Re: [pfSense] 3G USB Modem installation on PFSENSE

2011-12-06 Thread Daniel Llewellyn 
On Tue, Dec 6, 2011 at 17:35, Nabeel Hasan  wrote:
> After it I just use ICS on USB Modem connection and
> select interface of newly created interface from VMware network editor. In
> Pfsense I just used that interface as wan2 and select DHCP option which got
> its IP from ICS. Now it is working fine for me.

I may be entirely missing the point here, but isn't a prime reason for
using pfSense to avoid having Windows hosts and other
non-security-enhanced operating systems from facing the Internet
unprotected? I completely fail to understand the reason for having
Windows+ICS in addition to pfSense, especially when pfSense is
_behind_ the Windows box and therefore not firewalling the WAN link.

-- 
Regards,
    The Honeymonster aka Daniel Llewellyn
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfSense 2.0 - Filtering traffic on OpenVPN

2011-10-13 Thread Daniel Llewellyn 
On Thu, Oct 13, 2011 at 16:03, Tim Nelson  wrote:
> I would expect it to work this way also. However, I've removed the OPT 
> interfaces corresponding to the OpenVPN servers. Next, I've added one rule to 
> 'Allow all traffic, any protocol, any source, any destination, etc' the 
> OpenVPN tab in the firewall rules page. This should allow all traffic from 
> all clients. However, even after saving, then clearing the state table, I'm 
> not able to pass traffic over any of the OpenVPN links.
>
> I should mention, this system was upgraded from 1.2.1 to 2.0-RELEASE. Also, I 
> did *not* uninstall any packages prior to the upgrade (read the upgrade notes 
> afterwards... :/ ). Does this have any relevance? Should I reinstall this 
> system from scratch, then recreate each VPN server/interface? Maybe just 
> delete all the VPN servers, and start fresh?

which direction are you trying the connectivity?

the rules on the openvpn tab are for connections coming from the
remote system to the pfSense box. If you want to connect out from
local boxes to the remote system over the vpn then you need
appropriate rules on the relavent interface (such as lan) to allow the
traffic.

-- 
Regards,
    The Honeymonster aka Daniel Llewellyn
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list