AW: [pfSense-discussion] Clients... ugh
oops: you can access the bios at the front com port, not usb. sorry for confusion ;-) > -Ursprüngliche Nachricht- > Von: Holger Bauer > Gesendet: Mittwoch, 1. Februar 2006 08:24 > An: discussion@pfsense.com > Betreff: AW: [pfSense-discussion] Clients... ugh > > > Take a look at the Hardware links at > http://pfsense.com/index.php?id=33 . I personally have made > good experiences with the nexcom 1041c and have already > deployed systems in production with pfSense. The nexcom > offers an onboard cf-slot to boot from and you even can > access the bios at the front usb and it comes in a shortneck > 1U 19" rackmountable case with front networkports. You get > the nexcoms ranging from celeron 650 up to dual xeon and with > up to 12 interfaces. Gigabit nics are available for them as well. > Btw, you might wonder what is inside of most > "hardwareappliances" once you open them. > A nice story about a watchguard firebox2 for example can be > found here: http://www.ls-net.com/m0n0wall-watchguard/ > > Holger > > > > -Ursprüngliche Nachricht- > > Von: Dmitry Sorokin [mailto:[EMAIL PROTECTED] > > Gesendet: Mittwoch, 1. Februar 2006 07:40 > > An: discussion@pfsense.com > > Betreff: Re: [pfSense-discussion] Clients... ugh > > > > > > Quoting DarkFoon <[EMAIL PROTECTED]>: > > > > > and Secondly, does anybody know of any "hardware" > > firewall/routers (man, I'm > > > tired of typing that) that have the above features? > > > > > > I'm not trying to snub pfSense; I'd love to use it, but I > > can't convince him > > > (well, possibly, but he wants me to first look for a > > "hardware" solution) I > > > am asking here first because I have been watching the > > mailing list for > > > several months now, and I trust the opinions and > > information of (most) of the > > > people here. ;) > > > > I think your client means "not regular pc/linux or > > unix/command line solution", > > but rather an appliance, which is "plug, go to web interface, > > click, click, > > click and it works". Also from technical point there should > > be no hard disk > > drive (no file system, that can become inconsistent in case > > of crash or power > > failure), no peripherial (monitor, keybord, mouse(?). > > Then pfSense/m0n0wall + WRAP platform is your choice. > > look at http://www.m0n0.ch/wall/gallery.php > > your firewall cn be an i386 compatible 1u or 2u 19" rack > > mountable server, or > > as small as smallest linksys or D-link or netgear box with no > > moving parts. > > > > Hope that helps, > > Dmitry > > > > > > > Virus checked by G DATA AntiVirusKit > > Virus checked by G DATA AntiVirusKit
AW: [pfSense-discussion] Clients... ugh
Take a look at the Hardware links at http://pfsense.com/index.php?id=33 . I personally have made good experiences with the nexcom 1041c and have already deployed systems in production with pfSense. The nexcom offers an onboard cf-slot to boot from and you even can access the bios at the front usb and it comes in a shortneck 1U 19" rackmountable case with front networkports. You get the nexcoms ranging from celeron 650 up to dual xeon and with up to 12 interfaces. Gigabit nics are available for them as well. Btw, you might wonder what is inside of most "hardwareappliances" once you open them. A nice story about a watchguard firebox2 for example can be found here: http://www.ls-net.com/m0n0wall-watchguard/ Holger > -Ursprüngliche Nachricht- > Von: Dmitry Sorokin [mailto:[EMAIL PROTECTED] > Gesendet: Mittwoch, 1. Februar 2006 07:40 > An: discussion@pfsense.com > Betreff: Re: [pfSense-discussion] Clients... ugh > > > Quoting DarkFoon <[EMAIL PROTECTED]>: > > > and Secondly, does anybody know of any "hardware" > firewall/routers (man, I'm > > tired of typing that) that have the above features? > > > > I'm not trying to snub pfSense; I'd love to use it, but I > can't convince him > > (well, possibly, but he wants me to first look for a > "hardware" solution) I > > am asking here first because I have been watching the > mailing list for > > several months now, and I trust the opinions and > information of (most) of the > > people here. ;) > > I think your client means "not regular pc/linux or > unix/command line solution", > but rather an appliance, which is "plug, go to web interface, > click, click, > click and it works". Also from technical point there should > be no hard disk > drive (no file system, that can become inconsistent in case > of crash or power > failure), no peripherial (monitor, keybord, mouse(?). > Then pfSense/m0n0wall + WRAP platform is your choice. > look at http://www.m0n0.ch/wall/gallery.php > your firewall cn be an i386 compatible 1u or 2u 19" rack > mountable server, or > as small as smallest linksys or D-link or netgear box with no > moving parts. > > Hope that helps, > Dmitry > > Virus checked by G DATA AntiVirusKit
Re: [pfSense-discussion] Clients... ugh
APPLIANCE! That's the word I was looking for! Thank you! Yes, my client my client means what you said: > an appliance, which is "plug, go to web interface, click, click, > click and it works". He has one of those (appliance) already, but like I said, its some piece of crap. It can't do hardly anything. I mean, I use m0n0wall (because I like using a CD-ROM instead of a harddisk) and it's got so many functions that I don't use. And pfSense has more, but my client could use some of them. I didn't know that I could do pfSense on a WRAP. I thought pfSense needs a harddisk (for swap and such), and I thought WRAP uses CF (which swap will wear out quickly). But the idea of a 1u rackmount unit is nice. I'll still look around for some commercial appliances that have the same features, but I'll try to push for pfSense with this renewed information. My question still stands, though: does anybody know of a commercial (linksys, d-link, and such) firewall/router appliance (that's so much faster to type) with the features my client wants? thanks Anthony Rossi - Original Message - From: "Dmitry Sorokin" <[EMAIL PROTECTED]> To: Sent: Tuesday, January 31, 2006 10:39 PM Subject: Re: [pfSense-discussion] Clients... ugh > Quoting DarkFoon <[EMAIL PROTECTED]>: > > > and Secondly, does anybody know of any "hardware" firewall/routers (man, I'm > > tired of typing that) that have the above features? > > > > I'm not trying to snub pfSense; I'd love to use it, but I can't convince him > > (well, possibly, but he wants me to first look for a "hardware" solution) I > > am asking here first because I have been watching the mailing list for > > several months now, and I trust the opinions and information of (most) of the > > people here. ;) > > I think your client means "not regular pc/linux or unix/command line solution", > but rather an appliance, which is "plug, go to web interface, click, click, > click and it works". Also from technical point there should be no hard disk > drive (no file system, that can become inconsistent in case of crash or power > failure), no peripherial (monitor, keybord, mouse(?). > Then pfSense/m0n0wall + WRAP platform is your choice. > look at http://www.m0n0.ch/wall/gallery.php > your firewall cn be an i386 compatible 1u or 2u 19" rack mountable server, or > as small as smallest linksys or D-link or netgear box with no moving parts. > > Hope that helps, > Dmitry > > > > -- > No virus found in this incoming message. > Checked by AVG Free Edition. > Version: 7.1.375 / Virus Database: 267.14.25/247 - Release Date: 1/31/2006 > >
AW: [pfSense-discussion] Newbie here.
If you want to make a clean approach on that you should consider making the application(s) you need a package. This way it can be used "on demand" and it will be compatible with future versions. Reinstallation is easier as well and the configutarion can be stored in the configfile. Holger > -Ursprüngliche Nachricht- > Von: Steve Rieger [mailto:[EMAIL PROTECTED] > Gesendet: Mittwoch, 1. Februar 2006 06:42 > An: discussion@pfsense.com > Cc: Steve Rieger > Betreff: [pfSense-discussion] Newbie here. > > > Have some general questions. so bear with me > > > Can i install Fbsd 6.0 and the pfsense, and use this a both a server > (for nothing very important, and my firewall in the inside ? > i read the docs and didnt quite get a clear answer, (here is my > scenario in more detail) > the "FW" is connected to WAN, the FW itself will be considered DMZ, > anything behind is considered Trusted. therefore i would like to > utilize a server i have already running, (and is in the DMZ) as an > actual Firewall. > > When installing from the Live cd i turned debugging on, and saw the > Boot process atrt but nor complete. will try it again tomorrow and > will post the exact message. i saw that this was not uncommon. > > Pending the answer to question 1 i would like to become part > of this, > project, so far i like what i read. > > > -- > Steve Rieger > [EMAIL PROTECTED] > 310-339-4355 > yahoo = riegersteve > icq= 53956607 > Ride Free, Ride On, Ride Safe > > > I had the blues because I had no shoes until upon the street, > I met a > man who had no feet. > > Biker Blue > > > Virus checked by G DATA AntiVirusKit
Re: [pfSense-discussion] Clients... ugh
Quoting DarkFoon <[EMAIL PROTECTED]>: > and Secondly, does anybody know of any "hardware" firewall/routers (man, I'm > tired of typing that) that have the above features? > > I'm not trying to snub pfSense; I'd love to use it, but I can't convince him > (well, possibly, but he wants me to first look for a "hardware" solution) I > am asking here first because I have been watching the mailing list for > several months now, and I trust the opinions and information of (most) of the > people here. ;) I think your client means "not regular pc/linux or unix/command line solution", but rather an appliance, which is "plug, go to web interface, click, click, click and it works". Also from technical point there should be no hard disk drive (no file system, that can become inconsistent in case of crash or power failure), no peripherial (monitor, keybord, mouse(?). Then pfSense/m0n0wall + WRAP platform is your choice. look at http://www.m0n0.ch/wall/gallery.php your firewall cn be an i386 compatible 1u or 2u 19" rack mountable server, or as small as smallest linksys or D-link or netgear box with no moving parts. Hope that helps, Dmitry
[pfSense-discussion] Newbie here.
Have some general questions. so bear with me Can i install Fbsd 6.0 and the pfsense, and use this a both a server (for nothing very important, and my firewall in the inside ? i read the docs and didnt quite get a clear answer, (here is my scenario in more detail) the "FW" is connected to WAN, the FW itself will be considered DMZ, anything behind is considered Trusted. therefore i would like to utilize a server i have already running, (and is in the DMZ) as an actual Firewall. When installing from the Live cd i turned debugging on, and saw the Boot process atrt but nor complete. will try it again tomorrow and will post the exact message. i saw that this was not uncommon. Pending the answer to question 1 i would like to become part of this, project, so far i like what i read. -- Steve Rieger [EMAIL PROTECTED] 310-339-4355 yahoo = riegersteve icq= 53956607 Ride Free, Ride On, Ride Safe I had the blues because I had no shoes until upon the street, I met a man who had no feet. Biker Blue
[pfSense-discussion] Clients... ugh
I've got a client who has asked me (among other things) to make him a router/firewall. Currently he has a "hardware" firewall/router but I told him that it doesn't support the features he wants. I attempted to pursuade him to use pfSense, but he would rather have a "hardware" (meaning linksys, netgear, etc.) firewall/router because he thinks they're more secure. The main features he wants are: -> "isolated ports". He wants each port on the LAN to be seperate from the others, but all with the same features for each (so each has its own firewall settings, each has its own DHCP, and so on). Basically, he thinks that with this, if "hacker" breaks into the network of one port, he doesn't have access to computers on the other ports on the firewall/router. (I am not so certain that this is possible; please, prove me wrong) -> VPN. He wants franchisees to be able to login over a secure (encrypted) link and access a special place where they can put sensitive information. -> DMZ (but that's pretty much standard) I figure pfSense would be able to do all these, but, like I said, he wants me to look for "hardware" firewall/routers. First, can anybody explain the difference (if any) between a computer running pfSense, and a "hardware" router/firewall? (I didn't think there was one, except for the ROM chip containing the firewall/router OS) and Secondly, does anybody know of any "hardware" firewall/routers (man, I'm tired of typing that) that have the above features? I'm not trying to snub pfSense; I'd love to use it, but I can't convince him (well, possibly, but he wants me to first look for a "hardware" solution) I am asking here first because I have been watching the mailing list for several months now, and I trust the opinions and information of (most) of the people here. ;) Thanks for your help/time. Anthony Rossi
