Re: [pfSense] 2.3-REL, HA, WAN CARP IPv6 MAC seen as active on both NICs

Thanks Steve, > Are you only syncing in one direction? > > fe80::250:56ff:febf:3ca5 is a link-local address which looks a bit strange in > my skimming of the below. > > Overall, we have two IPv6 ranges for the routing: > WAN CARP IP: 2607:ff50::12/125 > WAN IP router 1: 2607:ff50::17/125 > WAN

Re: [pfSense] 2.3-REL, HA, WAN CARP IPv6 MAC seen as active on both NICs

"IPv6 does not seem to get proper advertisements from peer and both think they're MASTER" Are you only syncing in one direction? fe80::250:56ff:febf:3ca5 is a link-local address which looks a bit strange in my skimming of the below. Overall, we have two IPv6 ranges for the routing: WAN CARP

Re: [pfSense] How to debug an IPv6 phase2 over IPsec (IKEv2) IPv4 phase1?

-Uğur 2016-05-04 18:44 GMT+03:00 Olivier Mascia : > Having switched recently from OpenVPN to IPsec (IKEv2 only) for 3 site to > site tunnels, I'm still debugging why I can only get it to work for IPv4. > Phase1 are setup with IPv4. Adding two phase2, one tunnel4 and one

[pfSense] How to debug an IPv6 phase2 over IPsec (IKEv2) IPv4 phase1?

Having switched recently from OpenVPN to IPsec (IKEv2 only) for 3 site to site tunnels, I'm still debugging why I can only get it to work for IPv4. Phase1 are setup with IPv4. Adding two phase2, one tunnel4 and one tunnel6, nothing flows through the tunnel6. Capturing on IPSEC interface on one

Re: [pfSense] 2.3-REL, HA, WAN CARP IPv6 MAC seen as active on both NICs

> Le 3 mai 2016 à 11:17, Olivier Mascia a écrit : > >> Le 3 mai 2016 à 09:49, Chris Buechler a écrit : >> >>> Or would it be that my BACKUP (according to /status_carp.php) do also >>> advertise (which it shouldn't as BACKUP)? >> >> That's the problem. I'm

Re: [pfSense] Monitor (RRD) all 0 data on 2.3

I envision the ideal design to be one in which I can have five or six (customized) graphs in one view (rather than having only one single customizable 'default' view). Ideally all of the saved graphs would visible/rendered together when I go that page, but even if I had some presets (like an

Re: [pfSense] USB3 to ethernet adaptor

Op 2-5-2016 om 15:57 schreef WebDawg: > On May 2, 2016 1:56 AM, "Frans Meulenbroeks" > wrote: >> >> Hi, >> >> Has anyone experience using USB3 to ethernet adapters ? I need an extra >> interface but my HW (Intel NUC) does not have room for another card). >> Anything

Re: [pfSense] 2.3 show stopper -- in most cases openvpn client specific overrides will fail to send proper iroute/push route

> -Original Message- > From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of Chris > Buechler > Sent: 4 May, 2016 8:10 > To: pfSense Support and Discussion Mailing List > Subject: Re: [pfSense] 2.3 show stopper -- in most cases openvpn > client specific overrides will fail to

Re: [pfSense] 2.3 show stopper -- in most cases openvpn client specific overrides will fail to send proper iroute/push route

On Tue, May 3, 2016 at 5:43 AM, Philipp Tölke wrote: > Hi everyone, > > just FYI, I also had to un-check "Address Pool" for our vpn with > "Static-IP-Overrides". > You probably should just set it back to net30 as noted in my last post in this thread.