Re: [pfSense] Assign IP Address with /32 Mask on WAN Interface

On 31/03/2015 03:40, Adam Thompson wrote: > Sadly, I know several xDSL providers who offer a default gateway not in > the client's subnet. (LOL: my phone auto-corrected "subnet" to > "fuckety". No kidding.) > Linux and Windows and MacOS can deal with this level of brain-deadness, > *BSD cannot.

Re: [pfSense] 2.2.1 Site-to-Site IPsec VPN Connection Instability

On 23/03/2015 14:34, Christopher CUSE wrote: > > On 03/23/2015 03:03 PM, mayak wrote: >> On 03/22/2015 12:38 AM, Bryan D. wrote: >>> We've had a pfSense-to-pfSense "always on" IPsec VPN connecting 2 >>> offices since 2008 (pfSense 1.2 IIRC) and it's: >>> - been ultra reliable (if VPN is down, su

Re: [pfSense] not all backdoors are NSA backdoors

pkgng allows signed binary packages on FreeBSD and poudriere makes maintaining a repo stupidly simple if that helps. https://glenbarber.us/2012/06/11/Maintaining-Your-Own-pkgng-Repository.html Vince On 15/10/2013 11:08, Jim Thompson wrote: > Once upon a time I was the CTO of Wayport. > > We put

Re: [pfSense] Newbie questions

On 08/08/2013 21:05, Marcio Merlone wrote: > > >> Side question: are there iPhone/iPad/Android apps that will allow VPN >> access so I can get into the management interfaces while on the road? > Not sure, have tried searching list archives? There are some messages > regarding this a while ago, if

Re: [pfSense] Order of processing of incoming packets

On 14/09/2012 15:02, Jim Pingle wrote: > On 9/14/2012 9:35 AM, j...@millican.us wrote: >> Hello, >> I would like to verify the order in which incoming packets are processed >> by pfSense. Currently I have two pfSense**2.0.1-RELEASE boxes in a >> fail over setup. Both boxes have Snort installed.

Re: [pfSense] Any suggestions on how filter in pfSense for SQL Injections?

As far as i know for application level attacks like this you need something like snort to detect them. I believe this is supported as a package. I havent used it under pfsense though. http://doc.pfsense.org/index.php/Setup_Snort_Package seems to indicate it will block hosts based on snort rules. I

Re: [pfSense] Avoiding kernel messages about MAC changes

On 05/11/2011 10:14, bsd wrote: > Hi, > > Just for my info, is there a way to avoid these message about arp changes ? > They are due to WAN interfaces (WAN / OPT) beeing bridged together > > WAN <--> OPT > BRI_WAN > > > myname.abc.biz kernel log messages: > +++ /tmp/security.UyYMRtdm2011-11