On Thu, Oct 2, 2008 at 12:38 AM, BSD Wiz [EMAIL PROTECTED] wrote:
i know, i just want to check out the new wrx's and sti!!
tried messing with the mtu without any luck.
ok, here is tcpdump running on my pfsense firewall(unixbox.gnet). you can
see my request to subaru.com and then the reply
try doing telnet subaru.com 80, then GET / HTTP1.0 and hit return a
few times.
if you get a partial response which hangs part way, MTU should be suspected.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands,
Volker Kuhlmann wrote:
What is the recommended way to update the zone file? There is no system
upgrade for 1.2-release that I can see.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL
Paul Mansfield wrote:
Volker Kuhlmann wrote:
What is the recommended way to update the zone file? There is no system
upgrade for 1.2-release that I can see.
oops, hit ctrl-enter by mistake. sorry.
simplest solution. run all your servers, firewalls and switches in GMT
so you never need to
On Wed, Oct 01, 2008 at 04:07:49PM CEST, RB [EMAIL PROTECTED] said:
On Wed, Oct 1, 2008 at 00:15, Erwan David [EMAIL PROTECTED] wrote:
On a multi-wan installation, I'd like to combine policy based
routing (ie send web connections through ADSL with high download
bandwith, and VPNs
No, there are not any drops in the logs.
-Phil G
On Oct 2, 2008, at 1:02 AM, Chris Buechler [EMAIL PROTECTED]
wrote:
On Thu, Oct 2, 2008 at 12:38 AM, BSD Wiz [EMAIL PROTECTED] wrote:
i know, i just want to check out the new wrx's and sti!!
tried messing with the mtu without any luck.
I never get a response from the firewall therefore I cannot connect
via telnet over port 80. Telneting to the site from the de works but
not from the client machine.
-Phil G
On Oct 2, 2008, at 4:14 AM, Paul Mansfield it-admin-
[EMAIL PROTECTED] wrote:
try doing telnet subaru.com 80,
Does this mean that rules with a gateway field to an inactive
interfcae are simply ignored ?
No, you set their gateway as your failover WAN connection. If you set
certain traffic to route through an individual gateway by IP, it will
not pass if that interface dies. Rather, you want to set up
I would recheck your AON (Advanced outbound NAT) settings. That seems like
the most logical.
Curtis LaMasters
http://www.curtis-lamasters.com
http://www.builtnetworks.com
On Thu, Oct 2, 2008 at 8:33 AM, jo Leander Paulsen [EMAIL PROTECTED]
wrote:
Anyone?
If more info is needed i am happy
On Thu, Oct 02, 2008 at 03:43:15PM CEST, RB [EMAIL PROTECTED] said:
Does this mean that rules with a gateway field to an inactive
interfcae are simply ignored ?
No, you set their gateway as your failover WAN connection. If you set
certain traffic to route through an individual gateway by
jo Leander Paulsen wrote:
If i take down the master firewall (simpy turning it off, this is doen as a
check of failover), then strange things happens. The VPN still works fine, i
can ping the branch office from a server inside the firewall.
if you wait long enough for arp caches in your
BSD Wiz wrote:
I never get a response from the firewall therefore I cannot connect via
telnet over port 80. Telneting to the site from the de works but not
from the client machine.
it sounds a bit like the automatic bogons blocking list has subaru in it.
try going to the wan interfaces
Paul Mansfield wrote:
BSD Wiz wrote:
I never get a response from the firewall therefore I cannot connect via
telnet over port 80. Telneting to the site from the de works but not
from the client machine.
it sounds a bit like the automatic bogons blocking list has subaru in it.
That
Open /etc/inc/filter.inc and search for pppoeclient:
after 4 line of that enter this
set iface enable tcpmssfix
and retry connecting the pppoe and see if that fixes the problem.
I was having the same problems with mail.yahoo/hotmail/msn messenger
and some other sites on one installation and that
This is a cable modem, and it works if I directly connect to my modem.
-Phil G
On Oct 2, 2008, at 10:45 AM, Ermal Luçi [EMAIL PROTECTED] wrote:
Open /etc/inc/filter.inc and search for pppoeclient:
after 4 line of that enter this
set iface enable tcpmssfix
and retry connecting the pppoe
have you run wireshark between the firewall and the system to see if it is
actually entering the LAN traffic and might just be the mac screwing up?
From: [EMAIL PROTECTED]
To: support@pfsense.com
Date: Thu, 2 Oct 2008 10:53:31 -0500
Subject: Re: [pfSense Support] Can't connect to subaru.com
Yep. Tcpdump. Traffic doesn't come back from fw.
-Phil G
On Oct 2, 2008, at 11:10 AM, Sean Cavanaugh [EMAIL PROTECTED]
wrote:
have you run wireshark between the firewall and the system to see if
it is actually entering the LAN traffic and might just be the mac
screwing up?
From:
buy a porsche or new pfsense compatible hardware :-)
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
BSD Wiz wrote:
Yep. Tcpdump. Traffic doesn't come back from fw.
-Phil G
so, the firewall is passing the traffic, web server responds but the
originating computer never sees that response??!!
-
To unsubscribe, e-mail: [EMAIL
Hello everybody !
I've some troules with SquidGuard. I've installed Squid and SquidGuard.
Squid works well but SquidGuard doesn't work at all.
I've joined a log as attached file.
I take an example of porn website to test SquidGuard : www.porn.com
because it is very explicits and should be
On 10/2/08, Alfred Sawaya [EMAIL PROTECTED] wrote:
Hello everybody !
I've some troules with SquidGuard. I've installed Squid and SquidGuard.
Squid works well but SquidGuard doesn't work at all.
I've joined a log as attached file.
I take an example of porn website to test SquidGuard :
Also, I assume your tcpdump was on the LAN interface, aka the network your
client box is connected to? Run a tcpdump on the WAN and see what hits it...
Tim Nelson
Systems/Network Engineer
Rockbochs Inc.
(218)727-4332 x105
- Paul Mansfield [EMAIL PROTECTED] wrote:
BSD Wiz wrote:
Yep.
No, the firewall does not pass the traffic.
-Phil G
On Oct 2, 2008, at 12:12 PM, Paul Mansfield it-admin-
[EMAIL PROTECTED] wrote:
BSD Wiz wrote:
Yep. Tcpdump. Traffic doesn't come back from fw.
-Phil G
so, the firewall is passing the traffic, web server responds but the
originating
The traffic is passed in from the wan but the LAN interface never
sends it out to my host.
-Phil G
On Oct 2, 2008, at 12:13 PM, Tim Nelson [EMAIL PROTECTED] wrote:
Also, I assume your tcpdump was on the LAN interface, aka the
network your client box is connected to? Run a tcpdump on the
Rechecked it, and it seems fine.
Interface SourceSource Port Destination Destination Port
WAN [lan subnet] ** *
[Lines wrapped here for mail format]
NAT Address NAT Port Static Port
[wan carp ip] * NO
As these are live servers, the maximum time i have waited is 5 to 10 minutes
before powering on the main firewall again.
As the switches are only semi-manageable, i have not thought about looking at
the arp tables there, will do that and report my findings. However, the
switches have been
On Thu 02 Oct 2008 13:46:55 NZDT +1300, Scott Ullrich wrote:
fetch -o /usr/share/zoneinfo.tgz
http://cvs.pfsense.com/~sullrich/zoneinfo.tgz;
Thanks for the new zones Scott! As a dirty fix I had transplanted the
file from the nearest Linux box because it seemed binary compatible.
Might be a
On Thu 02 Oct 2008 13:46:55 NZDT +1300, Scott Ullrich wrote:
fetch -o /usr/share/zoneinfo.tgz
http://cvs.pfsense.com/~sullrich/zoneinfo.tgz;
There appears to be a problem with this tar file on some pfsense 1.2-RELEASE
boxes (or at least on one of mine). The tar file was created by packing .,
On Thu, Oct 2, 2008 at 7:03 PM, Volker Kuhlmann [EMAIL PROTECTED]wrote:
On Thu 02 Oct 2008 13:46:55 NZDT +1300, Scott Ullrich wrote:
fetch -o /usr/share/zoneinfo.tgz
http://cvs.pfsense.com/~sullrich/zoneinfo.tgz;
There appears to be a problem with this tar file on some pfsense
29 matches
Mail list logo