Re: [pfSense] Problem with a second pfSense in LAN
On Thu, Oct 8, 2015 at 7:31 AM, Lorenzo Milesi wrote: > hi. > My office pfsense happily works with an IPv6 tunnel since months. > right now I'm preparing a new server in my lab, and it's running pfSense > 2.2.4. > I don't have IPv6 enabled on this new box, nor DHCP of any kind > (relay/server), nevertheless when it's running my client DHCPv6 gets > crazy and keeps looping, even if it receives a lease. That's the behavior of dhcp6c if you configure it to obtain a prefix delegation, and the DHCP6 server doesn't offer one. Set the PD size to "none" if you're not handing out PDs. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] github.com/google/google-authenticator/ on pfSense 2.2x
Hi Am 13.10.2015 um 14:30 schrieb Olivier Mascia: > I guess I first need to setup a development environment en BSD, then I should > be flying? Seems to build here (simply following the instructions, without testing) Ideally by getting a FreeBSD (virtual) machine running the same or closest-to what pfSense's base is. That would be like FreeBSD 10.2. > Are there some recommended guidelines for porting and debugging (if needed) > things to the specific BSD environment of pfSense 2.2x? It seems that a port actually exists already: https://www.freshports.org/security/pam_google_authenticator/ See if it's in an updated and working shape for your usage, you can likely install it from the binary packages repo, otherwise if you need to tweak it (it last updated 2014), consider the porters handbook. -- Mathieu ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] github.com/google/google-authenticator/ on pfSense 2.2x
Hello, Could someone give me pointers on environment needed for me to experiment with building Google Authenticator PAM module for pfSense 2.2.4 (amd x64) ? The code I'm talking about is here: git clone https://github.com/google/google-authenticator/ I'm only concerned with the libpam sub-directory. I can build it and use it successfully with freeradius, on a LinuxMint 17.2 environment. And can get pfSense to refer to that box, successfully. Though I would like to experiment the same using the freeradius available as a package for pfSense and adding this PAM on it. I guess I first need to setup a development environment en BSD, then I should be flying? Are there some recommended guidelines for porting and debugging (if needed) things to the specific BSD environment of pfSense 2.2x? -- Meilleures salutations, Met vriendelijke groeten, Best Regards. Olivier Mascia, integral.be/om ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] OpenVPN and TOTP?
> Le 12 oct. 2015 à 23:06, Nikos Zaharioudakis a écrit : > > To my knowledge OpenVPN comes with LDAP support. > > Check on https://www.freeipa.org > Their recent editions provide one time passwords that can be produced with > a FreeOTP mobile app. > > Hope this solves your issue. > > Nikos Thanks Nikos, this goes along the same kind of lines as what John suggested, and both are very good reminders or existing solution paths. I will have some time free in the coming days to tests all these paths. -- Meilleures salutations, Met vriendelijke groeten, Best Regards. Olivier Mascia, integral.be/om ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold