you want to send to.
>> !DSPAM:4964d6b815801234511312!
>>
>>
>>
>> -
>> To unsubscribe, e-mail: support-unsubscr...@pfsense.com
>> For additional commands, e-mail: support-h...@pfsense.com
>>
>> Commercial support available - https://portal.pfsense.org
>>
>>
>
>
> --
> честността не е порок
>
--
Aarno Aukia
0764000464
ct VLAN, and yet…
> I'm still stuck without traffic.
>
>
>
> I googled and dove through the forums, and at the end of the day, after 3
> hours of searching, I am posting. Any thoughts? J
>
>
>
> Thank Y
network
>
>
>
> By the way, this happens with 1.2-Release AND with 1.2.2 (embedded on
> Soekris 5501)
>
>
>
> Anybody know what's going on? Any help or pointers are MUCH appreciated!
>
>
>
> Thank you!
>
>
>
> -Karl Fife
>
>
>
>
>
>
>
>
>
>
--
Aarno Aukia
ETH Zurich / Atrila GmbH
+41764000464
Hi,
On Mon, Jun 1, 2009 at 03:20, Volker Kuhlmann wrote:
> ALIX 2C3 + case.
> What are my options if I need 4 NICs (not UK, but the options so far
> have been international)?
ALIX 2c3 + case + VLAN capable switch ?
-Aarno
--
Aarno Aukia
+41
s,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
shellcmd-noadditionalxmltag.diff
Description: Binary data
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Co
s,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
shellcmd-noadditionalxmltag.diff
Description: Binary data
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Co
strac to redmine to facilitate the
migration/adoption of redmine ;)
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
pfsense123-nsupdate-server.diff
Description: Binary data
-
To unsubscribe, e-mail: support-uns
Hello,
Attached is a patch to allow the more experienced BGP admin to edit
the raw bgpd.conf in the WebConfigurator.
This is against
https://rcs.pfsense.org/projects/pfsense-packages/repos/mainline/trees/master/config/openbgpd/.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
pfsense
Hi Scott,
On Tue, Jun 30, 2009 at 18:21, Scott Ullrich wrote:
> On Tue, Jun 30, 2009 at 11:58 AM, Aarno Aukia wrote:
>> Hello,
>>
>> Attached is a patch to allow the more experienced BGP admin to edit
>> the raw bgpd.conf in the WebConfigurator.
>>
>> Thi
On Tue, Jun 30, 2009 at 21:30, Scott Ullrich wrote:
> On Tue, Jun 30, 2009 at 3:12 PM, Aarno Aukia wrote:
>> As noted on the "Raw config" site itself, the GUI-configuration is
>> ignored as long as there is raw config present. One can empty out the
>> raw config and
Hello,
>From what I saw in the forums
(http://forum.pfsense.org/index.php?topic=11603.0) adding an openospfd
package shouldn't be such a challenge. I can try to write an
appropriate openospfd.xml, but how/where are the binaries added to the
package ?
-Aarno
--
Aarno Aukia
Atr
On Wed, Jul 1, 2009 at 19:07, Scott Ullrich wrote:
> On Wed, Jul 1, 2009 at 6:41 AM, Aarno Aukia wrote:
>> Corrected patch (with correct highlighting of the selected tab) attached.
>
> Patch was already applied. You need to submit a change on top of what
> is commited:
&
On Wed, Jul 1, 2009 at 19:26, Scott Ullrich wrote:
> On Wed, Jul 1, 2009 at 6:46 AM, Aarno Aukia wrote:
>> Hello,
>>
>> From what I saw in the forums
>> (http://forum.pfsense.org/index.php?topic=11603.0) adding an openospfd
>> package shouldn't be s
instead of a bridge), has any of
you experienced anything like this ?
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
This is now being tracked in http://cvstrac.pfsense.com/tktview?tn=1935
It's a known FreeBSD kernel bug with a fix/patch available.
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-uns
-----
> To unsubscribe, e-mail: support-unsubscr...@pfsense.com
> For additional commands, e-mail: support-h...@pfsense.com
>
> Commercial support available - https://portal.pfsense.org
>
>
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
s, I am, against 2950/60/60G.
I'm using shell commands with the Shellcmd-package as earlyshellcmds:
ifconfig lagg0 create
ifconfig lagg0 up laggproto lacp laggport em2 laggport em3
an then as shellcmds:
ifconfig em2 up
ifconfig em3 up
Rega
el-protocol lacp
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
#x27;t
> announce networks that don't belong to me, like 74.125.0.0/16, and steal
> Google's traffic. :-)
I'll suggest:
http://www.openbsd.org/cgi-bin/man.cgi?query=bgpd.conf (the
definitions of filters is about 2/3 down)
http://www.openbsd.org/papers/linuxtag06-network.pdf
ight be a memory
leak in tcpdump (although it hasn't been a problem on any machine of
ours). Do you have an unusually high load of connections and/or
logging enabled on firewall-rules ? Tried to disable the logging of
the default deny-all rule ?
-Aarno
--
mp/ ramdisk.
Anders: did this also solve your problem ? were you running packet
captures ? Can you post a longer ps aux | grep tcpdump to confirm
whether this is the pflog or another tcpdump process ?
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
---
M VSZ RSS TT STAT STARTED TIME COMMAND
> root 517 0.0 33.0 343616 341308 d0- S 4Sep09 496:51.12
> /usr/sbin/tcpdum
I still suspect this being the pflog-tcpdump hogging memory, not the
packet capture filling the ramdisk. Scott ?
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzer
both ends in the GUI
(VPN/IPSec (disallow enabling if fastforwarding is set) and
System/Static Routes (disable enabling if ipsec is enabled)), but let
the user still enable fastforwarding even though disablefilter is not
set. Comments/objections ?
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
Replying to myself, sorry.
On Thu, Oct 8, 2009 at 16:21, Aarno Aukia wrote:
> I would propose to compare the "old" {$g['vardb_path']}/routes.db to
> the current set of configured static routes and "route delete" the
> superfluous routes. Any comments/objec
Hello,
On Thu, Oct 8, 2009 at 17:16, Scott Ullrich wrote:
> On Thu, Oct 8, 2009 at 11:13 AM, Aarno Aukia wrote:
>> On Thu, Oct 8, 2009 at 16:21, Aarno Aukia wrote:
>>> I would propose to compare the "old" {$g['vardb_path']}/routes.db to
>>>
rder gateway protocol (BGP) without an internal gateway
> protocol (IGP) to manage the internal routing? And no, RIP doesn't count as
> an IGP these days. :-)
OpenOSPF is on my task-/wishlist...
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
---
ch
/usr/local/www/interfaces_vlan_edit.php:
* comment out "if (is_jumbo_capable($ifn)) {", add "{" to parent
foreach
We have done this a few times already, we can do it for you if you want.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
e carp-address
using "local-address".
You will still have a short interruption of service until the backup
bgpd resyncs the session, but it is a lot faster than to manually
reconfigure the routers...
We have this running in prodution, feel free to contact me off-list for details.
is to use "local-address " and "depend-on
carpX". This way the backup bgpd only starts connecting when carp has
fail-overed (when the carp interface becomes active) using the carp
address.
Beware of asymmetric routing though if not using pfsync...
-Aarno
--
Aarno
d again didn't matched.
>
> Could you please advise us on resetting admin password at this
> virtual-machine-pfsense ?
>
> Thank you very much & regards from Switzerland
> Michel Herzog
--
Aarno Aukia
Atrila GmbH
Switzerland
-
ig" and generating a
bgpdsetkey.conf. Any suggestions there ?
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Com
Hello,
On Fri, Jan 29, 2010 at 00:06, Scott Ullrich wrote:
> On Thu, Jan 28, 2010 at 10:57 AM, Aarno Aukia wrote:
>> bgpd is started twice when booting on 1.2.3-release with the newest
>> package. I suspect once from /usr/local/pkg/openbgpd.inc and once from
>> /usr/l
use the "Cron" package to manage the
crontab entries in the GUI
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support
Hello Ermal,
On Mon, Feb 1, 2010 at 09:35, Ermal Luçi wrote:
> On Fri, Jan 29, 2010 at 5:03 PM, Aarno Aukia wrote:
>> On Fri, Jan 29, 2010 at 00:06, Scott Ullrich wrote:
>> > On Thu, Jan 28, 2010 at 10:57 AM, Aarno Aukia
>> > wrote:
>> >> bgpd is star
Hello,
On Sun, Jan 31, 2010 at 19:10, Scott Ullrich wrote:
> On Fri, Jan 29, 2010 at 11:03 AM, Aarno Aukia wrote:
>> Thanks for committing,
>
> Committed. Thanks for submitting.
Please also bump the packages version number, although this was not in
my patch ;)
Thanks,
Aarno
16 1
> TCP 63.5.x.x 10 1
> TCP 152.4.x.x 4 1
Patches to "pftop" are very welcome, I suppose.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
he dnsmasq $args in /etc/inc/services.inc
(around line 634 on this 1.2.3-rc3 nanobsd) seems to work out the
issues, although I'll keep testing it for some more time...
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsu
an we enable more debugging output to figure out what
exactly fails to try to fix it ?
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mai
small managed switch under the tv (I used a linksys slm2008 for
that) and split the trunk in the required vlans. Use another managed
switch or pfsense itself on the other end.
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To
Hello,
On Tue, Mar 2, 2010 at 00:12, Chris Buechler wrote:
> On Mon, Mar 1, 2010 at 9:45 AM, Scott Ullrich wrote:
>> On Mon, Mar 1, 2010 at 2:38 AM, Aarno Aukia wrote:
>>> Hello,
>>>
>>> I just found out my new mac os x 10.6 snow leopard machine seems
how can i view
> the logs history using PUTTY, has anyone tried using it.
Dial 8 for shell and then "clog /var/log/system.log".
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...
option -D on the command line, no clue about putty)
-Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial s
our scripts ?
Thanks and regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support availa
for unicast renewals).
In http://svn.freebsd.org/base/release/7.2.0/sbin/dhclient/bpf.c I see
the "SENDING DIRECT" codepath (lines 250ff), so the socket opened on
line 255 could be bound to source port 67 with bind(). Any objections
to me submitting a patch ?
Regards,
Aarno
for unicast renewals).
In http://svn.freebsd.org/base/release/7.2.0/sbin/dhclient/bpf.c I see
the "SENDING DIRECT" codepath (lines 250ff), so the socket opened on
line 255 could be bound to source port 67 with bind(). Any objections
to me submitting a patch ?
Regards,
Aarno
Hi Chris,
On Tue, Aug 17, 2010 at 21:47, Chris Buechler wrote:
> On Tue, Aug 17, 2010 at 10:14 AM, Aarno Aukia wrote:
>> We're seeing an interesting dhcp problem with one ISPs (Swisscom) VDSL
>> product, where the dhclient tries to renew the WAN IP address with
>>
il-over I'd recommend getting default routes only
and local-pref:ing the first over the second.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For addi
h openbsd
know-how led to the decision for the routers. We're still running lots
of pfsense firewalls though and are happy with them.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
To unsubscribe, e-mail: support-unsu
linux)
and tried adjusting kern.maxprocperuid=1,
kern.threads.max_threads_per_proc=1, kern.maxfiles=3,
kern.maxfilesperproc=27000, kern.ipc.maxsockets=24000 but to no avail.
Any freebsd/inetd gurus lurking on the list with ideas ?
Thanks and best regards,
Aarno
--
Aarno Aukia
Atrila
g this for a few years.
Just set up the lagg on one port, create the vlans on the lagg, then
assign all required interfaces (WAN and before 2.0 LAN) to a VLAN and
finally add the other interface to the lagg.
Regards,
Aarno
--
Aarno Aukia
Atrila GmbH
Switzerland
-
50 matches
Mail list logo