AW: [pfSense Support] 050.2 CARP won't go Master or Backup
I have a working carp config at home. Have failed over several times the last days, with 0.85.2 and 0.85.4 no session was dropped (I even was tunnelling from a client behind the carpmachines to the office). DNS and DHCP is configured for failover as well. I haven't seen any issues so far. Anybody else seeing having problems? Strange. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 11:47 An: support@pfsense.com Betreff: RE: [pfSense Support] 050.2 CARP won't go Master or Backup HI Yes .. 085.2 .. 085.4 does the same too. Enable / disable does not work ... goes to init always. 0.85 worked.. did an upgrade to 085.2 it stopped working. I deleted all carp entries and re-setup from scratch. I will try update_file.sh and let you know results. Tx Ivan -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 10:55 AM To: support@pfsense.com Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup 0.50.2? I guess you are talking about 0.85.2, if not upgrade! ;-) I only have experienced such problems if the carpinterfaces didn't match the real ip/subnet-range of the real interface the carp interface is running on. Another thing to try is to manually disable and enable CARP at StatusCARP(failover) in the webgui. If it's working after that there might be a problem bringing up everything in the right order. There also have been some changes to CARP lately. You might want to run update_file.sh -all from the shell to grab the latest changes. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Montag, 26. September 2005 09:34 An: support@pfsense.com Betreff: [pfSense Support] 050.2 CARP won't go Master or Backup HI I have Carp running successfully on 0.50. Upgraded yesterday to 050.2 and CARP absolutely refuses to start. OPT1 is up. PPPoE is UP. CARP goes to INIT and does not ever go master or backup. I deleted all CARP configs and recreated everything from scratch. On both boxes CARP will not start. Hitting Disable / enable makes it go from disable to INIT.. but never starts. Even tried doing everything with the second box physically turned off. No difference. Any ideas? Tx Ivan. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Interesting failure
At 11:56 PM 9/26/2005, you wrote: This file was introduced after 0.85.2. Are you sure you didn't update filter.inc ? i probably did. i think i was trying to pick up a bugfix. probably not a good idea. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 050.2 CARP won't go Master or Backup
I am just curious why you failed over twice.. Why did your primary go down? Todd - Original Message - From: Holger Bauer [EMAIL PROTECTED] To: support@pfsense.com Sent: Tuesday, September 27, 2005 6:41 AM Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup I have a working carp config at home. Have failed over several times the last days, with 0.85.2 and 0.85.4 no session was dropped (I even was tunnelling from a client behind the carpmachines to the office). DNS and DHCP is configured for failover as well. I haven't seen any issues so far. Anybody else seeing having problems? Strange. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 11:47 An: support@pfsense.com Betreff: RE: [pfSense Support] 050.2 CARP won't go Master or Backup HI Yes .. 085.2 .. 085.4 does the same too. Enable / disable does not work ... goes to init always. 0.85 worked.. did an upgrade to 085.2 it stopped working. I deleted all carp entries and re-setup from scratch. I will try update_file.sh and let you know results. Tx Ivan -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 10:55 AM To: support@pfsense.com Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup 0.50.2? I guess you are talking about 0.85.2, if not upgrade! ;-) I only have experienced such problems if the carpinterfaces didn't match the real ip/subnet-range of the real interface the carp interface is running on. Another thing to try is to manually disable and enable CARP at StatusCARP(failover) in the webgui. If it's working after that there might be a problem bringing up everything in the right order. There also have been some changes to CARP lately. You might want to run update_file.sh -all from the shell to grab the latest changes. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Montag, 26. September 2005 09:34 An: support@pfsense.com Betreff: [pfSense Support] 050.2 CARP won't go Master or Backup HI I have Carp running successfully on 0.50. Upgraded yesterday to 050.2 and CARP absolutely refuses to start. OPT1 is up. PPPoE is UP. CARP goes to INIT and does not ever go master or backup. I deleted all CARP configs and recreated everything from scratch. On both boxes CARP will not start. Hitting Disable / enable makes it go from disable to INIT.. but never starts. Even tried doing everything with the second box physically turned off. No difference. Any ideas? Tx Ivan. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Interesting failure
Probably not when certain people split a dozen or so functions out into their own file :) 0.85.4 has all the latest fixes. At this time, there isn't much patched post 0.85.4 (unless you try running ipv6 tunneling :)), I'd recommend moving to it. --Bill On 9/27/05, Dan Swartzendruber [EMAIL PROTECTED] wrote: At 11:56 PM 9/26/2005, you wrote: This file was introduced after 0.85.2. Are you sure you didn't update filter.inc ? i probably did. i think i was trying to pick up a bugfix. probably not a good idea. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Interesting failure
At 09:28 AM 9/27/2005, you wrote: Probably not when certain people split a dozen or so functions out into their own file :) 0.85.4 has all the latest fixes. At this time, there isn't much patched post 0.85.4 (unless you try running ipv6 tunneling :)), I'd recommend moving to it. already did, thanks! after the fresh reinstall, i upgraded to 0.85.4. my foot feels much better now that the gunshot wound is healing :) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 050.2 CARP won't go Master or Backup
Only problems I've had with carp recently weren't actually due to carp, but the dhcp daemon. There's a hold down timer somewhere that won't let it come up as primary for 300 or 360 seconds (my bet is there two different timeouts, a 60 second timeout and a 300 second one). So if you're running a highly available DHCP server on your pfSense box, keep this in mind - don't reboot both within about 10 minutes of each other for now. --Bill On 9/27/05, Holger Bauer [EMAIL PROTECTED] wrote: I have a working carp config at home. Have failed over several times the last days, with 0.85.2 and 0.85.4 no session was dropped (I even was tunnelling from a client behind the carpmachines to the office). DNS and DHCP is configured for failover as well. I haven't seen any issues so far. Anybody else seeing having problems? Strange. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 11:47 An: support@pfsense.com Betreff: RE: [pfSense Support] 050.2 CARP won't go Master or Backup HI Yes .. 085.2 .. 085.4 does the same too. Enable / disable does not work ... goes to init always. 0.85 worked.. did an upgrade to 085.2 it stopped working. I deleted all carp entries and re-setup from scratch. I will try update_file.sh and let you know results. Tx Ivan -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 10:55 AM To: support@pfsense.com Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup 0.50.2? I guess you are talking about 0.85.2, if not upgrade! ;-) I only have experienced such problems if the carpinterfaces didn't match the real ip/subnet-range of the real interface the carp interface is running on. Another thing to try is to manually disable and enable CARP at StatusCARP(failover) in the webgui. If it's working after that there might be a problem bringing up everything in the right order. There also have been some changes to CARP lately. You might want to run update_file.sh -all from the shell to grab the latest changes. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Montag, 26. September 2005 09:34 An: support@pfsense.com Betreff: [pfSense Support] 050.2 CARP won't go Master or Backup HI I have Carp running successfully on 0.50. Upgraded yesterday to 050.2 and CARP absolutely refuses to start. OPT1 is up. PPPoE is UP. CARP goes to INIT and does not ever go master or backup. I deleted all CARP configs and recreated everything from scratch. On both boxes CARP will not start. Hitting Disable / enable makes it go from disable to INIT.. but never starts. Even tried doing everything with the second box physically turned off. No difference. Any ideas? Tx Ivan. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 050.2 CARP won't go Master or Backup
Ivan, aren't you running carp with PPPoE? If so, this will not work correctly. Scott On 9/27/05, Bill Marquette [EMAIL PROTECTED] wrote: Only problems I've had with carp recently weren't actually due to carp, but the dhcp daemon. There's a hold down timer somewhere that won't let it come up as primary for 300 or 360 seconds (my bet is there two different timeouts, a 60 second timeout and a 300 second one). So if you're running a highly available DHCP server on your pfSense box, keep this in mind - don't reboot both within about 10 minutes of each other for now. --Bill On 9/27/05, Holger Bauer [EMAIL PROTECTED] wrote: I have a working carp config at home. Have failed over several times the last days, with 0.85.2 and 0.85.4 no session was dropped (I even was tunnelling from a client behind the carpmachines to the office). DNS and DHCP is configured for failover as well. I haven't seen any issues so far. Anybody else seeing having problems? Strange. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 11:47 An: support@pfsense.com Betreff: RE: [pfSense Support] 050.2 CARP won't go Master or Backup HI Yes .. 085.2 .. 085.4 does the same too. Enable / disable does not work ... goes to init always. 0.85 worked.. did an upgrade to 085.2 it stopped working. I deleted all carp entries and re-setup from scratch. I will try update_file.sh and let you know results. Tx Ivan -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 10:55 AM To: support@pfsense.com Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup 0.50.2? I guess you are talking about 0.85.2, if not upgrade! ;-) I only have experienced such problems if the carpinterfaces didn't match the real ip/subnet-range of the real interface the carp interface is running on. Another thing to try is to manually disable and enable CARP at StatusCARP(failover) in the webgui. If it's working after that there might be a problem bringing up everything in the right order. There also have been some changes to CARP lately. You might want to run update_file.sh -all from the shell to grab the latest changes. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Montag, 26. September 2005 09:34 An: support@pfsense.com Betreff: [pfSense Support] 050.2 CARP won't go Master or Backup HI I have Carp running successfully on 0.50. Upgraded yesterday to 050.2 and CARP absolutely refuses to start. OPT1 is up. PPPoE is UP. CARP goes to INIT and does not ever go master or backup. I deleted all CARP configs and recreated everything from scratch. On both boxes CARP will not start. Hitting Disable / enable makes it go from disable to INIT.. but never starts. Even tried doing everything with the second box physically turned off. No difference. Any ideas? Tx Ivan. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Pfsense Problems/Issues with WAN
Just wanted to update you guys on my situation looks like 0.85.4 may have fixed my problem, been running successfully for about an hour now, will post additional updates later, thanks for the headsup!! -Jaimie -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 11:27 PM To: support@pfsense.com Subject: Re: [pfSense Support] Pfsense Problems/Issues with WAN Yes, thats the current Full Update version. Scott On 9/27/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Awesome man thanks for the update, what is the most recent 0.85.4? -Jaimie Quoting Scott Ullrich [EMAIL PROTECTED]: This was fixed after 0.84. Please upgrade to the latest version. Scott On 9/26/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Dear Team, I currently am having miscellaneous issues with your software which did not occur until just recently. I believe my NIC died, and so I lost connection with my ISP via my WAN. I replaced my cable modem since I thought itwas this, which is fine, but I also replaced the NIC, and now it keeps losing the IP address, it'll hold it for a while, but then it loses it. I know its not my cable modem as I have gone back to my old router :( I miss your stellar product more than you'll ever know. I tried this with both 0.70 and 0.84 and the same problems persists, do you have any other suggestions? I'm also gonna try putting the NIC in a different PCI slot. Maybe 0.85.2 will fix this I saw it was on the mirrors. Thanks, Jaimie O'Neill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Pfsense Problems/Issues with WAN
OK, now it appears to still be dropping my connection but in interfaces it still shows I have an IP address in the WAN, but if I do release, then renew it works for about 5mintues. -Jaimie -Original Message- From: Jaimie E. O'Neill [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 11:11 AM To: support@pfsense.com Subject: RE: [pfSense Support] Pfsense Problems/Issues with WAN Just wanted to update you guys on my situation looks like 0.85.4 may have fixed my problem, been running successfully for about an hour now, will post additional updates later, thanks for the headsup!! -Jaimie -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 11:27 PM To: support@pfsense.com Subject: Re: [pfSense Support] Pfsense Problems/Issues with WAN Yes, thats the current Full Update version. Scott On 9/27/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Awesome man thanks for the update, what is the most recent 0.85.4? -Jaimie Quoting Scott Ullrich [EMAIL PROTECTED]: This was fixed after 0.84. Please upgrade to the latest version. Scott On 9/26/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Dear Team, I currently am having miscellaneous issues with your software which did not occur until just recently. I believe my NIC died, and so I lost connection with my ISP via my WAN. I replaced my cable modem since I thought itwas this, which is fine, but I also replaced the NIC, and now it keeps losing the IP address, it'll hold it for a while, but then it loses it. I know its not my cable modem as I have gone back to my old router :( I miss your stellar product more than you'll ever know. I tried this with both 0.70 and 0.84 and the same problems persists, do you have any other suggestions? I'm also gonna try putting the NIC in a different PCI slot. Maybe 0.85.2 will fix this I saw it was on the mirrors. Thanks, Jaimie O'Neill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] 050.2 CARP won't go Master or Backup
HI PPPoe is on WAN .. CARP is on LAN with carp sync on OPT1. OK so you guys are going to laugh at me. I do feel stupid. As a fault finding procedure and just to get connectivity back I halted router2, which is UTP crossed over connected to router 1 on OPT1. So OPT1 (carp sync) is down. (no link since you need both nic up to have link). CARP will NOT come up without link on OPT1. My suggestion in terms of best practice is to have a switch on OPT(sync) when using CARP. It has wasted a lot of my time and it IS my fault cause I was cheap just using cross over cable. Tx all .. PS .. what does the update_files.sh thing do? Ivan. -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 4:48 PM To: support@pfsense.com Subject: Re: [pfSense Support] 050.2 CARP won't go Master or Backup Ivan, aren't you running carp with PPPoE? If so, this will not work correctly. Scott On 9/27/05, Bill Marquette [EMAIL PROTECTED] wrote: Only problems I've had with carp recently weren't actually due to carp, but the dhcp daemon. There's a hold down timer somewhere that won't let it come up as primary for 300 or 360 seconds (my bet is there two different timeouts, a 60 second timeout and a 300 second one). So if you're running a highly available DHCP server on your pfSense box, keep this in mind - don't reboot both within about 10 minutes of each other for now. --Bill On 9/27/05, Holger Bauer [EMAIL PROTECTED] wrote: I have a working carp config at home. Have failed over several times the last days, with 0.85.2 and 0.85.4 no session was dropped (I even was tunnelling from a client behind the carpmachines to the office). DNS and DHCP is configured for failover as well. I haven't seen any issues so far. Anybody else seeing having problems? Strange. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 11:47 An: support@pfsense.com Betreff: RE: [pfSense Support] 050.2 CARP won't go Master or Backup HI Yes .. 085.2 .. 085.4 does the same too. Enable / disable does not work ... goes to init always. 0.85 worked.. did an upgrade to 085.2 it stopped working. I deleted all carp entries and re-setup from scratch. I will try update_file.sh and let you know results. Tx Ivan -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Monday, September 26, 2005 10:55 AM To: support@pfsense.com Subject: AW: [pfSense Support] 050.2 CARP won't go Master or Backup 0.50.2? I guess you are talking about 0.85.2, if not upgrade! ;-) I only have experienced such problems if the carpinterfaces didn't match the real ip/subnet-range of the real interface the carp interface is running on. Another thing to try is to manually disable and enable CARP at StatusCARP(failover) in the webgui. If it's working after that there might be a problem bringing up everything in the right order. There also have been some changes to CARP lately. You might want to run update_file.sh -all from the shell to grab the latest changes. Holger -Ursprüngliche Nachricht- Von: Frimmel, Ivan (ISS South Africa) [mailto:[EMAIL PROTECTED] Gesendet: Montag, 26. September 2005 09:34 An: support@pfsense.com Betreff: [pfSense Support] 050.2 CARP won't go Master or Backup HI I have Carp running successfully on 0.50. Upgraded yesterday to 050.2 and CARP absolutely refuses to start. OPT1 is up. PPPoE is UP. CARP goes to INIT and does not ever go master or backup. I deleted all CARP configs and recreated everything from scratch. On both boxes CARP will not start. Hitting Disable / enable makes it go from disable to INIT.. but never starts. Even tried doing everything with the second box physically turned off. No difference. Any ideas? Tx Ivan. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 050.2 CARP won't go Master or Backup
On 9/27/05, Frimmel, Ivan (ISS South Africa) [EMAIL PROTECTED] wrote: PS .. what does the update_files.sh thing do? It's a script that pulls down the latest version of a file. It can also be passed the -all flag to update all known files. It's basically a upgrade mechanism for a single file to help the developers help you :) Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 050.2 CARP won't go Master or Backup
On 9/27/05, Frimmel, Ivan (ISS South Africa) [EMAIL PROTECTED] wrote: HI PPPoe is on WAN .. CARP is on LAN with carp sync on OPT1. OK so you guys are going to laugh at me. I do feel stupid. As a fault finding procedure and just to get connectivity back I halted router2, which is UTP crossed over connected to router 1 on OPT1. So OPT1 (carp sync) is down. (no link since you need both nic up to have link). CARP will NOT come up without link on OPT1. My suggestion in terms of best practice is to have a switch on OPT(sync) when using CARP. It has wasted a lot of my time and it IS my fault cause I was cheap just using cross over cable. Tx all .. Hrm...I'll have to test this out at home :-/ At work everything is always plugged into a switch (the machines are miles apart), but at home I'm using a crossover cable for the dedicated sync network. But I didn't think that CARP would stay down forever if the sync interface was down :-/ --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 85.2 traffic Shapper TOS error
The error is not on TF wizard.. I try clone rule for MS-RDP ( port 3389 ) to a another service RADMIN ( port 4899 ) but I select TOS low delay and to throughput for this rule I get this error and if I not select it's work fine. 2005/9/27, Scott Ullrich [EMAIL PROTECTED]: This just came up moments ago Rerun the ez-shaper wizard. Scott. On 9/27/05, William Armstrong [EMAIL PROTECTED] wrote: I get this error on I include manual rule for service Radmin php: : There were error(s) loading the rules: /tmp/rules.debug:115: syntax error /tmp/rules.debug:116: syntax error /tmp/rules.debug:117: syntax error /tmp/rules.debug:118: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [115]: pass in on xl0 proto tcp from 10.0.1.0/24 to any port 4899 tos lowdelay,throughput keep state tag qOthersDownH -- -=-=-=-=-=-=-=-=-=- William David Armstrong Bio Systems Security. ICQ 10253747 MSN [EMAIL PROTECTED] -- Ninguém nasce sabendo de tudo. Mas tudo pode ser Aprendido; E principalmente porque tudo pode ser Ensinado By Bio. -- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -=-=-=-=-=-=-=-=-=- William David Armstrong Bio Systems Security. ICQ 10253747 MSN [EMAIL PROTECTED] -- Ninguém nasce sabendo de tudo. Mas tudo pode ser Aprendido; E principalmente porque tudo pode ser Ensinado By Bio. -- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] 85.2 traffic Shapper TOS error
Are both supposed to be selected? I suspect for this to work we'll need to convert those to the hex values and do a bitwise AND on them. I trust you'll be able to test any changes we make? --Bill On 9/27/05, William Armstrong [EMAIL PROTECTED] wrote: The error is not on TF wizard.. I try clone rule for MS-RDP ( port 3389 ) to a another service RADMIN ( port 4899 ) but I select TOS low delay and to throughput for this rule I get this error and if I not select it's work fine. 2005/9/27, Scott Ullrich [EMAIL PROTECTED]: This just came up moments ago Rerun the ez-shaper wizard. Scott. On 9/27/05, William Armstrong [EMAIL PROTECTED] wrote: I get this error on I include manual rule for service Radmin php: : There were error(s) loading the rules: /tmp/rules.debug:115: syntax error /tmp/rules.debug:116: syntax error /tmp/rules.debug:117: syntax error /tmp/rules.debug:118: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [115]: pass in on xl0 proto tcp from 10.0.1.0/24 to any port 4899 tos lowdelay,throughput keep state tag qOthersDownH -- -=-=-=-=-=-=-=-=-=- William David Armstrong Bio Systems Security. ICQ 10253747 MSN [EMAIL PROTECTED] -- Ninguém nasce sabendo de tudo. Mas tudo pode ser Aprendido; E principalmente porque tudo pode ser Ensinado By Bio. -- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -=-=-=-=-=-=-=-=-=- William David Armstrong Bio Systems Security. ICQ 10253747 MSN [EMAIL PROTECTED] -- Ninguém nasce sabendo de tudo. Mas tudo pode ser Aprendido; E principalmente porque tudo pode ser Ensinado By Bio. -- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] CDROM Version Install
Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] CDROM Version Install
Try a different CD-ROM Reader. I've got this problem at work on a machine as well. Scott On 9/27/05, Mike [EMAIL PROTECTED] wrote: Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] CDROM Version Install
Return Receipt Your [pfSense Support] CDROM Version Install document: wasMelanie received GAULT/Asr/Production/Smai/Administrations-Caledoniennes by: at:28/09/2005 09:09:52 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] CDROM Version Install
Thanks for the fast response Scott. I will give that a try right now. Mike -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 6:08 PM To: support@pfsense.com Subject: Re: [pfSense Support] CDROM Version Install Try a different CD-ROM Reader. I've got this problem at work on a machine as well. Scott On 9/27/05, Mike [EMAIL PROTECTED] wrote: Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] CDROM Version Install
FreeBSD is having love issue (see no) with your cdrom. It could be.. 1. bad cdrom drive 2. bad cdrom 3. bad cable 4. sucky IDE chipset. 5. FreeBSD bug. If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the lastest beta of 6.0 is) and see if you get the same issues. -Original Message- From: Mike [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:06 PM To: support@pfsense.com Subject: [pfSense Support] CDROM Version Install Importance: High Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [pfSense Support] CDROM Version Install
I'm seeing this problem since 0.85.2. the same cd-rom reader was working ever since pfsense 0.20 for me :-/ Holger -Ursprüngliche Nachricht- Von: Fleming, John (ZeroChaos) [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 28. September 2005 00:12 An: support@pfsense.com Betreff: RE: [pfSense Support] CDROM Version Install FreeBSD is having love issue (see no) with your cdrom. It could be.. 1. bad cdrom drive 2. bad cdrom 3. bad cable 4. sucky IDE chipset. 5. FreeBSD bug. If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the lastest beta of 6.0 is) and see if you get the same issues. -Original Message- From: Mike [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:06 PM To: support@pfsense.com Subject: [pfSense Support] CDROM Version Install Importance: High Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] CDROM Version Install
Yes, s0ren changed tha ATAPI CDRom code recently. :/ Scott On 9/27/05, Fleming, John (ZeroChaos) [EMAIL PROTECTED] wrote: If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the latest beta of 6.0 is) and see if you get the same issues. :) -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:15 PM To: support@pfsense.com Subject: AW: [pfSense Support] CDROM Version Install I'm seeing this problem since 0.85.2. the same cd-rom reader was working ever since pfsense 0.20 for me :-/ Holger -Ursprüngliche Nachricht- Von: Fleming, John (ZeroChaos) [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 28. September 2005 00:12 An: support@pfsense.com Betreff: RE: [pfSense Support] CDROM Version Install FreeBSD is having love issue (see no) with your cdrom. It could be.. 1. bad cdrom drive 2. bad cdrom 3. bad cable 4. sucky IDE chipset. 5. FreeBSD bug. If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the lastest beta of 6.0 is) and see if you get the same issues. -Original Message- From: Mike [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:06 PM To: support@pfsense.com Subject: [pfSense Support] CDROM Version Install Importance: High Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [pfSense Support] 050.2 CARP won't go Master or Backup
ok, I have experienced some strange problems bringing up CARP-Interfaces here as well (quite reproducable but also a bit sporadic). Scott did several changes and he finally came up with something that now is running on my systems without any problems any more (my systems are also syncing via a crossover-cable, no switch in between). Ivan, if you can please crosslink your systems again and do a update_file.sh /etc/inc/interfaces.inc on both system before testing again. To have a switch between two machines is needed if you have more than 2 machines in the cluster but with only two machines it's an additional point of failure if the switch dies or only has powerfailure. Syncing should work with crosslink-cables too. So if you can give it a try and report back we would appreciate it. Thank you in advance, Holger -Ursprüngliche Nachricht- Von: Bill Marquette [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 27. September 2005 20:20 An: support@pfsense.com Betreff: Re: [pfSense Support] 050.2 CARP won't go Master or Backup On 9/27/05, Frimmel, Ivan (ISS South Africa) [EMAIL PROTECTED] wrote: HI PPPoe is on WAN .. CARP is on LAN with carp sync on OPT1. OK so you guys are going to laugh at me. I do feel stupid. As a fault finding procedure and just to get connectivity back I halted router2, which is UTP crossed over connected to router 1 on OPT1. So OPT1 (carp sync) is down. (no link since you need both nic up to have link). CARP will NOT come up without link on OPT1. My suggestion in terms of best practice is to have a switch on OPT(sync) when using CARP. It has wasted a lot of my time and it IS my fault cause I was cheap just using cross over cable. Tx all .. Hrm...I'll have to test this out at home :-/ At work everything is always plugged into a switch (the machines are miles apart), but at home I'm using a crossover cable for the dedicated sync network. But I didn't think that CARP would stay down forever if the sync interface was down :-/ --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] CDROM Version Install
The only thing left to try is: http://wiki.pfsense.com/wikka.php?wakka=BootTroubleShooting Scott On 9/27/05, Mike [EMAIL PROTECTED] wrote: OK I have tried 3 CDROMS and 3 floppy drives with no luck. All the CDROMS and Floppy drives are good with 1 new of each in that mix. I have tried a blank floppy and then tried a floppy with a working config file. I replaced both the floppy and CDROM cables with no luck :( I also tried 74.4, 80.0, 80.4, 85.0 and 85.2 versions with the same error every time. Thanks, Mike -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 6:23 PM To: support@pfsense.com Subject: Re: [pfSense Support] CDROM Version Install Yes, s0ren changed tha ATAPI CDRom code recently. :/ Scott On 9/27/05, Fleming, John (ZeroChaos) [EMAIL PROTECTED] wrote: If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the latest beta of 6.0 is) and see if you get the same issues. :) -Original Message- From: Holger Bauer [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:15 PM To: support@pfsense.com Subject: AW: [pfSense Support] CDROM Version Install I'm seeing this problem since 0.85.2. the same cd-rom reader was working ever since pfsense 0.20 for me :-/ Holger -Ursprüngliche Nachricht- Von: Fleming, John (ZeroChaos) [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 28. September 2005 00:12 An: support@pfsense.com Betreff: RE: [pfSense Support] CDROM Version Install FreeBSD is having love issue (see no) with your cdrom. It could be.. 1. bad cdrom drive 2. bad cdrom 3. bad cable 4. sucky IDE chipset. 5. FreeBSD bug. If you get a chance try a default install (just for testing) of FreeBSD Beta 5 (or whatever the lastest beta of 6.0 is) and see if you get the same issues. -Original Message- From: Mike [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 27, 2005 5:06 PM To: support@pfsense.com Subject: [pfSense Support] CDROM Version Install Importance: High Hi Guys, I am pulling my hair out trying to figure this out. I have PFSense now running on several boxes in different locations. I am building a new firewall for a client and during the install I am getting the following error on versions 80.0, 80.4, 85.0 and 85.2. The error is as follows: Acd0: Failure_Read_BIG ILLEGAL REQUEST asc=0x64 ascq=0x00 error=4aborted Letting this run it finally comes up asking if I want to setup my vlan now. I go through the setup fine add a few rules and reboot and the process starts over. Please help as I am bald enough now and the ole lady hates when I start pulling her hair out of her head. Thanks in Advance, Mike - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] dhcpclient Invalid lease option - ignoring offer
Anyway, I downgraded to 70.4 and all is well. Manual upgrade to 85.4 and I have the same issue of not getting a DHCP address and the same errors. Also, after the 85.4 update if I go to Manual Update I get Unable to Receive Version Info. I'll look into this DHCP error a little later, as I have seen this in some BSD forums. I have an extra box so I'll try to recreate the issue. Keep up the good work. :-)On 9/25/05, Jeff Quinonez [EMAIL PROTECTED] wrote:Sorry, should have included that: # ls -la /var/etc/dhclient.conf lrwxr-xr-x 1 root wheel 18 Sep 25 08:10 /var/etc/dhclient.conf - /etc/dhclient.conf # file /etc/dhclient.conf /etc/dhclient.conf: broken symbolic link to `/var/etc/dhclient.conf' # ls -la /etc/dhclient.conf lrwxr-xr-x 1 root wheel 22 Sep 25 15:26 /etc/dhclient.conf - /var/etc/dhclient.conf On 9/25/05, Scott Ullrich [EMAIL PROTECTED] wrote: please do:ls -la /var/etc/dhclient.confls -la /etc/dhclient.confScottOn 9/25/05, Jeff Quinonez [EMAIL PROTECTED] wrote: Also: # more dhclient.confdhclient.conf: Too many levels of symbolic links# On 9/25/05, Jeff Quinonez [EMAIL PROTECTED] wrote: Here is what I am seeing in the logs, thanks: Sep 25 06:41:42 dhclient[7846]: DHCPDISCOVER on fxp0 to 255.255.255.255 port 67 interval 13 Sep 25 06:41:42 dhclient[7846]: DHCPOFFER from 192.168.0.1 Sep 25 06:41:42 dhclient[7846]: Bogus domain search list 15: domain_not_set.invalid (domain_not_set.invalid) Sep 25 06:41:42 dhclient[7846]: Bogus domain search list 15: domain_not_set.invalid (domain_not_set.invalid) Sep 25 06:41:42 dhclient[7846]: Invalid lease option - ignoring offer Sep 25 06:41:42 dhclient[7846]: Invalid lease option - ignoring offer Sep 25 06:41:42 dhclient[7846]: packet_to_lease failed. On 9/24/05, Scott Ullrich [EMAIL PROTECTED] wrote: Can you please send any logs from dhcp.This really isn't enough information to go on. Thanks. Scott On 9/24/05, Jeff Quinonez [EMAIL PROTECTED] wrote:After upgrading to 85 I cannot get an IP address on my WAN interface usingDSL. --got root? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- got root? -- got root? -To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED] -- got root? -- got root?
Re: [pfSense Support] dhcpclient Invalid lease option - ignoring offer
On 9/27/05, Jeff Quinonez [EMAIL PROTECTED] wrote: Anyway, I downgraded to 70.4 and all is well. Manual upgrade to 85.4 and I have the same issue of not getting a DHCP address and the same errors. Also, after the 85.4 update if I go to Manual Update I get Unable to Receive Version Info. I'll look into this DHCP error a little later, as I have seen this in some BSD forums. I have an extra box so I'll try to recreate the issue. Keep up the good work. :-) Thanks, that would be a _HUGE_ help! Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]