Re: [pfSense] Nat between vlans

Enabling iOS devices to find a printer on a separate subnet is easy - just install the Avahi package. I have used this in the past, and it works very well. Moshe On Fri, Mar 30, 2018, 1:03 PM Yılmaz Bilgili wrote: > Thank you for your reply. Especially IOS devices can

Re: [pfSense] 10GBASE-T hardware

On Wed, Mar 28, 2018 at 9:44 PM, Paul Mather <p...@gromit.dlib.vt.edu> wrote: > On Mar 27, 2018, at 8:10 PM, Moshe Katz <mo...@ymkatz.net> wrote: > > Many thanks for the information and advice. It is much appreciated. > > > According to the specs that I found on HP'

Re: [pfSense] 10GBASE-T hardware

Note: that should say CAT*6*A, not *7*. Other than that, no changes. -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, Mar 27, 2018 at 8:10 PM, Moshe Katz <mo...@ymkatz.net> wrote: > According to the specs that I found on HP's website, your HP switch does > not support 10

Re: [pfSense] 10GBASE-T hardware

well. (Note that Approved Optics does not have official Ubiquiti cables, but many on the Ubiquiti forums report that it works with Cisco and other brand cables as long as they are 2 meters or shorter. In a single rack, that should not be an issue.) Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-

Re: [pfSense] Access Point config: separating guest from permissible users

you already have multiple LANs, you should be familiar with this process.) 9. Configure firewall rules between the different interfaces as necessary. That should be enough to get you started. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 <(301)%20867-3732> On S

[pfSense] SIP Port forwarding - will the SIP Proxy help me with this?

with that? Any other ideas? Thanks, Moshe -- Moshe Katz -- kohenk...@gmail.com -- +1(301)867-3732 ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Access Point config: separating guest from permissible users

this. Most hardware supports running multiple SSIDs (a.k.a. WiFi network names) on a single band, so you could have both of your WiFi networks on both bands - 5Ghz for performance and 2.4Ghz for longer range. Most modern dual-band devices will automatically pick the best oft eh two signals.

Re: [pfSense] Configs or hardware?

ad of throwing it away, but there still comes a point in time at which it's time to move on, and ten years is a very long life for commodity computing hardware. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Netgate SG-2220 and Leviton power supply

The page you linked to says that the SG-2220 needs 5A, but you say the Leviton power supply is 4A. That's probably a bad idea. In fact, according to the spec sheet though, the Leviton power supply is actually only 3.3A. That's almost definitely a bad idea. -- Moshe Katz -- mo...@ymkatz.net

Re: [pfSense] IPv6 1:1 NAT problems

have been IPv6 enabled for ages. It's an experiment to see how many visitors can get away with not noticing that they have no IPv4 connectivity. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 <(301)%20867-3732> On Wed, Aug 2, 2017 at 10:32 PM, Adam Thompson <athom...@athomps

Re: [pfSense] 2.3.4-RELEASE (amd64) - Kernel Panics

-- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Wed, Jul 12, 2017 at 9:43 PM, WebDawg <webd...@gmail.com> wrote: > Hello, > > I just upgraded 2.3.something to 2.3.4 and immediately upon reboot > experienced kernel panics/crash dumps over and over. The system would > cycle

Re: [pfSense] Migration from an old linux firewall

I'm not entirely sure how you had this working with your old firewall - I would think it would have the same issue. The best thing for you to do would be to separate the two LANs. You probably don't need to change any cabling because most server network cards let you set a default VLAN to use.

Re: [pfSense] USB question

For front USB ports (on a traditional case -- small form factor may have the front ports directly connected too), the best way is to open the case and unplug them from the motherboard. For the ports on the motherboard itself, the glue and/or covers that other people suggested are likely your best

Re: [pfSense] DNS problem

fSense, or pfSense -> Internet) seems to be the problem. Set a filter on the packet capture to capture only DNS traffic (port 53). Then you can see if the request is malformed, if no response ever comes back, or if the response is malformed. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-373

Re: [pfSense] pfsense rules

. This is exactly what we have done for our guest WiFi network to allow users on the WiFi to access the Internet and all of the public services that run on our internal network. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Thu, Dec 8, 2016 at 11:51 AM, Luc Paulin <paulins...@gmail.

Re: [pfSense] FW: Programatically add IP to Alias

DNS to the other users. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Sat, Nov 5, 2016 at 8:18 PM, Kelly Prescott <kpresc...@coolip.net> wrote: > Create a dynamic dns name for your ip address, have your client update it > when it gets a new ip and use the dns name a

Re: [pfSense] is there a way to get pfsense to not fetch help from the internet?

lp.php to point to your local copy. Keep in mind that you will probably have to do this again every time you update pfSense. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Fri, Sep 30, 2016 at 11:33 AM, qmail <qm...@gatworks.com> wrote: > Everythime i as for he

Re: [pfSense] 2 networks Cards, but OPT1 not acess internet.

t outgoing traffic rule on each interface. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Fri, Sep 23, 2016 at 2:03 PM, Rodrigo Cunha <rodrigo.root...@gmail.com> wrote: > Ii list, have a problem > I make 2 networks wich 2 private ips diferents i have three dif

Re: [pfSense] nat or routing?

quot; - Source: "LAN3 net" - Destination: "HostsWebAllowedFromWifi" - Destination Port Range: "PortsWebAllowedFromWifi" - Rule on LAN3 interface (our guest WiFi): - Action: "Pass" - Source: "LAN3 net" - Destina

Re: [pfSense] Bridging to wireless interface issues (ping not working) on 2.3.2

Ray, Can you clarify which IP range is assigned where? We can make an educated guess based on the information you provided, but it's always better to have confirmation. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Thu, Sep 8, 2016 at 6:06 AM, Ray <r...@renegade.zapto.

Re: [pfSense] 3 hard locks this week... any ideas?

I have seen those symptoms on three different machines over the years, and all of them were hardware failures - RAM on one of them, power supply on another, and an old consumer-grade PCI network card on the third. (Most of the pfSense machines I support are running low-end salvaged hardware, so in

Re: [pfSense] NAT from WAN to LAN

rnet, so your pfSense is doing "double NAT" - a.k.a NAT inside NAT. While this usually works, it's poor network design and it can sometimes cause weird problems. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Sun, Aug 14, 2016 at 4:55 AM, Antonio <antoniogennar...@

Re: [pfSense] Ethernet card supporting gpon g984.2+ ?

deal with.) Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, Aug 9, 2016 at 8:10 PM, Alexandre Paradis < alexandre.para...@gmail.com> wrote: > Hello everyone, > > I am trying to figure out if a Mellanox connect X-2/3 will support a 10 gig > gpon gbic. > > >

Re: [pfSense] looking for perfect pfsense box for home?

message, and I'm glad to find that I was reading too much into those words. I look forward to continuing to support pfSense with my participation and, in the future, purchases when the opportunity presents itself for me to do so. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Thu, Aug

Re: [pfSense] looking for perfect pfsense box for home?

into the pfSense community ten years ago in the first place. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Wed, Aug 3, 2016 at 9:36 PM, Jim Thompson <j...@netgate.com> wrote: > Here's all you need to know: > > 1) we only test releases on the hardware we sel

Re: [pfSense] Mini-USB console on new pfSense certified hardware

r. You could also use a set of USB over twisted pair adapters, but those aren't necessarily the most dependable pieces of hardware over long distances. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Mon, Aug 1, 2016 at 4:10 PM, Karl Fife <karlf...@gmail.com> wrote: > US

Re: [pfSense] Lightning strike

6 7:06 PM, "Jim Thompson" <j...@netgate.com> wrote: > Pic of 7541, see for yourself. > > http://imgur.com/5RiHxOz > > On Mon, Jul 25, 2016 at 5:57 PM, Moshe Katz <mo...@ymkatz.net> wrote: > > > Since you described that the board has isolation tr

Re: [pfSense] Lightning strike

hout looking at the board directly. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Mon, Jul 25, 2016 at 5:41 PM, Karl Fife <karlf...@gmail.com> wrote: > The 6th Ethernet port (em5) on my Lanner fw-7541D died Saturday night > during the electrical storm. Just the one po

Re: [pfSense] pfSense switch

Yes. You need to make sure that any firewall rules to allow LAN traffic are applied to the bridge instead of to just a single interface (whichever interface used to be your LAN). Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, May 24, 2016 at 11:24 AM, FrancisM <f

Re: [pfSense] IPv6 with Comcast and two pfSense - invalid prefix length, XID mismatch

On Fri, May 20, 2016 at 12:19 PM, WebDawg <webd...@gmail.com> wrote: > On Fri, May 20, 2016 at 11:06 AM, Moshe Katz <kohenk...@gmail.com> wrote: > > > If you have static IPs from Comcast, you cannot put the device in bridge > > mode. The way that Comcast static

Re: [pfSense] IPv6 with Comcast and two pfSense - invalid prefix length, XID mismatch

If you have static IPs from Comcast, you cannot put the device in bridge mode. The way that Comcast static IPs work is that your Comcast device advertises itself to the rest of Comcast's network as the route to your static addresses. In effect, just pretend that this Comcast device is in Comcast's

Re: [pfSense] IPv6 with Comcast and two pfSense - invalid prefix length, XID mismatch

of Consumerist's "Golden Poo Award" for worst company in America. -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Thu, May 19, 2016 at 2:49 PM, Steve Yates <st...@teamits.com> wrote: > I neglected to mention it but I did find and read many articles on > Comcast mode

Re: [pfSense] IPv6 with Comcast and two pfSense - invalid prefix length, XID mismatch

l logical explanation, Comcast will not let you BYOM if you use static IPs. Some people (also mentioned in the forum link above) have gotten prefix delegation to work by asking Comcast to switch their SMC router for a Netgear one. -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___

Re: [pfSense] What might be throttling my wireless?

When I had problems with throughput through Unifi Access Points with pfSense, I replaced every network component, including the pfSense box and the access points. In the end, my problem turned out to be an issue in how some of the VLANs were handled by the (defective) switch. Can you test to see

Re: [pfSense] USB3 to ethernet adaptor

problem for me constantly, and two used Dell switches that have been great. Like WebDawg, I have had a lot of good experiences with buying Dell 28xx switches on eBay. Note that you will probably also find a lot of 27xx switches on eBay. While those are also gigabit (unlike the 26xx and older,

Re: [pfSense] Fw: new message

I sent an email to list-ow...@lists.pfsense.org asking for action on this. All of those people are on the list itself too, but it may help get something done. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, Apr 26, 2016 at 10:08 AM, WebDawg <webd...@gmail.com>

Re: [pfSense] Disable DHCP domain-name request

ense boxes that receives a domain name in the DHCP response. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Fri, Nov 20, 2015 at 4:05 AM, Marco <li...@homerow.info> wrote: > We receive the interface network configuration on the WAN via DHCP. > This works, however somehow our I

Re: [pfSense] How do I harden my pfsense install WRT TLS and ssh?

, it is an assumption that Qualys and many other people make, so it is included in the grade. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https

Re: [pfSense] How do I harden my pfsense install WRT TLS and ssh?

On Tue, Jul 28, 2015 at 3:54 PM, Ryan Coleman ryan.cole...@cwis.biz wrote: On Jul 28, 2015, at 2:50 PM, Moshe Katz mo...@ymkatz.net wrote: On Tue, Jul 28, 2015 at 3:44 PM, Vick Khera vi...@khera.org mailto: vi...@khera.org wrote: On Sun, Jul 26, 2015 at 10:31 PM, Ryan Coleman

Re: [pfSense] Pfsense on VMware in Hetzner

Do you have the IP alias entered once for the whole /29 subnet or do you have all of the addresses entered as individual virtual IPs? We had a similar issue when we switched from Verizon DSL to Verizon FIOS many years ago - the Virtual IPs had worked on the DSL when they had been defined as a

Re: [pfSense] Dynamic DNS and Route 53

Just three things to add to what Brian said. For Windows hosts, run ipconfig /flushdns to clear the cache. (You can also use /displaydns to set what's in the cache, but you're going to have to ease through the entire thing so it's probably not worth it.) If you are using Google Chrome (on any

Re: [pfSense] polling pfsense status for a combined dashboard

and that it was removed from there because something in the 2.x changes broke it. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https

Re: [pfSense] Enforcing policy routing gateway

may or may not actually want to do it, depending on the rule complexity.) Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https

Re: [pfSense] ldaps:// + FreeRADIUS2 package on 2.1.5-RELEASE (amd64)

supports it. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Wed, Dec 17, 2014 at 12:06 AM, Jérôme Alet jerome.a...@univ-nc.nc wrote: Hi there, Does anyone know how to use ldaps:// to connect to the LDAP server from FreeRadius's configuration web form in pfSense ? The server

[pfSense] Any experience with Broadcom 5709 in HP network card?

in the pfSense web interface. Will the claimed support work with pfSense, or is this one of the card types that doesn't work? Thanks, Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https

Re: [pfSense] Disabling auto tone on APU1

annoying and loud in my office. Boo. Thanks, Ryan It's at the bottom of system_advanced_notifications.php. There is a checkbox Disable the startup/shutdown beep. -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List

Re: [pfSense] bogon networks

The pfSense bogon list is at https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version there also doesn't have your block. Make sure that your pfSense has the newest list. (This should usually be done automatically, but you should be able to do it from the console/SSH by running

Re: [pfSense] OT: Good network switch for 10 machines?

to do any fancy routing or VLAN stuff, just go on Amazon or NewEgg and get the top-rated 16-port *unmanaged* gigabit switch. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https

Re: [pfSense] Port forward with a schedule

the schedule disables the filter rule. Thanks Peter, It's probably not the most elegant of solutions, but you could try putting in a *deny* rule for the times that you do not want to allow access. Just make sure that it is higher up in the rules list than the allow rule is. Moshe -- Moshe Katz -- mo

Re: [pfSense] Failed Downloads

On Aug 1, 2014 6:46 PM, Brian Caouette bri...@dlois.com wrote: I subscribe to a karaoke service for my DJ business. When i'm connected to pfsense downloads are failing. This is what it looks like in squid realtime: 01.08.2014 18:41:10 192.168.1.10 NONE/411

Re: [pfSense] How can this be done?

to troubleshoot because it has no web interface. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfSense 2.1 + Squid3 + SquidGuard redirect

The first thing you can check is whether the error is being introduced in SquidGuard itself or later in the stack. Run /usr/pbi/squidguard-squid3-amd64/bin/squidGuard -c /usr/pbi/squidguard-squid3-amd64/etc/squidGuard/squidGuard.conf in a shell (console or SSH) and pass those URLs to it to see

Re: [pfSense] pfSense 2.1 + Squid3 + SquidGuard redirect

itself is caching the response from when my configuration was previously broken? Thanks, Dean On Thu, Jul 17, 2014 at 12:00 PM, Moshe Katz mo...@ymkatz.net wrote: The first thing you can check is whether the error is being introduced in SquidGuard itself or later in the stack. Run /usr/pbi

Re: [pfSense] Dependencies on older packages?

, at least for wget. On my pfSense test machine which is currently running 2.1, I get those warnings, but wget works just fine afterwards despite them. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List

Re: [pfSense] installing vmtools

://ftp1.freebsd.org/pub/FreeBSD/ports/amd64/packages-9-current/perl5/(or the i386 location) for other versions of 5.12, 5.14, and 5.18 Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https

Re: [pfSense] installing vmtools

:57 AM, Moshe Katz mo...@ymkatz.net wrote: On Wed, May 21, 2014 at 2:39 PM, Florio, Christopher N flo...@email.unc.edu wrote: Any idea a URL that I could get this package from? Sounds like a good option. One of these should do it (pick the one appropriate for your architecture) http

Re: [pfSense] High iostat

/lsof.tbz (The 8.3 version of the package should work even on the older 8.1-based pfSense. I've had no problems with it on an older testing box I have.) Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org

Re: [pfSense] Annoying Comcast Issue When Changing Hardware

in the Central Office for up to four hours. I have found that replacing equipment hooked up to Verison DSL, it is best to already be on the phone with Verizon support to have them manually clear the cache. At least rebooting the cable modem is something you can do yourself. Moshe -- Moshe Katz -- mo

Re: [pfSense] Annoying Comcast Issue When Changing Hardware

around? -A On Sat, May 10, 2014 at 7:55 PM, Moshe Katz mo...@ymkatz.net wrote: Hi Aaron, Most cable modems I have worked with in the US (on Comcast, Optimum, and RCN) all do ARP caching, so you need to reboot them when you change the connected device (or you need to clone the old

Re: [pfSense] Intel Pro/1000 PT Quad Port PCI-e Gigabit Ethernet

) in pfSense with no problems. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] TCP leak, new OpenSSL flaw

to determine on my own whether pfSense is affected by 14:09 or not. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Interface options for pfsense

On Sun, Apr 20, 2014 at 6:32 PM, Volker Kuhlmann list0...@paradise.net.nzwrote: I've been running pfsense for many years (and been very happy with it) on scrapped PCs with a Sun 4-port Ethernet PCI card because I need 5 Ethernet ports. Now freebsd dieing on the hme driver effectively turns

Re: [pfSense] RDP port forward based on destination name.

I do this using one of the Windows servers as a Remote Desktop Gateway. This feature is built in to the Remote Desktop server and client (so no need for VPN - though you may choose to use one anyway) a you need to do is enabled it on the server and set the client to use it. Moshe (Sorry for

Re: [pfSense] RDP port forward based on destination name.

On Mar 27, 2014 4:22 PM, Chris Bagnall pfse...@lists.minotaur.cc wrote: On 27/3/14 8:17 pm, Walter Parker wrote: That's what I would recommend. The VPN can serve as a second gateway to protect the RDP from the outside world, so you could pitch this solution as higher security method of

Re: [pfSense] Fwd: Firewall Log

On Mar 19, 2014 7:59 AM, Brian Caouette bri...@dlois.com wrote: Original Message Subject: Firewall Log Date: Thu, 13 Mar 2014 12:48:33 -0400 From: Brian Caouette bri...@dlois.com To: pfSense support and discussion list@lists.pfsense.org Also seeing this in the

Re: [pfSense] screen package for pfsense

running. (Something like this: nohup tcpdump tcpdump options ) Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] DHCP and hostname

On Feb 26, 2014 9:32 AM, kol k_...@hotmail.com wrote: Just wondering if someone could explain to me why does the pfSense syslog show the host name (HP-SLVR in the output below) when requesting DHCP via the LAN segment, but no host name displayed when requesting via the wireless ? Feb 25

Re: [pfSense] Errors from packages that are no longer installed on pfsense

know if it's still needed. Since vnstat is a package, it's pretty likely that, if you don't have the package, you don't need the job. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http

Re: [pfSense] How to monitor left (free) space on hard drive ?

send_smtp_message in /etc/inc/notices.inc to send the email using the email notification settings that are set in System - Advanced - Notifications, and call that PHP script from your disk-space monitoring script. HTH, Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732

Re: [pfSense] Recent FreeBSD Security Vulnerabilities

allowing SNMP traffic from trusted hosts. (In truth, you should be doing that anyway.) http://www.freebsd.org/security/advisories.html Thanks, Adam HTH, Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List

Re: [pfSense] Compile on Sun v215

On Dec 9, 2013 6:37 PM, Adam Hunt voxa...@gmail.com wrote: What parts of pfSense are so arch dependent. One would expect being based on FreeBSD would make it quite portable. On Mon, Dec 9, 2013 at 3:25 PM, Jim Thompson j...@netgate.com wrote: it would be a lot of work. There was some work

Re: [pfSense] Hardware requirements for gigabit wirespead

needs to do. Whatever you do, stay* very far away* from the Celeron. Performance will likely be terrible. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo

Re: [pfSense] Hardware requirements for gigabit wirespead

mentioned above, you'll likely be Broadcom onboard, not Intel, and you will have a hard time finding AMD boards with more than two onboard NICs). I hope that helps (at least a little). Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing

Re: [pfSense] Public /25 Network with Virtual IP

way is probably to add one, then download a Configuration backup, edit the backup file in a text editor to add the rest of them, and the restore the edited configuration. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list

Re: [pfSense] pfsense cannot find suitable hard drive to install on

On Tue, Jun 11, 2013 at 11:48 PM, pfu...@hushmail.com wrote: I recently traded some old computer equipment for an HP Proliant DL360 G3. Its a nice little rackmount with dual Intel Xeon 2.8GHz processors 3 onboard gigabit NIC's and a PCI-X bus and 2 PCI-X expansion slots. Its light on RAM at

Re: [pfSense] pfsense cannot find suitable hard drive to install on

to know it should work. If onlyi can get it to actually work. It has 2 drives which I doubt both are bad so it's got to be some configuration. I just wish I knew what I was doing. On 6/11/2013 at 9:08 PM, Moshe Katz mo...@ymkatz.net wrote: On Tue, Jun 11, 2013 at 11:48 PM, pfu...@hushmail.com

Re: [pfSense] Bouncing DNS access between different VLAN's on thier public addresses?

on the Internet instead of directly from one vlan to the other. Moshe -- -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] timezone problem

://lists.pfsense.org/mailman/listinfo/list Hello, Did you reboot the machine after you changed the time zone? As I understand it, many system components don't see the change unless you restart them, and the easiest way to restart them all is to restart the machine. -- -- Moshe Katz -- mo

Re: [pfSense] timezone problem

On Wed, Apr 17, 2013 at 8:39 AM, Cristian Ionescu-Idbohrn cristian.ionescu-idbo...@axis.com wrote: On Wed, 17 Apr 2013, Moshe Katz wrote: Did you reboot the machine after you changed the time zone? As I understand it, many system components don't see the change unless you restart them

[pfSense] Firmware bug in Intel Ethernet Controllers

-- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] installing a database server

for you. If you do simultaneous database- and network- stress tests, you can compare the results to one-at-a-time tests of database and network independently. -- -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List

Re: [pfSense] pfsense 2.0.1, soekris 6501 and amd64

On Wed, Sep 12, 2012 at 1:38 PM, Nenhum_de_Nos math...@eternamente.infowrote: On Wed, September 12, 2012 13:29, Moshe Katz wrote: On Wed, Sep 12, 2012 at 12:35 AM, Nenhum_de_Nos math...@eternamente.infowrote: hail, I tried and got: Root mount waiting for: usbus3 urying

Re: [pfSense] Ping Wan Virtual IP Firewall Rule - Is this possible?

rule but this is the one we use. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Accessing web-interface on WAN network

and then not have to configure anything using ifconfig. I am away from the office for the next few days, but if you still need help when I get back I can plug something in on the WAN side of our pfSense and do some testing. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732

Re: [pfSense] IP Alias and IPSec

Addresses on my systems (though I don't currently use IPSec so I don't know if switching will help you). Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Using pfSense to route inbound traffic via Domain Name instead of IP

. - Windows XP does not support SNI. (Firefox on XP does, as well as Chrome 6 do). Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Low(ish) cost pfSense platforms

these devices in a production system. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Possible bug in gateway monitoring in 2.1 snapshot (Sat Jun 16 08:16:08 EDT 2012)

://redmine.pfsense.com/issues/2513 Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Slightly OT: Accessing pfSense webinterface via reverse proxy

with a slash but without the domain name; view the source of the page to see this), you would need your proxy to rewrite links on the page. Your proxy may or may not support this. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List

Re: [pfSense] Multiple port ranges in alias

on those ports. It seemed to work just fine. Are you trying to put the alias in the End Port box on the rule page? AFAIK, you only need to put it in the Start Port box (though pfSense will copy it to the other box after you save the rule). What version of pfSense are you running? Moshe -- Moshe Katz

Re: [pfSense] port forwarding LAN to LAN

but it simplifies configuration and improves response times from the server. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, May 1, 2012 at 10:30 AM, Nelson Serafica ntseraf...@gmail.comwrote: I've pfsense with port forwarding running fine if the rules is WAN to LAN

Re: [pfSense] vmware appliance

at the build logs on the snapshot server, you will also see the VMWare builds there. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Tue, May 1, 2012 at 12:05 PM, David Burgess apt@gmail.com wrote: The docs (http://doc.pfsense.org/index.php/VMwareAppliance) state

Re: [pfSense] icmp best practices

ping Google to help troubleshoot your internet connectivity, you just remember Google for one more thing they can help you with. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http

Re: [pfSense] creating a 1:1 NAT WAN to DMZ

in your configuration that is doing that. Try rebooting the box if you can so it will reload all the configs from disk. -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Mon, Feb 20, 2012 at 11:42 AM, Jason T. Slack-Moehrle slackmoeh...@gmail.com wrote: Hi Guys, OK, the latest steps, I

Re: [pfSense] creating a 1:1 NAT WAN to DMZ

Is this the setup you have right now (or have you plugged in some other router/firewall for now) because I can get to the web site at the address in the screenshots. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Wed, Feb 15, 2012 at 8:04 PM, Jason

Re: [pfSense] creating a 1:1 NAT WAN to DMZ

-- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 On Sun, Feb 12, 2012 at 10:57 PM, Jason T. Slack-Moehrle slackmoeh...@gmail.com wrote: Hi Moshe, I created an alias with the INTERNAL addresses of all web servers. The key is that these are the INTERNAL

Re: [pfSense] pfSense help with creating rules

themselves have private IPs. It works just fine. Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Request for help: Seeking pfSense user with access to 6RD IPv6 WAN

further on than we are. Kind regards, Chris -- This email is made from 100% recycled electrons ___ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list -- -- Moshe Katz -- mo

Re: [pfSense] Block Rule doesnt work

rules (red icons) and that they are enabled. I'm sorry if this sounds like a stupid question but did you make sure your IP address is not the one that is allowed through in the first rules? Moshe -- Moshe Katz -- mo...@ymkatz.net -- +1(301)867-3732 2012/1/25 Jürgen

Re: [pfSense] Block Rule doesnt work

On Wed, Jan 25, 2012 at 2:08 PM, David Burgess apt@gmail.com wrote: 2012/1/25 Jürgen Echter j.ech...@echter-kuechen-elektro.de: You're using Reject rather than Block, which operates only on TCP/UDP. Any other packet type will not match that rule. db

  1   2   >