[pfSense] Running into some very basic problems: can't seem to get port forwarding working ...

2012-04-15 Thread Joe Landman
Hi folks: Have pfSense 2.0.1 stable installed on a machine we are using for testing. 2x em network ports. Have em0 configured as WAN with IP 10.100.241.121/16, and em1 configured as LAN with IP 192.168.3.1/16. I can reach the LAN port with ssh/others easily. No issues. I turned on ICMP

Re: [pfSense] Running into some very basic problems: can't seem to get port forwarding working ...

2012-04-15 Thread Joe Landman
On 04/15/2012 03:57 PM, Ernst den Broeder wrote: The host sees the packet as coming from !192.168.0.0/16 and will route to its default gateway. If your just playing around, you could add a route for 10.100.0.0/16 on your host to 192.168.3.1. I did try this, but I don't think it worked. The

[pfSense] Question on how to install a build environment for drivers

2012-04-18 Thread Joe Landman
Hi folks I need to compile a driver for pfSense (specifically the Solarflare 10GbE driver, but possibly others). I tried with a VM of FreeBSD 8.1 on a different machine, but I couldn't see the driver after pkg_add ... and a kldload sfxge . Is there a way to pull a full build environment,

[pfSense] question on NAT capabilities/methods and VPN setup

2012-05-09 Thread Joe Landman
Here's what we are trying to do . I've got pfSense up and I've got 5 WAN IP addresses in the WAN subnet. a.b.c.d a.b.c.d+1 a.b.c.d+2 a.b.c.d+3 a.c.d.d+4 I would like to NAT by specific address, and add VPN functionality to only specific IPs. So d

Re: [pfSense] High interrupt load on LAGG with LACP

2012-06-04 Thread Joe Landman
On 06/04/2012 09:38 PM, Glenn Kelley wrote: Chris That is good to know. I have some wireless backhauls pushing well over 100mbps So better to know now vs later any suggestions on hardware for the sky in that case? We've built some boxen for customers for pfSense with up to 8x 1GbE ports,

[pfSense] 2.1 timeline?

2012-06-27 Thread Joe Landman
Hi folks ... any guidance on the 2.1 timeline? Is it considered stable for end user use yet? I'd prefer to deploy things actually marked as stable (we have 2.0.1 in use at customer sites, and are playing with it internally). I'd like to get 2.1 up for better driver support (and ease of

[pfSense] [Filters engaged]

2013-10-09 Thread Joe Landman
I just worked out setting up new filters for the recent S/N destroying, high tin-foil-hat content, on gmail. Since people pleading for this to go away hasn't worked, technological measures to restore S/N for my inbox on this list have been engaged. Please folks, take the tin foil hat

[pfSense] Multi-Wan config question(s)

2013-10-20 Thread Joe Landman
Hi folks We are replacing a black box multi-wan FW appliance with 2.1 running on one of our boxen. Our config is multi-wan (ipv4 only), and we want to do load balancing (asymmetric, by the bandwidth ratio). We'll have standard desktop and server machines running behind it, as well as SIP

[pfSense] Multi Wan via gateway groups breaking some websites

2013-12-11 Thread Joe Landman
Hi folks I've run into an issue that has me somewhat confused. Our multiwan router is up and working. This is 2.1 release. I've got 2 ports to two different network providers (different technologies at that). Following the directions ( https://doc.pfsense.org/index.php/Multi-WAN_2.0), I

[pfSense] 1:1 NAT not working, but the equivalent port forward everything coming into a VIP to the internal unit is ...

2013-12-11 Thread Joe Landman
Hi folks: Trying to figure this one out. Very simple concept, I want to take one virtual IP (VIP), and tie it to an internal (isolated) machine for customer/partner use. I've done this before using other firewall appliances, and it works pretty well for its use case. I just tried to do

Re: [pfSense] 1:1 NAT not working, but the equivalent port forward everything coming into a VIP to the internal unit is ...

2013-12-11 Thread Joe Landman
On 12/11/2013 02:38 PM, Justin Edmands wrote: Monitor blocked attempts under Status -- System Logs -- Firewall ... filter for the IP you want. If you see the block, click the small grey arrow with a plus sign next to the destination IP. This will create a rule and allow you to go to

Re: [pfSense] Multi Wan via gateway groups breaking some websites

2013-12-12 Thread Joe Landman
On 12/12/2013 04:41 PM, Benjamin Swatek wrote: On 11, Dec2013, at 15:14 , Joe Landman land...@scalableinformatics.com mailto:land...@scalableinformatics.com wrote: [...] So ... my question is, what diagnostics should I try to be able to identify the issue (some sites not working when

[pfSense] is it possible to rename gateways in 2.1 release AMD64?

2014-01-07 Thread Joe Landman
Hi folks: I am trying to match a spec we've been given as precisely as possible. I can't rename the gateways from the web interface. Is it possible to rename them from hand editing the config.xml file? or some other method? Thanks! Joe -- Joseph Landman, Ph.D Founder and CEO

Re: [pfSense] is it possible to rename gateways in 2.1 release AMD64?

2014-01-07 Thread Joe Landman
On 01/07/2014 03:09 PM, Walter Parker wrote: Once you create a gateway, you can not rename it from the GUI. I had to delete and re-create my gateway in order to rename it. Got it. Thanks! -- Joseph Landman, Ph.D Founder and CEO Scalable Informatics, Inc. email:

Re: [pfSense] is it possible to rename gateways in 2.1 release AMD64?

2014-01-07 Thread Joe Landman
On 01/07/2014 03:02 PM, Matthias May wrote: Am 07.01.2014 20:52, schrieb Joe Landman: Hi folks: I am trying to match a spec we've been given as precisely as possible. I can't rename the gateways from the web interface. Is it possible to rename them from hand editing the config.xml file

Re: [pfSense] Unbound

2014-02-15 Thread Joe Landman
On 02/15/2014 01:33 PM, Brian Caouette wrote: CACHING dnsmasq caches quite nicely. On 2/15/2014 1:29 PM, Chris Bagnall wrote: On 15/2/14 6:22 pm, Brian Caouette wrote: I've been trying to use unbound with poor results. Currently it resolves very very slowly. About 4 times longer then the

[pfSense] problems running pfSense 2.1.5 running in a kvm session

2014-11-05 Thread Joe Landman
Hi folks: We are working on running pfSense in a VM on a machine for a trade show. The installation went fine, then I rebooted. The attached image shows where it died. Any thoughts on this? Is this known not to work? I am using two bridges on a linux host, one each for

Re: [pfSense] testing email

2015-04-08 Thread Joe Landman
On 04/08/2015 03:09 PM, Jeppe Øland wrote: Same here ... hard to believe Gmail is bouncing... They've been black holing some of my email (to and from) on this and my personal account. Not going to SPAM either. I also got the re-enable bit. On Wed, Apr 8, 2015 at 11:58 AM, Mike

Re: [pfSense] Hardware and usage opinion

2016-08-09 Thread Joe Landman
On 08/09/2016 09:53 PM, Joseph L. Casale wrote: I have a site that has grown significantly over time and the role pfsense plays went from only providing internet and vpn connectivity to routing between 2 dozen vlans at gig speeds. We are considering replacing the hardware and aren't sure if

Re: [pfSense] Configs or hardware?

2018-02-15 Thread Joe Landman
were testing boxes, not too powerful for the high end of compute/networking (40Gb Infiniband), but able to drive load.  Lower spec boxes can't generally hack high data rates for any number of reasons. -- Joe Landman t: @hpcjoe g: https://github.com/joelandman ___