By default, everything coming IN on the WAN is blocked but everything
coming IN on the LAN from the LAN network is allowed. You can easily remove
this rule on the LAN interface if you want.
On Nov 15, 2017 7:20 AM, "Roberto Carna" wrote:
People, I'm new at pfSense and I'm seeing that there are i
The official documentation mentions the explicit possibility of loading a
configuration on new hardware and nowhere does it mention needing to edit
the xml beforehand. I would think that hard to do with an encrypted xml
file. I've done both numerous times and personally I would think it
"should" w
Is there a reason you're still on version 2.1.6?
On Jun 7, 2017 5:41 AM, "pfsense-l...@y-tech.co.il" <
pfsense-l...@y-tech.co.il> wrote:
> Hi all,
>
> I just encountered a major bug:
> Adding a new port forward rule caused a deletion of all firewall rules,
> ALL.
> I restored the configuration fr
I can confirm I've done this as well.
On Dec 7, 2016 11:36 AM, "Christoph Hanle"
wrote:
Hi,
short answer:
Yes !
I do it by: Create Alias / Type: Host(s) /
IP or FQDN, this can also be an Alias, i found that the Alias is not
(!) limited to be a single IP, can be an Alias whith whatever content.
Access point and captive portal should help.
On Jul 13, 2016 5:52 PM, "Alfredo Tapia Sabogal"
wrote:
> Hi everybody is any way to block or give an wifi access to certain people
> only? Should i insert a wireless nic card to our pfsense and buy an access
> point as well what i should do to aco
I've had OpenVPN set up with around 20 remote sites for years. Fairly low
bandwidth but I prefer the configuration myself. My remote sites don't
route all traffic back to HQ ; It all depends on the routes you push to the
remote sites.
___
pfSense mailing
On May 6, 2016 6:01 AM, "Vick Khera" wrote:
>
> On Thu, May 5, 2016 at 3:05 PM, Jim Thompson wrote:
>
> > it’s documented that you need to (re)start NTP manually.
> >
>
> Where would one learn this? The update page doesn't say anything about
> "after applying this update, do XYZ". That would be t
On Dec 7, 2015 8:13 PM, "Joshua Young" wrote:
>
> We have recently been the target of DDoS attacks. The same interface is
> targeted each time. Is there any way we can shut down this interface
> automatically when this happens? Is there a way to maybe set a threshold
> for traffic and, when it
You may want to look into this recent post: https://blog.pfsense.org/?p=1773
Seems quite a bit of work is already going into updating the GUI.
--
Oliver Hansen
On Tue, Jun 30, 2015 at 7:35 AM, Ryan Coleman wrote:
> What I think really needs to be added is a little device type CSS/JS
Walter mentioned it. And that's the same problem I've had before.
On Feb 23, 2015 8:15 PM, "Ryan Coleman" wrote:
> No one has mentioned that you haven’t stated if you had a Null Modem cable.
>
> Do you have a Null Modem cable or a simple Pass-through one?
>
> > On Feb 23, 2015, at 7:08 PM, Jeremy
A bit of a guess but when I've had an issue with the OpenVPN GUI it was
something in my OpenVPN Advanced Configuration section that I had added
long ago and was no longer necessary or conflicting in some way.
--
Oliver Hansen
On Mon, Jan 19, 2015 at 12:26 PM, Erik Anderson wrote:
> H
Haven't tried it but it would seem you could add a simple script to the end
of the OpenVPN connection configuration that would open the web address
after they connect.
On Dec 31, 2014 9:46 AM, "Jean-Stéfane Bergeron" wrote:
> Good day,
>
> I am hoping you guys might be able to help me come up wit
What does the allow rule on the restricted vlan and the NAT rule look like?
On Dec 11, 2014 11:24 PM, "Ryan Clough" wrote:
> I am hoping that one of you out there can assist me with this rather
> interesting problem I am having. Let me set the stage.
>
> I am running the latest stable version of
I believe in the settings tab for RRD there is a reset option.
I've had to reset mine after almost every upgrade since 2.1.
On Nov 5, 2014 8:39 AM, "Olivier Mascia" wrote:
> Hello,
>
> Checking the logs, I get 5 or 6 errors similar to this one when accessing
> the Status - RRD Graphs menu item:
You didn't mention which version of pfSense you're on but Status -> Traffic
Graph has shown the IP using the bandwidth live to the right of the graph
for a while now. At least 2.1.
--
Oliver Hansen
On Wed, Sep 24, 2014 at 8:04 AM, Muhammad Yousuf Khan
wrote:
> Darkstat and
Status - > Traffic Graph is where I usually look in the GUI.
On Sep 24, 2014 7:25 AM, "Muhammad Yousuf Khan" wrote:
> hi guys actually i want to check which IP is using most of the internet
> traffic. i see pftop a bit confusing i tried changing sorting via "o" but
> it is still confusing me . c
I had similarly unreliable connections from the UML290 but in my case the
Verizon signal was poor in that area.
I had some luck at one point running a program on the modem from a PC that
forced it to only use 4G as it seemed to have more problems when switching
from 3G to 4G and back. That was the
I would think it's pretty simple if you have a vlan capable switch. Just
connect the router to the switch on a trunk port and other devices off of
the switch on specific vlans.
On Aug 16, 2014 10:48 AM, "Bob Gustafson" wrote:
> I have a small Alix board with only one Ethernet connector.
>
> It wo
Usually when I see that message it's because DNS is not configured
correctly on the box.
On Jul 10, 2014 9:44 AM, "Brian Caouette" wrote:
> The update from 2.1.3 to 2.1.4 failed hard for me. I got a unable to load
> kernel message on reboot. That said I reinstalled and am rebuilding my
> setup. I
If possible, using OpenVPN for this is the easiest to configure IMO. You
can just push the routes in your VPN configuration.
I believe the wiki has good instructions for this.
On May 15, 2014 2:22 PM, "Alex Threlfall" wrote:
> Hi All,
>
>
>
> I currently have a number of sites wh
e
problems. Because yours has worked just fine in the same place this may not
be the cause.
--
Oliver Hansen
On Thu, Apr 17, 2014 at 9:17 AM, Vick Khera wrote:
> At the advice of the group here, I installed a VZW UML290 usb modem
> about a week and a half ago. This has worked pretty well as
l
sells the UML290 on their web site but I have not had experience yet with
the UML295. I may get ahold of one sometime in the near future so if I do
I'll let you know my experience.
--
Oliver Hansen
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
One way would be to backup the system then manually edit the XML to remove
any portions relating to the traffic shaper. After that, restore the
configuration you edited.
--
Oliver Hansen
On Tue, Dec 3, 2013 at 8:41 AM, Ron Lemon wrote:
> I have a scrolling message about errors when
- Original Message -
From: "Adrian Wenzel"
To: "pfSense support and discussion"
Sent: Saturday, October 12, 2013 10:41:40 AM
Subject: Re: [pfSense] naive suggestion: conform to US laws
>
> I can't say I agree with Thinker Rix on everything but on this I do
> agree. I have been on this
On Sat, Oct 12, 2013 at 4:10 AM, Thinker Rix wrote:
> On 2013-10-09 19:38, Jim Thompson wrote:
>
>> So asking the question is stupid
>>
>
> On 2013-10-09 19:50, Jim Thompson wrote:
>
>> IMO, this bullshit thread only serves to assist those asking the question
>> in stroking their own ego.
>>
>
> O
*BLINK!*
Incredible the way I am seeing the reaction to the initial question,
and trying to query very valid points are now leading me to seriously
reconsider the potential risk I have in continuing to use pfsense as a
security tool.
The about list on the mailman page states: "pfSense support
ed back
on.
--
Oliver Hansen
On Wed, Jun 26, 2013 at 6:25 AM, suresh suresh
wrote:
> HI Odhiambo,
>
> Am able to get pfsense webgui on lan network. but am not getting the
> Internet connection.please let me know what i can do for that.
>
>
> Thank you,
>
> Regards,
>
Try throwing in a second USB stick and install to that one.
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On Mon, Apr 29, 2013 at 7:36 AM, Drew Lehman wrote:
> I could, but it's not the only thing I use the VPN for. I use it when
> using hotspots and on my phone when I'm using a public WiFi. I also have
> kids, and I want to make sure that I don't run afoul of some over-zealous
> music industry if
I know this doesn't answer your question but why not just put in a fake
address like 0.0.0.0? They won't be able to reach it so they won't get out.
I haven't tried it but it's an idea.
--
Oliver Hansen
On Thu, Nov 15, 2012 at 9:04 AM, Will Wagner wrote:
> Hel
On Sep 29, 2012 1:36 PM, "Johnny" wrote:
>
> Hey guys I am currently running ipcop 2.0 and thinking about switching
over to pfsense. (tired of the slooowww updates) I have my ipcop box setup
as follows.
>
>
>
> 1 nic is on green
>
> 1 nic is on red
>
> 1 nic is on blue – Wi-Fi, I have a router on
>
> While it indeed does work that way, it doesn't really make sense to me.
>
>
> If I cannot import selected sections from a full config.xml, what would
> the select menu be good for?
> And if I only have a partial config, say, I saved the aliases, then
> obviously I would want to restore the alia
Hi Stefan, I can't be sure but I think I have run into this before. Have
you tried uploading a config with ONLY those parts that you want to
change? I think it is intended to be restored from a backup that only
contained those parts.
Oliver Hansen
On 7/23/2012 2:08 AM, Stefan Baur wrote
On Jun 14, 2012 5:36 AM, "Pankaj Kumar" wrote:
>
> I have PfSense2.0.1 installed with dual wan for load balancing purpose, i
want to know how to monitor the internet usage on LAN by host name or IP
who is using how much bandwidth
> as well please assist me how to restrict the downloading on PfSens
On Thu, May 3, 2012 at 12:40 PM, justino garcia wrote:
>
>
> Anyone here used the Netgate m1n1wall 2D3 / 2D13 Blue?
> Does this unit run the full version of PFSense, and is 256 MB for a home
> office deployment enough?
> Do I need third nic, and separate my WLAN and lan, and then just have
> vlans
uite like the ability to push a route easily with OpenVPN.
>
> Comments appreciated.
>
> Cheers
>
> Gavin
>
>
Gavin, I replaced my remote site routers with pfSense and went to OpenVPN a
couple years ago and haven't looked back. It's almost a
s there is an easier way to achieve what we are looking for.
Thanks!
--
Oliver Hansen
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
Ipsec works but I've found it much easier to use OpenVPN when that's an
option. Easier to do real routing as well.
On Mar 21, 2012 6:01 PM, "Ugo Bellavance" wrote:
> Hi,
>
> For a simple site-to-site VPN (main office to DR site), what is most
> recommended? I used IPSec in the past and it worked
Yes that's correct.
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On Mar 6, 2012 10:06 PM, "Joseph Rotan" wrote:
>>
>> Hi,
>>
>> I would like to seek any assistance on how could i add a network printer
to
>> my pfsense LAN.
>>
>> I install pfsense 2.0 machine for a High school computer Lab with 20
>> computers connected to a centralised switch, now the school ha
On 3/6/2012 12:17 AM, Orges Ndrecka wrote:
Hi Oliver,
1 - I need to have the PfSense in Bridge mode, not NAT.
2-In Aliases is possible to add hosts under each group not by adding
_subnets_?
Many thanks,
Orges
1- I'm not sure about bridging. Never used it.
2- Sure, go to Firewall -> Alia
On Mar 5, 2012 2:27 AM, "Orges Ndrecka" wrote:
>
>
>
> Hello,
>
> I cant find options in PfSense to assign hosts into different groups and
assign to each host separately bandwidth limits. I need to know if this
option is supported by PfSense in order to continue implement PfSense into
my systems.
On Feb 28, 2012 12:27 PM, "Adam Piasecki"
wrote:
>
> On 2/28/2012 3:12 PM, Tim Nelson wrote:
>>
>> Greetings-
>>
>> I remember around the time of the 2.0 betas (or as an addon to the 1.x
branch), there was a way to see the bandwidth used per host. It was
displayed next to the SVG graph for the sel
I don't have the answer but I would also be interested if anyone knows
about this functionality. It could possibly help in a situation I've
encountered recently.
On Dec 14, 2011 2:17 PM, "bsd" wrote:
> Hi,
>
> I am bit off topic for the pfSense list, but since I want to be compliant
> with the Fr
On 12/4/2011 8:07 AM, Andreas Kaiser wrote:
Am 04.12.2011 um 16:08 schrieb Nabeel Hasan:
I have a 3G USB Modem Model number is ZTE FFF1. When I connect it to Windows
Platform it install its driver automatically. Now I want to use this USB
Broadband device with Pfsense. Please help me to con
Try to get the same ISP(s) at each location if possible as the latency is
usually a lot better.
On Oct 28, 2011 11:59 AM, "Adam Thompson" wrote:
> Technically, yes, but in most places DSL and Cable Modem connections are
> not reliable enough for this unless you have one of each. With this setup,
I think this will answer your questions:
http://forum.pfsense.org/index.php/topic,38896.0.html
Oliver Hansen
On 10/2/2011 8:23 PM, Liwei wrote:
On 3 October 2011 05:32, Jim Pingle wrote:
If you are seeing that being ignored, your code is out of date. That was
fixed a couple weeks ago, as
47 matches
Mail list logo