Hi all,
I found these warning messages in the logs.
How serious is it? Is the PCI bus or the card (3Com) is too slow?
May 3 15:54:53 kernel: xl3: tx underrun, increasing tx start threshold
to 120 bytes
May 3 15:54:53 kernel: xl3: transmission error: 90
Best regards
Imre
--
This is
Robert Mortimer wrote:
On 4/29/06, sai [EMAIL PROTECTED] wrote:
What does the rule you made look like? You should have the destination
port as 25 and source port as *
First rule (LAN)
BLOCK TCP ! MailServers 25 (SMTP) * * *
This is exactly the opposite as what was suggested
This is probably basic stuff, but I have never setup a site
to site VPN.
Is it possible to create a Site to
Site VPN tunnel using pfsense and also supports routing so that it will send
packets through the VPN if the destination is at the other site, or to the
default gateway if the
Robert Mortimer wrote:
I have a set of 6 public IP addresses
I set up pfSense with an internal IP in the 10.0.0.x range and use an
external IP
All is good except I can not port forward to my mailserver or webserver.
I have been to the Firewall: NAT: Port Forward tab and set up the port
forward
Hi !
One question:
If I have the Voip gateway in the DMZ, the Out Interface must be DMZ or Wan ?
I have DMZ but I still can't visualy see any traffic in status queues.
Thanks.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For
Hi,
I'm testing the pfSense CARP configuration on version
BETA3-PLUS-11548-PLUS-11567. Everything seems working fine exept that
both machines in the carp cluster is master. It's like the preemption
weren't enabled. In this version this option is missing in GUI setup
and supposed to be set by
On 5/4/06, Mailling [EMAIL PROTECTED] wrote:
How did you install postfix on a Pfsense machine?
pkg_add -r postfix ?
--
Jeroen
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
You need parallel tunnels for this to work. unfortunately routing across a
tunnel doesn't work (yet).
Example:
LAN1---pfSense1-(Internet)-pfSense2---LAN2---ROUTER--LAN3
You have to use different identifiers at both ends for the tunnels as both
tunnels are
On Thu, May 04, 2006 at 01:45:18PM +0200, Jeroen wrote:
On 5/4/06, Mailling [EMAIL PROTECTED] wrote:
How did you install postfix on a Pfsense machine?
pkg_add -r postfix ?
But not on the embedded image, right?
--
Eugen* Leitl a href=http://leitl.org;leitl/a http://leitl.org
Atm pfSense only supports trafficshaping between 2 interfaces. If your pfSense
as 3 interfaces (WAN/LAN/DMZ) and you have set up traffic shaping between LAN
and WAN by running the wizard your DMZ won't be shaped. This is kind of a
limitation of the frontend atm but this won't change for pfSense
Need someone confirmation but I think you can do it with ipsec.
On 5/4/06, Wesley K. Joyce [EMAIL PROTECTED] wrote:
This is probably basic stuff, but I have never setup a site to site VPN.
Is it possible to create a Site to Site VPN tunnel using pfsense and also
supports routing so that it
Dear Support
I have installed Beta 3
as a firewall/router
WAN is on a p2p address
/30
LAN is on a private
network for configuration only
DMZ is on a /28
Traffic inbound from the WAN to DMZ works fine, However I am unable to
connect to the Internet from the DMZ through the
Even with preemption disabled you should not have 2 masters. A disabled
preemption only means you more or less have a randomly chosen master and
another node will become master only if the original master fails. You
get some information on how CARP is set up when running ifconfig.
Holger
You can set the filesystem read-write by running:
/etc/rc.conf_mount_rw
/etc/rc.conf_mount_ro
and the system will set it to read-only again sooner or later if making
changes.
But beware! You are walking in a minefield and this is unsopported ;-)
Holger
-Original Message-
From: Eugen
I've been having several ongoing problems; passive FTP into the DMZ,
logging of pass packets yet I have no logging turned on, and the latest
is routing from my internal SMTP server to the external SMTP server. The
latest just stopped working for about an hour yesterday, the mail server
when
Title: RE: [pfSense Support] CARP preemption
Are you using a dedicated interface for CARP sync?
-Original Message-
From: Ispanovits Imre [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 04, 2006 7:15 AM
To: support@pfsense.com
Subject: [pfSense Support] CARP preemption
Hi,
On Thu, 4 May 2006 07:54:27 -0500
Ebay [EMAIL PROTECTED] wrote:
Are you using a dedicated interface for CARP sync?
Yes of course.
--
Skype: ispanovits_imre
This is Linux Land.
In silent nights you can hear the windows machines rebooting
signature.asc
Description: PGP signature
Check the archives, others have had this problem and it ended up being
connectivity issues from a switch.
On 5/4/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
On Thu, 4 May 2006 15:10:16 +0200
Holger Bauer [EMAIL PROTECTED] wrote:
Even with preemption disabled you should not have 2 masters. A
On Thu, 04 May 2006 10:51:08 -0400
Chris Buechler [EMAIL PROTECTED] wrote:
Ispánovits Imre wrote:
Hi all,
I found these warning messages in the logs.
How serious is it? Is the PCI bus or the card (3Com) is too slow?
May 3 15:54:53 kernel: xl3: tx underrun, increasing tx start
I can confirm Scott's words - I was one of the people with the problem.
My results where exactly the same as you are seeing (except mine was only on
one interface). Carp multicasts stuff on the interface at regualr intervals
and expects to see multicasts from the other system coming in. It is
On Thu, 4 May 2006 18:55:13 +0100
Peter Curran [EMAIL PROTECTED] wrote:
I can confirm Scott's words - I was one of the people with the problem.
My results where exactly the same as you are seeing (except mine was only on
one interface). Carp multicasts stuff on the interface at regualr
Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But I can suspect the cards, which are old 3Com ISA bus cards
That's probably why it's called the road to dISAster
Rainer
On Thu, 04 May 2006 21:07:48 +0200
Rainer Duffner [EMAIL PROTECTED] wrote:
Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But I can suspect the cards, which are old 3Com ISA bus cards
That's probably why it's called the road
Have you added allow all rules on the pfsync interfaces?
On 5/4/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
On Thu, 04 May 2006 21:07:48 +0200
Rainer Duffner [EMAIL PROTECTED] wrote:
Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But
On 5/4/06, Pedro Paulo de Magalhaes Oliveira Junior
[EMAIL PROTECTED] wrote:
Hello, I'm thinking about developing an IPS to pfsense. Does anybody knows
how to kill tcp connection or udp connection in pf based in string match?
Don't think this is possible. You can use pfctl to kill a single
On Thu, 4 May 2006 15:46:12 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
Have you added allow all rules on the pfsync interfaces?
Yes, I did.
signature.asc
Description: PGP signature
On 5/4/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
On Thu, 4 May 2006 15:46:12 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
Have you added allow all rules on the pfsync interfaces?
Yes, I did.
What about the switch where both the wan and lan interfaces plug into?
They also need to be able
Title: Nachricht
Hello,
Iam looking
for a quick and dirty solution for the above. I give it up to try to internaly
forward the http traffic to another pfsense box.
So I set up one
pfsense withone PPPoE adsl connection directly connected to this box as
WANand one PPPoE connection over a
http://bsdtalk.blogspot.com/2006/05/bsdtalk039-interview-with-bsd.html
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Scott,
Looking forward to your WRAP watchdog tweaks, any idea when to see beta4?
Listened to your interview today, great job!
Thanks - marshall
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail:
30 matches
Mail list logo
