On Tue, Apr 14, 2009 at 04:10, cl...@pfsense pfse...@mail-fwd.archie.dk wrote:
To test my new configuration can anyone recommend a secure, thorough online
port scanner ?
What qualifies thorough? Although nmap's aggressive mode pretty well
covers most there's a port open and this is what it's
On Fri, Apr 10, 2009 at 01:57, Chris Buechler c...@pfsense.org wrote:
amount of effort. I suspect there's a tiny, simple daemon somewhere
that will do this without a lot of fuss, I just can't find it. I'd
ASSP almost makes it, but probably doesn't qualify due to being
written in Perl. I like
On Thu, Apr 9, 2009 at 21:58, Chris Buechler c...@pfsense.org wrote:
Saw both of those, though from what I can see neither one of them will
accept SMTP over the network, they're local only. If I'm mistaken, let
me know.
My check was cursory, I only mentioned them because they both have the
On Sat, Feb 28, 2009 at 01:53, Tortise tort...@paradise.net.nz wrote:
I have since tried configuring as:
LAN1: 10.aaa.bbb.ccc/8
LAN2: 10.(aaa+1).bbb.ccc/9
I presume I have still got it wrong.
Yes. Any /9 is still a subset of a /8 with the same prefix, and
unless you really know what you're
I was porting some local log-size changes to 1.2.2 and found something
I'd never really noticed before. Currently, the logger startup
creates a set of rules like the following:
*.notice;kern.debug;lpr.info;mail.crit; %/var/log/system.log
news.err;local0.none;local3.none;local4.none;
On Wed, Jan 28, 2009 at 15:31, pfsense sense pfse...@kavadas.org wrote:
Ignoring the lack of Xen dom0 support in FreeBSD for a moment, of course.
I definitely misunderstood your original post, my apologies. That
being said, there isn't and doesn't soon look to be much motion within
FreeBSD to
of the guest systems.
The reverse is also true - the virtual firewall may be attacked in
much the same way.
Having a hypervisor running underneath a guest OS does not make
security a moot point; rather, it increases complexity and attack
surfaces, effectively reducing security.
RB
On Tue, Jan 27, 2009 at 17:42, pfsense sense pfse...@kavadas.org wrote:
has anyone considered the possibility of intergrating xen with pfsense ?
i might be loosing my mind but wouldn't it be nice to have a pfsense running
on harware and a vistualization environemnt that allow us to install our
That's what I was thinking: isn't it a problem to have to APs with same SSID
(and maybe the same channel) in reach of each other?
Don't the clients get confused? Or are the drivers usually smart enough not
to flap between the two?
Many righteous WLAN cards have the election process
really do know. First glance tells
me I likely have nothing to add or respond to on your other two
emails.
RB
Oh wow! Definitely haven't heard of that. It dying isn't unheard of,
though it's very unusual. It disappearing that's a new one on me.
I would question hardware, maybe bad drive or flaky controller. Maybe
a FreeBSD driver quirk specific to something related to your disks,
though
About 10 to 15 minutes on Configuring Firewall.. and it's just a
Pentium 3 PC
That doesn't seem particularly unreasonable, considering my machines
are dual 1.8GHz systems w/2GB of RAM. Of course, they have a _lot_
going on, and have gotten a lot faster since I tweaked down SQUID disk
Anyone have a situation where they're switching WAN types and somehow
/usr/local/sbin/lighttpd just disappears? I limped my way back
online, but that sucked! No CLI changes or anything, just normal web
UI interaction. (1.2 release)
RB
Can't say that I've seen that. You can restart it at the console menu
for future reference. Anything relevant in the logs?
Nothing at all, and no restarting - the binary is *gone*, as in deleted.
or comment here.
Although not technically load-balancing (we're using it to do WAN
failover), we are running a CARP cluster with sticky connections
zero problems - maybe it's the wrong thing to do. We set 'sticky'
when we only had one WAN path and never dropped it when we went to
two.
indicates that, although the displayed size in
bytes doesn't come out exactly, 2GB is indeed the limit. There isn't
any overflow that I can tell, but something, whether it be the
signedness or something in init_log, is cutting things off there.
RB
if there were a clean way of
getting a copy of the pfSense tree into a development environment _I_
am comfortable with. I can do VMs and all that goop (and would to
test), but especially since this is all PHP/csh, there's no reason I
shouldn't be able to use my own environment.
RB
On 3/28/08, Dennis Karlsson [EMAIL PROTECTED] wrote:
Well you snipped the useful information.
Then please snip it for us, since no one really has an interest in
sifting through your 1055 other irrelevant log-spam lines.
I hear not being an asshole is quite a virtue too.
That's not going to win
then please discuss that.
I was.
I wasn't bumping up my question I was adding information.
http://catb.org/~esr/faqs/smart-questions.html#volume
Ok, the log was too long. But is it really something to argue about?
Esotericism aside, then, can you please explain what issue you are
seeing other than the log entry appearing? That is not apparent; your
original question simply states that you are seeing a lot of them. Do
you find miniupnpd
Well, I think a pfSense developer can answer that better.
No, they can't - other than your statement of I get lots of these in
the System log they don't know if your system is working or not.
They might be able to make a general assumption, but unless you are
seeing operational issues (i.e. a
concerned with facilitating community
contribution than you are with hunting/squashing bugs yourselves -
reasonable, given your limited resources. Wishes != horses.
RB
The correct course of action is to boot him off on first offense.
This makes seven on my count
Bwa ha ha! Delicious, delicious irony! I knew it was inevitable
since Ryan had to read the thread at least once more before fixing
things, but it was worth it to see this one come in.
On 3/6/08, Ryan Neily [EMAIL PROTECTED] wrote:
Return Receipt
Your document: RE: [pfSense-discussion]
The real problem is that the %^$%^#$ mail program I am using does not allow
you to turn of return receipts.
Corporate standards for the win! I feel for you, as your situation is
very similar to what initially drove me to use my own address versus a
corporate one.
Anyhow, it's fixed now.
traffic shappingsquid in the same server is working good or not ? any
idea ?
I've not seen a single problem, and that's with 300+ users per hour.
What information are you basing this on?
In the frenzy of upgrade, did we lose all the documentation
(multi-wan, etc.?) I'm not finding that stuff any more.
And I found it. Disregard my bit of pollution.
On 2/26/08, RB [EMAIL PROTECTED] wrote:
In the frenzy of upgrade, did we lose all the documentation
(multi-wan, etc.?) I'm not finding that stuff any more.
On 2/11/08, Ronald L. Rosson Jr. [EMAIL PROTECTED] wrote:
On doing an update from RC4 - RC5 with Dashboard installed I can no
longer get dashboard back. Even tried uninstalling dashboard (Yes, I
know it says it can not be uninstalled) to no avail. Other than that
I ran into the 'no
Are details on the Broadcom switch controllers openly available? I did not find
anything on their web site.
Nor did I, but the header file indicates it came from Broadcom:
https://svn.openwrt.org/openwrt/tags/kamikaze_7.06/package/switch/src/etc53xx.h
Relevant comment:
/*
* Broadcom Home
values therein.
RB
On 6/17/07, Nick Buraglio [EMAIL PROTECTED] wrote:
What was the OS that had the support that you expected?
A crufty blend of only the finest proprietary software, based on
VxWorks. x86 architecture.
RB
the glue. So be it. There are two 8255ERs
on-board, one with it's own dedicated port, the other connected to the
BCM chip.
Now to pick it apart.
RB
33 matches
Mail list logo
