Hello!
If have 3 WAN (WAN, WAN1/OPT1 WAN2/OPT2) balanced for Internet access.
I want to use allways the same WAN for some Internet domains. Fo example, use
allways WAN to accesss to www.xtec.cat and www.edu365.com.
How could I do it?
Thanks in advance,
Josep Pujadas
Do a nslookup of these urls. Then add all the IPs that get resolved to a
hosts alias at firewallaliases. Create a firewallrule at LAN on top of
your balancing rules with source any, destination this hostsalias,
gateway desired WAN.
Holger
-Original Message-
From: Josep Pujadas i Jubany
thx... ill ignore it
- Original Message -
From: Holger Bauer [EMAIL PROTECTED]
To: support@pfsense.com
Sent: Wednesday, November 15, 2006 9:04 AM
Subject: RE: [pfSense Support] failure: read_big illegal request
Freebsd doesn't like your cdrom/die controller. As long as it is booting
I have a setup like this
internet
|
PFSense Local
|
servers --- Cisco
|
PFSense Remote Site
The local PFSense box was running a beta from about 6 months ago,
and has a static route in place to get to the remote site. The
Cisco and the servers are in the same
Hi List,
I'm using pfSense 1.0.1 on generic pc dual-wan-carp configuration.
I've started to play with captive portal now on OPT4 interface.
I'm receiving the following messages on the console:
# ipfw: install_state: Too many dynamic rules
# IP firewall unloaded
# Warning: memory type
IPFW is only used for CP, that is correct. If IPFW gets unloaded the interface
won't be captured to the loginpage anymore. The firewallrules set at that
interface however will remain active as these are handled by pf. When this
occurs how many states does your system show at statussystem? Maybe
Try enabling static route option at systemadvanced.
Holger
-Original Message-
From: Lawrence Farr [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 15, 2006 1:55 PM
To: support@pfsense.com
Subject: [pfSense Support] Static Route Problem
I have a setup like this
internet
Theoretically it was just started with very low load (just set up a
temporary AP on that interface), but it needs more testing because when I
noticed this messages (hmm. and I couldn't logged on to CP), I disabled CP
immediately and will continue testing as soon as nobody uses the AP.
Thank you
There is a static route in place, and I can traceroute etc
without any issue.
-Original Message-
From: Holger Bauer [mailto:[EMAIL PROTECTED]
Sent: 15 November 2006 14:16
To: support@pfsense.com
Subject: RE: [pfSense Support] Static Route Problem
Try enabling static route
I talked about the option at systemadvanced, it's a checkbox:
Static route filtering: [X] Bypass firewall rules for traffic on the
same interface
This option only applies if you have defined one or more static routes.
If it is enabled, traffic that enters and leaves through the same
interface
I have my Vonage box (made by LinkSys) on OPT1 and told it to
use DHCP. After it got its first IP (10.2.10.199), I clicked on the box to
set the DHCP to a static IP of 10.2.10.200.
I get a log full of this...
Nov 15 08:29:30
dhcpd: DHCPREQUEST for 10.2.10.200 from
I have the following setup:
LAN--PfSense--WAN
| | |
| | |
OPT1--- | ---OPT2 (WLAN)
(GOV) |
OPT3 (DMZ)
The DMZ houses our exchange server, running IAS. When our wireless
access points (in WLAN) attempt to communicate with IAS, the IAS server
Apologies, yes that's fixed it now, many thanks.
-Original Message-
From: Holger Bauer [mailto:[EMAIL PROTECTED]
Sent: 15 November 2006 14:36
To: support@pfsense.com
Subject: RE: [pfSense Support] Static Route Problem
I talked about the option at systemadvanced, it's a checkbox:
Did you specify gateways for other interfaces than WAN? If an interface
has a gateway set it will be automatically natted as it is considered to
be another WAN-kind interface. If you want to shut that down you can do
so by either deleting the gateway and adding appropriate static routes
or by
Cool :-)
-Original Message-
From: Lawrence Farr [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 15, 2006 3:49 PM
To: support@pfsense.com
Subject: RE: [pfSense Support] Static Route Problem
Apologies, yes that's fixed it now, many thanks.
-Original Message-
No sir, no gateways specified.
-Original Message-
From: Holger Bauer [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 15, 2006 8:52 AM
To: support@pfsense.com
Subject: RE: [pfSense Support] Curious radius problem
Did you specify gateways for other interfaces than WAN? If an
Can you paste some state entries from diagnosticsstates for this
connection?
Holger
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 15, 2006 4:06 PM
To: support@pfsense.com
Subject: RE: [pfSense Support] Curious radius problem
No
Sure. I'll have to set things back that way though, as I've moved them
to the DMZ segment to make it all work. :) Give me a couple of hours.
-Original Message-
From: Holger Bauer [mailto:[EMAIL PROTECTED]
Sent: Wednesday, November 15, 2006 9:20 AM
To: support@pfsense.com
Subject: RE:
The number of dynamic rules is tunable. However, this shows that you
have a LOT of captive portal activity. If it is normal traffic then
you need to tune a sysctl. Please see
http://lists.freebsd.org/pipermail/freebsd-ipfw/2004-September/001390.html
for the sysctl information.
Scott
On
Actually on further inspection, this is not a bug. / is mounted rw on
the CF images during bootup.
Scott
On 11/15/06, Scott Ullrich [EMAIL PROTECTED] wrote:
On 11/14/06, Bao C. Ha [EMAIL PROTECTED] wrote:
Hello,
I have noted that during boot up, there are warning errors
about read-only
Looks like you have found a bug in isc-dhcpd. ScottOn 11/15/06, Jason J. Ellingson [EMAIL PROTECTED]
wrote:
I have my Vonage box (made by LinkSys) on OPT1 and told it to
use DHCP. After it got its first IP (10.2.10.199), I clicked on the box to
set the DHCP to a static IP of 10.2.10.200.
I
Good Day,We are in the process of upgrading Internet connections with our telco and the telco is asking we set our WRAP router's WAN interface to 10mb/s, full duplex. By default the WRAP box comes up with
10baseT/UTP, but negotiates at 1/2 duplex. With the wrong duplex set, in
Please see
http://faq.pfsense.com/index.php?action=artikelcat=10id=38artlang=enhighlight=hidden%20options
On 11/15/06, Jeremy Rempel [EMAIL PROTECTED] wrote:
Good Day,
We are in the process of upgrading Internet connections with our telco and
the telco is asking we set our WRAP router's WAN
Check out http://wiki.pfsense.com/wikka.php?wakka=BuildingpFSense
for how to build pfSense on your own.
... but probably you're looking for this:
http://faq.pfsense.org/index.php?action=artikelcat=4id=124artlang=enhighlight=usb
[EMAIL PROTECTED] schrieb:
I for a long time and successfully
Hi Scott,
It still does not make sense in an embedded pfSense system.
In the embedded environment, the usr.uzip is mounted as read-only
/usr very early during the boot-up. The file /usr/local/lib/php.ini
would still be read-only and would not be accessible for write by
/etc/inc/system.inc.
We no longer zip usr on embedded.
On 11/15/06, Bao C. Ha [EMAIL PROTECTED] wrote:
Hi Scott,
It still does not make sense in an embedded pfSense system.
In the embedded environment, the usr.uzip is mounted as read-only
/usr very early during the boot-up. The file /usr/local/lib/php.ini
would
Thanks!
Bao
On Wed, Nov 15, 2006 at 01:57:56PM -0500, Scott Ullrich wrote:
We no longer zip usr on embedded.
On 11/15/06, Bao C. Ha [EMAIL PROTECTED] wrote:
Hi Scott,
It still does not make sense in an embedded pfSense system.
In the embedded environment, the usr.uzip is mounted as
Hi,
I noticed that the Access Darkstat link under Diagnostics - Darkstat
is not generated correctly if you are using SSL with a non-standard port
for the console. I use 65535, and the links end up coming up like this.
Can we do anything about this?
td bgcolor='#77'
28 matches
Mail list logo