On 04/19/2018 10:33 AM, Fabian Bosch wrote:
Same here on v*2.3.3 *and even after update to v*2.4.3
*Any news on this?*
*
Am 02.04.2018 um 05:04 schrieb Travis Hansen:
I'm seeing this same issue on 2 separate 2.3.x boxes the last couple days as
well that haven't been tampered with in ages.
On 10/24/2016 10:13 PM, Rainer Duffner wrote:
Somebody accidentally removed the power-cord?
Or did somebody press the power-off button?
Hi Rainer,
That's not really a feasible hypothesis -- other boxes are plugged into the
same power strips and they're all fine. This box has 2 PS plugged
On 10/24/2016 09:41 PM, Rainer Duffner wrote:
Does the iLO say something?
ECC errors?
Did you do a Firmware Update?
Spontaneous reboots are often hardware-problems.
Hi Rainer,
Curiously, the ilo log is showing `server reset` `server power removed`.
Wow.
I have changed power policy to
Hi All,
I have an HP-Dl380G7 with 24G and 2 processors -- ridiculous hardware, gut I
got it for free. It's got 2 power supplies and is sitting in a data center.
This morning around 11:00 CET, it just rebooted, and has now done it again at
around 21:00.
The hardware is has a few years on it,
Both on an embedded APU and HP-DL-160 ...
Fetching pfSense-2.3.2.txz: . done
pkg:
https://pkg.pfsense.org/pfSense_v2_3_2_amd64-pfSense_v2_3_2/All/perl5-5.20.3_13.txz:
Authentication error
>>> Locking package pfSense-kernel-pfSense... done.
Failed
Anyone else experiencing this?
Thanks
M
--
hi all ,
openvpn will fail on v2.3 if you are using `client specific overrides` where
`iroute` and `push route` are being used:
if the `tunnel network` is:
10.16.52.8/30
and the `advanced section`:
iroute 172.16.32.0 255.255.255.0;
push "route 10.0.0.0 255.0.0.0";
push "route 172.16.0.0
hi all,
upgraded to 2.3 and found that the bind package is missing.
my whole network depends on its presence ...
does anyone know when it might be available?
thanks
m
--
Markets can remain irrational longer than you can remain solvent.
— John Maynard Keynes
Hi All,
I have an several Atheros based wifi mini pcie cards -- I purchased from
looking at the pfSense wiki. It is installed in a Netgate 3 port APU4C running
2.2.6
I regularly get:
kernel: ath0: stuck beacon; resetting (bmiss count 4)
I have googled this to death -- appears that there is
, Suricata keeps filling up its lists again.
Many Thanks!
Mayak
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
hi all,
i have a number of asterisk instances behind pfsense -- 5060 is open to the
public, and of course, i have incessant attempts to make free calls.
for the moment, i use an iptables rule:
iptables --append local-external --protocol udp -m udp --sport 5060 -m string --string
SIP/2.0 403
On 03/22/2015 12:38 AM, Bryan D. wrote:
We've had a pfSense-to-pfSense always on IPsec VPN connecting 2 offices since
2008 (pfSense 1.2 IIRC) and it's:
- been ultra reliable (if VPN is down, suspect ISP issue or pfSense box failure)
- it's been quick to connect (about 1 second, almost
On 12/10/2014 11:38 PM, Kostas Backas wrote:
Thank you
my goal is to access internal resources to my office network, so i do not
configure tunnelblick that way.
Mine too. I just need to have internet access while connected. I do not need to
pass all traffic through the tunnel, I just
On 10/28/2014 01:48 PM, Ryan Coleman wrote:
I have had a devil of a time getting the 2.1.5 memstick (only one I've tried)
to install on my new APU1D4.
I have all the bits and pieces needed to get it going but I'm trying to install
with both a 128GB SSD (which the BIOS is recognizing) and a
On 10/28/2014 02:49 PM, Ryan Coleman wrote:
On 10/28/2014 8:05 AM, mayak wrote:
On 10/28/2014 01:48 PM, Ryan Coleman wrote:
I have had a devil of a time getting the 2.1.5 memstick (only one I've tried)
to install on my new APU1D4.
I have all the bits and pieces needed to get it going
On 10/28/2014 03:38 PM, Ryan Coleman wrote:
snip
Yeah I did the install again and it's running now.
Do you know if there is a way to disable the audio tones on the board?
No idea ..
Cheers
M
___
List mailing list
List@lists.pfsense.org
hi all,
in an earlier thread, i recounted issues that i had with the apu1c4 unit
silently dying -- this was the only thread that i saw here, so i assume that i
just got a bad unit.
can anyone confirm a small deployment of 20 of these without issue? i am
currently getting ready to do a
On 09/22/2014 07:05 PM, Chris Bagnall wrote:
On 22/9/14 5:10 pm, mayak wrote:
in an earlier thread, i recounted issues that i had with the apu1c4 unit
silently dying -- this was the only thread that i saw here, so i assume
that i just got a bad unit.
I cannot give you a sample of 20
good day all,
i have a routing issue that i'm having trouble with:
internet --- pfsense.w --- pfsense.d --- linux
- linux connects to pfsense.w using openvpn
- pfsense.w has an inbound nat rule and send tcp.smtp packets to the linux box
using the openvpn tunnel address
- packets arrive at
On 07/21/2014 01:34 PM, mayak wrote:
good day all,
i have a routing issue that i'm having trouble with:
internet --- pfsense.w --- pfsense.d --- linux
- linux connects to pfsense.w using openvpn
- pfsense.w has an inbound nat rule and send tcp.smtp packets to the linux box
using the openvpn
On 06/04/2014 09:23 PM, compdoc wrote:
Even if adding more memory corrects the issue, I still don't
like to know that pfsense can suddenly die and leave no clues
behind :-|.
pfSense
is
On 05/21/2014 10:14 PM, Vick Khera wrote:
On Tue, May 20, 2014 at 1:15 AM, mayak ma...@australsat.com wrote:
unit will run sometimes for days, or sometimes for several hours, before
becoming unresponsive:
My gut says overheating.
hi vick,
man -- you're good -- i was waiting a bit more to post
On 05/21/2014 10:59 PM, Stefan Baur wrote:
Am 21.05.2014 22:53, schrieb mayak:
i'll be curious to see pc engines proposes a new mounting/heat sync
method. if the case had air flow slits on top and on the sides, i'd bet
that it would be much cooler.
Out of curiosity, did you buy a new case
On 05/20/2014 07:42 AM, Mathieu Simon (Lists) wrote:
Hi mayak
Many roads lead to ... gut says SSD - I'd try running off CD first.
Seems apu1.4c (guess that's what you meant) has a SATA port, now you
only need to get find way for powering a desktop CD/DVD drive (i.e.
spare ATX power supply
hi all,
i have a new apu.4c with a Kingston SSD
unit will run sometimes for days, or sometimes for several hours, before
becoming unresponsive:
- no mac response from ethernet cards
- serial console dies -- no errors displayed
- no errors in system log
- no crash report on reboot
what is the
hi all,
boy -- what a night -- i rebooted 2.1.2 x64 running in vmware esxi 5.5.0
u2 and VPNs ceased functioning:
- vmware 5.5.0 u2 on a dell 2900
- 2 ethernet ports
- 2 gigs of memory and 32GB disk
port 0 -- WAN
- no ip address
- no mac spoofed address
- wmware network config: mtu=1500
Hi All,
I have inherited a used an HP DL160 for use at a data center to act as a
principal firewall --
The machine has one of those stupid raid chips that works for software
raid -- pfSense knows about these kinds of cards, but nonetheless, I
would like to make this machine as bullet proof as
On 04/23/2014 05:46 PM, Vick Khera wrote:
On Wed, Apr 23, 2014 at 9:14 AM, mayak ma...@australsat.com wrote:
I have inherited a used an HP DL160 for use at a data center to act as a
principal firewall --
I have some HP DL120G5's in service. Initially they were set up with
the built-in SATA
On 04/23/2014 06:34 PM, Vick Khera wrote:
On Wed, Apr 23, 2014 at 12:12 PM, mayak ma...@australsat.com wrote:
I agree that the b110 is just worthless -- I tried setting it up for raid a
mirror with two drives -- horrible. a second try with the BSD based raid
worked great. So question
On 04/11/2014 10:39 AM, Holger Goetz wrote:
Thanks for all your efforts!
Hint: maybe some more users could think eg. about the gold
subscription plan to show their appreciation and make the dev guys
live easier ...
Best,
Holger
yes.
___
List
On 04/11/2014 03:57 PM, Tim Nelson wrote:
Greetings-
Hot on the heels of the OpenSSL debacle, and a fresh new release of
pfSense (THANK YOU), I'm curious about the Heartbleed vulnerabilitie's
actual surface attack area. All of the relevant information, reports,
and PoC's are pointing at
snip
hi all,
any news? my routers feel exposed :-)
god bless pfsense.
m
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
On 04/08/2014 03:34 PM, Jim Pingle wrote:
On 4/8/2014 9:15 AM, Vick Khera wrote:
On Tue, Apr 8, 2014 at 9:11 AM, Jim Pingle li...@pingle.org wrote:
Actually with the release engineering process fresh in our heads/muscle
memory and everything practically set to go, it's not exactly a horrible
snip
i'm sure that they are on it -- this is the most catastrophic security
flaw the internet may have ever witnessed.
m
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
On 04/08/2014 06:05 PM, Paul Galati wrote:
So what version of OpenSSL is running on 2.1.0? Sorry if this has
been answered already.
Thanks for your time.
Paul Galati
paulgal...@gmail.com mailto:paulgal...@gmail.com
On Apr 8, 2014, at 7:59 AM, b...@todoo.biz mailto:b...@todoo.biz wrote:
Hi All,
Just curious -- is there a pfsense platform (not too expensive) that has
one or two POE ports 802.1af?
Need a VOIP solution with openVPN ...
Thanks
M
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On 02/23/2014 11:41 PM, James Caldwell wrote:
Has anyone ever experienced the gui hang or get very sluggish entering
NAT rules and subsequently applying changes afterwards?
James
hi james,
well not particularly on nat, but i have absolutely noticed that mouse
movements (i think) can
On 12/31/2013 05:56 AM, John Wells wrote:
This is what I currently have. Completely off base?
http://i.imgur.com/LGqhy6e.png
http://i.imgur.com/4iqCVNE.png
snip
hi john,
a `trunk` is port that has multiple vlan tags assigned to it -- although
there is no requirement set all vlan tags for a
and discussion list@lists.pfsense.org
Sent: Tuesday, December 31, 2013 9:58:15 AM
Subject: Re: [pfSense] pfsense - pfsense vlans and trunking without the aid
of switches
Thanks Mayak.
What docs are you referring to? I have the Definitive Guide and have searched
through the wiki but can't seem
hi john,
yes, your schema is possible:
- set individual ports to be members of their vlans -- on the right
side, make port 1 member of vlan 10, port 2 member vlan 20, and port 4
of type trunk. same concept on the left -- port 1 member vlan 10, port 2
member vlan 20, port 4 trunk.
the two
On 10/11/2013 06:23 AM, James A. Donald wrote:
There is a smoking gun on one of random number generators.
There is strong circumstantial evidence, reason for suspicion, on
suggested Suite B.
AES and SHA look to be fine, but using them gives the appearance to
end users that you might be
On 10/10/2013 09:01 AM, Aristedes Maniatis wrote:
We get a lot of attempts to guess weak ftp passwords on our servers. A tool
which we've used before (and is really nice) is fail2ban. In response to a
certain type or number of failed attempts, it can run a script (for example,
to load a
Hi All,
A quick note/observation when using a recent snapshot of 2.1 rc-1 ...
I have many openvpn connections, and if i modify an openvpn parameter
(client specific overrides for example). all vpn tunnels are dropped and
all states lost.
Has anyone else seen this -- is there work around?
Hi All,
I have a freshly installed 2.1 RC candidate installed on a vmware
virtual machine ...
After doing basic setup, I tried pinging a host on the internet -- no
response -- finally went into pfsense and did a tcpdump on the wan
interface -- packets are being sent out the wan interface with
hi all,
quick question -- trying to find a modestly priced but decent 4 port
ether card here in Europe ...
is startech working well in pfsense?
thanks
m
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
hi all,
i've been googling the list and have yet to determine what the most
powerful b/g/(n) card that is supported -- apparently, the AR9220
chipset is not?
is AR9220 supported in 2.1?
would love to have 600mw in any case ...
thanks
m
___
List
On Wed, 2013-05-15 at 08:53 -0400, Chris Buechler wrote:
On Wed, May 15, 2013 at 8:07 AM, Chris Bagnall
pfse...@lists.minotaur.cc wrote:
Greetings list,
One of our clients is currently building a property in the middle of
nowhere, and traditional (*DSL/cable/wireless) services aren't
On Tue, 2013-03-19 at 23:19 -0700, Bryan D. wrote:
I've searched both the list archives and forums, though I wasn't sure what
phrase would yield results, and have not found an answer to the question:
---
Is there a way to ask pfSense something like would a UDP|TCP packet
arriving on
On Fri, 2013-02-01 at 10:45 -0500, Jim Pingle wrote:
On 2/1/2013 10:42 AM, mayak-cq wrote:
Hi Chris, Hi All,
Just pushed a crash report through the GUI -- happened this morning UTC
after adding a nat rule.
Was it just a PHP error or an actual panic/reboot?
This is the first time
On Thu, 2013-01-10 at 14:06 +0100, Jürgen Echter wrote:
Am 09.01.2013 09:16, schrieb mayak-cq:
On Wed, 2013-01-09 at 08:38 +0100, Jürgen Echter wrote:
snip
suddenly it occurs that we are no more available from external and i
have to reset states from port 5060 from our
On Wed, 2013-01-09 at 08:38 +0100, Jürgen Echter wrote:
snip
suddenly it occurs that we are no more available from external and i
have to reset states from port 5060 from our internal server to our sip
provider.
after that its working again.
where can i look for this really annoying
hi all,
there have been quite a few discussions about issues of natting udp (in
particular sip) where packets just go missing.
i've run into this again, spent all day on it, and ould like to just
upgrade to get rid of this -- i'm running 2.0.1
are the nightlies stable, and has anyone run across
On Sun, 2012-09-16 at 00:05 -0400, Drew Lehman wrote:
I'm thinking about setting up a third-party vpn service and I would love
to have my web-surfing etc. routed through that vpn, but I would like
some internal addresses to go out directly (web and mail server) from my
static ip. Is it
hi all,
i have a client with an embedded pfsense -- massive dns packet traffic
that looks like this:
18:40:01.583976 IP 192.168.1.150.32420 xxx.yyy.40.240.53: 33050+ [1au]
ANY? ripe.net. (38)
18:40:01.584823 IP xxx.yyy.159.197.53 192.168.1.150.53: 952+ [1au]
ANY? ripe.net. (38)
18:40:01.585293
snip
and remember that NAT reflection won't work (if that is needed) -- from
the thread in 2009:
NAT reflection for UDP has never really worked correctly. Search the
archives and forum and ticket system. I'm not sure anyone has
discovered
why, but the traffic hits the firewall and never
On Fri, 2012-04-06 at 14:42 +0200, mayak-cq wrote:
On Fri, 2012-04-06 at 10:59 +0200, mayak-cq wrote:
bump.
From what I read on this forum many people are complaining that L7
blocks nothing.
On my system all traffic (not vpn though) are blocked.
I added
From what I read on this forum many people are complaining that L7
blocks nothing.
On my system all traffic (not vpn though) are blocked.
I added an all pass Lan rule (tcp/udp) and selected the container
under advanced options. The container is set to block torrent traffic.
The
hi all,
sounds to me like the rtp packets are being stopped ...
i use asterisk behind pfsense and nat udp 1 - 2 to the asterisk
box along with 5060 (sip) and 4569 (iax2) ...
cheers
m
On Fri, 2011-12-16 at 07:27 -0500, Zvonimir Mileta wrote:
yes
I see that call doesn't get out
On Fri, 2011-12-16 at 08:06 -0500, Zvonimir Mileta wrote:
I have this
WAN
TCP/UDP
VoIPPorts
VoipServer
(ext.: any)
VoIPPorts
in voipPorts I have
VoIPPorts 5060:5061, 1:3, 3478, 7070:7079, 4569
Im using alias for VoipPorts and VoipServer(192.168.1.100)
any
hi all,
i'm curious if some can suggest a freeware web/php testing tool to run against a
server and see how it does (server located behind pfsense).
i'd like to watch how both of them do under heavy load.
thanks
m
___
List mailing list
59 matches
Mail list logo