RE: [pfSense-discussion] New to PFSense
Craig - there has been some discussion about the reliability of the realtek nics generally. I see that you're using a newer chipset than the 8129 and 8139 chipsets. You're a test case :) -Original Message- From: Craig Roy [mailto:[EMAIL PROTECTED] Sent: Thursday, 8 September 2005 4:40 a.m. To: discussion@pfsense.com Subject: [pfSense-discussion] New to PFSense Test Machine Specs are: 2GHz Intel P4 512MB DDR 333 40GB HDD 4 X Netgear RLTK 8169 Gigabit Nics
Re: [pfSense-discussion] squid update
I am yet working on it! The real problem is to find a good "connector", and this is not easy. I am working on - Squidclam - squidwall to do: - TrendMicro VirusWall - dan's guardian but I had very bad results Not stable... I am offering myself if someone wants to work togerer (I am also in contact with a guy that works on the same project under m0n0wall...) Tomcool! One thing that would be nice would be to have clamav run on the platform and have squid set up to scan inbound web pages and suchfor virii, but that's for another day :)
Re: [pfSense-discussion] New to PFSense
At 01:52 PM 9/7/2005, Scott Ullrich wrote: On 9/7/05, Craig Roy <[EMAIL PROTECTED]> wrote: [snip] > I do have a couple of issues that I am not sure how to get around, basically with the System WebGUI. The CPU Usage meter shows constant usage at 80% to 86% consistantly. Yet when I use PUTTY and login to the console remotely and run the command "TOP", I get a completely different result. Below is a direct copy: Yes, this appears to be an issue. We'll work on it. [snip] > My second query is that I have been requested to setup one of these PFSense systems in conjunction with a VoIP Server for a customer who has a resort and intends to provide internet access to their customers on a user pay system. I have looked at the user configuration here and was wondering if anyone has or is developing a method of extracting the user usage of total time connected and data used into a Printable User Report Statement showing either all users and or individual users total time connected and total data transferred and downloaded during the time allocated until the account access expires. When user system is disconnected and reconnected, data transferred is appended to total all usage of the user account. Can't say that I have an answer for this one... Sorry! closest i can think of is to use freeradius somehow...
Re: [pfSense-discussion] New to PFSense
On 9/7/05, Craig Roy <[EMAIL PROTECTED]> wrote: [snip] > I do have a couple of issues that I am not sure how to get around, basically > with the System WebGUI. The CPU Usage meter shows constant usage at 80% to > 86% consistantly. Yet when I use PUTTY and login to the console remotely and > run the command "TOP", I get a completely different result. Below is a direct > copy: Yes, this appears to be an issue. We'll work on it. [snip] > My second query is that I have been requested to setup one of these PFSense > systems in conjunction with a VoIP Server for a customer who has a resort and > intends to provide internet access to their customers on a user pay system. I > have looked at the user configuration here and was wondering if anyone has or > is developing a method of extracting the user usage of total time connected > and data used into a Printable User Report Statement showing either all users > and or individual users total time connected and total data transferred and > downloaded during the time allocated until the account access expires. When > user system is disconnected and reconnected, data transferred is appended to > total all usage of the user account. Can't say that I have an answer for this one... Sorry! Scott
[pfSense-discussion] Re: squid update
Dan Swartzendruber druber.com> writes: > > At 12:43 PM 9/6/2005, Gary Buckmaster wrote: > >I'm trying to get an updated squid package out the door using a squid 3.0 > >release candidate. The new package will also be interfaceable in the > >webGUI. Unfortunately, I don't have a projected release date for this. I'm > >hoping to have something for people to play with by the end of the month, > >but no promises. > > cool! One thing that would be nice would be to have clamav run on > the platform and have squid set up to scan inbound web pages and such > for virii, but that's for another day :) > > Dan, That's a great suggestions. I'm working on the core functionality now with the idea of incorporating squidGuard. Once the core is stable, I will see what I can do to start taking feature requests and incorporating those. Best Regards, Mike
Re: [pfSense-discussion] Dynamic DNS client...
Not a problem. Let me know. Also please reply to the list and myself so that the emails get archived. Regards. -Erik On Wed, 7 Sep 2005 19:20:46 +0200 (CEST), Damien Dupertuis wrote > I restarted my pfsense due to my upgrade-problems... > and the dyndns seems to work... I'll wait a new ip > change to see if it works now... I'll keep you > informed... sorry for the disagrement... > > regards... > > --- Erik Kristensen <[EMAIL PROTECTED]> a écrit : > > > Can you look at your System Logs and look for log > > entrys that have phpDynDNS > > in it and paste them back in your reply. You are the > > first person to say it > > isn't working with dyndns.org. > > > > Thanks. > > -Erik > > > > On Wed, 7 Sep 2005 13:42:25 +0200 (CEST), Damien > > Dupertuis wrote > > > Of course That's why I use the dyDNS service... > > > I don't have a fixed ip... > > > > > > --- Erik Kristensen <[EMAIL PROTECTED]> a > > écrit : > > > > > > > Assuming that you have all the fields filled in > > > > correctly and your > > > > username/password is correct (which is seems > > that it > > > > is from your comment > > > > regarding you having to hit save), then it > > should be > > > > working. > > > > > > > > Is your IP address changing without the restart > > of > > > > your system? > > > > > > > > -Erik > > > > > > > > On Wed, 7 Sep 2005 09:23:25 +0200 (CEST), Damien > > > > Dupertuis wrote > > > > > Hello, > > > > > > > > > > I'm currently running pfsense version 0.83 > > > > > > > > > > I have a problem with the dyndns client. > > > > > I also had this problem with previous > > versions... > > > > > It should be a simple config issue because I'm > > > > only a > > > > > begginer...here we go: > > > > > > > > > > Service type: dynDNS (dynamic) > > > > > Hostname: xxx.xx.org > > > > > MX: NONE > > > > > Wildcards: NO > > > > > Username: ME > > > > > Password: PASSWORD > > > > > > > > > > under genera setup I have two dns servers and > > the > > > > > allow dns server list ENABELD... > > > > > > > > > > The problem is, I have to go to the webgui > > under > > > > > Dynamic DNS and hit the save button to have my > > > > adress > > > > > upgraded... > > > > > > > > > > where is my mistake??? > > > > > > > > > > Thank you > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > > > > > > Appel audio GRATUIT partout dans le monde avec > > le > > > > nouveau Yahoo! Messenger > > > > Téléchargez cette version sur > > > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ___ > > > > Appel audio GRATUIT partout dans le monde avec le > > nouveau Yahoo! Messenger > > Téléchargez cette version sur > > http://fr.messenger.yahoo.com > > > > > > > > > > > > > > > > ___ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
[pfSense-discussion] New to PFSense
Hi All, I would first like to thank all those who have been involved in developing PFSense and your ongoing support. You have a great product going here. I have been evaluating firewalls for some time now and in the last couple of months I have looked at, at least a dozen of them. PFSense is probably about the top of them, it is better than Astaro because of their licensing and their default configuration, and PFSense is better than the rest for additional functionality and ease of configureability. I am only new to PFSense in the past few days, and having never installed BSD of any kind, I found this easy going, considering I have only been playing with Command line Linux (yes I know it is not linux) for a couple of months after working solely on Windows Environment for the past 6 years and am now having fun playing with the BSD environment. I do have a couple of issues that I am not sure how to get around, basically with the System WebGUI. The CPU Usage meter shows constant usage at 80% to 86% consistantly. Yet when I use PUTTY and login to the console remotely and run the command “TOP”, I get a completely different result. Below is a direct copy: http://www.us-webmasters.com/FreeBSD/Unix-FreeBSD-Commands-Cheat-Sheet/Commands.txt last pid: 13805; load averages: 0.00, 0.00, 0.00 up 0+07:26:27 15:07:34 24 processes: 1 running, 23 sleeping CPU states: 0.0% user, 0.0% nice, 0.9% system, 0.0% interrupt, 99.1% idle Mem: 7440K Active, 34M Inact, 42M Wired, 60M Buf, 410M Free Swap: 1024M Total, 1024M Free PID USERNAME THR PRI NICE SIZE RES STATE TIME WCPU COMMAND 706 root 1 121 0 3480K 1972K select 0:02 0.00% mini_httpd 550 _pflogd 1 -58 0 1536K 1164K bpf 0:00 0.00% pflogd 703 root 1 76 0 1332K 888K select 0:00 0.00% syslogd 548 root 1 -58 0 3676K 1812K bpf 0:00 0.00% tcpdump 783 root 1 8 0 228K 124K nanslp 0:00 0.00% check_reload_st 549 root 1 -8 0 1188K 688K piperd 0:00 0.00% logger 774 root 1 8 0 1300K 984K nanslp 0:00 0.00% cron 726 proxy 1 4 0 1256K 852K kqread 0:00 0.00% pftpx 13757 root 1 76 0 5580K 2652K select 0:00 0.00% sshd 125 root 1 76 0 1208K 752K select 0:00 0.00% usbd 784 root 1 8 0 1580K 1224K wait 0:00 0.00% login 13764 root 1 76 0 2336K 1608K RUN 0:00 0.00% top 772 root 1 76 0 2828K 2212K select 0:00 0.00% sshd 13763 root 1 20 0 2620K 2040K pause 0:00 0.00% tcsh 13760 root 1 8 0 1632K 1228K wait 0:00 0.00% sh 714 root 1 8 0 1620K 1052K wait 0:00 0.00% sh 785 root 1 8 0 1624K 1024K wait 0:00 0.00% sh 786 root 1 5 0 1628K 1088K ttyin 0:00 0.00% sh 237 root 1 84 0 1380K 988K select 0:00 0.00% dhclient 524 _dhcp 1 76 0 1380K 1036K select 0:00 0.00% dhclient 1149 root 1 8 0 1372K 1012K nanslp 0:00 0.00% msntp 198 root 1 76 0 496K 356K select 0:00 0.00% devd 546 root 1 4 0 1472K 1120K sbwait 0:00 0.00% pflogd 710 nobody 1 138 0 1320K 940K select 0:00 0.00% dnsmasqq Test Machine Specs are: 2GHz Intel P4 512MB DDR 333 40GB HDD 4 X Netgear RLTK 8169 Gigabit Nics I have been going through the forums here and looking how to get the system CPU usage to be accurately reflected correctly in the CPU usage meter in the WebGUI. When I first installed PFSense and I saw the CPU Usage meter, I had grave fears of system Baseline of CPU 80% maxed. But I have only just worked out how to find the real figures and I am relieved that the web graph is inaccurate. As you can see between the two, a completely different story. The figures above are as live as can be, as it was stopped midstream to get a record, as live it is constantly being updated and copying is difficult. This test machine is currently not live on DSL, as I don’t get access to DSL until November. But I have already ordered 2 Accounts to run on this machine and my brother is also getting another account, so hopefully we will be able to aggregate them and utilize the total bandwidth, not just as loadbalancing. We have a Gigabit network between our homes and businesses. My second query is that I have been requested to setup o
[pfSense-discussion] dnsmasq?
I really like the feature where it serves up the DHCP names of clients via DNS. Unfortunately, it doesn't apply to traffic sourced from the firewall, so if I have a client named 'foo' which gets a lease via DHCP, from that client (or anyone else on LAN), pinging 'foo' does what I want, but sadly, pinging 'foo' from the firewall itself gets an error due to the name not resolving. Any way around this?
Re: [pfSense-discussion] Upgrade from 0.83 issue
>From a shell enable option 8 then run /etc/rc.conf_mount_rw Then rerun the firmware upgrade process. Scott On 9/7/05, Damien Dupertuis <[EMAIL PROTECTED]> wrote: > Hello again, > > When I try to upgrade from 0.83 to 0.83.2 manually I > get this message when I press the "enable firmware > upload" button in webgui: > > Warning: touch(): Unable to create file > /var/run/fwup.enabled because Read-only file system in > /usr/local/www/system_firmware.php on line 72 > > What can I do? > > thanks... > > > > > > > ___ > Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger > Téléchargez cette version sur http://fr.messenger.yahoo.com >
Re: [pfSense-discussion] help with update
It was removed due to not working as intended. Scott On 9/7/05, janif <[EMAIL PROTECTED]> wrote: > Hello, > > Can you help me. I need install package PerUserBW, but the package isnt > in the list of Available Package. > > > Thanks > >
Re: [pfSense-discussion] authpf package
That doc is somewhat getting old now. Read that and then refer to: http://cvs.pfsense.com/cgi-bin/cvsweb.cgi/tools/pkg_config.xml?rev=1.175 http://cvs.pfsense.com/cgi-bin/cvsweb.cgi/tools/packages/ Scott On 9/7/05, Gary Buckmaster <[EMAIL PROTECTED]> wrote: > Dominic, > > The pfSense packages are very easy to build. You'll find enough to get you > started in the Developer's Docs part of the website: > http://www.pfsense.org/index.php?id=30 > > Best, > > Gary > > -Original Message- > From: D.Pageau [mailto:[EMAIL PROTECTED] > Sent: Wednesday, September 07, 2005 9:07 AM > To: Pfsense Discussion > Subject: [pfSense-discussion] authpf package > > > In the past I have used openbsd authpf wich is a special shell that add > dynamic rules in pf firewall. It's basically the same idea of port > knocking where port are blocked by default and can be opened but it's > much more powerfull. > > http://www.openbsd.org/faq/pf/authpf.html > > I'd like to get that feature in pfsense. authpf is available in freebsd > port distribution /usr/ports/security/authpf. I'm looking for > information on how to create package to add that feature myself or maybe > someone could build that package for me. > > Thanks > > -- > Dominic Pageau <[EMAIL PROTECTED]> > >
RE: [pfSense-discussion] authpf package
Dominic, The pfSense packages are very easy to build. You'll find enough to get you started in the Developer's Docs part of the website: http://www.pfsense.org/index.php?id=30 Best, Gary -Original Message- From: D.Pageau [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 07, 2005 9:07 AM To: Pfsense Discussion Subject: [pfSense-discussion] authpf package In the past I have used openbsd authpf wich is a special shell that add dynamic rules in pf firewall. It's basically the same idea of port knocking where port are blocked by default and can be opened but it's much more powerfull. http://www.openbsd.org/faq/pf/authpf.html I'd like to get that feature in pfsense. authpf is available in freebsd port distribution /usr/ports/security/authpf. I'm looking for information on how to create package to add that feature myself or maybe someone could build that package for me. Thanks -- Dominic Pageau <[EMAIL PROTECTED]>
[pfSense-discussion] authpf package
In the past I have used openbsd authpf wich is a special shell that add dynamic rules in pf firewall. It's basically the same idea of port knocking where port are blocked by default and can be opened but it's much more powerfull. http://www.openbsd.org/faq/pf/authpf.html I'd like to get that feature in pfsense. authpf is available in freebsd port distribution /usr/ports/security/authpf. I'm looking for information on how to create package to add that feature myself or maybe someone could build that package for me. Thanks -- Dominic Pageau <[EMAIL PROTECTED]>
Re: [pfSense-discussion] Dynamic DNS client...
Assuming that you have all the fields filled in correctly and your username/password is correct (which is seems that it is from your comment regarding you having to hit save), then it should be working. Is your IP address changing without the restart of your system? -Erik On Wed, 7 Sep 2005 09:23:25 +0200 (CEST), Damien Dupertuis wrote > Hello, > > I'm currently running pfsense version 0.83 > > I have a problem with the dyndns client. > I also had this problem with previous versions... > It should be a simple config issue because I'm only a > begginer...here we go: > > Service type: dynDNS (dynamic) > Hostname: xxx.xx.org > MX: NONE > Wildcards: NO > Username: ME > Password: PASSWORD > > under genera setup I have two dns servers and the > allow dns server list ENABELD... > > The problem is, I have to go to the webgui under > Dynamic DNS and hit the save button to have my adress > upgraded... > > where is my mistake??? > > Thank you > > > > > > ___ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
[pfSense-discussion] help with update
Hello, Can you help me. I need install package PerUserBW, but the package isnt in the list of Available Package. Thanks
[pfSense-discussion] Upgrade from 0.83 issue
Hello again, When I try to upgrade from 0.83 to 0.83.2 manually I get this message when I press the "enable firmware upload" button in webgui: Warning: touch(): Unable to create file /var/run/fwup.enabled because Read-only file system in /usr/local/www/system_firmware.php on line 72 What can I do? thanks... ___ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com
[pfSense-discussion] Dynamic DNS client...
Hello, I'm currently running pfsense version 0.83 I have a problem with the dyndns client. I also had this problem with previous versions... It should be a simple config issue because I'm only a begginer...here we go: Service type: dynDNS (dynamic) Hostname: xxx.xx.org MX: NONE Wildcards: NO Username: ME Password: PASSWORD under genera setup I have two dns servers and the allow dns server list ENABELD... The problem is, I have to go to the webgui under Dynamic DNS and hit the save button to have my adress upgraded... where is my mistake??? Thank you ___ Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger Téléchargez cette version sur http://fr.messenger.yahoo.com