavier Beaudouin wrote: >>> Hello, >>> >>> I dunno if I am wrong or not, but I have a vague memory about PFSense that >>> we can add / removes rules using XML-RPC or something like this. >>> >>> Unfortunatly I cannot find any A

Re: [pfSense Support] Difference between IP Alias and Other for VIPs

On 3/17/2011 8:29 AM, bsd wrote: > I wanted to know what was the difference between IP Alias and Other in VIPs ? > What does IP Alias do technically speaking ? > > It is not very clear to me. IP Alias is just that, an IP Alias in FreeBSD. It is an actual additional IP address defined directly

Re: [pfSense Support] Problem with pfSense and curl

On 3/20/2011 5:01 PM, Jostein Elvaker Haande wrote: > On 20 March 2011 21:50, Seth Mos wrote: >> I use curl from within PHP with cookies and can succesfully login to the ui >> with that. You need something that keeps state and cookies won't do. > > Now this might be a lack of knowledge from my s

Re: [pfSense Support] utilization question

On 3/30/2011 9:13 PM, k_o_l wrote: > I have been running 2.0-RC1 for the three weeks now, and I've noticed that > early this week the number of processes jumped from 44 to 119 without any > changes to the system, even after a reboot they stayed high. What could be > the reason for the number of pro

Re: [pfSense Support] squid+squidguard problem

On 3/30/2011 10:02 PM, Volkan VURAL wrote: > Squid+squidguard randomly stop filtering and pass all traffic. (pfsense > 1.2.3, squid 2.7.9_4, squidGuard 1.4_3 pkg v.1.9) ... > But another my pfsense system (pfsense 1.2.3, squid 2.7.9_4, squidGuard > 1.3_1 pkg v.1.9) working good. > > When i add new

Re: [pfSense Support] packagelock stuck after upgrade in 2.0rc1

On 4/6/2011 8:45 AM, Joseph L. Casale wrote: > Did a quick look through redmine and didn’t see anything, anyone know > > what triggers the packagelock variable as it seems to be stuck causing the > > dash to trigger the warning permantly? That can happen if a package you had installed failed to

Re: [pfSense Support] Incorrect Sort on 2.0-RC1

On 4/11/2011 1:59 PM, Dimitri Rodis wrote: > *2.0-RC1 *(i386) > built on Mon Mar 14 17:33:11 EDT 2011 > > > > Log sorting is set to newest first, however, the log sort is “randomly > incorrect” (see screen snippet). I didn’t see anything in redmine, > thought I would check here first.. The log

Re: [pfSense Support] 2.0-RC1 installation problem

On 4/28/2011 1:45 PM, Lupel wrote: > I'm trying to install the pfsense-2.0-RC1 cd iso for amd64 on a Dell > PowerEdge R210 and installation hangs right after the ncurses interface > starts at "waiting for backend" message. > The image I've downloaded is pfSense-2.0-RC1-amd64-20110226-1807.iso > Doe

Re: [pfSense Support] 802.11n AP success?

On 5/6/2011 2:42 AM, Josh Karli wrote: > On 5/5/2011 5:39 PM, Yehuda Katz wrote: >> On Thu, May 5, 2011 at 4:58 PM, Josh Karli > > wrote: >> >> Has anyone had any success in setting up a wireless N AP? >> According to the 2.0-RC1 record of tests on wireless car

Re: [pfSense Support] wrong default gateway set on reboot

On 5/13/2011 2:38 PM, John Sellens wrote: > Anyone seen anything similar, or is this a known issue, or is it > fixed in a more recent build? Check the system log and Status > Gateways, was the primary gateway marked as being down? The default will switch to a secondary gateway if the primary has

Re: [pfSense Support] wrong default gateway set on reboot

On 5/13/2011 4:06 PM, John Sellens wrote: > | > Anyone seen anything similar, or is this a known issue, or is it > | > fixed in a more recent build? > | > | Check the system log and Status > Gateways, was the primary gateway > | marked as being down? > | > | The default will switch to a secondary

Re: [pfSense Support] NAT Reflection Broken in recent builds

On 5/23/2011 4:41 AM, Dimitri Rodis wrote: > nc: getaddrinfo: hostname nor servname provided, or not known What does your /var/etc/inetd.conf file look like on the working system and the broken system? > So yesterday I went ahead and told the thing to just upgrade to the > latest build hoping tha

Re: [pfSense Support] user interface issue when managing certificates

On 6/3/2011 5:22 AM, mayak-cq wrote: [snip] > i then looked at the url, and it had not changed after deleting the > correct cert -- the desired result (i believe) would be to re-write the > url (removing the delete action) after each delete -- this would require > an admin to click the delete butto

Re: [pfSense Support] allow/deny users by MAC address?

On 6/6/2011 9:30 AM, Luke Jaeger wrote: > I run a school network where students and teachers sometimes bring in > personal laptops. > > Is there a way to filter these by MAC address so that teachers get > access to certain resources (such as printing) and students don't? > Or do I have to set up a

Re: [pfSense Support] muting openvpn management log entries

On 6/10/2011 7:45 AM, mayak-cq wrote: > my openvpn log is full of: > > Jun 10 13:41:51 openvpn[26867]: MANAGEMENT: Client disconnected > Jun 10 13:41:51 openvpn[26867]: MANAGEMENT: CMD 'quit' > Jun 10 13:41:50 openvpn[26867]: MANAGEMENT: CMD 'status 2' > Jun 10 13:41:50 openvpn[26867]: MANAGEMENT:

Re: [pfSense Support] Incorrect System Log Order/Logging Bug?

On 7/9/2011 9:17 PM, Dimitri Rodis wrote: > The system is and has been set to -8 (I am Pacific Daylight Time, USA), and > hasn't been re/booted since the first boot on that build--and I have reported > this issue back in RC1 and it still appears to be an issue. It almost looks > as if the check_

Re: [pfSense Support] pfSense change logging

On 7/29/2011 11:41 AM, Scott Benson wrote: > Is there a way to see who(based on IP) made a change to the webgui > causing a new /cf/conf/backup/ to be created? is it something in that > file, or logged anywhere? > On current 2.0 snapshots it logs the username and IP that caused a change, and tha

Re: [pfSense Support] pfSense change logging

On 7/29/2011 1:10 PM, Scott Benson wrote: > Is there a way to hack it into 1.2.3? > Probably, not sure it's worth the time it would take to do it at this stage. 2.0 is practically out the door, it's time to stop holding onto 1.2.3 :-) ---

Re: [pfSense Support] pfSense change logging

On 7/29/2011 1:40 PM, Scott Benson wrote: > well then. with that being said, upgrades from 1.2.3 and 1.2.3 embedded > to 2.0 are seemless? > Should be. You can install the pre-upgrade check package to ensure your config doesn't have any data in it that would cause issues. http://doc.pfsense.org/

Re: [pfSense Support] Kingston SSD filesystem corruption

On 8/9/2011 11:33 AM, Jeppe Øland wrote: > About a year ago, I switched to running the full pfSense 2.0 (beta > something at the time) on a Kingston SS100S2/8G embedded SSD. > > Since then, every 3 months or so I noticed (in connection with > installing a new release) that the filesystem was corru

Re: [pfSense Support] policy routing issue : stumped : more

On 8/15/2011 5:11 AM, mayak-cq wrote: > On Sat, 2011-08-13 at 11:34 +0200, mayak-cq wrote: >> hi chris >> >> On Fri, 2011-08-12 at 17:00 -0400, Chris Buechler wrote: > > > >>> It does not, policy routing rules override the system routing table. >> i just tried booting pfsense as a live cd, ente

Re: [pfSense Support] PPTP Broken in latest AMD 2.0 Snapshots

On 8/17/2011 5:01 PM, Adam Thompson wrote: >> From: Chris Buechler [mailto:cbuech...@gmail.com] >> Subject: Re: [pfSense Support] PPTP Broken in latest AMD 2.0 >> Snapshots >> >> On Wed, Aug 17, 2011 at 3:38 PM, Adam Piasecki >> wrote: >>> Same config works with i386, does not work with AMD.. >>>

Re: [pfSense Support] PPTP Broken in latest AMD 2.0 Snapshots

On 8/17/2011 5:13 PM, Adam Thompson wrote: >> Read the ticket, and the response again. :-) >> >> We tried fixing that, and it broke PPPoE. The fix had to be backed >> out, so now PPTP is broken again but PPPoE works. >> >> Jim > > I've re-read the ticket and the email and I still don't see how I w

Re: [pfSense Support] transparent proxy not working as expected.

On 8/17/2011 4:32 PM, greg whynott wrote: > Hi, > > I just installed a fresh copy of 2.0-RC3 for a client to segergate the > vm sandbox enviroment. We are not using NAT, rather just routing. > My intention was to configure some basic fw rules afterwards. > > During the setup, I turned off

Re: [pfSense Support] IPSec crl

On 8/17/2011 4:56 PM, Fuchs, Martin wrote: > Hi, > Does the IPSec config make use of crl's defined in the certified-Manager ? > I cannot See any references To used crl in the cert-Manager when a crl is d= > efined there, neither can i Chose a crl in the IPSec-config.=20 > This is a Security-Risk i

Re: [pfSense Support] enc0 not routing traffic

On 8/18/2011 10:29 AM, Fabien Bagard wrote: [...] > From the network beyond the PFSense, I can't ping machines beyond the > IPCop. [...] > What gives me trouble is : > * IPCop side, I have an ipsec interface, with an IP address and route > to the other side of the IPSec tunnel > * PFSense side

Re: [pfSense Support] Happy Birthday Chris

Happy Birthday! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org

Re: [pfSense Support] enc0 not routing traffic

On 8/18/2011 11:24 AM, Fabien Bagard wrote: > On 08/18/2011 04:33 PM, Jim Pingle wrote: >> On 8/18/2011 10:29 AM, Fabien Bagard wrote: >> [...] >>> From the network beyond the PFSense, I can't ping machines beyond the >>> IPCop. >> [...] >>> W

Re: [pfSense Support] Success Story

On 8/30/2011 8:21 PM, Nathan Eisenberg wrote: > It seems like there are always questions and/or complaints on this list, so I > just wanted to share a success story. > > We just returned (this weekend) from running the PC gaming network at Penny > Arcade eXpo's west coast event. This is a rather

Re: [pfSense Support] packets passed and logged in UI

On 8/31/2011 5:17 AM, Mario Ciccarelli wrote: > is there any reason why this type of packets are logged in interface gui even > if they are passed by firewall ? > > they are all ftp connection and via UI this is the void message: "The rule > that triggered this action is:" and nothing is display

Re: [pfSense Support] packets passed and logged in UI

On 8/31/2011 12:18 PM, Mario Ciccarelli wrote: > Il giorno 31/ago/2011, alle ore 14:06, Jim Pingle ha scritto: >> That is normal on 1.2.3. The FTP proxy logs the connections it passes to >> data ports accessed for FTP transfers. > thanks for help, but is there any chance to avo

Re: [pfSense Support] Static ARP

On 9/1/2011 4:19 PM, Ivanildo Galvão - IT Services wrote: > What does this function in pfSense DHCP? The ARP command, and ifconfig. Static ARP entries are added using the arp command and the info provided in the GUI, and then the interface is configured to be "staticarp". It's all handled by the

Re: RES: [pfSense Support] Static ARP

[Please don't top post] On 9/1/2011 5:01 PM, Ivanildo Galvão - IT Services wrote: > I have a client who was using Linux as a proxy server it had this one LAN > interface and a WAN, LAN NIC in the virtual one he had, as follows: eth0: 1, > eth0: 2, eth0: 3, so he had: > > Eth0: 1 - 192.168.0.0/24

Re: RES: [pfSense Support] Static ARP

On 9/2/2011 7:46 AM, Ivanildo Galvão - IT Services wrote: > a) The previous configuration was made by a former business consultant here, > the guy made the business work well, is round, but no VLAN is vulnerable, he > may have done this way just to give a customer satisfaction that have > hither

Re: RES: RES: [pfSense Support] Static ARP

On 9/2/2011 8:09 AM, Ivanildo Galvão - IT Services wrote: > Please excuse my ignorance, but can you give me examples of the risks posed > by this scenario? It serves as a basis to explain to the client that even in > the previous solution with Linux, the setting was already correct. I just said

Re: [pfSense Support] Routing/NAT issue

On 9/2/2011 11:17 AM, Giacomo Di Ciocco wrote: > Hello everyone, > please consider this scenario: http://www.deffie.it/garbage/theproblem.png > > Servers are reaching the internet from their public IP in the /26 and > they have PFSense /26 IP as their default route, this is ok. > > Users from LAN

<    1   2