Re: [pfSense] IPSec tunnels on AT U-Verse

Try enabling and reading the debug logs first to scavenge some output from both tunnel ends. I found a lot of my brokenness enabling and reading the docs listed in PFSense's debug log listing wikipage for IPSec linked in my previous mails. It saves a lot of time over going in blind if you can

Re: [pfSense] How To install MySQL on Pfsense 2.4

pfSense is a purpose-built router distribution, not a general-purpose OS. While it may be possible to do what you propose, you *should not* do this. Instead, if you require a database server, host it on a separate machine. On Mon, May 15, 2017 at 11:27 PM, mohsen Abbaspour

[pfSense] How To install MySQL on Pfsense 2.4

Hello everyone English is not my first language , excuse me for mistakes I know that this is a repetitive questioning " How to install Mysql on pfsense ?" But , I searched almost topic about that , and finally I dont understand what is correct solution ? maybe install Mysql on pfsense

Re: [pfSense] IPSec tunnels on AT U-Verse

> On May 15, 2017, at 10:02 PM, Laz C. Peterson wrote: > > Is Openswan what is used for IPSec? Strongswan. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold!

Re: [pfSense] IPSec tunnels on AT U-Verse

Matthew and Jim, We didn’t get a chance to test anything today. It turned out to be “one of those Mondays” … But there’s something really weird going on. I know nothing about the subject compared to Matthew — and he claims he knows nothing about it.. Ha ha … Is Openswan what is used for

Re: [pfSense] speed problems with SG-1000

Based on the product page the max throughput as you described would seem to be 200Mbps. https://www.netgate.com/products/sg-1000.html See the notes at the bottom of the page. -Original Message- From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of John DeSoi Sent: Monday, May

Re: [pfSense] speed problems with SG-1000

Did you do the firmware upgrades? On Mon, May 15, 2017 at 6:41 PM, John DeSoi wrote: > I just purchased a SG-1000 for use with my Google Fiber installation. I > did minimal configuration of the SG-1000, only changing the LAN address to > 192.168.200.X (GF is 192.168.100.X). I

Re: [pfSense] Found a Bug?

On Mon, May 15, 2017 at 3:24 PM, Daniel wrote: > Hi there, > > it seems i found a bug. 2 times i run in the same Problem. > Harddisk in my PfSense went to 100% Disk usages. (suricata logs) > After booting in rescue mode and deleted 100GB Logs the pfSense loses the > whole

[pfSense] Found a Bug?

Hi there, it seems i found a bug. 2 times i run in the same Problem. Harddisk in my PfSense went to 100% Disk usages. (suricata logs) After booting in rescue mode and deleted 100GB Logs the pfSense loses the whole configuration and I needed to reinstall the whole Server and restore a backup.

[pfSense] Found a Bug?

Hi there, it seems i found a bug. 2 times i run in the same Problem. Harddisk in my PfSense went to 100% Disk usages. (suricata logs) After booting in rescue mode and deleted 100GB Logs the pfSense loses the whole configuration and I needed to reinstall the whole Server and restore a backup.

[pfSense] speed problems with SG-1000

I just purchased a SG-1000 for use with my Google Fiber installation. I did minimal configuration of the SG-1000, only changing the LAN address to 192.168.200.X (GF is 192.168.100.X). I hooked the WAN port to one of the GF ethernet ports and then my laptop to the LAN port on the SG-1000. Using

Re: [pfSense] IPSec tunnels on AT U-Verse

Hi Jim, > On May 14, 2017, at 6:38 PM, Jim Thompson wrote: >> 3. Create one or more P2s to make selectors for traffic inclusion and >> exclusion. Note there's a bug in PFSense, where if you do IPSec from not-LAN >> interfaces, the traffic to the firewall's IP gets stolen

Re: [pfSense] About SSL Filtering: Squid and Squidguard.

Hi Volker and thanks for your guidance. I'm trying to avoid "MITM filtering" and Transparent-mode. I've read there are problems with MITM when clients access bank sites. As you said, keep the proxy and firewall separated is a better choice. These service must be 100% controlled and sometimes

[pfSense] Detect suspicious traffic from OpenVPN clients

Hello everyone, I have installed pfSense successfully as a firewall / gateway, with snort. I have some alerts working, for instance when I start a port scan from an internal server to an external IP address. I also have OpenVPN working nicely, using a tunnel set up. Now, I would like to

Re: [pfSense] Host Overrides in Services/DNS Forwarder not working until manual restart of DNS Forwarder Service

Am 15.05.2017 um 03:29 schrieb Chris L: > Maybe this: > "Do not use 'local' as a domain name. It will cause local hosts running mDNS > (avahi, bonjour, etc.) to be unable to resolve local hosts not running mDNS.” Nope, sorry, it's not that easy. It fails *all* entries made in that list, even if