Re: [pfSense] Is there a way to version-control the configuration?
Hi, This is something I have thought about also, this would be great. As far as I know you can go back a couple of changes from the CLI. Cheers, Matt 2015-08-01 19:16 GMT+02:00 Rainer Duffner rai...@ultra-secure.de: Hi, we have a device from another manufacturer (it’s a WAF). Also configured via a WEB-Gui. In there, you make your changes to the configuration and when you’re satisfied with it, „commit“ the changes to (what looks like) RCS and subsequently activate them. You can also easily roll-back to previous saved configurations. It would be cool if pfSense supported a feature of this kind. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Is there a way to version-control the configuration?
Yes that is possible, but locally managed. I would prefer some SVN or git way. Ah, gotcha. For those that have pfsense gold, there is the option to take advantage of the pfsense-hosted autobackup solution. That said, the config.xml file is just plain text; I imagine it would be fairly trivial to script up something to upload it into git on change. Not OOTB though, you're right. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Connect pfSense as client to a Hotel WLAN?
Am 2015-07-30 08:55, schrieb Chris Buechler: On Wed, Jul 29, 2015 at 7:59 PM, Ray r...@renegade.zapto.org wrote: Hi, I run pfSense on a few ALIX boxes, usually as tunnel end and as access point. When I can plug one of these machines into any (wired) network, I have easy access to my home network through the private WLAN the ALIX provides. This works beautifully. I travel a lot and today hotels only provide WLAN access. Ethernet ports in hotel rooms are relics of the past. I solved this problem by using a Mac to connect to the Hotel WLAN and then select Share my Intenet (WLAN) connection to Ethernet in the Sharing control panel. When I then connect the ALIX WAN interface to my Mac using a cable, things again work nicely, but I effectively block a Mac as router that I would rather carry around. My thought was throw a second ALIX box at the problem and make that one connect as client to the hotel's WLAN, then plug the two ALIX's together with a short cable. I did try this, hacking the hotel's WLAN details into the WLAN interface configuration of the second ALIX (configured to use Infrastructure mode, of course), but the WLAN interface always stays down, no matter what I try. My hope was that the the hotel's captive portal mechanism could be fooled to give access to my client ALIX from any client computer connected to AP provided by ALIX number 1, but as the client ALIX's WLAN is always down, I didn't even make it to this point. Did anyone here successfully do this (and share some insights)? Definitely doable. I've done it in about every combination imaginable. ALIX or similar hardware with a wifi card, a pfSense VM on a laptop with a LTE card via USB passthrough, same for wifi USB. Ethernet bridged to a VM on a laptop. Some ugly combinations of those where multiple layers of NAT were necessary before the traffic left my equipment, but was fine as a temporary hack. For connecting to captive portal networks, everything behind it will look like one device as far as their network is concerned, as you're NATing everything to the same source IP and MAC. How do you have the wireless interface configured for standard and channel? What wireless card are you using? Sorry for the delayed response. Currently traveling. I'm using a Compex WLM54SAG23 miniPCI card (cf: http://www.pcengines.ch/wlm54sag23.htm). Uses an Atheros AR5414. pfSense is v2.2.1 if I remember correctly. Best, Ray ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] Is there a way to version-control the configuration?
Hi, we have a device from another manufacturer (it’s a WAF). Also configured via a WEB-Gui. In there, you make your changes to the configuration and when you’re satisfied with it, „commit“ the changes to (what looks like) RCS and subsequently activate them. You can also easily roll-back to previous saved configurations. It would be cool if pfSense supported a feature of this kind. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Is there a way to version-control the configuration?
It would be cool if pfSense supported a feature of this kind. Diagnostics Backup/Restore Config History ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Is there a way to version-control the configuration?
Yes that is possible, but locally managed. I would prefer some SVN or git way. 2015-08-01 19:24 GMT+02:00 Tim Eggleston tim.li...@eggleston.ca: It would be cool if pfSense supported a feature of this kind. Diagnostics Backup/Restore Config History ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Got an alert after updating to 2.2.4
Am 31.07.2015 um 08:38 schrieb Chris Buechler c...@pfsense.com: On Thu, Jul 30, 2015 at 5:34 PM, Rainer Duffner rai...@ultra-secure.de wrote: php: rc.bootup: New alert found: pfSense requires at least 128 MB of RAM. Expect unusual performance. This platform is not supported. I have an Alix board: CPU: Geode(TM) Integrated Processor by AMD PCS (431.65-MHz 586-class CPU) Origin = AuthenticAMD Id = 0x5a2 Family = 0x5 Model = 0xa Stepping = 2 Features=0x88a93dFPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CLFLUSH,MMX AMD Features=0xc040MMX+,3DNow!+,3DNow! real memory = 134217728 (128 MB) avail memory = 94752768 (90 MB) So, is the Alix deprecated? The 128 MB ones, yes. Have been for a long time. We've stated 256 MB as the minimum supported since one of the 1.2.x releases, at least 6-7 years ago. Sure it wasn't showing the same before? No, never. Maybe some change in FreeBSD 10.1 made the avail memory less than it was previously. It warns at less than 101 MB avail (which was generally enough to not warn on systems with 128 MB real). If you're running nothing beyond the defaults on a small network, 128 MB might be OK. But forget about running any type of VPN, or much of anything outside of defaults. It’s a bit a shame. I just use it as a glorified router (minus all the security-vulnerabilities of COTS-routers, of course). My VDSL is only 20 MBit / 2Mbit - and I doubt that I get Fibre in my little village here any time in the future (unless the Swisscom CEO moves here). So, while I’d like to upgrade to one of the SG boxes, it doesn’t make much sense - even though the spec-sheet looks great. For now, it works OK, I don’t see any problems. I think I bought this in 2008 or so. Try getting an update for a consumer router from 2008… How long do you foresee software-support for the SG devices? ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold