Re: [pfSense Support] A REALLY Simple Question, Really
Next time, when you change the LAN interface subnet just don't press APPLY. It actually gives you a RED notice to go ahead and change DHCP server range as well and then come back and press APPLY. That is what happens with pfSense 1.2.3 If that is not the case with pfSense 2.x then the developers have made a great mistake in coding as console is the last thing you want to do (since cable and serial port is not always readily available) Regards, On Fri, Apr 29, 2011 at 8:15 PM, Mehma Sarja mehmasa...@gmail.com wrote: On 4/29/11 2:05 PM, Yehuda Katz wrote: On Fri, Apr 29, 2011 at 4:49 PM, Mehma Sarja mehmasa...@gmail.comwrote: Alix running pf 20 RC1 nano. Trying to change from default 192.168.1.x network to 192.168.100.x on the LAN interface - nothing fancy. WHAT I DID With DHCP enabled and serving on 192.168.1.x, tried to change LAN ip using the web GUI. I can guess why it does not work - DHCP is trying to serve on the old network and the LAN is trying to change it's network. Don't get any love on either network. Turning DHCP off - figured I'd assign my laptop a new address manually since there is no DHCP. Nothing on either network. I think it's time to go read the book. It might be easiest for you to fix this from the console. Log in (if you have it configured to require login), then choose option 2 from the menu (Set interface(s) IP address). Make sure you enter the DHCP addresses in full: i.e. 192.168.100.x. - Yehuda Yea, the console did it. Thanks for the nudge. Mehma
[pfSense Support] Is it possible to Port Forward same PORT to TWO servers? pfsense + TWO Asterisk servers and NAT
Hi Everyone, I am facing a dilemma here. If I port forward 1-2 to my first Asterisk server which sets behind pfSense v1.2.3 then I have two way audio. If I remove it I don't have any audio but call establishes. Now, I have a second server, so I am stuck with what to do on the NAT. I tried to set NAT destination to network subnet like 192.168.0.0/24 but it doesn't accept that. Can you please tell me what I need to do? ***I have only 1 IP address so adding more IPs is not an option. Would I have to take advantage of 1:1 NAT? I am not sure what it is and how to set it up if at all. Please guide. Thanks
Re: [pfSense Support] Is it possible to Port Forward same PORT to TWO servers? pfsense + TWO Asterisk servers and NAT
Simple solution is to limit the RTP port start and end in each Asterisk server and use those ports with NON STATIC port setup in outbound NAT and all should be fine. Thanks for the suggestions. On Fri, Jan 14, 2011 at 4:21 PM, Francois-Alexandre St-Onge Aubut fst-o...@idsmicronet.com wrote: doing that SIP will broke On 11-01-14 04:18 PM, Jason C. Taylor wrote: I have not worked with Asterisk or SIP at all, but it sounds like what you need is a combination of sipproxd to get past the NAT issues and some sort of load balancer like SER or Ultra Monkey to round-robin (or whatever) the two Asterisk servers. So that you'd wind up with: asterisk1 -* +- SER -- sipproxd -- pfSense asterisk2 -* On the pfSense box you'd do a 1:1 NAT of your public IP to the internal IP of the sipproxd server. I'm not sure how it'd work exactly if sipproxd was on the pfSense box. - Original Message - From: Chris Buechlercbuech...@gmail.com To: support@pfsense.com Sent: Friday, January 14, 2011 12:36:39 PM Subject: Re: [pfSense Support] Is it possible to Port Forward same PORT to TWO servers? pfsense + TWO Asterisk servers and NAT On Fri, Jan 14, 2011 at 3:34 PM, David Burgessapt@gmail.com wrote: On Fri, Jan 14, 2011 at 11:55 AM, Bruce Bbruceb...@gmail.com wrote: Hi Everyone, I am facing a dilemma here. If I port forward 1-2 to my first Asterisk server which sets behind pfSense v1.2.3 then I have two way audio. If I remove it I don't have any audio but call establishes. Now, I have a second server, so I am stuck with what to do on the NAT. I tried to set NAT destination to network subnet like 192.168.0.0/24 but it doesn't accept that. Can you please tell me what I need to do? ***I have only 1 IP address so adding more IPs is not an option. Would I have to take advantage of 1:1 NAT? I am not sure what it is and how to set it up if at all. Please guide. http://doc.pfsense.org/index.php/VoIP_Configuration My money is on #3. Not for servers, can't forward the traffic inbound that you have to have without two public IPs. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Testing 2.0 - What is the upgrade and downgrade process for Daily snapshots?
Hi Everyone, Just loaded a nanobsd image of pfSense 2.0 onto a CF card for Alix board. I have only used v1.2.3 in the past and I never used the internet to upgrade it. In fact, I am under the impression that v1.2.3 is the latest and there are no upgrades to it. I am wondering if there is a nice and easy way of upgrading 2.0 to the new daily snapshots or to downgrade a day or two back? Thanks,
Re: [pfSense Support] Testing 2.0 - What is the upgrade and downgrade process for Daily snapshots?
So, if I am on: 1 pfsense and do an upgrade, does the upgrade apply to 1 pfsense or 2 pfsense ? Also, rather using the Console Cable each time, can I change settings somewhere to boot from a specific partition? something like Grub equivalent of Redhat in FreeBSD? Thanks On Wed, Jan 12, 2011 at 3:43 PM, David Burgess apt@gmail.com wrote: On Wed, Jan 12, 2011 at 1:37 PM, Dimitri Rodis dimit...@integritasystems.com wrote: if that doesn’t work, you can use the gui to boot off of the old slice. Very nice and easy. Or if it /really/ doesn't work you can use the initial boot menu to choose the other slice at boot time. You will see something like this: 1 pfsense 2 pfsense 1 Whichever number automatically appears at the prompt is the one you were running (if you're just rebooting), or the one you just upgraded to, if you're rebooting after an upgrade. You'll want to change that value before the automatic boot if that slice is giving you problems. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Testing 2.0 - What is the upgrade and downgrade process for Daily snapshots?
Thanks. All clear now. But how is the upgrade process? What is the command to upgrade? or is it Console access and then chose upgrade? -Bruce On Wed, Jan 12, 2011 at 3:53 PM, David Burgess apt@gmail.com wrote: On Wed, Jan 12, 2011 at 1:46 PM, Bruce B bruceb...@gmail.com wrote: So, if I am on: 1 pfsense and do an upgrade, does the upgrade apply to 1 pfsense or 2 pfsense ? If you booted from 1 then upgraded, it will overwrite the 2 slice. Also, rather using the Console Cable each time, can I change settings somewhere to boot from a specific partition? something like Grub equivalent of Redhat in FreeBSD? Normally only two things will cause the default boot slice to change, a firmware upgrade or user intervention. Besides changing it on the console at boot time, you may also go to Diagnostics: nanoBSD in the webUI to change it. There is a CLI utility to change it as well, but I don't know why a person would want to mess with it. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] How to set USB Wi-fi dongle as client to connect to another Wireless router?
Hi Everyone, Good news for me that a Cisco/Linksys USB dongle WUSB54GC V3 was detected within seconds of connecting to pfSense 2.0 Alix board. However, having loaded pfSense 2.0 just today, I am not sure where to turn for some documentation. First of all, the interface allowed me to add a run0 which is pointing to Wireless dongle I believe, and then there is a Wireless tab in Interfaces tab which is confusing and I was able to add run0 there again. I have done that but now I am stuck as to how to do a search for the network available around me. Is there a network scan available? Or do I have to put the values for SSID and security types somewhere in the settings? I do see the Ad-hoc, Infrastructure, and Access Point mode but I am not sure what they mean in pfSense context. Thanks
Re: [pfSense Support] How to set USB Wi-fi dongle as client to connect to another Wireless router?
The only reason why I want this is because I am lazy :-) I don't have a feed from my basement to my work area. I have wireless all over the building. So, I want to connect the pfsense router wireless to the main wireless router. Also, it would be great to know this because I need to know the in and out of pfsense 2.0 before I can deploy it at customer site. Is Master a mode that should appear in the list? This a WiFi USB dongle. It's made to be in client mode. Why wouldn't it work with pfSense as client mode? Thanks On Wed, Jan 12, 2011 at 5:46 PM, Charles N Wyble char...@knownelement.comwrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 You need to make sure your card supports master mode. If it doesn't you won't be able to use it as an access point. I don't know if pfsense will let you use a card as a client or not. I don't know why you would want to. Is your pfsense box acting as a router between you and an uplink that's over wireless? On 01/12/2011 02:17 PM, Bruce B wrote: Hi Everyone, Good news for me that a Cisco/Linksys USB dongle WUSB54GC V3 was detected within seconds of connecting to pfSense 2.0 Alix board. However, having loaded pfSense 2.0 just today, I am not sure where to turn for some documentation. First of all, the interface allowed me to add a run0 which is pointing to Wireless dongle I believe, and then there is a Wireless tab in Interfaces tab which is confusing and I was able to add run0 there again. I have done that but now I am stuck as to how to do a search for the network available around me. Is there a network scan available? Or do I have to put the values for SSID and security types somewhere in the settings? I do see the Ad-hoc, Infrastructure, and Access Point mode but I am not sure what they mean in pfSense context. Thanks - -- Charles N Wyble (char...@knownelement.com) Systems craftsman for the stars http://www.knownelement.com Mobile: 626 539 4344 Office: 310 929 8793 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJNLi9FAAoJEMvvG/TyLEAt4o4QAKfgXREcPm/vB/yB1H6dpyNc PepjpVVOd6mlJAVIN0GR/q7yJahwxfAFph01LTN2kzVXzZAc9ed+qcxrcldrkBYE sWe+N+pgpohZNTaJarLk5dlLzT6rmppc2x96ApoIpkRhML0MiIjM7MkGwVPq+Xn6 jbs5TcnfTsUUJ4pQECk0JAoSgK4+viHZ12GvHUeEGReX3AuOyV2N7QjHpwS+1bfl tSR5eCxGf8NHVOE++qG0/SPmFODobWx7XILRBqjyLvMKm1ylZbULuaLNaJ0KAjTN quC6DpghI4lJcuOKHR1vsCmOtjDO/o5qGGrx4mKToe425HtqAcOFZRtLveje4yuX sG/xVqfQVLQcwPudu8zErod9qWYrwqbVSh+a43aqRWLZWJHgturAIWErwtB8VtXa GgHmp6pKNWXtW6fcJy0au7UTb0W0a4bN5II0j5oJ5U7FzpfPwE02X/ESVduZijE4 HzcmkVwkq/tt/BYp762P7odGlakySS9axRzbGATiQ8eKlMXwS5OFjG1I01Niaa6H Ucl3XWjnl1bvG7urzODFCYH5JPd5D3YbdYvDrhegM9d6T12f4zRltv+iee1GVJ2U BCn2BoChQ9TS8KtyjtvrADBsIn4t2eFu63WinN0fNViHMoYSwAVLzJv+DRgSCoAq ohKJ+yXsYv0jSl/OdtQw =cXOB -END PGP SIGNATURE- - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] FAQ item request: Do I need to know how to use a shell to use PFSense?
I have blocked myself out and the only way was to console in and use shell to do pfctl -d to turn off firewallSHELL for pfSense is not scary but it is a MUST to know when you need that quick access. However, I don't think of anything that would require you to know any shell commands to get pfSense running with the new images the router comes pre-setup with the LAN ports assigned 192.168.1.0/24. -Bruce On Mon, Dec 20, 2010 at 12:03 PM, David Burgess apt@gmail.com wrote: I'm annoyed by the recurrence of posts like this: http://www.dslreports.com/forum/r25224935- I see the Linux myth is debunked in the FAQ, but is there something substantial that I can link to that states or demonstrates that pfsense is adequately administered from the UI for most non-dev users? db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Embedded hardware recommendation - Fan-less and many NIC ports
Hi Everyone, I am looking for an idea board which would include 4 or more NIC ports, support PCI(e) card, 1GB embedded RAM, fanless, 1U format fitable, CF card support, fit two pfsense in one case for CARP. I think above are too idea and I might not be able to find any. But I am giving this a lucky shot here. The closest I found is the Alix2d13 and Sockeris net5501. Alix2d13 has only 3 NIC ports and not really idea. But it has built in support for VPN AES-128-CBC which works great and I use a lot of VPN for admin. It's also of great price. But it lacks a PCI slot. I was thinking of adding a PCI(x) card to the board. Sockeris is a little over-board with the price specially with it's case and everything. But it does have 4 NIC ports and a PCI slot bu I think VPN is yet another miniPCI card purchase which puts the price for this close to a Via (with FAN) board. I am open to any and all suggestions for anything close, exact, or above the specs I have asked for. I want to stay away from anything with FAN as there are more components to die. Oh, and I would really like some sort of RAID for CF card or IDE support as it will make the ultimate router box. I also like Adapters made in a smart way which take less space, and stuck to the power bar rather than being chunky and falling of the power bar in the data center. Please enlighten me with your suggestions. Thanks
Re: [pfSense Support] Embedded hardware recommendation - Fan-less and many NIC ports
Thanks guys. I never seen these devices. They seem promising. I don't think they can do a PCI(x) card right? Not miniPCI. But I am very interested to know the price for these units. I don't see it listed on their site. Do you know their main distributers and online resellers? P.S. If this an Atom board/Intel CPU, how come there are 6 NIC ports on them? Have you guys pried open one of these? Thanks again On Thu, Dec 16, 2010 at 7:10 PM, Maik Heinelt m...@vegasystems.com wrote: On 2010/12/17 8:55, Bruce B wrote: Hi Everyone, I am looking for an idea board which would include 4 or more NIC ports, support PCI(e) card, 1GB embedded RAM, fanless, 1U format fitable, CF card support, fit two pfsense in one case for CARP. I think above are too idea and I might not be able to find any. But I am giving this a lucky shot here. The closest I found is the Alix2d13 and Sockeris net5501. Alix2d13 has only 3 NIC ports and not really idea. But it has built in support for VPN AES-128-CBC which works great and I use a lot of VPN for admin. It's also of great price. But it lacks a PCI slot. I was thinking of adding a PCI(x) card to the board. Sockeris is a little over-board with the price specially with it's case and everything. But it does have 4 NIC ports and a PCI slot bu I think VPN is yet another miniPCI card purchase which puts the price for this close to a Via (with FAN) board. I am open to any and all suggestions for anything close, exact, or above the specs I have asked for. I want to stay away from anything with FAN as there are more components to die. Oh, and I would really like some sort of RAID for CF card or IDE support as it will make the ultimate router box. I also like Adapters made in a smart way which take less space, and stuck to the power bar rather than being chunky and falling of the power bar in the data center. Please enlighten me with your suggestions. Thanks Do you know about the Lanner devices? We use it for some costumers and would say it is really good quality. It has 2x Gbe 4x 10/100 ports and speedy 1.6 GHz CPU. Take a look on it! You can use an IDE HDD, nor CF-Card. Memory with some devices max 4GB, but for almost of all of it 2GB DDR2 Here is a link: http://www.lannerinc.com/Network_Security/FW-7530 Maik - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org