On 08.11.17 16:55, WebDawg wrote:
> Do you know this to be true because credentials and such are hosted on
> one interface, but not another?
It is clear from the logs and from the credentials asf. as well.
___
pfSense mailing list
Hi
With two WAN interfaces and with an OpenVPN server on each, bound to its
interface, there is a wrong IP assertion in case the first interfaces
does not get an IP.
In Detail:
- a system with two WAN interfaces that both get their IP by DHCP
- on each WAN there is an OpenVPN Server configured,
ell. you cannot import config to different device without manually
> editing the xml configuration
>
> Eero
>
> 2017-10-24 14:03 GMT+03:00 Adrian Zaugg <a...@ente.limmat.ch
> <mailto:a...@ente.limmat.ch>>:
>
>
> Hi
>
> When loading a config
Hi
When loading a configuration file from a different device (with other
NICs) to a freshly installed pfSense, it correctly detects a mismatch of
the network interfaces and redirects the user to the interface setup
page. If there are VLANs defined in the loaded config, the VLANs are
still bound
On 24.08.15 20:35, Chris Buechler wrote:
On Sun, Aug 23, 2015 at 9:28 AM, Adrian Zaugg a...@ente.limmat.ch wrote:
why it is not enabled by default?
... and because all the DNS servers used as forwarders must support
DNSSEC too for it work.
And thank you for your answer, Chris.
Regards, Adrian
Adding the three lines
dnssec
dnssec-check-unsigned
trust-anchor=.,19036,8,2,49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5
to dnsmasq in pfSense makes dnsmasq dnsssec aware. Is there a reason why
there is no tickable box to enable this in the GUI or
For a single, cheap AP go for the TP-Link TL-WA801nd. It has no
features, the ugliest design on the market, but just works.
For managed APs I just can chime in for UBNT UniFi.
Regards, Adrian.
On 17/07/15 16:45, Chuck Mariotti wrote:
We are having a number of issues with Engenius Access
You also can find details here:
https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b
Regards, Adrian.
On 02.12.14 16:18, mayak wrote:
On 12/02/2014 04:10 PM, David White wrote:
Kevin,
That was posted in 2010, so I don't think there's anything to worry about.
On Mon,
, since the user name given in the corresponding
configuration field gets ignored and silently replaced by admin (this
is probalby a bug, needs confirmation though). Is there another blocking
mechanism involved somewhere?
Regards, Adrian.
On 01.12.14 01:21, Adrian Zaugg wrote:
Hi
pfsense 2.1.5-RELEASE (amd64), nanobsd 2G
On 01.12.14 15:10, Ryan Coleman wrote:
You should provide the version number of the software.
On Dec 1, 2014, at 7:03 AM, Adrian Zaugg a...@ente.limmat.ch wrote:
It seems the web access is only blocked from one IP in the subnet, if I
try
Hi there
Probably I overlook something really simple, but I can't access the
WebGUI on a certain lan interface. It perfectly works on other lan
interfaces though.
I have configured that interface with an any-to-any-all rule. If I'm in
the same subnet, I am able to ping the box, to ssh into it,
On 28/07/14 05:45, Nenhum_de_Nos wrote:
I have a soekris atom board, net6501, and despite the intel nics, chipset
throughput won't let them go as far as they would. So how much would I expect
from these apu from PCEngines? Running the latest pfsense and only routing.
I compared the apu.1c to
Hi Peter
If you test with load, do you get a steady stream? Did you test in both
directions: to and from your box?
I see the same symptoms, but I can provoke them to happen under load.
Bizarre is, that sending data from the pfsense box works fine, I see a
steady stream of 55-57MB/s. In the
Sorry Walter, I was too euphoric: It was just getting better with the
upgrade, it is not solved.
Regards, Adrian.
On 25/11/13 18:37, Adrian Zaugg wrote:
Am 12.11.13 00:32 schrieb Walter Parker:
Any ideas as to why traffic stops on my WAN interface until it is reset?
I had a similar
Am 12.11.13 00:32 schrieb Walter Parker:
Any ideas as to why traffic stops on my WAN interface until it is reset?
I had a similar problem and solved it with a firmware upgrade on the
switch - a cisco sg-300 series.
Regards, Adrian.
___
List mailing
Hello Joe
On 10/20/13 6:04 PM, Joe Landman wrote:
1) setup a gateway group using both WANs. The documentation sometimes
refers to setting up 3 gateway groups for failover and load balance. Is
this still recommended?
I can't tell, what is recommended, I just can say I do only set up one
group
On 10/13/13 7:03 PM, Jim Thompson wrote:
One possible solution: signed packages, and there was a bit of
infrastructure put in-place just prior to the 2.1 release.
We’ve yet to accomplish the rest of this, but.. it’s coming.
As always, if you have ideas(*), bring them forward.
I already
Dear all
After having read the whole NSA thread on this list, it came up to my
mind that pfsense web GUI could declare itself conform to US laws upon
the point when there are known backdoors included or otherwise the code
was compromised on pressure of govermental authorities. It would be the
On 10/11/13 8:20 PM, Walter Parker wrote:
Unless, of course, you are willing to contribute time and money to
fixing this issue. Otherwise this just an armchair general telling other
people how to run the project.
I don't think it is a problem to find a sponsered hosting here in
Switzerland
This story is about a private company and about technology. We talk
about the legal situation. And btw. it is a criminal act to eavesdrop
and to hack into other's systems under Swiss law.
Regards, Adrian.
On 10/11/13 9:54 PM, Walter Parker wrote:
Don't be too sure about Switzerland...
Hi Dan
What are your settings on the Firewall - Virtual IPs Menu for each
interface and device, especially VHID and advertising frequency? Please
also make sure not to tick Synchronize Virtual IPs on the HA Settings
Page.
Regards, Adrian.
On 9/27/13 5:09 PM, Dan wrote:
On 09/27/2013 10:43
Dear List
This thread is still unsolved, any help would be very much appreciated.
On 7/8/13 11:45 AM, Adrian Zaugg wrote:
What means re3: watchdog timeout? Is it possible that the watchdog
resets the interface?
Please see the full message in the attachment.
Regards, Adrian.
---BeginMessage
Dear List
My intend is to use the DNS forwarder only for a network on an optional
interface, which is part of a network using a different domain name than
the LAN network. I would like DHCP clients on the optional interface to
register their DHCP client ID in the DNS forwarder with another
Hi Michael
There is a field Domain Name on the Service-DHCP Server Page, but
this doesn't take effect on DHCP Client ID Registration. I'm on 2.1 Beta
and that might be Bug, but I tend to always first suspect a
misconfiguration...
Regards, Adrian.
On 23/02/13 17:56, Michael D. Wood wrote:
Hi Joy
Maybe I do not get your question right, but you can use pfblocker
package for pfSense using blocklists. The lists contain IP Addresses of
malicious sites, bad peers or even good sites, you can use them as
blocklists or whitelists. There is a big choice of different collections
from
25 matches
Mail list logo