Re: [pfSense] Multihome BGP
Thank you. Very good to know that. 01.04.2012 11:10, Glenn Kelley : For sure - we have this running ourselves :-) Chris' team was an excellent help with us getting it running - as we did it under the old system prior to the 2.01 system being out out. Works like a charm however Chris Buechler March 31, 2012 4:04 PM Yes. ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list st41...@st41ker.net March 31, 2012 1:23 PM Hello list, I need to setup multihome AS on BGP for redundancy. Can it be done by using pfSense+OpenBGPD? ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list -- Thanks, St41ker. ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] pfSense appliance recommendation?
I use an ALIX board and i have only had to work on it once and that was when i upgraded to 2.0. On Sun, Apr 1, 2012 at 7:06 PM, Luke Jaeger ad...@pvpa.org wrote: helping someone spec a new router for a small business network, currently 10 users (more in future, hopefully) - it needs to be a 'set it and forget it' solution so I thought about a pfSense appliance. Anyone have an opinion about a particular make/model? Luke Jaeger | Technology Coordinator Pioneer Valley Performing Arts Charter Public School www.pvpa.org ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] pfSense appliance recommendation?
On 4/1/12 4:06 PM, Luke Jaeger wrote: helping someone spec a new router for a small business network, currently 10 users (more in future, hopefully) - it needs to be a 'set it and forget it' solution so I thought about a pfSense appliance. Anyone have an opinion about a particular make/model? Luke Jaeger | Technology Coordinator Pioneer Valley Performing Arts Charter Public School www.pvpa.org ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list I can share some experiences - a) If you go with an embedded solution(Alix or others), select a very good CF card. Had one which lasted for years, SanDisk I think and the last few have been junk, b) if you are looking at a more traditional machine, go with a 3.5, single platter spinning drive - no SSDs, and finally c) configure a system, turn logging off and burn an image - if something happens to your setup, a restore is just a cd boot away until you get a more permanent solution in place. -- Yudhvir ਯੁਧਵੀਰ ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] pfSense appliance recommendation?
If you want a rack server they can be gotten refurbished for really cheap at geeks.com or ebay On Sun, Apr 1, 2012 at 7:20 PM, Mehma Sarja mehmasa...@gmail.com wrote: On 4/1/12 4:06 PM, Luke Jaeger wrote: helping someone spec a new router for a small business network, currently 10 users (more in future, hopefully) - it needs to be a 'set it and forget it' solution so I thought about a pfSense appliance. Anyone have an opinion about a particular make/model? Luke Jaeger | Technology Coordinator Pioneer Valley Performing Arts Charter Public School www.pvpa.org __**_ List mailing list List@lists.pfsense.org http://lists.pfsense.org/**mailman/listinfo/listhttp://lists.pfsense.org/mailman/listinfo/list I can share some experiences - a) If you go with an embedded solution(Alix or others), select a very good CF card. Had one which lasted for years, SanDisk I think and the last few have been junk, b) if you are looking at a more traditional machine, go with a 3.5, single platter spinning drive - no SSDs, and finally c) configure a system, turn logging off and burn an image - if something happens to your setup, a restore is just a cd boot away until you get a more permanent solution in place. -- Yudhvir ਯੁਧਵੀਰ __**_ List mailing list List@lists.pfsense.org http://lists.pfsense.org/**mailman/listinfo/listhttp://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] pfSense appliance recommendation?
On Sun, Apr 1, 2012 at 7:06 PM, Luke Jaeger ad...@pvpa.org wrote: helping someone spec a new router for a small business network, currently 10 users (more in future, hopefully) - it needs to be a 'set it and forget it' solution so I thought about a pfSense appliance. Anyone have an opinion about a particular make/model? Netgate and Hacom are your best options in the US. Which depends on what kind of hardware is a good fit for your specific scenario (users doesn't matter, throughput, features used, etc. does). ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
Re: [pfSense] pfSense appliance recommendation?
the WAN is only 7 Mbps down so throughput won't be high no matter what! But we'll probably want to set it up to serve DHCP and run squid/squidguard on it. Luke Jaeger | Technology Coordinator Pioneer Valley Performing Arts Charter Public School www.pvpa.org On Apr 1, 2012, at 7:26 PM, Chris Buechler wrote: On Sun, Apr 1, 2012 at 7:06 PM, Luke Jaeger ad...@pvpa.org wrote: helping someone spec a new router for a small business network, currently 10 users (more in future, hopefully) - it needs to be a 'set it and forget it' solution so I thought about a pfSense appliance. Anyone have an opinion about a particular make/model? Netgate and Hacom are your best options in the US. Which depends on what kind of hardware is a good fit for your specific scenario (users doesn't matter, throughput, features used, etc. does). ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
[pfSense] two issues with openVPN
issue 1: Running 2.0.1 release i386. Had upgraded some time ago from 2.0 release. Had several VPN servers carried over from the 2.0 upgrade. Today I reconfigured the VPN servers with the same settings as the old ones, just with new certs and users. I did this by deleting the old VPN servers, creating all new users, creating new server and user certs, and then using the wizard to recreate the new VPN servers. Afterwards I rebooted the box. Previously I was able to have all of the VPN servers active at once. Now I can only have one active at a time. To change the one that is active, I have to go into the services and stop the active server service, then start another server service. Otherwise client-server interaction seem to be working flawlessly. Is this a bug? The forum doesn't seem to mention it. issue 2: Also, the IP address of the last client to connect during my most recent test (3 hours ago) is still pingable, but there is no ARP entry or DHCP lease. There were never any routes set referring to this IP address. I thought perhaps this is because OpenVPN bindings aren't listed in either of those lists. A look into the OpenVPN logs shows that the offending IP address was assigned a little over 5 hours ago, and that sigterm[hard] was used to terminate the connection. I did terminate the connection by clicking the X icon next to it once the client disconnected and the connection remained listed in the GUI for a good 5 minutes afterwards. Rebooting the box does not free up the offending address, it is still pingable. Stopping/restarting the OpenVPN server service from the webGUI has no effect. Any ideas on how to free up this IP address? Have not checked to see if the IP address behaves normally if a client reconnects. ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
[pfSense] pfsense 2.0.1 PPPoE client
Hi, I have tried to get pfsense running as PPPoE client, but cannot get it work. If I use a cheap buffalo router, it works without any issue. - Interface is enabled - PPPoE username and password are set (100% correct !!) - The right NIC on my alix board is set for PPPoE, too. - Lan-cable is not broken, too (works with the cheap router, too) - Yes, pfsense is connected to modem, too At Status Interfaces, it shows WAN interface (pppoe0) Status down. ppp: [wan_link0] Link: reconnection attempt 155 ppp: [wan_link0] PPPoE: Connecting to 'Fletz' ppp: [wan_link0] PPPoE connection timeout after 9 seconds ppp: [wan_link0] Link: DOWN event ppp: [wan_link0] LCP: Down event ppp: [wan_link0] Link: reconnection attempt 156 in 2 seconds ppp: [wan_link0] Link: reconnection attempt 156 ppp: [wan_link0] PPPoE: Connecting to 'Fletz' ppp: [wan_link0] PPPoE connection timeout after 9 seconds ppp: [wan_link0] Link: DOWN event ppp: [wan_link0] LCP: Down event ppp: [wan_link0] Link: reconnection attempt 157 in 4 seconds ppp: [wan_link0] Link: reconnection attempt 157 ppp: [wan_link0] PPPoE: Connecting to ' Fletz' ppp: [wan_link0] PPPoE connection timeout after 9 seconds ppp: [wan_link0] Link: DOWN event ppp: [wan_link0] LCP: Down event ppp: [wan_link0] Link: reconnection attempt 158 in 2 seconds ppp: [wan_link0] Link: reconnection attempt 158 ppp: [wan_link0] PPPoE: Connecting to ' Fletz' ppp: [wan_link0] PPPoE connection timeout after 9 seconds ppp: [wan_link0] Link: DOWN event ppp: [wan_link0] LCP: Down event ppp: [wan_link0] Link: reconnection attempt 159 in 4 seconds ppp: [wan_link0] Link: reconnection attempt 159 ppp: [wan_link0] PPPoE: Connecting to Fletz' ppp: [wan_link0] PPPoE connection timeout after 9 seconds Maybe someone has a hint? The Web-frontend log is not really helpful. Maybe someone have a link, where I can read about setting up PPPoE via command-line and get better logging? Thanks in advance. Maik ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list