Re: [pfSense Support] Dynamic interfaces pf
Bill Marquette [EMAIL PROTECTED] writes: Hi Bill, http://cvstrac.pfsense.com/chngview?cn=5922 Enable the developer tag in system. Ok, done. I now see openvpn configuration pages in the web interface. I'll have to upgrade and hack some pages for ssltunnel when I get some spare time. ATM, ssltunnel works by adding rules to packageearly anchor in the ppp /etc/ppp/ip-up script. Regards Éric Masson -- Une RedHat (je ne connais pas les autres distributions) ce configure aussi simplement que windows pour un poste client. Hélas, elle génère un maximum de traffic sur Usenet -+- TP in guide du linuxien pervers - Je veux revoir ma SLS ! -+- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Dynamic interfaces pf
Hello, I've managed to install and setup ssltunnel-client on my 0.84.6 embedded image (should I upgrade to 0.86.4, I didn't find any changelog on the website) Tunnel goes up, additionnal routes are triggered by ppp, everything's fine 'til this point. I can't use ppp0 tunnel as pf drops traffic, the last 2 rules of the ruleset deny everything not explicitely allowed. So is there a standard way to add an interface and associated rules in the web interface or do I have to hack some file to achieve this result ? TIA Regards Éric Masson -- HC Pourquoi les dates sont de la forme 04 Feb et non 04 Fév, comme HC on est en droit de l'attendre sur une hiérarchie francophone ? Pourquoi il y a tant d'enculeurs de mouches fainéants sur fr.* ? -+- AT in: http://www.le-gnu.net- Le dino n'est pas neuneutophone -+- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Dynamic interfaces pf
On 10/16/05, Eric Masson [EMAIL PROTECTED] wrote: Hello, I've managed to install and setup ssltunnel-client on my 0.84.6 embedded image (should I upgrade to 0.86.4, I didn't find any changelog on the website) Tunnel goes up, additionnal routes are triggered by ppp, everything's fine 'til this point. I can't use ppp0 tunnel as pf drops traffic, the last 2 rules of the ruleset deny everything not explicitely allowed. So is there a standard way to add an interface and associated rules in the web interface or do I have to hack some file to achieve this result ? Look at how OpenVPN works. Hint, you'll probably end up doing something along the lines of copying those files and doing a s/OpenVPN/ssltunnel VPN/ and changing the commands to run it to whatever brings up your ssltunnel ppp connection. Depending on how well this works out, we might consider it for inclusion post 1.0. --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Dynamic interfaces pf
Bill Marquette [EMAIL PROTECTED] writes: Hi Bill, Look at how OpenVPN works. Hint, you'll probably end up doing something along the lines of copying those files and doing a s/OpenVPN/ssltunnel VPN/ and changing the commands to run it to whatever brings up your ssltunnel ppp connection. Well, It seems to be disabled in the embedded image. There are files regarding OpenVPN in the embedded image, but it would be easier to understand how they work if OpenVPN was enabled (I'm really not a php guru :/). Regards Éric Masson -- Alcotest OUi, mais aussi pour la création des 2 autres ducon, Expliquez moi, pourquoi voulez vous créer deux autres ducon ? Vous vous sentez seul ? -+- FF in Guide du Neuneu sur Usenet - Les deux font l'impair -+- - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Dynamic interfaces pf
On 10/16/05, Eric Masson [EMAIL PROTECTED] wrote: Bill Marquette [EMAIL PROTECTED] writes: Hi Bill, Look at how OpenVPN works. Hint, you'll probably end up doing something along the lines of copying those files and doing a s/OpenVPN/ssltunnel VPN/ and changing the commands to run it to whatever brings up your ssltunnel ppp connection. Well, It seems to be disabled in the embedded image. There are files regarding OpenVPN in the embedded image, but it would be easier to understand how they work if OpenVPN was enabled (I'm really not a php guru :/). http://cvstrac.pfsense.com/chngview?cn=5922 Enable the developer tag in system. --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]