Re: [pfSense Support] openVPN to OPT1 interface
Thank you Scott, it solves my problem with routing. Thanks again for your time -Jose On Sat, Jun 27, 2009 at 10:14 PM, Scott Ullrich sullr...@gmail.com wrote: On Sat, Jun 27, 2009 at 6:22 AM, jose thomastk.j...@gmail.com wrote: Hi there, In our data center, we have two pfsense 1.2.2 boxes with two subnets behind the NAT. The OPT1 interfaces are been using for the inter communication between the two lan subnets owned by the two pfsense boxes. We have a configured openVPN for the two WAN interfaces. The problem is that from outside anybody connects to one of the pfsense box thgough openVPN, they are not able to access the other subnet which is under the other pfsense box which is connected through the OPT1 interfaces between. How can I add specific rule set (or any other config change) to instruct that the other subnet address destinations coming from openVPN clients has to pass though the OPT1 interface instead of the LAN interface of pfsense? Or inotherwords, how to add one more network and gateway to the openVPN connection? I ran out of ideas how to solve this. Really appreatiate any help in this regard If memory serves me correctly you need to tell openvpn to push the routes. Google openvpn push routes. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org -- Mobile: +971-50-9943477 Office: +971-4-4370703 x 402 Residence: +971-4-2232044
[pfSense Support] openVPN to OPT1 interface
Hi there, In our data center, we have two pfsense 1.2.2 boxes with two subnets behind the NAT. The OPT1 interfaces are been using for the inter communication between the two lan subnets owned by the two pfsense boxes. We have a configured openVPN for the two WAN interfaces. The problem is that from outside anybody connects to one of the pfsense box thgough openVPN, they are not able to access the other subnet which is under the other pfsense box which is connected through the OPT1 interfaces between. How can I add specific rule set (or any other config change) to instruct that the other subnet address destinations coming from openVPN clients has to pass though the OPT1 interface instead of the LAN interface of pfsense? Or inotherwords, how to add one more network and gateway to the openVPN connection? I ran out of ideas how to solve this. Really appreatiate any help in this regard TIA Jose -- Mobile: +971-50-9943477 Office: +971-4-4370703 x 402 Residence: +971-4-2232044
[pfSense Support] Traffic shaping of Transmission bittorrent
Hi Guys I have just configured pf sense to do traffic shaping in our network, and i hoped that the p2pcatch all could detect the p2p traffic from the linux transmission p2p client, but unfortunately this traffic is going into the default que.. By looking i the wireshark traces, it's really hard to detect the p2p traffic :-( Has anybody successfully managed to shape p2p? ///Thomas
[pfSense Support] Error thrown only for a URL
Hello, I have installed pfSense 1.2 for our Office network and it is working perfectly with squid configured. However, facing a problem for a single site - www.nytimes.com. The following error is thrown immediately giving the URL http://www.nytimes.com The error is Network Error (dns_server_failure) Your request could not be processed because a error occurred contacting the DNS server. The DNS server may be temporarily unavailable, or there could be a network problem. If I try nytimes.com it works. www.nytimes.com is pingable as well as reach via traceroute from my PC as well as from the pfSense box. Can anybody suggest me how to resolve this. TIA Jose -- Mobile: +971-50-9943477 Office: +971-4-4370703 Residence: +971-4-2232044
Re: [pfSense Support] Error thrown only for a URL
Hi Paul, Thankyou for your suggestion. My dig +short www.nytimes.com gives the following j...@jose-laptop:~$ dig +short www.nytimes.com 170.149.173.130 But nytimes.com gives the same as yours. I tried it after restarting the browser, and restarting the pfSense cache as well, but with same Network error -Jose On Wed, Dec 31, 2008 at 5:57 PM, Paul Mansfield it-admin-pfse...@taptu.comwrote: jose thomas wrote: However, facing a problem for a single site - www.nytimes.com http://www.nytimes.com. The following error is thrown immediately giving the URL http://www.nytimes.com ... If I try nytimes.com http://nytimes.com it works. www.nytimes.com http://www.nytimes.com is pingable as well as reach via traceroute from my PC as well as from the pfSense box. I suspect it's temporary... perhaps they're rebuilding a server or renumbering hosts? dig +short nytimes.com 199.239.137.245 199.239.136.200 199.239.136.245 199.239.137.200 dig +short www.nytimes.com 199.239.136.200 I can connect to port 80 on all of those IP addresses; restart your browser in case it has an old IP cached - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org -- Mobile: +971-50-9943477 Office: +971-4-4370703 Residence: +971-4-2232044
Re: [pfSense Support] Error thrown only for a URL
Thankyou Chritopher, Thankyou for your mail. In fact my another pfSense 1.2 box connecting from another network work fine. The only difference is that the network which have the squid enabled one have the problem for only www.nytimes.com. I didn't see any other site shown this type of error. With Best Regards Jose On Wed, Dec 31, 2008 at 5:55 PM, Christopher Iarocci ciaro...@tfop.netwrote: Jose, I'm not sure I can help you figure out why it is not working for you, but I can tell you this which might help you eliminate certain things. I have version 1.2.1 release of PFSense running with squid and squidguard. Both nytimes.com and www.nytimes.com work fine for me. I used firefox on a windows computer to test it. My DNS servers are internal on the network and my PFSense box also uses the internal DNS server. Christopher Iarocci Network Solutions Manager Twin Forks Office Products 631-727-3354 *From:* jose thomas [mailto:tk.j...@gmail.com] *Sent:* Wednesday, December 31, 2008 8:21 AM *To:* support@pfsense.com *Subject:* [pfSense Support] Error thrown only for a URL Hello, I have installed pfSense 1.2 for our Office network and it is working perfectly with squid configured. However, facing a problem for a single site - www.nytimes.com. The following error is thrown immediately giving the URL http://www.nytimes.com The error is Network Error (dns_server_failure) Your request could not be processed because a error occurred contacting the DNS server. The DNS server may be temporarily unavailable, or there could be a network problem. If I try nytimes.com it works. www.nytimes.com is pingable as well as reach via traceroute from my PC as well as from the pfSense box. Can anybody suggest me how to resolve this. TIA Jose -- Mobile: +971-50-9943477 Office: +971-4-4370703 Residence: +971-4-2232044 -- Mobile: +971-50-9943477 Office: +971-4-4370703 Residence: +971-4-2232044
Re: [pfSense Support] Help to get a pfSense with two subnets in separate vlan's to work [SOLVED]
Thomas, If you actually have a private IP on the WAN, do you have the Block private networks box unchecked? If that is checked, no traffic will come in your WAN because it is on a private network. Christopher Iarocci Network Solutions Manager Twin Forks Office Products 631-727-3354 *From:* Thomas Elsgaard [mailto:thomas.elsga...@gmail.com] *Sent:* Monday, December 15, 2008 5:20 PM *To:* support@pfsense.com *Subject:* [pfSense Support] Help to get a pfSense with two subnets in separate vlan's to work Hi guys Thanks a lot for the help, i managed to get it solved, it was an combination of wrong firewall rules (if you want to ping, open for ICMP), and some wrong IP's Merry Christmas ///Thomas
Re: [pfSense Support] pfSense stable version
Hi I am using pfSense 1.2 on R200. While selecting the installation, probably you may choose to disable ACPI. I haven't seen any issue after that. HTH Jose On Fri, Nov 21, 2008 at 8:46 PM, Atkins, Dwane P [EMAIL PROTECTED]wrote: I am using a Dell R200 and I would like to know what is the most stable version of pfSense that we should use? At one point, we had downloaded 1.2 and had issues installing this on the R200 because I believe it was the SATA drives? There was a snapshot available and someone provided us with a link, but I cannot find the snapshot releases any longer. Thanks for the help. Dwane
[pfSense Support] blocking rule
Hi, My office uses pfSense 1.2 for connecting the the internet. We have two external IP addresses serving through the firewall. While enabling the second external IP address and mapping to the internal NAT, I am getting the following error. External host$ telnet host.mydomain.com 80 Trying 80.227.124.12... and appears to be hanging. After checking the Diagnostics: System logs: Firewall, there is a blocking entry which gives the following additional information; The rule that triggered this action is: @70 block drop in log quick all label Default block all just to be sure I will be thankful if you can let me know how to change this rule to pass instead of block Thanks in advance Jose
[pfSense Support] PFSENSE in production 1.2
Hello everyone, I've had a FreeBSD router online for the past 3 years. I'm about to make an expansion to PFSENSE. A few questions.. 1. By default does pfsense go in stealth and hide the HOP (pfsense ip wan) or will it show on traceroutes? 2. Any feedback on pfsense in production environment. I have 1.2 on the new machine ready to go. James
[pfSense Support] Two pfSense boxes inter connectivity
Hi There, I am quite new to the functions of pfSense and freeBSD. I have installed two pfSense 1.2 in our TWO separate networks (from the ISP) with ONE WAN, ONE LAN and ONE OPT1 setup. The LAN for both the pfSense boxes are set to be 172.22.0.x and 172.22.1.x respectively. I would like to interconnect the TWO separate networks by configuring pfSense boxes. Is it possible to connect the OPT1 interfaces of both the pfSense boxes? Or is it require any other intermediate router to connect both of the pfSense boxes? If it is so, please let me know the CLI option for the pfSense route command. Thankyou very much and appreciate your time. Best Regarsd Jose -- Office: +971-4-3671912 Cell: +971-50-9943477
[pfSense Support] 64-bit pfsense
Hi all. I am new to the pfsense list and like to know from your experience about the pfsense 1.2 installation on a 64-bit hardware. We are planing to protect the Data Center (consists of around 40+ RH Servers running Apache and MySQL). Intention is to install pfsense on Dell R200 Servers (very recently brought. I couldn't see a clear information about pfsense support for 64-bit hardware. If anybody have experience or any pointers about this topic kindly share TIA Jose -- Office: +971-4-3671912 Cell: +971-50-9943477
[pfSense Support] Problem with multi-homed setup
I seem to be missing something here. I'm trying to set up a multi-homed WAN set up doing round robin balancing and failover. Here's what I've got: DSL Modem - Modem operates in bridged mode, static IP from ISP. Cable modem - Modem also operates in bridged mode, static IP from the ISP as well. Local NIC - Static IP and to be used to NAT local network across the two WAN's. I am attempting to do this using pfSense 1.2-RC1 and following the guide from here: http://doc.pfsense.org/index.php/MultiWanVersion1.2. After I get the following work done: WAN (DSL): Type - Static IP - ISP provided IP Gateway - ISP provided gateway OPT1 (Cable): Type - Static IP - ISP provided IP Gateway - ISP provided gateway. After I have the interfaces configured I should be ready to move on to create the three needed pools as referenced in the guide above, but here's the problem I run into while creating the first pool: Name: Load Balance Description: Load balance two WAN's Behavior: Load balancing Monitor: First DNS Server Interface: At the interface box is where I have trouble and I can't make progress. From the drop down list I am only able to select OPT1 and not WAN at all. Now if I disable the OPT1 interface then I can select WAN, but so far it's just OPT1 is all I can access. Am I doing something wrong? Also, some background information on what I'm using here: Dell OptiPlex GX110 512MB of RAM 1GHz P3 140GB IDE Disk 1 Onboard NIC 2 Realtek NIC's pfSense 1.2-RC1 (RC2 and 3 both cause problems at the boot block when installing, so I am sort of stuck here. Any and all help is very much appreciated. Thank you, Thomas
[pfSense Support] Use pfSense with exisiting HW users
Currently our company has three DSL connections. Each DSL connection is managed by a Netgear DSL Router with the IPs 172.16.0.1, .2 and .3. I want to setup a computer with pfSense for load balancing/fail over. The problem is, it seems pfSense only works when I have the DSL modems connected to the pfSense computer itself, or can pfSense be configured to use the exisiting three routers somehow? The DSL connections/existing users are spread all over the company building, so I can't put the pfSense computer somewhere and connect all the DSL modems to it. Does pfSense support three WANconnections anyway? Thanks for your help, Tom - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] OSPF pfsense
Hello,I would like to know if it's possible to run the OSPF protocol on PFSense via a plug-in (in this case where is it ?) or via a routing daemon like quagga or zebra (in this case how can i compile this demon on whith pfsense ? there is no compilation environement) with regards thomas
Re: [pfSense Support] redial pppoe by cron
hi gertjan, * reconnecthour * * * root killall mpd /usr/local/sbin/mpd -b -d /var/etc -p /var/run/mpd.pid pptp The disconnection just works just great (normal : this is a sledge hammer approach) - however, this will not re-connect by itself ! (Maybe I didn't wait long enough.) did you see that holger starts a PPTP connection in his mail? if you need to redial pppoe, you should use this. (obviously) ;) if you have a ssh-session available to the router you should see the mpd with the full partameters in 'ps auxww | grep mpd' a interactive test on the shell worked verry well the first time, but the second forced reconnect after 2 minutes made me starting mpd again to start the pppoe connection. i'll check if this works well with cron. thanx holger! cheers, thomas - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] redial pppoe by cron
hi folks, i'm pretty new to pfsense and use it on a wrap board. the box acts as a pppoe router. since my isp cuts the line off every 24h i would like redial at 3 am to have a constant connection the whole day. so how do i hang my pppoe-connection up and dial again? can i add this procedure to cron? thanx in advance thomas - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] redial pppoe by cron
thanx holger, that would be nice. That's doable. I have the info what needs to be added at home and can send that to you later (I'm at work atm) unless anybody else is faster in answering ;-) cheers, thomas - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Charge of captive portal
Do you think a WRAP engine with captive portal using external radius can support over 100 users simultaneous ? Do you think I need to work with a biggest CPU ? RAM ? Thomas
[pfSense Support] IPSEC over 2 wan access with failover and load balancing
Hi, I would like to configure an IPSEC tunnel between 2 pfsense each over 2 Internet access with automatic failover and load balancing. I think it will be a good tutorial regards, Thomas
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
No progress yet. Guess having a six-week old kid and a big birthday party didn't help :-) Anyway, here's a what I want to get ready for 1.1: - Capability to create virtual interfaces bridged to physical or logical (e.g. vlan) adapters Why we'd want to have that: - Ability to obtain multiple WAN IPs using DHCP (and then use advanced NAT features, e.g. for multiple web servers, multiple game hosts requiring a specific port, etc.) - Serve multiple IP networks on a single physical interface without vlan tagging (if you really want to) - Multiple IP networks per vlan (no comment) (no virtual access points such as described in http://www.solunet.com/wp/Colubris/WhitePapers/wp_vap.pdf, sorry, guys) As far as the GUI's concerned, each of those virtual interfaces will look like a physical NIC, complete with MAC spoofing capabilities et al. I'm still trying to get my head around the different scripts, etc. that make up pfSense, so I could really use some pointers on where to look for the files/scripts that - is run when configuring the interfaces from the console (the do you want to create vlans now? one) - sets up the vlans and if configs (guess the code for setting up virtual ifs should go there) - builds the pf rules (might need a rule to pass packets from the physical if to the virtual one from what i've seen so far And I'll need to be able to check to make sure the physical interface is not wireless (results could be quite unpredictable). Thanks for your help and any other tips on what I should be looking out for in order not to make my life miserable :-) -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Dienstag, 25. Oktober 2005 17:58 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP Thats pretty promising. Sounds like we have a prospect for 1.1! Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
Took me a while to test this, especially since I had to recover from 0.89, which stopped my box from booting (complaining about a parse error in dyndns.class). Not quite there yet, so here's brain food for the gurus (as I've pointed out before, I'm rather new to BSD, coming from the Wintel world). First of all, thanks for the modules, Scott. I've later worked out that ng_ether and ng_iface are already in the kernel, so that only ng_eiface was actually required. I've managed to get the virtual interfaces up and bridged using netgraph, individual MAC addresses and all (don't forget to disable ARP messages or they'll drive you nuts, as you now have multiple interfaces sharing a network). BUT, it doesn't work. It's as if something was stopping traffic crossing the bridge, even though I don't see an entry in the FW log (default rule). If I test the same on a Freesbie 1.1 box (FreeBSD 5.3), all works fine (well, at least the DHCP server sees the different MAC addresses requesting leases and issues them accordingly, I'll blame the fact that the IP address isn't always contained in the ifconfig output to a feature/bug in 5.3s dhclient). There's probably a very easy way to fix this, but I doubt I'll figure it out myself :-) Thanks Thomas -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Freitag, 21. Oktober 2005 18:12 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP Great! If you get this working then we will definately look at adding support to CVS head for this. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
Guys I'm still eager to try this. Unfortunately, I need the ng_ether.ko, ng_bridge.ko and ng_eiface.ko modules that are not part of the pfSense Embedded image (no reason why they should be at this time, anyway). Could anyone compile them for me and send them through, I don't currently have the possibility of setting up a machine to do so myself. Thanks Thomas -Original Message- [snip] Maybe this could do the trick: http://www.essenz.com/support/lists/hackers/20040509/27.html? [snip] On 10/13/05, Thomas [EMAIL PROTECTED] wrote: My cable ISP allows me to obtain up to 5 IP addresses via DHCP (nope, no static addresses here, they cost a fortune). For the sake of having more control over NAT and port mappings, I'd like to be able to use more than the single IP address obtained by pfSense out of the box. By chance have you tried this? It's not really supported at the moment but I have been reviewing some freebsd archives and it may be possible if I do some tweaks to dhclient-script. I need to setup a testing environement to verify. If you have set this up can you send me your dhclient logs from the system logs area? [snip] Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
Awesome. Expect to hear from me within the next 48 hours. Thanks a lot Thomas -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Freitag, 21. Oktober 2005 17:52 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP On 10/21/05, Bill Marquette [EMAIL PROTECTED] wrote: I suspect what he's trying to do with eiface is create multiple virtual interfaces on the firewall and bridge them to the external NIC. Presumably each of these interfaces would have their own MAC address (or at least we could ifconfig -lladdr them - that the right syntax?) and run dhclient on them. Correct guess Thomas? That's sneaky and I like it. Here's the modules: http://www.pfsense.com/~sullrich/ng_eiface.ko http://www.pfsense.com/~sullrich/ng_bridge.ko http://www.pfsense.com/~sullrich/ng_iface.ko Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
Maybe this could do the trick: http://www.essenz.com/support/lists/hackers/20040509/27.html? Don't seem to be able to create an eiface with the ether protocol, though (could do an iface with inter, but no way to specify the MAC address on that). I'm 100% *nix-Illiterate, so I've got no idea what I'm looking for to further try this :-) Thanks for any help. -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Samstag, 15. Oktober 2005 21:59 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP First I need to figure out how to force dhcpd to give out multiple ip's for a mac. Anyone know this off-hand? On 10/13/05, Thomas [EMAIL PROTECTED] wrote: Didn't dare try this yet, as I was looking for a way to request multiple leases using different MAC addresses (coming from the Wintel world, I've yet so see a DHCP server that issues more than one lease for the same MAC). If you can point me in the right direction (the archives you looked at suggesting it may be possible), I'll be happy to have a go. Thomas -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Donnerstag, 13. Oktober 2005 18:45 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP On 10/13/05, Thomas [EMAIL PROTECTED] wrote: My cable ISP allows me to obtain up to 5 IP addresses via DHCP (nope, no static addresses here, they cost a fortune). For the sake of having more control over NAT and port mappings, I'd like to be able to use more than the single IP address obtained by pfSense out of the box. By chance have you tried this? It's not really supported at the moment but I have been reviewing some freebsd archives and it may be possible if I do some tweaks to dhclient-script. I need to setup a testing environement to verify. If you have set this up can you send me your dhclient logs from the system logs area? Here's what I was thinking: - Is it possible to define multiple virtual interfaces (not VLANs) one one physical one, each with its own (spoofed) MAC address? They'd then be configured as DHCP-Interfaces in pfSense and get their own (different IPs). That would be ideal, but I don't think the interfaces are clonable. - If so, would it be possible (OK, now I'm asking a bit much here) to get DynDNS for each of them? This for sure will not work. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [pfSense Support] Packet size
Jeroen Geusebroek wrote: On 10/13/05, Thomas Booms [EMAIL PROTECTED] wrote: I want to know the packet size in bytes. I've upgraded 2 weeks ago to version 0.85.6. Check the MTU setting in the interface tab. It defaults to 1500 AFAIK. -- Jeroen - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Why do the developers wrote this note in the last version? *Note: In/out counters will wrap at 32bit (4 Gigabyte) ! * I have these values currently: In/out packets 75222048/70844380 (282.08 MB/3.65 GB). If I take a pocket calculator, i simply divide the incoming packets / 1500 and this result by 1024. I get then 48.97 GB. I dont understand, why it should not be possible to get this value viewed in the Interface Status site. If the counter wraps, so far i see it, the amount of packets must be 423120 instead of the above shown. Thomas -- Booms EDV - hosting more - Herrenstrasse 10 D-59073 Hamm www.booms-edv.de [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[pfSense Support] Multiplan WAN IPs on same interface via DHCP
Hi All My cable ISP allows me to obtain up to 5 IP addresses via DHCP (nope, no static addresses here, they cost a fortune). For the sake of having more control over NAT and port mappings, I'd like to be able to use more than the single IP address obtained by pfSense out of the box. Here's what I was thinking: - Is it possible to define multiple "virtual" interfaces (not VLANs) one one physical one, each with its own (spoofed) MAC address? They'd then be configured as DHCP-Interfaces in pfSense and get their own (different IPs). - If so, would it be possible (OK, now I'm asking a bit much here) to get DynDNS for each of them? Thanks for your advice Thomas
RE: [pfSense Support] Multiplan WAN IPs on same interface via DHCP
Didn't dare try this yet, as I was looking for a way to request multiple leases using different MAC addresses (coming from the Wintel world, I've yet so see a DHCP server that issues more than one lease for the same MAC). If you can point me in the right direction (the archives you looked at suggesting it may be possible), I'll be happy to have a go. Thomas -Original Message- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Donnerstag, 13. Oktober 2005 18:45 To: support@pfsense.com Subject: Re: [pfSense Support] Multiplan WAN IPs on same interface via DHCP On 10/13/05, Thomas [EMAIL PROTECTED] wrote: My cable ISP allows me to obtain up to 5 IP addresses via DHCP (nope, no static addresses here, they cost a fortune). For the sake of having more control over NAT and port mappings, I'd like to be able to use more than the single IP address obtained by pfSense out of the box. By chance have you tried this? It's not really supported at the moment but I have been reviewing some freebsd archives and it may be possible if I do some tweaks to dhclient-script. I need to setup a testing environement to verify. If you have set this up can you send me your dhclient logs from the system logs area? Here's what I was thinking: - Is it possible to define multiple virtual interfaces (not VLANs) one one physical one, each with its own (spoofed) MAC address? They'd then be configured as DHCP-Interfaces in pfSense and get their own (different IPs). That would be ideal, but I don't think the interfaces are clonable. - If so, would it be possible (OK, now I'm asking a bit much here) to get DynDNS for each of them? This for sure will not work. Scott - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]