Enabling iOS devices to find a printer on a separate subnet is easy - just
install the Avahi package. I have used this in the past, and it works very
well.
Moshe
On Fri, Mar 30, 2018, 1:03 PM Yılmaz Bilgili
wrote:
> Thank you for your reply. Especially IOS devices can
On Wed, Mar 28, 2018 at 9:44 PM, Paul Mather <p...@gromit.dlib.vt.edu>
wrote:
> On Mar 27, 2018, at 8:10 PM, Moshe Katz <mo...@ymkatz.net> wrote:
>
> Many thanks for the information and advice. It is much appreciated.
>
> > According to the specs that I found on HP'
Note: that should say CAT*6*A, not *7*. Other than that, no changes.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Mar 27, 2018 at 8:10 PM, Moshe Katz <mo...@ymkatz.net> wrote:
> According to the specs that I found on HP's website, your HP switch does
> not support 10
well. (Note that Approved Optics does not have official Ubiquiti
cables, but many on the Ubiquiti forums report that it works with Cisco and
other brand cables as long as they are 2 meters or shorter. In a single
rack, that should not be an issue.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-
you already have multiple LANs, you should be
familiar with this process.)
9. Configure firewall rules between the different interfaces as
necessary.
That should be enough to get you started.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732 <(301)%20867-3732>
On S
with that?
Any other ideas?
Thanks,
Moshe
--
Moshe Katz
-- kohenk...@gmail.com
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
this. Most hardware supports running multiple SSIDs (a.k.a.
WiFi network names) on a single band, so you could have both of your WiFi
networks on both bands - 5Ghz for performance and 2.4Ghz for longer range.
Most modern dual-band devices will automatically pick the best oft eh two
signals.
ad
of throwing it away, but there still comes a point in time at which it's
time to move on, and ten years is a very long life for commodity computing
hardware.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
The page you linked to says that the SG-2220 needs 5A, but you say the
Leviton power supply is 4A. That's probably a bad idea. In fact, according
to the spec sheet though, the Leviton power supply is actually only
3.3A. That's almost definitely a bad idea.
--
Moshe Katz
-- mo...@ymkatz.net
have been
IPv6 enabled for ages. It's an experiment to see how many visitors can get
away with not noticing that they have no IPv4 connectivity.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732 <(301)%20867-3732>
On Wed, Aug 2, 2017 at 10:32 PM, Adam Thompson <athom...@athomps
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Jul 12, 2017 at 9:43 PM, WebDawg <webd...@gmail.com> wrote:
> Hello,
>
> I just upgraded 2.3.something to 2.3.4 and immediately upon reboot
> experienced kernel panics/crash dumps over and over. The system would
> cycle
I'm not entirely sure how you had this working with your old firewall - I
would think it would have the same issue.
The best thing for you to do would be to separate the two LANs. You
probably don't need to change any cabling because most server network cards
let you set a default VLAN to use.
For front USB ports (on a traditional case -- small form factor may have
the front ports directly connected too), the best way is to open the case
and unplug them from the motherboard.
For the ports on the motherboard itself, the glue and/or covers that other
people suggested are likely your best
fSense, or pfSense ->
Internet) seems to be the problem. Set a filter on the packet capture to
capture only DNS traffic (port 53). Then you can see if the request is
malformed, if no response ever comes back, or if the response is malformed.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-373
.
This is exactly what we have done for our guest WiFi network to allow users
on the WiFi to access the Internet and all of the public services that run
on our internal network.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, Dec 8, 2016 at 11:51 AM, Luc Paulin <paulins...@gmail.
DNS to the other users.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sat, Nov 5, 2016 at 8:18 PM, Kelly Prescott <kpresc...@coolip.net> wrote:
> Create a dynamic dns name for your ip address, have your client update it
> when it gets a new ip and use the dns name a
lp.php to point to your local copy.
Keep in mind that you will probably have to do this again every time you
update pfSense.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 30, 2016 at 11:33 AM, qmail <qm...@gatworks.com> wrote:
> Everythime i as for he
t
outgoing traffic rule on each interface.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 23, 2016 at 2:03 PM, Rodrigo Cunha <rodrigo.root...@gmail.com>
wrote:
> Ii list, have a problem
> I make 2 networks wich 2 private ips diferents i have three dif
quot;
- Source: "LAN3 net"
- Destination: "HostsWebAllowedFromWifi"
- Destination Port Range: "PortsWebAllowedFromWifi"
- Rule on LAN3 interface (our guest WiFi):
- Action: "Pass"
- Source: "LAN3 net"
- Destina
Ray,
Can you clarify which IP range is assigned where?
We can make an educated guess based on the information you provided, but
it's always better to have confirmation.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, Sep 8, 2016 at 6:06 AM, Ray <r...@renegade.zapto.
I have seen those symptoms on three different machines over the years, and
all of them were hardware failures - RAM on one of them, power supply on
another, and an old consumer-grade PCI network card on the third. (Most of
the pfSense machines I support are running low-end salvaged hardware, so in
rnet, so your pfSense
is doing "double NAT" - a.k.a NAT inside NAT. While this usually works,
it's poor network design and it can sometimes cause weird problems.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sun, Aug 14, 2016 at 4:55 AM, Antonio <antoniogennar...@
deal with.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Aug 9, 2016 at 8:10 PM, Alexandre Paradis <
alexandre.para...@gmail.com> wrote:
> Hello everyone,
>
> I am trying to figure out if a Mellanox connect X-2/3 will support a 10 gig
> gpon gbic.
>
>
>
message, and I'm glad to find that I was reading too much into those words.
I look forward to continuing to support pfSense with my participation and,
in the future, purchases when the opportunity presents itself for me to do
so.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, Aug
into the pfSense community ten years ago in
the first place.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Aug 3, 2016 at 9:36 PM, Jim Thompson <j...@netgate.com> wrote:
> Here's all you need to know:
>
> 1) we only test releases on the hardware we sel
r.
You could also use a set of USB over twisted pair adapters, but those
aren't necessarily the most dependable pieces of hardware over long
distances.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Mon, Aug 1, 2016 at 4:10 PM, Karl Fife <karlf...@gmail.com> wrote:
> US
6 7:06 PM, "Jim Thompson" <j...@netgate.com> wrote:
> Pic of 7541, see for yourself.
>
> http://imgur.com/5RiHxOz
>
> On Mon, Jul 25, 2016 at 5:57 PM, Moshe Katz <mo...@ymkatz.net> wrote:
>
> > Since you described that the board has isolation tr
hout looking at the board directly.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Mon, Jul 25, 2016 at 5:41 PM, Karl Fife <karlf...@gmail.com> wrote:
> The 6th Ethernet port (em5) on my Lanner fw-7541D died Saturday night
> during the electrical storm. Just the one po
Yes. You need to make sure that any firewall rules to allow LAN traffic are
applied to the bridge instead of to just a single interface (whichever
interface used to be your LAN).
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, May 24, 2016 at 11:24 AM, FrancisM <f
On Fri, May 20, 2016 at 12:19 PM, WebDawg <webd...@gmail.com> wrote:
> On Fri, May 20, 2016 at 11:06 AM, Moshe Katz <kohenk...@gmail.com> wrote:
>
> > If you have static IPs from Comcast, you cannot put the device in bridge
> > mode. The way that Comcast static
If you have static IPs from Comcast, you cannot put the device in bridge
mode. The way that Comcast static IPs work is that your Comcast device
advertises itself to the rest of Comcast's network as the route to your
static addresses. In effect, just pretend that this Comcast device is in
Comcast's
of Consumerist's "Golden Poo Award" for
worst company in America.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, May 19, 2016 at 2:49 PM, Steve Yates <st...@teamits.com> wrote:
> I neglected to mention it but I did find and read many articles on
> Comcast mode
l logical explanation, Comcast will
not let you BYOM if you use static IPs.
Some people (also mentioned in the forum link above) have gotten prefix
delegation to work by asking Comcast to switch their SMC router for a
Netgear one.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
When I had problems with throughput through Unifi Access Points with
pfSense, I replaced every network component, including the pfSense box and
the access points. In the end, my problem turned out to be an issue in how
some of the VLANs were handled by the (defective) switch.
Can you test to see
problem for me constantly, and two used Dell switches that
have been great.
Like WebDawg, I have had a lot of good experiences with buying Dell 28xx
switches on eBay.
Note that you will probably also find a lot of 27xx switches on eBay. While
those are also gigabit (unlike the 26xx and older,
I sent an email to list-ow...@lists.pfsense.org asking for action on this.
All of those people are on the list itself too, but it may help get
something done.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Apr 26, 2016 at 10:08 AM, WebDawg <webd...@gmail.com>
ense boxes that receives a domain
name in the DHCP response.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Nov 20, 2015 at 4:05 AM, Marco <li...@homerow.info> wrote:
> We receive the interface network configuration on the WAN via DHCP.
> This works, however somehow our I
, it is an assumption that Qualys and many other
people make, so it is included in the grade.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https
On Tue, Jul 28, 2015 at 3:54 PM, Ryan Coleman ryan.cole...@cwis.biz wrote:
On Jul 28, 2015, at 2:50 PM, Moshe Katz mo...@ymkatz.net wrote:
On Tue, Jul 28, 2015 at 3:44 PM, Vick Khera vi...@khera.org mailto:
vi...@khera.org wrote:
On Sun, Jul 26, 2015 at 10:31 PM, Ryan Coleman
Do you have the IP alias entered once for the whole /29 subnet or do you
have all of the addresses entered as individual virtual IPs? We had a
similar issue when we switched from Verizon DSL to Verizon FIOS many years
ago - the Virtual IPs had worked on the DSL when they had been defined as a
Just three things to add to what Brian said.
For Windows hosts, run ipconfig /flushdns to clear the cache. (You can
also use /displaydns to set what's in the cache, but you're going to have
to ease through the entire thing so it's probably not worth it.)
If you are using Google Chrome (on any
and that
it was removed from there because something in the 2.x changes broke it.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https
may or may not
actually want to do it, depending on the rule complexity.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https
supports it.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Dec 17, 2014 at 12:06 AM, Jérôme Alet jerome.a...@univ-nc.nc
wrote:
Hi there,
Does anyone know how to use ldaps:// to connect to the LDAP server from
FreeRadius's configuration web form in pfSense ?
The server
in the pfSense
web interface. Will the claimed support work with pfSense, or is this
one of the card types that doesn't work?
Thanks,
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https
annoying and loud in my
office. Boo.
Thanks,
Ryan
It's at the bottom of system_advanced_notifications.php. There is a
checkbox Disable the startup/shutdown beep.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List
The pfSense bogon list is at
https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version
there also doesn't have your block. Make sure that your pfSense has the
newest list. (This should usually be done automatically, but you should be
able to do it from the console/SSH by running
to do any fancy routing or VLAN stuff, just go on Amazon
or NewEgg and get the top-rated 16-port *unmanaged* gigabit switch.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https
the schedule disables the filter
rule.
Thanks
Peter,
It's probably not the most elegant of solutions, but you could try putting
in a *deny* rule for the times that you do not want to allow access. Just
make sure that it is higher up in the rules list than the allow rule is.
Moshe
--
Moshe Katz
-- mo
On Aug 1, 2014 6:46 PM, Brian Caouette bri...@dlois.com wrote:
I subscribe to a karaoke service for my DJ business. When i'm connected
to pfsense downloads are failing. This is what it looks like in squid
realtime:
01.08.2014 18:41:10
192.168.1.10
NONE/411
to troubleshoot because it has no web
interface.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
The first thing you can check is whether the error is being introduced in
SquidGuard itself or later in the stack.
Run /usr/pbi/squidguard-squid3-amd64/bin/squidGuard -c
/usr/pbi/squidguard-squid3-amd64/etc/squidGuard/squidGuard.conf in a shell
(console or SSH) and pass those URLs to it to see
itself is caching the
response from when my configuration was previously broken?
Thanks,
Dean
On Thu, Jul 17, 2014 at 12:00 PM, Moshe Katz mo...@ymkatz.net wrote:
The first thing you can check is whether the error is being introduced in
SquidGuard itself or later in the stack.
Run /usr/pbi
, at least for wget. On my pfSense test
machine which is currently running 2.1, I get those warnings, but wget
works just fine afterwards despite them.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List
://ftp1.freebsd.org/pub/FreeBSD/ports/amd64/packages-9-current/perl5/(or
the i386 location) for other versions of 5.12, 5.14, and 5.18
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https
:57 AM, Moshe Katz mo...@ymkatz.net wrote:
On Wed, May 21, 2014 at 2:39 PM, Florio, Christopher N
flo...@email.unc.edu wrote:
Any idea a URL that I could get this package from? Sounds like a good
option.
One of these should do it (pick the one appropriate for your architecture)
http
/lsof.tbz
(The 8.3 version of the package should work even on the older 8.1-based
pfSense. I've had no problems with it on an older testing box I have.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
in the Central Office for up to four hours. I have found that replacing
equipment hooked up to Verison DSL, it is best to already be on the phone
with Verizon support to have them manually clear the cache. At least
rebooting the cable modem is something you can do yourself.
Moshe
--
Moshe Katz
-- mo
around?
-A
On Sat, May 10, 2014 at 7:55 PM, Moshe Katz mo...@ymkatz.net wrote:
Hi Aaron,
Most cable modems I have worked with in the US (on Comcast, Optimum, and
RCN) all do ARP caching, so you need to reboot them when you change the
connected device (or you need to clone the old
) in pfSense with
no problems.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
to determine on my own whether pfSense is affected by
14:09 or not.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
On Sun, Apr 20, 2014 at 6:32 PM, Volker Kuhlmann
list0...@paradise.net.nzwrote:
I've been running pfsense for many years (and been very happy with it)
on scrapped PCs with a Sun 4-port Ethernet PCI card because I need 5
Ethernet ports.
Now freebsd dieing on the hme driver effectively turns
I do this using one of the Windows servers as a Remote Desktop Gateway.
This feature is built in to the Remote Desktop server and client (so no
need for VPN - though you may choose to use one anyway) a you need to do is
enabled it on the server and set the client to use it.
Moshe
(Sorry for
On Mar 27, 2014 4:22 PM, Chris Bagnall pfse...@lists.minotaur.cc wrote:
On 27/3/14 8:17 pm, Walter Parker wrote:
That's what I would recommend. The VPN can serve as a second gateway to
protect the RDP from the outside world, so you could pitch this solution
as
higher security method of
On Mar 19, 2014 7:59 AM, Brian Caouette bri...@dlois.com wrote:
Original Message
Subject:
Firewall Log
Date:
Thu, 13 Mar 2014 12:48:33 -0400
From:
Brian Caouette bri...@dlois.com
To:
pfSense support and discussion list@lists.pfsense.org
Also seeing this in the
running. (Something like this: nohup
tcpdump tcpdump options )
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On Feb 26, 2014 9:32 AM, kol k_...@hotmail.com wrote:
Just wondering if someone could explain to me why does the pfSense syslog
show the host name (HP-SLVR in the output below) when requesting DHCP via
the LAN segment, but no host name displayed when requesting via the
wireless ?
Feb 25
know if it's still needed.
Since vnstat is a package, it's pretty likely that, if you don't have the
package, you don't need the job.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http
send_smtp_message in /etc/inc/notices.inc to send the email using the
email notification settings that are set in System - Advanced -
Notifications, and call that PHP script from your disk-space monitoring
script.
HTH,
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
allowing SNMP traffic from trusted
hosts. (In truth, you should be doing that anyway.)
http://www.freebsd.org/security/advisories.html
Thanks,
Adam
HTH,
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List
On Dec 9, 2013 6:37 PM, Adam Hunt voxa...@gmail.com wrote:
What parts of pfSense are so arch dependent. One would expect being based
on FreeBSD would make it quite portable.
On Mon, Dec 9, 2013 at 3:25 PM, Jim Thompson j...@netgate.com wrote:
it would be a lot of work.
There was some work
needs to do.
Whatever you do, stay* very far away* from the Celeron. Performance will
likely be terrible.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo
mentioned above, you'll likely be Broadcom
onboard, not Intel, and you will have a hard time finding AMD boards with
more than two onboard NICs).
I hope that helps (at least a little).
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing
way is probably to
add one, then download a Configuration backup, edit the backup file in a
text editor to add the rest of them, and the restore the edited
configuration.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
On Tue, Jun 11, 2013 at 11:48 PM, pfu...@hushmail.com wrote:
I recently traded some old computer equipment for an HP Proliant DL360 G3.
Its a nice little rackmount with dual Intel Xeon 2.8GHz processors 3
onboard gigabit NIC's and a PCI-X bus and 2 PCI-X expansion slots. Its
light on RAM at
to know it should work. If onlyi can get it to actually work. It has
2 drives which I doubt both are bad so it's got to be some configuration.
I just wish I knew what I was doing.
On 6/11/2013 at 9:08 PM, Moshe Katz mo...@ymkatz.net wrote:
On Tue, Jun 11, 2013 at 11:48 PM, pfu...@hushmail.com
on the Internet instead
of directly from one vlan to the other.
Moshe
--
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
://lists.pfsense.org/mailman/listinfo/list
Hello,
Did you reboot the machine after you changed the time zone? As I
understand it, many system components don't see the change unless you
restart them, and the easiest way to restart them all is to restart the
machine.
--
--
Moshe Katz
-- mo
On Wed, Apr 17, 2013 at 8:39 AM, Cristian Ionescu-Idbohrn
cristian.ionescu-idbo...@axis.com wrote:
On Wed, 17 Apr 2013, Moshe Katz wrote:
Did you reboot the machine after you changed the time zone? As I
understand it, many system components don't see the change unless you
restart them
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
for you. If you do simultaneous database- and
network- stress tests, you can compare the results to one-at-a-time tests
of database and network independently.
--
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List
On Wed, Sep 12, 2012 at 1:38 PM, Nenhum_de_Nos math...@eternamente.infowrote:
On Wed, September 12, 2012 13:29, Moshe Katz wrote:
On Wed, Sep 12, 2012 at 12:35 AM, Nenhum_de_Nos
math...@eternamente.infowrote:
hail,
I tried and got:
Root mount waiting for: usbus3
urying
rule but this is the one we use.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
and then not have to configure anything using ifconfig.
I am away from the office for the next few days, but if you still need help
when I get back I can plug something in on the WAN side of our pfSense and
do some testing.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
Addresses on my systems (though I don't currently
use IPSec so I don't know if switching will help you).
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
.
- Windows XP does not support SNI. (Firefox on XP does, as well as
Chrome 6 do).
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
these devices in a production system.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
://redmine.pfsense.com/issues/2513
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
with a slash but without the
domain name; view the source of the page to see this), you would need your
proxy to rewrite links on the page. Your proxy may or may not support this.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List
on those ports. It seemed to work just fine.
Are you trying to put the alias in the End Port box on the rule page?
AFAIK, you only need to put it in the Start Port box (though pfSense
will copy it to the other box after you save the rule).
What version of pfSense are you running?
Moshe
--
Moshe Katz
but it
simplifies configuration and improves response times from the server.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, May 1, 2012 at 10:30 AM, Nelson Serafica ntseraf...@gmail.comwrote:
I've pfsense with port forwarding running fine if the rules is WAN to
LAN
at the build logs on the snapshot server, you will also see the
VMWare builds there.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, May 1, 2012 at 12:05 PM, David Burgess apt@gmail.com wrote:
The docs (http://doc.pfsense.org/index.php/VMwareAppliance) state
ping Google to help troubleshoot your internet
connectivity, you just remember Google for one more thing they can help you
with.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http
in your configuration that is doing that.
Try rebooting the box if you can so it will reload all the configs from
disk.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Mon, Feb 20, 2012 at 11:42 AM, Jason T. Slack-Moehrle
slackmoeh...@gmail.com wrote:
Hi Guys,
OK, the latest steps, I
Is this the setup you have right now (or have you plugged in some other
router/firewall for now) because I can get to the web site at the address
in the screenshots.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Feb 15, 2012 at 8:04 PM, Jason
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sun, Feb 12, 2012 at 10:57 PM, Jason T. Slack-Moehrle
slackmoeh...@gmail.com wrote:
Hi Moshe,
I created an alias with the INTERNAL addresses of all web servers. The
key
is that these are the INTERNAL
themselves have private IPs. It works
just fine.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
further on than we are.
Kind regards,
Chris
--
This email is made from 100% recycled electrons
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
--
--
Moshe Katz
-- mo
rules (red icons) and that they are enabled.
I'm sorry if this sounds like a stupid question but did you make sure your
IP address is not the one that is allowed through in the first rules?
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
2012/1/25 Jürgen
On Wed, Jan 25, 2012 at 2:08 PM, David Burgess apt@gmail.com wrote:
2012/1/25 Jürgen Echter j.ech...@echter-kuechen-elektro.de:
You're using Reject rather than Block, which operates only on TCP/UDP.
Any other packet type will not match that rule.
db
1 - 100 of 104 matches
Mail list logo