Re: [pfSense] Apple Messages Blocked

[Chris L]

On Jan 15, 2014, at 2:29 PM, Paul Galati  wrote:

> I must have something misconfigured.  Since I was not able to successfully 
> create the right NAT and/or RULES to make this work, I decided to change the 
> IP address of the client behind the pf firewall to a static address that does 
> have a 1:1 NAT.  Now I am not able to get DNS replies, the browser says 
> Looking up host and fails.  I am trying to configure this pf box to go live 
> in a couple weeks.  I do have a server with a static 1:1 NAT that is working 
> properly, but for whatever reason a what I thought was an identical NAT/RULE 
> except the IP address is not resolving DNS, even if entered manually at the 
> client.  I am obviously doing something wrong.
> 
> I tried enabling UPNP but that did not change the end result.  FaceTime rings 
> the recipient, but they both time out waiting for a response from the other 
> computer.
> 
> Other suggestion would be greatly appreciated.  I will report back if I find 
> what is causing this not to function properly.

Sounds like maybe you should save your config, reset to factory, set up a 
simple out-of-the-box with WAN/LAN and see if it works before you "fix it.” :)

___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Apple Messages Blocked

[Paul Galati]

I must have something misconfigured.  Since I was not able to successfully 
create the right NAT and/or RULES to make this work, I decided to change the IP 
address of the client behind the pf firewall to a static address that does have 
a 1:1 NAT.  Now I am not able to get DNS replies, the browser says Looking up 
host and fails.  I am trying to configure this pf box to go live in a couple 
weeks.  I do have a server with a static 1:1 NAT that is working properly, but 
for whatever reason a what I thought was an identical NAT/RULE except the IP 
address is not resolving DNS, even if entered manually at the client.  I am 
obviously doing something wrong.

I tried enabling UPNP but that did not change the end result.  FaceTime rings 
the recipient, but they both time out waiting for a response from the other 
computer.

Other suggestion would be greatly appreciated.  I will report back if I find 
what is causing this not to function properly.

Thanks.

Paul Galati
paulgal...@gmail.com



On Jan 15, 2014, at 4:09 PM, Bruce A. Mah  wrote:

> I *don't* have UPnP turned on, but Messages and Facetime seem to Just
> Work (TM) for me on devices on my home network (behind a pfSense 2.1 box).

___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Apple Messages Blocked

[Bruce A. Mah]

If memory serves me right, Vick Khera wrote:
> 
> On Wed, Jan 15, 2014 at 11:02 AM, Jim Thompson  > wrote:
> 
> Turning on UPNP might make things better.  "It just works" for me, too. 
> 
> 
> Come to think of it, I do have UPNP turned on for my home LAN, too. So
> yeah, do that :)

I *don't* have UPnP turned on, but Messages and Facetime seem to Just
Work (TM) for me on devices on my home network (behind a pfSense 2.1 box).

Bruce.




signature.asc
Description: OpenPGP digital signature
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Apple Messages Blocked

[Vick Khera]

On Wed, Jan 15, 2014 at 11:02 AM, Jim Thompson  wrote:

> Turning on UPNP might make things better.  "It just works" for me, too.
>

Come to think of it, I do have UPNP turned on for my home LAN, too. So
yeah, do that :)
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Apple Messages Blocked

[Jim Thompson]

Turning on UPNP might make things better.  "It just works" for me, too. 

-- Jim

> On Jan 15, 2014, at 10:00, Vick Khera  wrote:
> 
> 
>> On Tue, Jan 14, 2014 at 3:01 PM, Paul Galati  wrote:
>> I have tried searching the forums for find a fix to allow Apple Messages app 
>> to successfully connect using Audio, Video, or Screen Sharing.
> 
> It "just works" for me. I have pfSense protecting my home network, sitting 
> behind a NAT from Verizon FiOS even (so my internal is double NATted.)  I 
> have done facetime chats with my kids on the computers at home which is the 
> same as the Messages app and me on a computer and/or my phone in another 
> state. I allow the internal computers to make all outbound connections, 
> though, so that may be a difference in your configuration.
> 
> ___
> List mailing list
> List@lists.pfsense.org
> http://lists.pfsense.org/mailman/listinfo/list
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] Apple Messages Blocked

[Vick Khera]

On Tue, Jan 14, 2014 at 3:01 PM, Paul Galati  wrote:

> I have tried searching the forums for find a fix to allow Apple Messages
> app to successfully connect using Audio, Video, or Screen Sharing.


It "just works" for me. I have pfSense protecting my home network, sitting
behind a NAT from Verizon FiOS even (so my internal is double NATted.)  I
have done facetime chats with my kids on the computers at home which is the
same as the Messages app and me on a computer and/or my phone in another
state. I allow the internal computers to make all outbound connections,
though, so that may be a difference in your configuration.
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] WAN not accepting traffic

[Ulrik Lunddahl]

Hi Brian!

> Cable Modem (public ip with a 192.168.100.1 management port -> Linksys AP 
> dhcp to modem 192.168.100.1 lan ip with all connected pc's in this range 
> including -> PF 192.168.100.20 and pf lan of 192.168.1.1 of which is dhcp 
> assigns my laptop .101 when plugged in.

Have you remembered to tell you NAT router (the first one) to route traffic to 
the 192.168.1.x subnet via 192.168.100.20 (pfSense WAN), you will use a static 
route for that, on the NAT router, not the pfSense box.

- Ulrik




-Oprindelig meddelelse-
Fra: list-boun...@lists.pfsense.org [mailto:list-boun...@lists.pfsense.org] På 
vegne af Brian Caouette
Sendt: 15. januar 2014 05:00
Til: pfSense support and discussion
Emne: Re: [pfSense] WAN not accepting traffic

This software is very frustrating. Last night captive portal was prompting for 
logon info and today its not.

UGH

Anyone willing to remote connect and help me out?

Brian

bri...@dlois.com
207-212-6560

On 1/14/2014 10:16 PM, Brian Caouette wrote:
> Would you be willing to do a remote connection? If so email 
> bri...@dlois.com and I'll share the details to the machine.
>
> Brian Caouette
> 207-212-6560
>
> On 1/14/2014 8:33 PM, Walter Parker wrote:
>> If the WAN interface is set to DHCP, then I think there is an option 
>> to override/not override the DNS server addresses from the DHCP 
>> server. Check that. Check that the rule passes TCP&UDP. When I've had 
>> this problem before, I also check from the shell, but then again, I'm 
>> an oldtime FreeBSD user, so I don't fear the CLI (check 
>> /etc/resolv.conf).
>>
>>
>> Walter
>>
>
> ___
> List mailing list
> List@lists.pfsense.org
> http://lists.pfsense.org/mailman/listinfo/list

___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list