On 8/22/05, Tim Roberts <[EMAIL PROTECTED]> wrote: > I need to setup a multi-WAN firewall that also has a DMZ network as well as > LAN network. I would really like to do this with CF but I only have 2 CF to > IDE adapters with 128MB CF disks. 0.76.4 installed just fine by disabling > swap and using live cd with installer. Ran just fine too until I tried > entering basic firewall rules - then it broke barfing about: > reads [132]: pass quick on rl0 proto esp from 216.26.248.144 to keep state > label IPSEC: esp proto .:.
Yup, fixed that in .79 > as well did 0.78 0.79 and 0.79 upgraded to 0.79.2. Each time I enter pretty And introduced a rather nasty (irreversable) bug in .79 that was subsequently fixed in .79.2. > much any rule either by 80gb hard drive install or compact flash I get > fubared after entering rules. Rules as basic as allow any icmp to wan. save. > re-fresh, barf. > > My best success was with the 80gb hdd install and all was well untill I > entered an IP address and gateway to my second wan interface. As soon as I > do this (easily reproduced on 3 different machines) my existing network > starts dropping packets almost like a loop issue. And the firewall > basically locks up. No LAN web access nor ping nor console. Although cap > locks works :) No comment, haven't seen or heard of this. > Anyone wanna crack at it? Everything in your diagram looks doable with the proper attention paid and sacrifices made :) My recommendation is to take this in a couple steps. Convert from m0n0 to pfSense, make sure it all works the way it used to, then take it to the next step and try and get multi-wan working. --Bill
