Hi list,
This is probably a dumb question but I'm a little confused about this
whole Nat traversal problem so here goes
My setup is like this: One pfsense on a public IP address and one
behind a NAT device which only has one public IP address.
pfsense - Internet --
The nat-device has to support ipsec pass through and shoule be able to
forward IPSEC-Traffic to the pfsense behind it.
the pfsense behind the NAT has to use the public IP-Adress of the nat-device
as identifier as the connection appears to originate from that ip at the other
end. All other
At 12:11 AM 1/24/2006, you wrote:
Our new code in head allows a bridge group to receive an ip and will
remedy this.
1.0 is not even out and 1.1 is much more fancy. Go figure ;)
not complaining. i'm just puzzled it works on pfsense on not my
sitch. oh well...
Scott
On 1/23/06, Dan
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
not complaining. i'm just puzzled it works on pfsense on not my
sitch. oh well...
We use if_bridge if pfSense. Is that what you are using?
-
To unsubscribe, e-mail:
Yes, Andrew is investigating this problem. We are seeing some
similar issues as well.
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 09:54 AM 1/24/2006, you wrote:
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
not complaining. i'm just puzzled it works on pfsense on
We are using Dell PE 850s as well. The addon PCIe Intel NICs that Dell
offers (or at least did when we bought ours) work fine.
Lynn
[EMAIL PROTECTED] wrote:
Hello all,
We have just brought a couple of Dell 850 servers to use as Pfsense firewalls.
Unfortunately I didn’t check too well and
At 09:58 AM 1/24/2006, you wrote:
Yes, Andrew is investigating this problem. We are seeing some
similar issues as well.
boy that's a relief. i was noticing that when the wifi card was on
my pfsense box and bridging on, ftp proxy broke. possibly other
weird stuff...
I have also Problems with AppleTalk (EtherTalk) packets on a
ath - sis bridge.
Am 24.01.2006 um 16:47 schrieb Dan Swartzendruber:
At 09:58 AM 1/24/2006, you wrote:
Yes, Andrew is investigating this problem. We are seeing some
similar issues as well.
boy that's a relief. i was noticing
There is a sysctl to work around this:
sysctl net.link.bridge.pfil_onlyip=0
On 1/24/06, Tom Müller-Kortkamp [EMAIL PROTECTED] wrote:
I have also Problems with AppleTalk (EtherTalk) packets on a
ath - sis bridge.
Am 24.01.2006 um 16:47 schrieb Dan Swartzendruber:
At 09:58 AM 1/24/2006, you
At 11:42 AM 1/24/2006, you wrote:
There is a sysctl to work around this:
sysctl net.link.bridge.pfil_onlyip=0
this sysctl did not show up on my freebsd
box. the other pfil ones did. another odd difference?
On 1/24/06, Tom Müller-Kortkamp [EMAIL PROTECTED] wrote:
I have also Problems
Make sure you're freebsd box is on RELENG_6 and up to date.
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 11:42 AM 1/24/2006, you wrote:
There is a sysctl to work around this:
sysctl net.link.bridge.pfil_onlyip=0
this sysctl did not show up on my freebsd
box. the other pfil
At 11:45 AM 1/24/2006, you wrote:
Make sure you're freebsd box is on RELENG_6 and up to date.
it's supposed to be. i've been running cvsup every couple of
weeks. i'll make sure i didn't pooch something. thx!
-
To
If you where up to date, you would have that sysctl :)
Scott
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 11:45 AM 1/24/2006, you wrote:
Make sure you're freebsd box is on RELENG_6 and up to date.
it's supposed to be. i've been running cvsup every couple of
weeks. i'll make
At 11:50 AM 1/24/2006, you wrote:
If you where up to date, you would have that sysctl :)
Maybe I misread something. Here is my cvsup tag:
*default release=cvs tag=RELENG_6_0
Please tell me this is wrong :)
-
To
At 12:00 PM 1/24/2006, you wrote:
That is wrong. I said RELENG_6
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 11:50 AM 1/24/2006, you wrote:
If you where up to date, you would have that sysctl :)
Maybe I misread something. Here is my cvsup tag:
*default release=cvs
That is FreeBSD 6 release. That does not include all the new goodies
in -STABLE.
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 12:00 PM 1/24/2006, you wrote:
That is wrong. I said RELENG_6
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 11:50 AM 1/24/2006, you
At 12:02 PM 1/24/2006, you wrote:
That is FreeBSD 6 release. That does not include all the new goodies
in -STABLE.
i'm wondering if that explains some of the anomalies i saw. i'll
test tonight after doing a make world and make kernel etc...
That is wrong. I said RELENG_6
On 1/24/06, Dan Swartzendruber [EMAIL PROTECTED] wrote:
At 11:50 AM 1/24/2006, you wrote:
If you where up to date, you would have that sysctl :)
Maybe I misread something. Here is my cvsup tag:
*default release=cvs tag=RELENG_6_0
Please tell me this is
At 12:02 PM 1/24/2006, you wrote:
That is FreeBSD 6 release. That does not include all the new goodies
in -STABLE.
that did it! no more loss of connectivity. bless you, my son! :)
-
To unsubscribe, e-mail: [EMAIL
On Jan 24, 2006, at 11:48 AM, Dan Swartzendruber wrote:
At 11:45 AM 1/24/2006, you wrote:
Make sure you're freebsd box is on RELENG_6 and up to date.
it's supposed to be. i've been running cvsup every couple of
weeks. i'll make sure i didn't pooch something. thx!
Make sure to remove
Scott Ullrich wrote:
That is FreeBSD 6 release. That does not include all the new goodies
in -STABLE.
just wanted to add that this is only advisable if you're doing it for
good reason. in this case, you want -STABLE because of the relevant
changes you need for this particular purpose.
On 1/24/06, Chris Buechler [EMAIL PROTECTED] wrote:
just wanted to add that this is only advisable if you're doing it for
good reason. in this case, you want -STABLE because of the relevant
changes you need for this particular purpose.
In all other circumstances, RELENG_6_0 would be your
I All
I just found out about pfsense this morning and have a few questions, I
hope people don't mind :)
Background: I am currently setting up a FreeBSD based firewall for a
client to be used at a data centre protecting about 10 web servers.
Using 2 firewalls with CARP.
Now for the questions,
Answers are between the lines:
-Ursprüngliche Nachricht-
Von: Stephen Cimarelli [mailto:[EMAIL PROTECTED]
Gesendet: Mittwoch, 25. Januar 2006 01:07
An: support@pfsense.com
Betreff: [pfSense Support] A few questions, newbie :)
I All
I just found out about pfsense this
On 1/24/06, Stephen Cimarelli [EMAIL PROTECTED] wrote:
I All
I just found out about pfsense this morning and have a few questions, I
hope people don't mind :)
Background: I am currently setting up a FreeBSD based firewall for a
client to be used at a data centre protecting about 10 web
At 06:53 PM 1/24/2006, you wrote:
Scott Ullrich wrote:
That is FreeBSD 6 release. That does not include all the new goodies
in -STABLE.
just wanted to add that this is only advisable if you're doing it
for good reason. in this case, you want -STABLE because of the
relevant changes you
26 matches
Mail list logo