now none-free for any commercial usage, I was wondering if anyone's
looked at the alternatives?
http://www.openvas.org/
http://www.lbtechservices.com/projects/sussen/
Original Message
Tenable Subscriptions wrote:
(You are receiving this email because you are using or used
Adam Van Ornum wrote:
Does anyone have any ALIX or Soekris kits that they don't need any
more? I'm currently running pfSense on a dual P3 system at home and its
way over-powered for what I need and I would like to get something that
one of those new Intel Atom CPU motherboards would be
Eugen Leitl wrote:
On Wed, Jun 25, 2008 at 11:28:12AM +0100, Paul Mansfield wrote:
one of those new Intel Atom CPU motherboards would be worth looking at too.
Anyone aware of an affordable system with Nano or at least a C7, with
decent (Intel would be best, but beggars can't be choosers
802.11 mini PCI cards:
http://www.netgate.com/index.php?cPath=27_86
I've been quite happy with service from solwise for miniPCI adaptors and
various wifi accessories.
I bought one of these and fitted a spare intel 2915abg minipci card:
http://www.solwise.co.uk/wireless-pci-slot.htm
I can
Mark Dueck wrote:
I am having some problems getting openVPN to route a properly from site
to site. I had it working perfectly in between, but now nothing seems
to make a difference to make it work.
what does netstat -rn say
Eugen Leitl wrote:
Have any of you made especially good/bad experiences wtith either
SLC or MLC CF? Any vendors to recommend, or to stay away from?
in theory SLC is going to be more reliable, speed probably doesn't matter.
avoid small vendors and ebay as there's a huge number of counterfeit
Chris Buechler wrote:
More info: http://blog.pfsense.org/?p=284
woo! congrats to devs and support for all their hard work.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Veiko Kukk wrote:
Hi!
I wonder if there are some good reasons why i'ts not possible to choose
CARP interfaces (virtual IP-s) for load balancer pools?
If not, then why can't I select carpx interfaces for ISP failover load
balancer pool?
Please fix it or help me how to fix that in my
Jason Dixon wrote:
This is something I've been thinking about quite a bit lately. I'd like
to see something modular that could potentially be used on any PF-based
system. If there are others interested in this (or already working on
it), please contact me.
I nice feature I'd like would be
we've been a close observer of low-power CPUs and chipsets, because a
lot of our costs are colocation fees which are mainly about power.
In theory Pouslbo/US15W is much more efficient than the usual atom +
desktop chipset, but it not particularly common... then I came across this:
Eugen Leitl wrote:
I presume you're talking firewall, have you considered
VIA Nano? The performance is slightly on top of Atom,
and Atom doesn't have the RNG and the crypto built-in.
yes, firewalling for minimal power.
if you have any pointers to nano motherboards with suitable network
Joe Lagreca wrote:
Symptoms: When I download a large file and max our download speed,
do you have VOIP network on a separate interface on your firewall (a
necessity for call security anyway)? are you using decent switches with
a high packet rate?
David Nordin wrote:
This might most likely come out as noise in here and wasted internetbits ;)
I would like to create a pretty much maximum secure networkstructure for
you probably want to read a primer about networking and security before
you get bogged down in looking at any one product -
Joe Lagreca wrote:
But then you are in a catch 22, because without the shaper, VOIP will
surely be choppy.
get a separate WAN circuit for your VOIP connections if they're that
important?
-
To unsubscribe, e-mail:
Joe Lagreca wrote:
This seems odd, as I run pfsense at other locations without problems
with their VOIP. So I'm wondering why the issue at this location.
get a separate WAN circuit for your VOIP connections if they're that
important?
presumably your VOIP phones are on their own VLAN, and
http://www.linuxtoday.com/infrastructure/2009092801435NWCYSW
thought it might be interesting albeit off topic
-
To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com
For additional commands, e-mail:
On 01/10/09 14:42, Eugen Leitl wrote:
On Thu, Oct 01, 2009 at 02:08:32PM +0100, Paul Mansfield wrote:
You might want to have a look at Linitx, they do m0n0wall kits and
speaking to one of the guys who works there, they are happy to do a
pfSense embeded version on request.
http://linitx.com
On 05/10/09 11:34, Eugen Leitl wrote:
I typically use 2-4 GByte Transcend IDE SSD (DoM) dongles.
the closest I can come to that would be a CF card in a CF-IDE adaptor.
Thanks for the assembly pictures -- what kind of case is this?
'fraid I can't say, I bought it long ago and it was used
http://www.openvpn.net/index.php/open-source/downloads.html
just thought people might want to upgrade, the RCs have been good for
me, especially for vista users where you don't have to do the external
route stuff.
perhaps openvpn 2.1 will be released in time to make it into pfSense 1.3
and
http://blogs.techrepublic.com.com/opensource/?p=1110tag=nl.e102
-
To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com
For additional commands, e-mail: discussion-h...@pfsense.com
Commercial support available -
On 16/12/09 14:55, Eugen Leitl wrote:
On Tue, Dec 15, 2009 at 07:52:06PM +0100, Aarno Aukia wrote:
offer that option (it doesn't). Becoming a LIR at the current
juncture is prohibitive because of fees alone.
and becoming an LIR doesn't guarantee you'll get an allocation of IPs either
I
On 26/01/10 18:19, Chris Buechler wrote:
On Tue, Jan 26, 2010 at 10:23 AM, Paul Mansfield
it-admin-pfse...@taptu.com wrote:
we had openvpn working with osx 10.5 with a bit of bodging to get DNS to
work, but 10.6.2 seems to have quite a few DNS quirks that prevent
resolver from being set
On 26/01/10 16:01, Paul Mansfield wrote:
On 26/01/10 15:39, Nate Davis wrote:
Paul,
We are using http://www.viscosityvpn.com/ as the OpenVPN Client for the Mac=
s on our network, and it has worked like a dream. I can resolve items by
name over the vpn and such. We were using tunnelblick
after complaint about slowness between our lan and dmz, I traced it to a
firewall interface on our pfsense 1.2.3 firewall, a Dell R300 with
onboard broadcom bcm5722
FreeBSD fwa.xxx.yyy 7.2-RELEASE-p5 FreeBSD 7.2-RELEASE-p5 #0: Sun Dec 6
23:20:31 EST 2009
On 01/02/10 13:03, Paul Mansfield wrote:
I bounced the interface as suggested and it didn't help, and swapped the
cable, also no joy.
oh. and a reboot didn't fix it either.
;-(
# dmesg | egrep -i broadcom|bcm|bgr|bge|ukp|mii|phy
bge0: Broadcom BCM5722 A0, ASIC rev. 0xa200 mem 0xdfdf
On 27/01/10 12:27, Paul Mansfield wrote:
On 26/01/10 16:01, Paul Mansfield wrote:
On 26/01/10 15:39, Nate Davis wrote:
BTW, Nate, were you using tun or tap?
a test shows that using tap/bridging kicks off the mac's dhcp client and
that successfully sets up DNS.
I think we're going to end up
On 01/02/10 18:54, Chris Buechler wrote:
Sure you're using CAT5e or better cables and not just CAT5? That's the
most common cause when I run into things like that.
thanks for the idea, but all our cables are cat6, and it's only a 1m
cable directly from back of server into the switch so no
On 02/02/10 12:19, Alexander Norman wrote:
Try a firmware upgrade or downgrade.
The broadcom firmware has been a bit shaky.
The easiest way to do it is to install for example windows 2008 server
(30 day evaluation) and do a firmware upgrade through it.
I had a horrible feeling you were
well, I simply swapped round the firewall's connections to the switch -
both have just a 1m cable direct to the cisco 3560e
the primary firewall is now connecting at 1Gb/s
and strangely the secondary is still at 1G, so I have no idea what the
problem was.
tis a pity that Dell use broadcom
I asked them if there was a UK distributor, and they responded promptly
with
http://www.newit.co.uk/shop/products.php?cat=11
dual ethernet for less than £100 (US$150) seems quite a good deal.
-
To unsubscribe, e-mail:
put up some linux mirrors with a web service on each IP - use https and
that way you won't be asked to use named virtual hosts as that doesn't
work with https
-
To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com
For
if you recall, to make your pfsense firewall itself be able to talk to a
remote site over an IPSEC tunnel, you need to add a hack which is a
static route to remote network via the LAN address
if you have a firewall cluster and you use the CARP address of the LAN,
it does work, but it *seems* to
On 12/11/10 13:43, Eugen Leitl wrote:
- IPv6 support, native or tunnel to tunnelbroker.net type thing.
...
The point is: We've been asking for IPv6 for too long. That's just
one bit in a packet header. We need to start asking for the features we
expect, which is a lot more than that bit.
33 matches
Mail list logo