Re: [pfSense Support] 256MB Wrap Image?
Maybe someone cal mail it also to me :-) Same situation here. Michiel On Thu, 2005-10-06 at 23:02 -0400, Eric M. Faden wrote: > Does anyone have a 256MB wrap image they can email me? or > that I can download from somewhere? I don't actually have > a FreeBSD box handy to resize the image. > > -Eric > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] 256MB Wrap Image?
Does anyone have a 256MB wrap image they can email me? or that I can download from somewhere? I don't actually have a FreeBSD box handy to resize the image. -Eric - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] ftp helper using 0.85.6
On 10/6/05, Vivek Khera <[EMAIL PROTECTED]> wrote: > does this mean that I need to allow inbound FTP to 127.0.0.1 for my > 1:1 nat'd box to be able to ftp? so it can talk to the ftp helper? Yes. > my problem is this: my "server" which is inside the firewall is 1:1 > nat'd to a public IP. every other system inside can ftp out just > fine using normal nat. however this one box can no longer use > freebsd's "fetch" utility to ftp sites, making it incredibly hard to > use ports :-) passive or not, it just fails to fetch the data. This is fixed in CVS. We now launch a FTP helper for any ftp redirections. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] ftp helper using 0.85.6
On Oct 3, 2005, at 5:26 PM, Scott Ullrich wrote: If you are selectively blocking ports (as opposed to allowing all out from lan) make sure you have a rule allowing traffic from the lan to 127.0.0.1 (where the FTP helper listens). does this mean that I need to allow inbound FTP to 127.0.0.1 for my 1:1 nat'd box to be able to ftp? so it can talk to the ftp helper? my problem is this: my "server" which is inside the firewall is 1:1 nat'd to a public IP. every other system inside can ftp out just fine using normal nat. however this one box can no longer use freebsd's "fetch" utility to ftp sites, making it incredibly hard to use ports :-) passive or not, it just fails to fetch the data. it worked with our old firewall. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] SNMP for pflog0
I've been meaning to write the mother of all pf-mrtg.cfgs. I would be cool if you crammed all that in there. :) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, October 06, 2005 1:41 PM To: support@pfsense.com; support@pfsense.com Subject: RE: [pfSense Support] SNMP for pflog0 At 11:37 AM 10/6/2005, Fleming, John \(ZeroChaos\) wrote: >http://cvstrac.pfsense.com/tktview?tn=257,4 Thanks. Since I'm not an expert, that should keep me up twiddling with MRTG for a few nights! (grin) Really, thanks, theres a lot of good info there. -- [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] SNMP for pflog0
At 11:37 AM 10/6/2005, Fleming, John \(ZeroChaos\) wrote: http://cvstrac.pfsense.com/tktview?tn=257,4 Thanks. Since I'm not an expert, that should keep me up twiddling with MRTG for a few nights! (grin) Really, thanks, theres a lot of good info there. -- [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] SNMP for pflog0
http://cvstrac.pfsense.com/tktview?tn=257,4 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, October 06, 2005 1:31 PM To: support@pfsense.com Subject: [pfSense Support] SNMP for pflog0 PFSense gurus- I am using MRTG to capture interface statistics of my PFSense firewall. I have a few questions: 1) I don't see anything interesting on the pflog0 interface. What traffic should I see on that? I was hoping that I'd see traffic stopped by the firewall, or at least something useful 2) Is there anything else that I can scrape with MRTGand SNMP that might be interesting other than bandwidth through the interfaces? Thanks in advance! -- [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] SNMP for pflog0
PFSense gurus- I am using MRTG to capture interface statistics of my PFSense firewall. I have a few questions: 1) I don't see anything interesting on the pflog0 interface. What traffic should I see on that? I was hoping that I'd see traffic stopped by the firewall, or at least something useful 2) Is there anything else that I can scrape with MRTGand SNMP that might be interesting other than bandwidth through the interfaces? Thanks in advance! -- [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Dyndns and PPPoE version2
Hi to all, I'm also experienced this problem with a fresh install of 0.86. WAN is pope client, and also using DynDNS (no-IP). But I think that the problem is not on the DynDns but on the pppoe client. I Have some additional information: This works fine the first time, then you reboot and it connects the pppoe but you can't pass trough the pfsense. I reproduced the problem reconfiguring from scrath, and indeed it happens. I hope to contribute to solve with this info Thanks for pf Gabriel -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Miércoles, 05 de Octubre de 2005 07:31 p.m. To: support@pfsense.com Subject: Re: [pfSense Support] Dyndns and PPPoE version2 Indeed, this does not sound like a DynDNS bug at this point. What happens if you click renew in the interfaces status screen? Scott On 10/5/05, Erik Kristensen <[EMAIL PROTECTED]> wrote: > Ok, then based on you now using ez-ipupdate, it is not DynDNS that is causing > the problem. There is something else wrong and we are going to have to figure > it out. > > -Erik > > > > -- Original Message --- > From: Damien Dupertuis <[EMAIL PROTECTED]> > To: support@pfsense.com > Sent: Thu, 6 Oct 2005 00:09:31 +0200 (CEST) > Subject: Re: [pfSense Support] Dyndns and PPPoE version2 > > > Yes, I've done a fresh 0.86 install and followed all > > scotts instructions... > > > > --- Erik Kristensen <[EMAIL PROTECTED]> a écrit : > > > > > If I recall you switched to ez-ipupdate correct? Per > > > Scotts instructions? > > > > > > -Erik > > > > > > -- Original Message --- > > > From: Damien Dupertuis <[EMAIL PROTECTED]> > > > To: Support PfSense > > > Sent: Thu, 6 Oct 2005 00:05:29 +0200 (CEST) > > > Subject: [pfSense Support] Dyndns and PPPoE version2 > > > > > > > Hello, > > > > > > > > One day passed and the bug is here again... > > > > > > > > here are my screenshots: > > > > > > > > > > > > > http://rapidshare.de/files/5923217/Wan_Bug_from_fresh_86.rar.html > > > > > > > > both before and after the bug... > > > > > > > > If you want something else... just ask!!! > > > > > > > > regards. > > > > > > > > Damien > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > > > > > > Appel audio GRATUIT partout dans le monde avec le > > > > nouveau Yahoo! Messenger > > > > Téléchargez cette version sur > > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > Appel audio GRATUIT partout dans le monde avec le > > > nouveau Yahoo! Messenger > > > Téléchargez cette version sur > > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > - > > > > To unsubscribe, e-mail: > > > [EMAIL PROTECTED] > > > > For additional commands, e-mail: > > > [EMAIL PROTECTED] > > > --- End of Original Message --- > > > > > > > > > > > - > > > To unsubscribe, e-mail: > > > [EMAIL PROTECTED] > > > For additional commands, e-mail: > > > [EMAIL PROTECTED] > > > > > > > > > > > > > > > > > > ___ > Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger > Téléchargez cette version sur http://fr.messenger.yahoo.com > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > --- End of Original Message --- > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Este correo electrónico puede contener información estrictamente confidencial y es de uso exclusivo del destinatario, quedando prohibida a cualquier otra persona su revelación, copia, distribución, o el ejercicio de cualquier acción relativa a su contenido. Si ha recibido este correo electrónico por error, por favor conteste al remitente, y posteriormente proceda a borrarlo de su sistema. Gracias por su colaboración. This email is intended for the addressee only. Internet communications are not secure and therefore Alt126 Security & Management Solutions . does not accept legal responsibility for the contents of this message. Any views or opinions represented are solely those of the author and do not necessarily represent those of Alt126 Security & Management Solutions. If this email is not intended for you, lease notify the author by replying to t
Re: [pfSense Support] Port Forward of ESP protocol
On 10/6/05, Jörgen Haraldsson <[EMAIL PROTECTED]> wrote: > ok > Must be a bug in my version because pfsense want me to write a portnr. > I will download and upgrade to a newer version today. > Maybe it will work then. > > Thank you for your help. This is indeed fixed but we have not released a new version.We'll be releasing a new version soon once I get my home computer back together. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Port Forward of ESP protocol
ok Must be a bug in my version because pfsense want me to write a portnr. I will download and upgrade to a newer version today. Maybe it will work then. Thank you for your help. From: Chris Buechler <[EMAIL PROTECTED]> Reply-To: support@pfsense.com To: support@pfsense.com Subject: Re: [pfSense Support] Port Forward of ESP protocol Date: Wed, 05 Oct 2005 14:09:18 -0400 Jörgen Haraldsson wrote: Yes that's correct. The port 500 is because pfsense want a portnr. I have used 50 to but it's just a protocolnr not a portnr that ipsec use. Whenever you select ESP as protocol, the port boxes are all grayed out. The only way the port boxes are available is if you're using TCP, UDP, or TCP/UDP as the protocol. This works as it should, just select the proper protocol. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] _ Lättare att hitta drömresan med MSN Resor http://www.msn.se/resor/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] squid
just installed the latest package (since michael has provided a bunch of changes.) works fine, except for one glitch: the installation script apparently thinks the cache is /usr/local/squid/cache, but squid expects it in /var/squid, so it pukes. I created that directory manually and chmoded it appropriately, re-ran 'squid -z' and then fired it up... - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Dyndns and PPPoE version2
It sounds like your loosing your DHCP lease on WAN. The point of the question was to find out if this is the case by renewing your lease when the problem occurs. Scott On 10/5/05, Damien Dupertuis <[EMAIL PROTECTED]> wrote: > > Indeed, this does not sound like a DynDNS bug at > > this point. What > > happens if you click renew in the interfaces status > > screen? > > You mean If I click renew on my browser when I see the > interface status page??? nothing odd... I don't > understand the point of your question... > > > > > > Scott > > > > > > > > On 10/5/05, Erik Kristensen <[EMAIL PROTECTED]> > > wrote: > > > Ok, then based on you now using ez-ipupdate, it is > > not DynDNS that is causing > > > the problem. There is something else wrong and we > > are going to have to figure > > > it out. > > > > > > -Erik > > > > > > > > > > > > -- Original Message --- > > > From: Damien Dupertuis <[EMAIL PROTECTED]> > > > To: support@pfsense.com > > > Sent: Thu, 6 Oct 2005 00:09:31 +0200 (CEST) > > > Subject: Re: [pfSense Support] Dyndns and PPPoE > > version2 > > > > > > > Yes, I've done a fresh 0.86 install and followed > > all > > > > scotts instructions... > > > > > > > > --- Erik Kristensen <[EMAIL PROTECTED]> a > > écrit : > > > > > > > > > If I recall you switched to ez-ipupdate > > correct? Per > > > > > Scotts instructions? > > > > > > > > > > -Erik > > > > > > > > > > -- Original Message --- > > > > > From: Damien Dupertuis <[EMAIL PROTECTED]> > > > > > To: Support PfSense > > > > > Sent: Thu, 6 Oct 2005 00:05:29 +0200 (CEST) > > > > > Subject: [pfSense Support] Dyndns and PPPoE > > version2 > > > > > > > > > > > Hello, > > > > > > > > > > > > One day passed and the bug is here again... > > > > > > > > > > > > here are my screenshots: > > > > > > > > > > > > > > > > > > > > > > > > http://rapidshare.de/files/5923217/Wan_Bug_from_fresh_86.rar.html > > > > > > > > > > > > both before and after the bug... > > > > > > > > > > > > If you want something else... just ask!!! > > > > > > > > > > > > regards. > > > > > > > > > > > > Damien > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > > > > > > > > > > Appel audio GRATUIT partout dans le monde > > avec le > > > > > > nouveau Yahoo! Messenger > > > > > > Téléchargez cette version sur > > > > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > > > Appel audio GRATUIT partout dans le monde avec > > le > > > > > nouveau Yahoo! Messenger > > > > > Téléchargez cette version sur > > > > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > > > > > > > > > > > > - > > > > > > To unsubscribe, e-mail: > > > > > [EMAIL PROTECTED] > > > > > > For additional commands, e-mail: > > > > > [EMAIL PROTECTED] > > > > > --- End of Original Message --- > > > > > > > > > > > > > > > > > > > > > > - > > > > > To unsubscribe, e-mail: > > > > > [EMAIL PROTECTED] > > > > > For additional commands, e-mail: > > > > > [EMAIL PROTECTED] > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > Appel audio GRATUIT partout dans le monde avec le > > nouveau Yahoo! Messenger > > > Téléchargez cette version sur > > http://fr.messenger.yahoo.com > > > > > > > > > > > - > > > > To unsubscribe, e-mail: > > [EMAIL PROTECTED] > > > > For additional commands, e-mail: > > [EMAIL PROTECTED] > > > --- End of Original Message --- > > > > > > > > > > > > - > > > To unsubscribe, e-mail: > > [EMAIL PROTECTED] > > > For additional commands, e-mail: > > [EMAIL PROTECTED] > > > > > > > > > > > - > > To unsubscribe, e-mail: > > [EMAIL PROTECTED] > > For additional commands, e-mail: > > [EMAIL PROTECTED] > > > > > > > > > > > > ___ > Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger > Téléchargez cette version sur http://fr.messenger.yahoo.com > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Question about mini_httpd
On 10/6/05, Marcin Jessa <[EMAIL PROTECTED]> wrote: > On Thu, 6 Oct 2005 10:56:36 +0200 > Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > > > Is it possible to configure a page in the webgui that is accessible > > w/o authentication? even in a sub-dir... > > Sure, just make sure it does not contain require/include code from > pfsense. > Try to put a plain html file eg. > TEST > into /usr/local/www directory and see > for yourself. Right, we dropped .htpasswd auth a while back and now do all our authentication via PHP. Conversely, if you have a script or html file you want to be authed, you have a little more work ahead of you. --Bill - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] DynDns still being blocked for abuse.
Seems fixed now .. tx. -Original Message- From: Ben Browning [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 05, 2005 12:07 PM To: support@pfsense.com Subject: Re: [pfSense Support] DynDns still being blocked for abuse. The fixes for dyndns in 0.86 no longer cause my dyndns account to be blocked, but the dyndns client is still running every minute after 2:01 am. The line for dyndns in my crontab is as follows: 1 2 * * * root/usr/bin/nice -n20 /etc/rc.dyndns.update This should run ONLY at 2:01 am each day, but it's running much more than that according to var/etc/dyndns.debug. FreeBSD doesn't require anything special for changes to the /etc/crontab file to actually take effect, does it? Ivan, if yours is still being blocked for abuse then you have this crontab problem like I do, but for some reason the dyndns client is incorrectly trying to update your IP address every time it runs. On 10/5/05, Frimmel, Ivan (ISS South Africa) <[EMAIL PROTECTED]> wrote: > > > > I have updated crontab on both my routers.. DynDns is still being blocked > for abuse. ( both custom and dynamic 2 different routers ). 086. > > > > Tx > > > > > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Question about mini_httpd
On Thu, 6 Oct 2005 10:56:36 +0200 Tommaso Di Donato <[EMAIL PROTECTED]> wrote: > Is it possible to configure a page in the webgui that is accessible > w/o authentication? even in a sub-dir... Sure, just make sure it does not contain require/include code from pfsense. Try to put a plain html file eg. TEST into /usr/local/www directory and see for yourself. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Question about mini_httpd
Is it possible to configure a page in the webgui that is accessible w/o authentication? even in a sub-dir... TIA Tom