Re: [pfSense-discussion] WAN LAN1 and LAN2 (OPT1)

2009-03-01 Thread DarkFoon
Actually, this is the first time I've heard subnetting explained in a way that actually made sense. Kudos! And thank you! - Original Message - From: Adrian Wenzel adr...@lostland.net To: discussion@pfsense.com Sent: Saturday, February 28, 2009 9:22 AM Subject: Re: [pfSense-discussion]

Re: [pfSense-discussion] WAN LAN1 and LAN2 (OPT1)

2009-02-28 Thread DarkFoon
The rules are the easy part. I had to do a similar thing for a pfSense box that had 4 interfaces. I'm just going to share my advice now, but you'll need to get the subnetting figured out before you can add these rules. One the LAN2 interface, create a block rule that goes at the very top of the

Re: [pfSense-discussion] SLC or MLC flash for full install

2008-10-23 Thread DarkFoon
SLC, since storage isn't the most important factor. It gives better performance (a nice bonus, since it's also not primary) and more importantly it gives a longer lifetime, since fewer cells are over written with each write. FYI, Although not specifically about CF, I found this article

Re: [pfSense-discussion] W.O.L. Security Question

2008-10-02 Thread DarkFoon
Thank you for your answer. - Original Message - From: Chris Buechler [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Tuesday, September 30, 2008 5:43 PM Subject: Re: [pfSense-discussion] W.O.L. Security Question On Tue, Sep 30, 2008 at 2:39 AM, DarkFoon [EMAIL PROTECTED] wrote

[pfSense-discussion] W.O.L. Security Question

2008-09-30 Thread DarkFoon
Greetings all, I recently upgraded my pfsense platform to a new(er) motherboard with an integrated NIC with Wake On LAN. If I use this as my WAN interface, does it pose any security vulnerability? I do not see a way in the BIOS or as a jumper to turn off WOL. I would normally assume that it

Re: [pfSense-discussion] CD-ROM + floppy

2008-03-04 Thread DarkFoon
To be honest, I was wondering a similar thing. - Original Message - From: Paul M [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Tuesday, March 04, 2008 2:01 AM Subject: Re: [pfSense-discussion] CD-ROM + floppy Chris Buechler wrote: DarkFoon wrote: Yes. just the config

[pfSense-discussion] CD-ROM + floppy

2008-03-01 Thread DarkFoon
Does pfSense 1.2 still support booting from CD-rom and storing the config (and possibly other data) on a floppy disk?

Re: [pfSense-discussion] CD-ROM + floppy

2008-03-01 Thread DarkFoon
01, 2008 5:44 PM Subject: Re: [pfSense-discussion] CD-ROM + floppy DarkFoon wrote: Does pfSense 1.2 still support booting from CD-rom and storing the config (and possibly other data) on a floppy disk? Yes. just the config is kept on the floppy. USB flash drives are also supported

[pfSense-discussion] ntpd irregular behavior

2007-11-07 Thread DarkFoon
I've had my pfsense box up and running for 124 days straight (woo hoo) but back in July, the NTPD log page reported this: Jul 26 06:29:02 ntpd[588]: Terminating Jul 26 06:29:02 ntpd[588]: dispatch_imsg in main: pipe closed There was nothing new since those reports. I assumed that the whole time

Re: [pfSense-discussion] noob question

2007-09-19 Thread DarkFoon
There is no logout (AFAIK) You can't install plain old 3rd party apps, you have you install a pfSense package. Only some software is available as pfSense packages, and many of them are beta or alpha. But you can make your own packages, something I haven't personally tried yet. To browse the

[pfSense-discussion] location of dnsmasq.conf

2007-09-02 Thread DarkFoon
I was able to find the dhcpd.conf file under /var/dhcpd/etc and I feel like I've scoured every nook and cranny, but I cannot find dnsmasq.conf. I require these two files because I'm attempting (for my own improvement) to set up a linux box to do pretty much the same thing as my pfSense box.

[pfSense-discussion] MiniUPnPd security risks

2007-04-25 Thread DarkFoon
I'm considering installing the UPnP daemon on some home/home office boxes, and I'm curious what the security issues are. From my own (simple) analysis, the worst that could happen is a malicious application could ask for many, many (almost all?) of the ports above 1024 to be routed to a

Re: [pfSense-discussion] Windows shares across the firewall

2007-01-04 Thread DarkFoon
I was hired to do the same thing for a small business a year ago. I learned about a month and a half into the project that windows shares, while they work across subnets, the hostname can't be used because of WINS, only the IP address. Workgroups especially do not work across subnets. I would

[pfSense-discussion] Policy Enforcement: Can pfSense beat it?

2006-10-16 Thread DarkFoon
Hi everybody. A friend of mine recently informed me that hiscollege is going to be adding some "policy enforcement" devices (Cisco brand) to their network that will push Symantec Security software onto all computers on the campus network. If your computer doesn't meet the policy, it is

Re: [pfSense-discussion] Dynamic DNS - no password encryption

2006-08-29 Thread DarkFoon
I see, thank you for the clarification. - Original Message - From: Scott Ullrich [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Tuesday, August 29, 2006 7:59 AM Subject: Re: [pfSense-discussion] Dynamic DNS - no password encryption On 8/29/06, DarkFoon [EMAIL PROTECTED] wrote

Re: [pfSense-discussion] Benchmarking

2006-07-28 Thread DarkFoon
with latest release fyi. Holger -Ursprüngliche Nachricht- Von: DarkFoon [mailto:[EMAIL PROTECTED] Gesendet: Fr 28.07.2006 00:42 An: discussion@pfsense.com Cc: Betreff: [pfSense-discussion] Benchmarking Virus checked by G DATA AntiVirusKit

[pfSense-discussion] Benchmarking

2006-07-27 Thread DarkFoon
I've recently upgraded my pfSense box from a pentium-MMX 233Mhz to a Celeron-MMX 333MHZ and I am curious how the developers (or anybody on the list) would go about benchmarking the system (max throughput is what I'm mostly curious about) One quick question: aliases are broken in 1.0 RC-1,

[pfSense-discussion] Thank you

2006-06-30 Thread DarkFoon
I just upgraded to RC-1 from Beta2, and I must say that I am impressed. I like the new features, such as the RRD graphs (well, they're new to me) and the filter status page. The product is very polished. So I am thanking the pfSense team for the excellent job they have done!

Re: [pfSense-discussion] artwork

2006-06-21 Thread DarkFoon
Mr. Leitl, I don't quite understand your problem here. You claim that the m0n0 interface has better usability, and is superior in look, however, you do not support these claims with any useful examples that would allow the pfSense team to improve their interface. pfSense is not m0n0; it has more

Re: Re[2]: [pfSense-discussion] P2P Blocker

2006-06-06 Thread DarkFoon
I may have over looked it, but where in pfSense can you set the maximum number of states a workstation can have? I like that idea for P2P blocking. - Original Message - From: Bill Marquette [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Tuesday, June 06, 2006 1:07 PM Subject: Re:

Re: Re[2]: [pfSense-discussion] P2P Blocker

2006-06-06 Thread DarkFoon
Thank you very much - Original Message - From: Scott Ullrich [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Tuesday, June 06, 2006 1:48 PM Subject: Re: Re[2]: [pfSense-discussion] P2P Blocker On 6/6/06, DarkFoon [EMAIL PROTECTED] wrote: I may have over looked it, but where

Re: [pfSense-discussion] Setup advice wanted, devices for public library

2006-03-29 Thread DarkFoon
In most of the other locations I would rather go with CF so there are no moving parts. I am looking at Kingston Elite Pro CF cards, 512mb for $30 dollars, I saw them mentioned on the list. Does anyone have any recommendations of other brands. http://anandtech.com/storage/showdoc.aspx?i=2654

[pfSense-discussion] VPN questions

2006-03-26 Thread DarkFoon
Hello all, my client wants himself and his franchisees to be able to securely access a fileserver (actually it's his workgroup-soon to be domain-server) behind the pfSense box and upload important data files to it. These clients are using laptops with wireless connections(3G access, not

[pfSense-discussion] First bug of beta 2?

2006-03-11 Thread DarkFoon
I'm experiencing some strange behavior with my beta2 box. I have to keep manually renewing the WAN dhcp. I'll connect to a website from a client on the LAN, and then maybe five minutes later, when I go to another page, it can't find the page (none of my internet based things work, actually), so I

Re: [pfSense-discussion] pfSense merge with freebsd?

2006-03-10 Thread DarkFoon
be supported afaik), however I haven't tried it out personally. Just a suggestion. Holger -Original Message- From: DarkFoon [mailto:[EMAIL PROTECTED] Sent: Friday, March 10, 2006 6:24 AM To: discussion@pfsense.com Subject: Re: [pfSense-discussion] pfSense merge with freebsd

[pfSense-discussion] pfSense merge with freebsd?

2006-03-09 Thread DarkFoon
I am curious if it is possible to "merge"-for want of a better word-pfSense with a FreeBSD install. Why? Well, I have a client who wants to integrate everything into 1 box if possible. I told him its not possible, but I wouldn't be doing my job if I didn't check to see if I am wrong.

Re: [pfSense-discussion] pfSense merge with freebsd?

2006-03-09 Thread DarkFoon
harddrive to install to. - Original Message - From: Jim Thompson [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Thursday, March 09, 2006 12:18 PM Subject: Re: [pfSense-discussion] pfSense merge with freebsd? DarkFoon wrote: I am curious if it is possible to merge-for want

Re: [pfSense-discussion] pfSense merge with freebsd?

2006-03-09 Thread DarkFoon
Message - From: Andrew Burnette [EMAIL PROTECTED] To: discussion@pfsense.com Sent: Thursday, March 09, 2006 6:49 PM Subject: Re: [pfSense-discussion] pfSense merge with freebsd? DarkFoon wrote: I am curious if it is possible to merge-for want of a better word-pfSense with a FreeBSD install

[pfSense-discussion] Wierd display problem in IE

2006-03-05 Thread DarkFoon
I probably should have posted this bug before the beta2 release. but oops on my part. (sorry!) In IE all the pfsense text is way too small (like6 font or smaller)using the pfsense-pulldown "skin". I have a screenshot, but I don't know how to show it to ya guys. do I send it as an

Re: [pfSense-discussion] Wierd display problem in IE

2006-03-05 Thread DarkFoon
@pfsense.com Sent: Sunday, March 05, 2006 7:04 AM Subject: RE: [pfSense-discussion] Wierd display problem in IE No Problem here. Check your Fontsize settings of the browser. You probably have modified them. Holger -Original Message- From: DarkFoon [mailto:[EMAIL PROTECTED] Sent: Sunday, March

Re: [pfSense-discussion] PANIC! problems with OPTx interfaces

2006-03-03 Thread darkfoon
nope, doesn't fix it. Just upgraded. Still as broke as it was an hour ago. The system is a Dell Optiplex (I can't find the model number at this time) It has a Pentium 3 and a 10 GB harddrive, if that helps at all. -- Original message -- From: Scott Ullrich

Re: [pfSense-discussion] PANIC! problems with OPTx interfaces

2006-03-03 Thread darkfoon
Well, I have seemed to have fixed it, but the solution makes no sense to me. Perhaps it will make more sense to those of you with more networking knowledge than I. All of the cables leaving the PfSense box went to switches. The one hooked up to the LAN had the cable plug into a regular port

[pfSense-discussion] Timed Rules?

2006-02-22 Thread DarkFoon
I did not notice an option in PfSense that allows a user to set a rule for certain time periods. Is there any plans for this later on, or experimental versions with it now? An example for clarification: block all access until 12:00a (midnight) then allow access for an hour, and block access until

[pfSense-discussion] Why is it called pfsense?

2006-02-18 Thread DarkFoon
So I was telling one of my friends the other day about PfSense. At one point, he stopped me and said, "You know what that stands for, don't you?"I said, "Duh! 'Packet Filter'" Then came his reply, "Nononono. It stands for 'Plain F**king sense'" And then I had to write this email about it.

[pfSense-discussion] VPN woes

2006-02-18 Thread DarkFoon
My client wants VPN for his company, so his franchisees can VPN connect to the domain in his office and share files or something (he's rather vague about this). Right now, I've got his PfSense box at my house so I can test it. I'd like to test the VPN from his office, but they're behind a

Re: [pfSense-discussion] VPN woes

2006-02-18 Thread DarkFoon
Use ssl tunnels - google for “ssl explorer” -chad From: DarkFoon [mailto:[EMAIL PROTECTED] Sent: Saturday, February 18, 2006 5:38 PMTo: discussion@pfsense.comSubject: [pfSense-discussion] VPN woes My client wants VPN for his company, so his

Re: [pfSense-discussion] VPN woes

2006-02-18 Thread DarkFoon
: DarkFoon To: discussion@pfsense.com Sent: Saturday, February 18, 2006 5:09 PM Subject: Re: [pfSense-discussion] VPN woes The Stunnel package won't install on my PFsense box. Installing stunnel and its dependencies.Downloading package configuration file

[pfSense-discussion] Newbie rule order question

2006-02-17 Thread DarkFoon
So I (finally) have a pfSense box that I can experiment with (I've been but a spectator here for the last few months) . It has several OPTx interfaces in it, and I don't want them to communicate with one another. I have made block rules on each interface blocking outgoing traffic to the

Re: [pfSense-discussion] Polling?

2006-02-15 Thread DarkFoon
details.) As in the worst case the devices are only polled on clock interrupts, in order to reduce the latency in processing packets, it is not advisable to decrease the frequency of the clock below 1000 Hz. On 2/14/06, DarkFoon [EMAIL PROTECTED] wrote: I can't seem to find a list

Re: [pfSense-discussion] Polling?

2006-02-15 Thread DarkFoon
interrupts, in order to reduce the latency in processing packets, it is not advisable to decrease the frequency of the clock below 1000 Hz. On 2/14/06, DarkFoon [EMAIL PROTECTED] wrote: I can't seem to find a list of devices that support polling on the site. Is it the exact same list

[pfSense-discussion] Polling?

2006-02-14 Thread DarkFoon
I can't seem to finda list ofdevices that support pollingon the site.Is it the exact same list as the one for m0n0wall? If so, may I reccomend that someday somebody make a more detailed list?For example, the m0n0wall website says that some support hardware VLAN tagging while others support

Re: [pfSense-discussion] Clients... ugh

2006-02-01 Thread DarkFoon
to the others at all then all you're really gaining is an individual broadcast domain per segment. Maybe that is what he wants and/or I'm overlooking something. nb On Feb 1, 2006, at 3:57 AM, Rainer Duffner wrote: DarkFoon wrote: APPLIANCE! That's the word I was looking for! Thank

[pfSense-discussion] Clients... ugh

2006-01-31 Thread DarkFoon
I've got a client who has asked me (among other things) to make him a router/firewall. Currently he has a "hardware" firewall/router but I told him that it doesn't support the features he wants. I attempted to pursuade him to use pfSense, but he would rather have a "hardware" (meaning