RE: [pfSense Support] IGMP packet out of WAN
From: Evgeny Yurchenko [mailto:evgeny.yurche...@frontline.ca] Sent: July 23, 2009 5:59 PM From: Evgeny Yurchenko [mailto:evgeny.yurche...@frontline.ca] Sent: July 23, 2009 12:07 PM From: cbuech...@gmail.com [mailto:cbuech...@gmail.com] On Sent: July 23, 2009 11:32 AM On Thu, Jul 23, 2009 at 11:29 AM, Chris Buechlerc...@pfsense.org wrote: On Thu, Jul 23, 2009 at 10:02 AM, Evgeny Yurchenkoevgeny.yurche...@frontline.ca wrote: Thanks for quick report Chris. I am completely new to this stuff please bear with me. Trying to accoomplish 'Clone the tools repo at rcs.pfsense.org' I came to conclusion I need git installed on my pfSense-dev system. Reading several documents I tried the following procedure: echo WITHOUT_X11=yo /etc/make.conf portsnap fetch extract - Success cd /usr/ports/devel/git make BATCH=yo make install BATCH=yo make clean - Failure after the next: No idea. Try to pkg_add -r git, or you may have to clone it on another system and copy over the port. or fetch http://cvs.pfsense.org/~cmb/igmpproxy-port.tgz - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org # pkg_add -r git Error: FTP Unable to get ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-7.0-rele ase/Latest/git.tbz: File unavailable (e.g., file not found, no access) pkg_add: unable to fetch 'ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-7.0-rel ease/Latest/git.tbz' by URL Fetch from http worked, thank you. Eugene Ok, I managed to fix 'not sending IGMP out of upstream interface'. But igmpproxy sends it only first two times when IGMP received on downstream interface. 17:54:59.158716 IP 192.168.254.1 239.142.1.1: igmp v2 report 239.142.1.1 17:55:59.057693 IP 192.168.254.1 239.142.1.1: igmp v2 report 239.142.1.1 Then further igmp reports for this group received on downstream interface are not send out of upstream... Though igmpproxy sees them. Will investigate further. Eugene. Ok. This part is done. IGMP is being sent from downstream to upstream interface. Now another problem. When I generate multicast traffic (with destination IP 239.142.1.1) on WAN this traffic does not go to downstream interface (LAN). Has this package ever worked on Linux (as I undrestand it was initially written on Linux)? Eugene. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] vlan help
The deployment I was planning earlier that referenced the 1u case reco from everybody just got accelerated, the PIX that I was replacing died:) I have a single wan(dhcp)(em0) and lan(192.168.0.1)(em1) interface, both working as expected. On the switch that the lan(192.168.0.1)(em1) interface is on, there is a tagged VLAN(3) I need access to, so I may forward external ports from the wan to it, and write rules to allow certain ports access between the lan and vlan(3). I set up a vlan(3) on my lan int(em1) in the assign menu, the switch is set to untag traffic into the default lan, and allow tagged traffic into vlan(3). With my opt1 interface on a new subnet that matches vlan(3), how do I configure it now? I am kinda pressed as I have scads of people lined up wondering when connectivity will be restored and I hadn't finished figuring out how I was going to migrate off the pix, presently I had only been reading about the vpn config as I assumed that would be the most challenging:) Any help would be appreciated! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 2:19 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: The deployment I was planning earlier that referenced the 1u case reco from everybody just got accelerated, the PIX that I was replacing died:) I have a single wan(dhcp)(em0) and lan(192.168.0.1)(em1) interface, both working as expected. On the switch that the lan(192.168.0.1)(em1) interface is on, there is a tagged VLAN(3) I need access to, so I may forward external ports from the wan to it, and write rules to allow certain ports access between the lan and vlan(3). I set up a vlan(3) on my lan int(em1) in the assign menu, the switch is set to untag traffic into the default lan, and allow tagged traffic into vlan(3). You should really tag everything if you're going to tag anything, for security reasons. With my opt1 interface on a new subnet that matches vlan(3), how do I configure it now? Not following what you mean. You'll need to assign the VLAN as an OPT interface. I am kinda pressed as I have scads of people lined up wondering when connectivity will be restored and I hadn't finished figuring out how I was going to migrate off the pix, presently I had only been reading about the vpn config as I assumed that would be the most challenging:) Any help would be appreciated! In a bind like this, it's probably in your best interest to see the link in the footer for support, I'd be glad to work with you immediately to get it all setup and working properly. Usually a good way to save yourself a lot of time, and your users a lot of frustration in this case since you had to make an emergency switch. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 1:19 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: The deployment I was planning earlier that referenced the 1u case reco from everybody just got accelerated, the PIX that I was replacing died:) I have a single wan(dhcp)(em0) and lan(192.168.0.1)(em1) interface, both working as expected. On the switch that the lan(192.168.0.1)(em1) interface is on, there is a tagged VLAN(3) I need access to, so I may forward external ports from the wan to it, and write rules to allow certain ports access between the lan and vlan(3). I set up a vlan(3) on my lan int(em1) in the assign menu, the switch is set to untag traffic into the default lan, and allow tagged traffic into vlan(3). With my opt1 interface on a new subnet that matches vlan(3), how do I configure it now? I am kinda pressed as I have scads of people lined up wondering when connectivity will be restored and I hadn't finished figuring out how I was going to migrate off the pix, presently I had only been reading about the vpn config as I assumed that would be the most challenging:) Any help would be appreciated! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org Here's what I do using the same setup as you have: I assign the WAN(em0) and the LAN(em1), to configure the conectivity to the internet, I connect to the web interface, create some basic rules(so I can access my adsl modem), then I go to the assign option, then to the VLAN tab and I add it assigning it to the em1 interface, I reboot the box, connect to the webinterface again then I go to the assign option and add a new interface using the VLAN I just created, then I go to the newly interface, I rename it(DMZ) and add the IP address and the subnet, remember to save changes in every step you make of the setup, create the pertinent rules(very important) then to test it I just go to the DHCP service and I use a short range so I can connect to the newly subnet using my laptop. hope it helps. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Patch: Realtek 8102EL support for Dell Mini 10v (1010)
On Fri, Jul 24, 2009 at 2:37 PM, Ingmar Huppingmar.h...@semperian.co.uk wrote: pfSense 1.2.3-RC1. FreeBSD RELENG_7_2 doesn't have support for this as far as I can tell (but FreeBSD HEAD [8.0] does as I've just noticed). Thanks, I have committed this and snapshots should start building them soon. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
From: Victor Padro [mailto:vpa...@gmail.com] Sent: July 24, 2009 2:38 PM On Fri, Jul 24, 2009 at 1:19 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: The deployment I was planning earlier that referenced the 1u case reco from everybody just got accelerated, the PIX that I was replacing died:) I have a single wan(dhcp)(em0) and lan(192.168.0.1)(em1) interface, both working as expected. On the switch that the lan(192.168.0.1)(em1) interface is on, there is a tagged VLAN(3) I need access to, so I may forward external ports from the wan to it, and write rules to allow certain ports access between the lan and vlan(3). I set up a vlan(3) on my lan int(em1) in the assign menu, the switch is set to untag traffic into the default lan, and allow tagged traffic into vlan(3). With my opt1 interface on a new subnet that matches vlan(3), how do I configure it now? I am kinda pressed as I have scads of people lined up wondering when connectivity will be restored and I hadn't finished figuring out how I was going to migrate off the pix, presently I had only been reading about the vpn config as I assumed that would be the most challenging:) Any help would be appreciated! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org Here's what I do using the same setup as you have: I assign the WAN(em0) and the LAN(em1), to configure the conectivity to the internet, I connect to the web interface, create some basic rules(so I can access my adsl modem), then I go to the assign option, then to the VLAN tab and I add it assigning it to the em1 interface, I reboot the box, connect to the webinterface again then I go to the assign option and add a new interface using the VLAN I just created, then I go to the newly interface, I rename it(DMZ) and add the IP address and the subnet, remember to save changes in every step you make of the setup, create the pertinent rules(very important) then to test it I just go to the DHCP service and I use a short range so I can connect to the newly subnet using my laptop. hope it helps. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- If he is about to follow your moto Doing a thing well is often a waste of time. then it's probably right thing to do -))) - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
Here's what I do using the same setup as you have: I assign the WAN(em0) and the LAN(em1), to configure the conectivity to the internet, I connect to the web interface, create some basic rules(so I can access my adsl modem), then I go to the assign option, then to the VLAN tab and I add it assigning it to the em1 interface, I reboot the box, connect to the webinterface again then I go to the assign option and add a new interface using the VLAN I just created, then I go to the newly interface, I rename it(DMZ) and add the IP address and the subnet, remember to save changes in every step you make of the setup, create the pertinent rules(very important) then to test it I just go to the DHCP service and I use a short range so I can connect to the newly subnet using my laptop. hope it helps. Thanks everyone! Sorry for the bad description, I'm not thinking all that clear atm:) So I do only have two interfaces, and the switch is vlan capable and has multiple vlans setup. The production lan is untagged on (1) on all ports (not my setup) and there is a second vlan that I am interested in (3) that is tagged on the LAN interface of the pfSense box. So I need to access hosts and forward traffic to hosts on vlan3 through LAN interface from both my lan and wan interface. So I assigned a vlan (3) on parent interface (lan) and rebooted. I then created a new interface opt1 on the vlan interface above and gave it an ip on vlan 3's subnet. I then added rules for testing allowing all traffic from opt1-* as lan has the lan-* rule already. Every step was saved but I must still be missing something. The switch most certainly is allowing tagged traffic into vlan3 on the port the lan interface is on. What have I missed, I still can't see hosts on vlan3 from the lan. jlc
RE: [pfSense Support] vlan help
From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: July 24, 2009 2:56 PM Here's what I do using the same setup as you have: I assign the WAN(em0) and the LAN(em1), to configure the conectivity to the internet, I connect to the web interface, create some basic rules(so I can access my adsl modem), then I go to the assign option, then to the VLAN tab and I add it assigning it to the em1 interface, I reboot the box, connect to the webinterface again then I go to the assign option and add a new interface using the VLAN I just created, then I go to the newly interface, I rename it(DMZ) and add the IP address and the subnet, remember to save changes in every step you make of the setup, create the pertinent rules(very important) then to test it I just go to the DHCP service and I use a short range so I can connect to the newly subnet using my laptop. hope it helps. Thanks everyone! Sorry for the bad description, I'm not thinking all that clear atm:) So I do only have two interfaces, and the switch is vlan capable and has multiple vlans setup. The production lan is untagged on (1) on all ports (not my setup) and there is a second vlan that I am interested in (3) that is tagged on the LAN interface of the pfSense box. So I need to access hosts and forward traffic to hosts on vlan3 through LAN interface from both my lan and wan interface. So I assigned a vlan (3) on parent interface (lan) and rebooted. I then created a new interface opt1 on the vlan interface above and gave it an ip on vlan 3's subnet. I then added rules for testing allowing all traffic from opt1-* as lan has the lan-* rule already. Every step was saved but I must still be missing something. The switch most certainly is allowing tagged traffic into vlan3 on the port the lan interface is on. What have I missed, I still can't see hosts on vlan3 from the lan. jlc First of all make sure you can reach hosts on vlan3 from pfSense itself. Eugene - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 1:55 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: Here's what I do using the same setup as you have: I assign the WAN(em0) and the LAN(em1), to configure the conectivity to the internet, I connect to the web interface, create some basic rules(so I can access my adsl modem), then I go to the assign option, then to the VLAN tab and I add it assigning it to the em1 interface, I reboot the box, connect to the webinterface again then I go to the assign option and add a new interface using the VLAN I just created, then I go to the newly interface, I rename it(DMZ) and add the IP address and the subnet, remember to save changes in every step you make of the setup, create the pertinent rules(very important) then to test it I just go to the DHCP service and I use a short range so I can connect to the newly subnet using my laptop. hope it helps. Thanks everyone! Sorry for the bad description, I'm not thinking all that clear atm:) So I do only have two interfaces, and the switch is vlan capable and has multiple vlans setup. The production lan is untagged on (1) on all ports (not my setup) and there is a second vlan that I am interested in (3) that is tagged on the LAN interface of the pfSense box. So I need to access hosts and forward traffic to hosts on vlan3 through LAN interface from both my lan and wan interface. So I assigned a vlan (3) on parent interface (lan) and rebooted. I then created a new interface opt1 on the vlan interface above and gave it an ip on vlan 3's subnet. I then added rules for testing allowing all traffic from opt1-* as lan has the lan-* rule already. Every step was saved but I must still be missing something. The switch most certainly is allowing tagged traffic into vlan3 on the port the lan interface is on. What have I missed, I still can't see hosts on vlan3 from the lan. jlc need to assign rules in the lan in order to see the VLAN subnet. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
First of all make sure you can reach hosts on vlan3 from pfSense itself. Right, I tried a ping from the web gui on OPT1 to a host and got nothing. I am positive the switch is setup right, I am looking at it now and it is allowing tagged traffic from the interface onto vlan 3. I am still missing something... Thanks guys! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 2:11 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: First of all make sure you can reach hosts on vlan3 from pfSense itself. Right, I tried a ping from the web gui on OPT1 to a host and got nothing. I am positive the switch is setup right, I am looking at it now and it is allowing tagged traffic from the interface onto vlan 3. I am still missing something... Thanks guys! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org is the LAN interface cable plugged into a tagged or untagged port? -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
need to assign rules in the lan in order to see the VLAN subnet. Well, the lan has a rule matching packets in on LAN interface to *. I assume I can't get broader than that? Is there still something else that is specific for a vlan? The * destination should match packets headed to the opt1 interface? Thanks! jlc
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 2:16 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: need to assign rules in the lan in order to see the VLAN subnet. Well, the lan has a rule matching packets in on LAN interface to *. I assume I can't get broader than that? Is there still something else that is specific for a vlan? The * destination should match packets headed to the opt1 interface? Thanks! jlc yes but becareful with that rule, it allows anyone in the LAN to access anything in the internet and the OPT1, did you check the tagged ports and the untagged ones, as I stated in a previous email? -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 3:11 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: First of all make sure you can reach hosts on vlan3 from pfSense itself. Right, I tried a ping from the web gui on OPT1 to a host and got nothing. I am positive the switch is setup right, I am looking at it now and it is allowing tagged traffic from the interface onto vlan 3. I am still missing something... I suspect it may not actually be tagged, try to tcpdump on the VLAN interface and see what's on there, then switch to the parent, with the VLAN specified as a filter (tcpdump -ni parentinterface vlan 3) and you'll see what's getting tagged, likely nothing. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
I suspect it may not actually be tagged, try to tcpdump on the VLAN interface and see what's on there, then switch to the parent, with the VLAN specified as a filter (tcpdump -ni parentinterface vlan 3) and you'll see what's getting tagged, likely nothing. Bingo, there was an issue! I have to jump on the phone, but I am sure its good now. BRB guys :) Thanks! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
yes but becareful with that rule, it allows anyone in the LAN to access anything in the internet and the OPT1, did you check the tagged ports and the untagged ones, as I stated in a previous email? Ok guys, I am waiting on Chris to get some paid support. In the meantime I reconfigured some hardware and ran some tests. No more vlan config inside pfSense, I have 3 physical interfaces, lan, wan, opt1. wan is segmented off to a dsl which works, nat with lan is functioning. Opt1 is on a port that untags into vlan3. I *know* this works as I just hooked up a rhel host with an IP in the vlan 3 subnet that *does not* have vlan config and it can see hosts in vlan3. Opt1 has an ip in the vlan3 subnet but still no connectivity. My rules are lan-* and opt1-*. I have no gateway configured on Opt1, no bridging, clients in vlan3 have their gateway set to opt1's ip which is set to 192.168.2.1/32. What else can I check? Thanks for everything! jlc
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 6:11 PM, Victor Padrovpa...@gmail.com wrote: On Fri, Jul 24, 2009 at 5:59 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: yes but becareful with that rule, it allows anyone in the LAN to access anything in the internet and the OPT1, did you check the tagged ports and the untagged ones, as I stated in a previous email? Ok guys, I am waiting on Chris to get some paid support. In the meantime I reconfigured some hardware and ran some tests. No more vlan config inside pfSense, I have 3 physical interfaces, lan, wan, opt1. wan is segmented off to a dsl which works, nat with lan is functioning. Opt1 is on a port that untags into vlan3. I *know* this works as I just hooked up a rhel host with an IP in the vlan 3 subnet that *does not* have vlan config and it can see hosts in vlan3. Opt1 has an ip in the vlan3 subnet but still no connectivity. My rules are lan-* and opt1-*. I have no gateway configured on Opt1, no bridging, clients in vlan3 have their gateway set to opt1's ip which is set to 192.168.2.1/32. What else can I check? Thanks for everything! jlc I stated before in order to test connectivity with the opt1 whether is a vlan or a physical interface I enable the DHCP server and connect my laptop, why don't you try to do this? Again, are you sure your switch is configured correctly? Meaning if the ports are currently tagged/untagged, my setup is like this: ports 1-12 - LAN clients/no tagging ports 13-24 - VLAN3/untagged - OPT1 clients ports 26 - LAN/VLAN3/tagged(this is the port that is connected to the em1 interface port 25 - cascading port - LAN Hope it helps. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny OT: BTW, you are subscribed into the CentOS mailing list, right? somehow your name was known for me :) cheers. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
OT: BTW, you are subscribed into the CentOS mailing list, right? somehow your name was known for me :) Yup, and I do have working connectivity into the vlan from that switch as I said I hooked up an RHEL host and it worked (No laptop, just big iron:). It is just pfsense I don’t have setup right, it must be something trivial at this point I have overlooked? jcl
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 7:59 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: No more vlan config inside pfSense, I have 3 physical interfaces, lan, wan, opt1. wan is segmented off to a dsl which works, nat with lan is functioning. Opt1 is on a port that untags into vlan3. I *know* this works as I just hooked up a rhel host with an IP in the vlan 3 subnet that *does not* have vlan config and it can see hosts in vlan3. Opt1 has an ip in the vlan3 subnet but still no connectivity. My rules are lan-* and opt1-*. I have no gateway configured on Opt1, no bridging, clients in vlan3 have their gateway set to opt1's ip which is set to 192.168.2.1/32. What else can I check? Thanks for everything! jlc Have you configured rules for natting from opt1 out to the internet? I know that for lan are configured automagically, but I'm not sure what happens with opt1. Also, does another host in vlan3 see the pfsense box (either by ping or checking if it resolves the MAC address of pfsense's ip, using arp -a). Regards. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 7:30 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: OT: BTW, you are subscribed into the CentOS mailing list, right? somehow your name was known for me :) Yup, and I do have working connectivity into the vlan from that switch as I said I hooked up an RHEL host and it worked (No laptop, just big iron:). It is just pfsense I don’t have setup right, it must be something trivial at this point I have overlooked? Turns out it was indeed, after we talked on the phone and I checked things out on a Gotomeeting session, just the subnet mask was wrong. All good now. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] vlan help
On Fri, Jul 24, 2009 at 7:32 PM, Chris Buechlerc...@pfsense.org wrote: On Fri, Jul 24, 2009 at 7:30 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: OT: BTW, you are subscribed into the CentOS mailing list, right? somehow your name was known for me :) Yup, and I do have working connectivity into the vlan from that switch as I said I hooked up an RHEL host and it worked (No laptop, just big iron:). It is just pfsense I don’t have setup right, it must be something trivial at this point I have overlooked? Turns out it was indeed, after we talked on the phone and I checked things out on a Gotomeeting session, just the subnet mask was wrong. All good now. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org that's good to know, Chris. :) -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] OT: International mailing lists
Hello everyone, I was wondering if there are any plans/suggestion to create different language support mailing lists(spanish, german, french, etc.) as you already have in the forums? There are a lot of people from all over the world who are using pfSense as their firewal/router solution, including me and someother people I know in Latin America and Spain who can contribute in their native language. And I know that Josep Bellera would be one of the main supporters in the Spanish list. TIA. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] OT: International mailing lists
I would sign up for a spanish list too. As a side note, it seems that I'm my country (Argentina) pfsense is not widely known. I've been working with commercial firewalls (mostly Check Point, Nokia and Cisco ASA) and pfsense does what most medium to small companies need for a fraction (a really small one indeed) than what most people needs. I'm willing to start translating documentation and/or site if it is needed. Regards. On Fri, Jul 24, 2009 at 9:43 PM, Victor Padrovpa...@gmail.com wrote: Hello everyone, I was wondering if there are any plans/suggestion to create different language support mailing lists(spanish, german, french, etc.) as you already have in the forums? There are a lot of people from all over the world who are using pfSense as their firewal/router solution, including me and someother people I know in Latin America and Spain who can contribute in their native language. And I know that Josep Bellera would be one of the main supporters in the Spanish list. TIA. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] vlan help
Turns out it was indeed, after we talked on the phone and I checked things out on a Gotomeeting session, just the subnet mask was wrong. All good now. Damnit Chris, I thought we'd keep that to ourselves :) The crazy thing was I stared at it and was like No that's right... heh, happens sometimes I guess. I should know better than to let everyone else's hysteria get to me:) Thanks for the super fast help and all the effort from everyone! Hopefully when I have a real problem next time I won't be written off as a twit:) jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] OT: International mailing lists
On Fri, Jul 24, 2009 at 8:43 PM, Victor Padrovpa...@gmail.com wrote: Hello everyone, I was wondering if there are any plans/suggestion to create different language support mailing lists(spanish, german, french, etc.) as you already have in the forums? m0n0wall has adopted the policy of post in whatever language you want, and there aren't many posts in languages other than English. I think that's fine here too, feel free to post in whatever language you like. There are 15-20 times as many people on the forum, so I don't know if there would be enough demand to justify creating a bunch of lists. If there's enough volume in any particular language to justify a separate list, we can provide one. We're going to switch to a new list server in the next couple weeks, I can setup a list in Spanish when we switch over if people are interested. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] OT: International mailing lists
On Fri, Jul 24, 2009 at 9:26 PM, Chris Buechlerc...@pfsense.org wrote: On Fri, Jul 24, 2009 at 8:43 PM, Victor Padrovpa...@gmail.com wrote: Hello everyone, I was wondering if there are any plans/suggestion to create different language support mailing lists(spanish, german, french, etc.) as you already have in the forums? m0n0wall has adopted the policy of post in whatever language you want, and there aren't many posts in languages other than English. I think that's fine here too, feel free to post in whatever language you like. There are 15-20 times as many people on the forum, so I don't know if there would be enough demand to justify creating a bunch of lists. If there's enough volume in any particular language to justify a separate list, we can provide one. We're going to switch to a new list server in the next couple weeks, I can setup a list in Spanish when we switch over if people are interested. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org I think it's better if there is a multilanguage and english only mailing list, not everyone would like to see a post written in french, italian in their inbox, right? But you're right we need to get enough people to justify it, in this case the spanish mailing list, so I'll post this in the forums in order to gather all of them. Thank you, Chris. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 Doing a thing well is often a waste of time. -- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] 1U Case Reco
Curtis, Thanks for recommending this, that looks like a nice system to use for pfSense. How about having a doc.pfsense.org page with recommendations like this. Maybe it could be called unofficial recommendations, or community recommendations. I have been to all of the sites on the main recommended vendors page in the past week, and ended up buying a couple of Alix systems from Netgate. (Which shipped within 4 hours of me faxing in the PO BTW.) I wouldn't want the community recommendation page to take away from the prime placement that the companies that have supported the project get, but it would be nice to have a list of suggestions such as this one from Curtis. Josh Curtis LaMasters wrote: I don't know if it meets all of your requirements but I do quite a few installs on http://www.ironsystems.com AR230. Curtis LaMasters http://www.curtis-lamasters.com http://www.builtnetworks.com On Tue, Jul 21, 2009 at 7:46 PM, Joseph L. Casalejcas...@activenetwerx.com wrote: Anyone know who makes a decent 1u case with the eth and peripheral slot open in the front and that also redirects the leds up front for a Soekris 5501? If need be, I am open to a different mobo suggestion as well, I just need ~4 eth ports and an embedded design resilient to any potential power outages at this location. Thanks, jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
