Re: [pfSense Support] Issue upgrading from 1.2.3-RC3 to RELEASE
John Mitchell schreef: No worries, thanks for your help, I don't suppose there is any way to backup the RRD Graph data is there? (More specifiically the Traffic portion). Trying to get a years worth of data going ;) Copy off the contents of /var/db/rrd Regards, Seth Many many thanks for all your help. mitch Scott Ullrich wrote: On Thu, Dec 10, 2009 at 7:04 PM, mitch mitche...@gmail.com wrote: Same error I'm afraid, status at top says something went wrong updating the fstab entry, Log still reports same error message. Please see my response here: http://forum.pfsense.org/index.php/topic,20347.msg108712.html#msg108712 In a nutshell, NanoBSD had many many changes up until a month or two ago. You will need to reflash. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Issue upgrading from 1.2.3-RC3 to RELEASE
Am 11.12.2009 um 01:25 schrieb Scott Ullrich: On Thu, Dec 10, 2009 at 7:12 PM, Chris Buechler cbuech...@gmail.com wrote: I don't believe there were any changes between RC3 and release though? It's been a while since the image size changed. Yes, there where a couple NanoBSD fixes. One in particular was on Thu Sep 10 18:50:55 2009 -0400 Hi, is it possible to do the update manually? When I look at the original BSD scripts to update a partition, there are only a few steps to do... Tom - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Squid Guard with Alix box 1.2.3 embedded
Hello, I wanted to know if It was Ok to install SquidGuard package with an embedded version of pfSense working on NanoBSD ? I plan to deploy It on Alix board… As the system is mounted RO… I am not certain this will be the best settings. Will this still be ok - or do you have any other suggestion ? What are your advise ? Thanks. Gregober --- PGP ID -- 0x1BA3C2FD bsd @at@ todoo.biz P Please consider your environmental responsibility before printing this e-mail - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Issue upgrading from 1.2.3-RC3 to RELEASE
On Thu, Dec 10, 2009 at 07:08:15PM -0500, Scott Ullrich wrote: In a nutshell, NanoBSD had many many changes up until a month or two ago. You will need to reflash. Is it safe to turn NanoBSD images (e.g. the 4 GByte one) from embedded to full install in the old way (changing /etc/platfom from embedded ot pfSense and rebooting)? -- Eugen* Leitl a href=http://leitl.org;leitl/a http://leitl.org __ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Squid Guard with Alix box 1.2.3 embedded
On 12/11/2009 5:21 AM, bsd wrote: I wanted to know if It was Ok to install SquidGuard package with an embedded version of pfSense working on NanoBSD ? I plan to deploy It on Alix board… As the system is mounted RO… I am not certain this will be the best settings. Will this still be ok - or do you have any other suggestion ? What are your advise ? It works, mostly, you just need to take some care. Make sure you set squid to a disable cache or have a cache size of 0, and someone on the forums reported that squidguard's blacklist functionality may not be quite working on embedded. When fixing up the packages, I installed and configured it with basic settings and it did work. I mainly tested the ACLs and Destination filtering, etc. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] RC3 to RELEASE - Verify
I just upgraded a 1.2.1-release directly to 1.2.3-release with no hitches at all. wasn't a particularly busy box but still relatively important, and no complaints so far! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] RC3 to RELEASE - Verify
How did you update youir box? With an update file or new full installation? -Oorspronkelijk bericht- Van: Paul Mansfield [mailto:it-admin-pfse...@taptu.com] Verzonden: vrijdag 11 december 2009 15:59 Aan: support@pfsense.com Onderwerp: Re: [pfSense Support] RC3 to RELEASE - Verify I just upgraded a 1.2.1-release directly to 1.2.3-release with no hitches at all. wasn't a particularly busy box but still relatively important, and no complaints so far! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] RC3 to RELEASE - Verify
I just did the upgrade via the web GUI.. it went down w/o a hitch... -- J.D. Bronson Information Technology Aurora Health Care - Milwaukee WI - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] RC3 to RELEASE - Verify
On 11/12/09 15:00, R. M. Molenaar wrote: How did you update youir box? With an update file or new full installation? with the update file using the web ui. -Oorspronkelijk bericht- Van: Paul Mansfield [mailto:it-admin-pfse...@taptu.com] Verzonden: vrijdag 11 december 2009 15:59 Aan: support@pfsense.com Onderwerp: Re: [pfSense Support] RC3 to RELEASE - Verify I just upgraded a 1.2.1-release directly to 1.2.3-release with no hitches at all. wasn't a particularly busy box but still relatively important, and no complaints so far! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] hybrid storage?
I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. I was wondering however, if it would be difficult, inadvisable, or of no advantage to hack together an embedded system to run from a read-only CF card that mounts certain filesystems on writable media, such as a hard drive, where temp data such as disk cache and audio recordings would live. I don't know a tonne about the innards of pfsense and I've never played with the nanoBSD version. Is this something that would work in principle? Would it exploit the benefits of a read-only root filesystem (cold-reset resiliency, improved fs security, system responsiveness)? Would it require a lot of messing, besides manually altering /etc/fstab? Just wondering. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On 12/11/2009 10:50 AM, David Burgess wrote: I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. I was wondering however, if it would be difficult, inadvisable, or of no advantage to hack together an embedded system to run from a read-only CF card that mounts certain filesystems on writable media, such as a hard drive, where temp data such as disk cache and audio recordings would live. I've thought a bit about this in the past, and it might be doable in the future or via some kind of filesystem management package, if someone were to come up with one, but it isn't something that would be recommended (at least not yet) or supported. I don't know a tonne about the innards of pfsense and I've never played with the nanoBSD version. Is this something that would work in principle? Would it exploit the benefits of a read-only root filesystem (cold-reset resiliency, The moment you have a drive mounted rw, you lose this. :-) improved fs security, system responsiveness)? Would it require a lot of messing, besides manually altering /etc/fstab? You'd also have to alter the packages (or create appropriate symlinks if they can be followed by the application) to point those directories or files at the new storage location. Some packages might have built-in path settings and you'd just need to change the paths and hit save. Otherwise, you may need to alter the code for the package. As with most things, if you want to experiment, it's up to you, but do so with caution (and plenty of backups) and remember that you'll be out on a limb without a net to catch you if something breaks. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On Fri, Dec 11, 2009 at 9:13 AM, Jim Pingle li...@pingle.org wrote: (cold-reset resiliency, The moment you have a drive mounted rw, you lose this. :-) Well you lose it on the rw partitions, but if the core system is mounted to RAM from a read-only filesystem, then at least the core system has that resiliency, no? As with most things, if you want to experiment, it's up to you, but do so with caution (and plenty of backups) and remember that you'll be out on a limb without a net to catch you if something breaks. Sounds like I have a tinkering project (to add to the list!) :) Seems to me with some interest and support it could eventually become a standard method for running a package manager on an embedded (/hybrid) system I'd be interested to know if anybody has been down this road at all. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
Hello David... This is eaxctly what I want to work on :) I came to this list and was given only two options... 1) use nanofrebsd... 2) use regular hardrive... I din't like either one My needs were exactly like yoursFreeSwitch and Squid... I am pretty good with hardware, but terrible with software... :( I have such beast running, but I am not happy with the setup, since I am using a microdrive... What I did was a dual CF card adapter...the CF is read onlyand the microdrive...well..you know...all the other stuff... I will like to replace the microdrive with an electronic storage device, but haven't found one not affected by the limitations of the writes on the hardware... :( Anyone know more about this?? - Original Message - From: David Burgess apt@gmail.com To: support support@pfsense.com Sent: Friday, December 11, 2009 10:50 AM Subject: [pfSense Support] hybrid storage? I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. I was wondering however, if it would be difficult, inadvisable, or of no advantage to hack together an embedded system to run from a read-only CF card that mounts certain filesystems on writable media, such as a hard drive, where temp data such as disk cache and audio recordings would live. I don't know a tonne about the innards of pfsense and I've never played with the nanoBSD version. Is this something that would work in principle? Would it exploit the benefits of a read-only root filesystem (cold-reset resiliency, improved fs security, system responsiveness)? Would it require a lot of messing, besides manually altering /etc/fstab? Just wondering. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] RC3 to RELEASE - Verify
On Fri, Dec 11, 2009 at 09:31:38AM -0600, J.D. Bronson wrote: I just did the upgrade via the web GUI.. it went down w/o a hitch... Same thing here. One thing that was a potential problem in the past was https. Switching to http might fix your problems. Or, do a console install. -- Eugen* Leitl a href=http://leitl.org;leitl/a http://leitl.org __ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] RC3 to RELEASE - Verify
On Fri, Dec 11, 2009 at 11:27 AM, Eugen Leitl eu...@leitl.org wrote: On Fri, Dec 11, 2009 at 09:31:38AM -0600, J.D. Bronson wrote: I just did the upgrade via the web GUI.. it went down w/o a hitch... Same thing here. One thing that was a potential problem in the past was https. Shouldn't be a problem anymore, I upgraded several HTTPS systems. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On Fri, Dec 11, 2009 at 9:20 AM, Manny A. Wise mannyw...@gmail.com wrote: My needs were exactly like yoursFreeSwitch and Squid... I am pretty good with hardware, but terrible with software... :( My software background is a lot more linux than BSD, but a person can learn ;) Some cursory investigation reveals: # find / -name freeswitch /usr/local/www/packages/freeswitch /usr/local/freeswitch /usr/local/freeswitch/bin/freeswitch # find / -name squid /usr/local/sbin/squid /usr/local/share/doc/squid /usr/local/share/examples/squid /usr/local/etc/squid /usr/local/libexec/squid /usr/local/squid /var/mail/squid /var/squid This is from a full generic install. If one mounted a dedicated device at /usr/local it appears freeswitch would live happily there. I'm not sure what's going on with squid, as it appears to have cache folders in 2 or three different places. The next question would be whether it would be easier to graft individual packages or a package manager into the embedded install, or to modify the full install to have it mount the root fs into RAM. If I understand history correctly, the latter method was abandoned for embedded pfsense in favour of the nanobsd-based image, which leads me to think that the former method is probably less off the beaten path. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On 11/12/09 15:50, David Burgess wrote: I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. can you do overlay file systems on freeBSD, so that the base OS and config is read-only and you overlay a read-write file system at a very late stage in booting IF that overlay is uncorrupted? when you've made changes to config, if the worst happens simply boot without the overlay if the overlay is good and fine then push it down to the base file system by remounting r/w and copying down. hope this is clear? the other choice would be to have two bootable installs on the disk and rsync one to the when you're certain it's working OK, so you have an instant fallback Paul - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On 12/11/2009 12:22 PM, Paul Mansfield wrote: can you do overlay file systems on freeBSD, so that the base OS and config is read-only and you overlay a read-write file system at a very late stage in booting IF that overlay is uncorrupted? when you've made changes to config, if the worst happens simply boot without the overlay You can with unionfs. I'm not sure how well it's working these days in practice. (As far as being production ready for everyday use as opposed to used in the installer, etc) - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On Fri, Dec 11, 2009 at 10:30 AM, Jim Pingle li...@pingle.org wrote: On 12/11/2009 12:22 PM, Paul Mansfield wrote: can you do overlay file systems on freeBSD, so that the base OS and config is read-only and you overlay a read-write file system at a very late stage in booting IF that overlay is uncorrupted? when you've made changes to config, if the worst happens simply boot without the overlay You can with unionfs. I'm not sure how well it's working these days in practice. (As far as being production ready for everyday use as opposed to used in the installer, etc) Well, it didn't take long for this conversation to go over my head. I've got some work to do to learn about overlay filesystems and unionfs. I do love a good learning project. db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On 12/11/2009 12:33 PM, David Burgess wrote: On Fri, Dec 11, 2009 at 10:30 AM, Jim Pingle li...@pingle.org wrote: On 12/11/2009 12:22 PM, Paul Mansfield wrote: can you do overlay file systems on freeBSD, so that the base OS and config is read-only and you overlay a read-write file system at a very late stage in booting IF that overlay is uncorrupted? when you've made changes to config, if the worst happens simply boot without the overlay You can with unionfs. I'm not sure how well it's working these days in practice. (As far as being production ready for everyday use as opposed to used in the installer, etc) Well, it didn't take long for this conversation to go over my head. I've got some work to do to learn about overlay filesystems and unionfs. I do love a good learning project. It would probably be much easier to alter only the settings of a package to point to an alternate storage location. You do not need to keep /usr/local stuff rw, it typically does not change (especially the binaries). There may be some system settings in /usr/local/etc/ that might need carried over, but if you can configure paths for things in freeswitch like you can in squid, it shouldn't be that hard. Squid would be easy: Make a new mount point, mount a filesystem, point the cache directory at /otherdrive/squid/cache/ instead of /var/squid/cache. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] pfSense 1.2.3 release now available!
On Thu, Dec 10, 2009 at 6:41 PM, Chris Buechler c...@pfsense.org wrote: Details here: http://blog.pfsense.org/?p=531 - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org Sorry if I'm missing it somewhere but is there a changelog between 1.2.3-RC3 and 1.2.3-RELEASE? The notes in the blog post seem to reference anything that changed since 1.2.2.
Re: [pfSense Support] RC3 to RELEASE - Verify
Chris Buechler schreef: On Fri, Dec 11, 2009 at 11:27 AM, Eugen Leitl eu...@leitl.org wrote: On Fri, Dec 11, 2009 at 09:31:38AM -0600, J.D. Bronson wrote: I just did the upgrade via the web GUI.. it went down w/o a hitch... Same thing here. One thing that was a potential problem in the past was https. Shouldn't be a problem anymore, I upgraded several HTTPS systems. Worked fine for me since forever really. And that's a really long way back. Only one I know of, and was fixed recently, was upgrading to a 2.0 snapshot. Regards, Seth - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] pfSense 1.2.3 release now available!
On Fri, Dec 11, 2009 at 1:22 PM, Oliver Hansen oliver.han...@gmail.com wrote: Sorry if I'm missing it somewhere but is there a changelog between 1.2.3-RC3 and 1.2.3-RELEASE? The notes in the blog post seem to reference anything that changed since 1.2.2. Complete list of changes is here: https://rcs.pfsense.org/projects/pfsense/repos/mainline/logs/RELENG_1_2 Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
On Dec 11, 2009, at 6:13 AM, Jim Pingle wrote: On 12/11/2009 10:50 AM, David Burgess wrote: I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. I was wondering however, if it would be difficult, inadvisable, or of no advantage to hack together an embedded system to run from a read-only CF card that mounts certain filesystems on writable media, such as a hard drive, where temp data such as disk cache and audio recordings would live. I've thought a bit about this in the past, and it might be doable in the future or via some kind of filesystem management package, if someone were to come up with one, but it isn't something that would be recommended (at least not yet) or supported. I don't know a tonne about the innards of pfsense and I've never played with the nanoBSD version. Is this something that would work in principle? Would it exploit the benefits of a read-only root filesystem (cold-reset resiliency, The moment you have a drive mounted rw, you lose this. :-) improved fs security, system responsiveness)? Would it require a lot of messing, besides manually altering /etc/fstab? You'd also have to alter the packages (or create appropriate symlinks if they can be followed by the application) to point those directories or files at the new storage location. Some packages might have built-in path settings and you'd just need to change the paths and hit save. Otherwise, you may need to alter the code for the package. As with most things, if you want to experiment, it's up to you, but do so with caution (and plenty of backups) and remember that you'll be out on a limb without a net to catch you if something breaks. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org I might be missing the boat here, but what about using a 2.5 SSD instead of flash + normal HD? That way you get the benefit of solid state, plus you have the space performance for a regular file system so you can run all the packages you want. Granted, SSDs aren't the cheapest things around, but it seems like a simpler solution. I've been considering an SSD paired with a 19 Supermicro case + intel atom that was pointed out in another discussion thread. Besides the cost of the SSD, can anyone fill me in on why an SSD wouldn't be good for running the full version of PFsense with packages? Jeremy - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
I might be missing the boat here, but what about using a 2.5 SSD instead of flash + normal HD? That way you get the benefit of solid state, plus you have the space performance for a regular file system so you can run all the packages you want. Granted, SSDs aren't the cheapest things around, but it seems like a simpler solution. I've been considering an SSD paired with a 19 Supermicro case + intel atom that was pointed out in another discussion thread. Besides the cost of the SSD, can anyone fill me in on why an SSD wouldn't be good for running the full version of PFsense with packages? Seth recomends the relatively small Kingston 40GB ssd, it's based on the Intel controller and should be adequate for your purpose and the speed of it should approach light speed. However, do keep the partition smaller then the total size of the SSD. This will keep the performance of the SSD quite solid over time, regardless of brand and model. e.g. 1 32GB partition instead of spanning the full 40GB. A couple of gigabytes is enough to keep free unwritten blocks the SSD can use for remapping. 30GB of squid cache is a lot though. Regards, Seth - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
SSD work just fine.you don't need CF and SSDwith a single SSD 2.5 ide device it get the job done perfectly...BUT!! is always that butALL the SSD have limited life cycle even the industrial ones, yes, it's 10 million of writes...but you know some day, sooner or later is going to diedsure more later then sooner.. :) but we are looking for a definitive technical solution.. :) just picky people I gues. ;) . - Original Message - From: Jeremy Bennett jbenn...@obtusion.com To: support@pfsense.com Sent: Friday, December 11, 2009 2:36 PM Subject: Re: [pfSense Support] hybrid storage? On Dec 11, 2009, at 6:13 AM, Jim Pingle wrote: On 12/11/2009 10:50 AM, David Burgess wrote: I've been happily using 1.2.3-RC1 for many months now on a Soekris net5501 and a 100GB 2.5 SATA drive. I like the idea of an embedded system on a CF card, but that's not possible or advisable for me as I'm running the squid and freeswitch packages. I was wondering however, if it would be difficult, inadvisable, or of no advantage to hack together an embedded system to run from a read-only CF card that mounts certain filesystems on writable media, such as a hard drive, where temp data such as disk cache and audio recordings would live. I've thought a bit about this in the past, and it might be doable in the future or via some kind of filesystem management package, if someone were to come up with one, but it isn't something that would be recommended (at least not yet) or supported. I don't know a tonne about the innards of pfsense and I've never played with the nanoBSD version. Is this something that would work in principle? Would it exploit the benefits of a read-only root filesystem (cold-reset resiliency, The moment you have a drive mounted rw, you lose this. :-) improved fs security, system responsiveness)? Would it require a lot of messing, besides manually altering /etc/fstab? You'd also have to alter the packages (or create appropriate symlinks if they can be followed by the application) to point those directories or files at the new storage location. Some packages might have built-in path settings and you'd just need to change the paths and hit save. Otherwise, you may need to alter the code for the package. As with most things, if you want to experiment, it's up to you, but do so with caution (and plenty of backups) and remember that you'll be out on a limb without a net to catch you if something breaks. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org I might be missing the boat here, but what about using a 2.5 SSD instead of flash + normal HD? That way you get the benefit of solid state, plus you have the space performance for a regular file system so you can run all the packages you want. Granted, SSDs aren't the cheapest things around, but it seems like a simpler solution. I've been considering an SSD paired with a 19 Supermicro case + intel atom that was pointed out in another discussion thread. Besides the cost of the SSD, can anyone fill me in on why an SSD wouldn't be good for running the full version of PFsense with packages? Jeremy - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
SSD woul definitely bring the power, speed sound benefits of flash. It only lacks the perfect recovery of a read-only root fs. A big improvement over spinning media nevertheless. Regarding reserved unused space on an SSD, Anand recently recommended 20% reserved, and more recently stated 'the more you reserve, the better it will perform' (paraphrasing). Note also that some SSD's already reserve space, though mostly the higher-end ones. db Sent on the TELUS Mobility network with BlackBerry - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] hybrid storage?
apt@gmail.com schreef: SSD woul definitely bring the power, speed sound benefits of flash. It only lacks the perfect recovery of a read-only root fs. A big improvement over spinning media nevertheless. The writes should be fine really, worst case is that it will fail to write at some point. CF is really no magic bullet either, I have had a cheap CF card fail with a embedded install on it which prevents writes. So that is no panacea either. Swings the other way too though. The Apacer 133x 1GB card I purchased in 2006 which has been in my development box since that day with a full install on it, has been fine and has not failed me yet. Regarding reserved unused space on an SSD, Anand recently recommended 20% reserved, and more recently stated 'the more you reserve, the better it will perform' (paraphrasing). Note also that some SSD's already reserve space, though mostly the higher-end ones. Sidenote. /Better performance/Better performance _over time_. Not in the absolute sense. Just a few GB will do in pretty much all cases. Not like you are writing gigabytes at a time with squid either. Regards, Seth db Sent on the TELUS Mobility network with BlackBerry - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Issue upgrading from 1.2.3-RC3 to RELEASE
On Fri, Dec 11, 2009 at 4:41 AM, Tom Müller-Kortkamp tmu...@kommunity.net wrote: Am 11.12.2009 um 01:25 schrieb Scott Ullrich: On Thu, Dec 10, 2009 at 7:12 PM, Chris Buechler cbuech...@gmail.com wrote: I don't believe there were any changes between RC3 and release though? It's been a while since the image size changed. Yes, there where a couple NanoBSD fixes. One in particular was on Thu Sep 10 18:50:55 2009 -0400 Hi, is it possible to do the update manually? Only in the exact same way that the GUI or console upgrade works, and assuming that last image size change is what caused that update to stop working, it will leave you with exactly the same problem. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] OpenBGPD missing breaket
When you do not specify groups and more then one neighbor bgpd.conf is missing right closing breaket and 'descr' does not look: neighbor 2.2.2.252 { descr left set localpref 50 remote-as 65444 neighbor 2.2.3.253 { descr right remote-as 65444 } Could you please fix this? --- openbgpd.inc.20091211.bak2009-12-10 11:26:10.0 -0500 +++ openbgpd.inc2009-12-11 17:15:09.76300 -0500 @@ -110,7 +110,7 @@ $used_this_item = false; if($neighbor['groupname'] == ) { $conffile .= neighbor {$neighbor['neighbor']} {\n; - $conffile .= descr \{$neighbor['descr']}\\n; + $conffile .= descr \{$neighbor['descr']}\\n; $setkeycf .= delete {$openbgpd_conf['listenip']} {$neighbor['neighbor']} tcp 0x1000;\n; if ($neighbor['md5sigpass']) { $setkeycf .= add {$openbgpd_conf['listenip']} {$neighbor['neighbor']} tcp 0x1000 -A tcp-md5 \{$neighbor['md5sigpass']}\;\n; @@ -125,9 +125,9 @@ $conffile .= {$row['paramaters']} {$row['parmvalue']} \n; } } +if($used_this_item) + $conffile .= }\n; } - if($used_this_item) -$conffile .= }\n; } // OpenBGPD filters Thanks, Evgeny. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Squid Cache management does'nt save config
Hi all I have a problem with my pfsense and already changed my machine but the problem still. Well, i can make any changes in squid, but in the tab Cache management just don't save. I put all info about cache i want and when i click save the screen returns to default. Does anyone seen this? -- --- Nathaniel Simch de Morais skype: nathanielmorais --- °v° Você acha que é livre se o | /(_)\Software que você usa| ^ ^ nao é? | --- Eu uso BrOffice.org!!! Eu uso Mozilla Firefox!!!
Re: [pfSense Support] Squid Cache management does'nt save config
On Fri, Dec 11, 2009 at 3:52 PM, Nathaniel Simch de Morais nathanielmor...@gmail.com wrote: Well, i can make any changes in squid, but in the tab Cache management just don't save. I put all info about cache i want and when i click save the screen returns to default. Does anyone seen this? I get this in Chrome/Chromium sometimes. What browser are you using? db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Squid Cache management does'nt save config
I'm using firefox 3.5.5 2009/12/11 David Burgess apt@gmail.com On Fri, Dec 11, 2009 at 3:52 PM, Nathaniel Simch de Morais nathanielmor...@gmail.com wrote: Well, i can make any changes in squid, but in the tab Cache management just don't save. I put all info about cache i want and when i click save the screen returns to default. Does anyone seen this? I get this in Chrome/Chromium sometimes. What browser are you using? db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org -- --- Nathaniel Simch de Morais skype: nathanielmorais --- °v° Você acha que é livre se o | /(_)\Software que você usa| ^ ^ nao é? | --- Eu uso BrOffice.org!!! Eu uso Mozilla Firefox!!!
Re: [pfSense Support] Squid Cache management does'nt save config
On 12/11/2009 5:52 PM, Nathaniel Simch de Morais wrote: Hi all I have a problem with my pfsense and already changed my machine but the problem still. Well, i can make any changes in squid, but in the tab Cache management just don't save. I put all info about cache i want and when i click save the screen returns to default. Does anyone seen this? I can reproduce this one on box, but not on another. The box that I have this problem on is a recent fresh install of a 1.2.3 snapshot from after RC3 but not quite -RELEASE. The box which I can't reproduce it on is an install that has been in place running squid for ages, and has been tracking snapshots periodically, but now is running 1.2.3-RELEASE. Not sure what's going on, either. I've tried setting a few different combinations of settings, no luck. Same browser used on both systems. Jim - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] OpenBGPD status page
I know it is cosmetic but it is easy to fix, please do it. 1) Status has two OpenBGPD Routing sections, one of them should be renamed to Forwarding as it shows fib not rib. 2) OpenBGPD IP section returns error missing argument: valid commands/args: bgp it happens because not there is not bgpctl show ip command, we have to use bgpctl show ip bgp Fix for both issues: --- openbgpd_status.php.20091211.bak2009-12-10 11:26:10.0 -0500 +++ openbgpd_status.php 2009-12-11 19:20:28.83700 -0500 @@ -140,10 +140,10 @@ defCmdT(OpenBGPD Summary,bgpctl show summary); defCmdT(OpenBGPD Interfaces,bgpctl show interfaces); defCmdT(OpenBGPD Routing,bgpctl show rib); -defCmdT(OpenBGPD Routing,bgpctl show fib); +defCmdT(OpenBGPD Forwarding,bgpctl show fib); defCmdT(OpenBGPD Network,bgpctl show network); defCmdT(OpenBGPD Nexthops,bgpctl show nexthop); -defCmdT(OpenBGPD IP,bgpctl show ip); +defCmdT(OpenBGPD IP,bgpctl show ip bgp); defCmdT(OpenBGPD Neighbors,bgpctl show neighbor); ? Thanks, Evgeny. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN - Now Works on 1.2.3 Embedded!
- Original Message - From: Chris Buechler cbuech...@gmail.com To: support@pfsense.com Sent: Tuesday, December 01, 2009 8:57 PM Subject: Re: [pfSense Support] Wake On LAN On Tue, Dec 1, 2009 at 2:53 AM, Tortise tort...@paradise.net.nz wrote: Somehow I cannot get magic packets to awaken any PC on a pfSense LAN. I don't get it. Some motherboard BIOS seem to have WOL and others don't. Even the ones I have that are said to have it cannot be awoken as best I can tell! I have tried an Intel GT1000 with WOL functionality. I can get Boot on LAN to work OK, WOL seems a mystery! It is not clear to me the state that a PC to be awoken in is, I expected that the ATX power supplies would allow the PC to awaken when the right packets are sent however I am wondering if what is needed is a PC in a suspended state - or something else? Just need a WOL-enabled NIC, and to have WOL turned on in the BIOS. If you have an onboard NIC, it should be as simple as enabling it in the BIOS. As long as the machine is plugged in, it'll wake. With add-in NICs you need a WOL cable from the NIC to the motherboard, that can complicate things. - Well I had already done all that and it still didn't work, that was using 1.2.3 RC1 embedded. (3 NIC's, one WAN, two LAN) I now wish I had set up a sniffer to see if magic packets were actually going out I just upgraded to 1.2.3 and thought I'd fire off a few magic packets for funand just as well I was sitting on my chair, the other PC's had fired into life! Only thing that had really changed was the pfSense version! (That means the motherboard BIOS was already enabled for each on board NIC on the couple of Pentium 3000 class boxes I had tried) Curious that I couldn't find any updates about this, anyway others might find it works now? Thank you for the posters on this topic, it seems it may have proved a useful thread for some... In addition to what Chris said above I understand that some NIC's do not need an additional WOL cable for WOL, e.g. Intel 1000GT which are WOL capable and have no cable connection! I hate having to get some more 512M plus CF cards but accept there are excellent reasons for this! Looking forward to checking out some more embedded stuff. I'd suggested the other half give me the pfsense book for Christmas in the hope I might learn some useful stuff about VLAN's etc, even if I don't learn anything I am pleased the other half is contributing to support pfSense! Happy Christmas all! - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Wake On LAN - Now Works on 1.2.3 Embedded!
On Sat, Dec 12, 2009 at 1:21 AM, Tortise tort...@paradise.net.nz wrote: Well I had already done all that and it still didn't work, that was using 1.2.3 RC1 embedded. (3 NIC's, one WAN, two LAN) I now wish I had set up a sniffer to see if magic packets were actually going out I just upgraded to 1.2.3 and thought I'd fire off a few magic packets for funand just as well I was sitting on my chair, the other PC's had fired into life! Only thing that had really changed was the pfSense version! (That means the motherboard BIOS was already enabled for each on board NIC on the couple of Pentium 3000 class boxes I had tried) Interesting. We weren't on FreeBSD 7.1 for long, so it's possible there were also problems with it in that build. Nothing changed in our code related to that since 1.2 or 1.2.1, but the binary could have been non-functional for some reason that wasn't detected since we weren't on 7.1 for long. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org