Categories

• TNSR

  Discussions about TNSR

  TNSR Announcements

  Feedback

  Installation and Upgrades
  237
  Topics
  818
  Posts

  G

  @jbelthoff it’s expected and normal. See here

• pfSense® Software

  Discussions about pfSense Software, click a category below

  Messages from the pfSense Team

  General pfSense Questions

  Installation and Upgrades

  Firewalling

  NAT

  HA/CARP/VIPs

  L2/Switching/VLANs

  Routing and Multi WAN

  Traffic Shaping

  DHCP and DNS

  IPv6

  IPsec

  OpenVPN

  WireGuard

  Captive Portal

  webGUI

  Wireless

  SNMP

  Documentation

  Development

  Gaming

  Virtualization

  Hardware

  Bounties

  Retired
  102129
  Topics
  612995
  Posts

  

  There's no mystery here. It works when you untag VLAN 50 at the switch because that just puts it in the LAN subnet.
  When it's correctly tagged all clients using it are in the VLAN 50 subnet and use the DHCP you have have configured for that with whatever settings that has. That includes whatever DNS you are passing there.

  Previously you said clients in VLAN 50 are not able to resolve those sites, which is clearly a DNS issue, but did you mean just unable to connect?

  I agree, if you used a public subnet for VLAN 50 that could conflict with the real public IPs and cause this.

  Steve

• pfSense Packages

  Discussions about pfSense software packages

  Cache/Proxy

  IDS/IPS

  Traffic Monitoring

  pfBlockerNG

  ACME

  FRR
  16187
  Topics
  102931
  Posts

  

  I am the Snort and Suricata package developer/maintainer, and I can most emphatically tell you that using Service Watchdog with either the Snort or Suricata packages will cause you problems. That's because Service Watchdog does not understand how Snort and Suricata work internally, and thus it makes "bad decisions" about when to restart those packages. So remove Snort from your Service Watchdog monitoring.

  As to why Snort is stopping for you, have you checked the system log to see what Snort-related messages might be logged? That would help you troubleshoot the problem.

  Snort is a fairly reliable package. I've personally run it for years, and I honestly don't think I've ever had an unplanned stoppage of the service on my firewalls. This is through multiple generations of hardware. My current hardware is a Netgate SG-5100.

  What kind of hardware are you running Snort on? And what is the version of pfSense (or pfSense+) and the Snort package?

• pfSense International Support

  Discuss pfSense in other languages

  Chinese

  Deutsch

  Español

  Français

  Indonesian

  Italiano

  Russian

  Nederlands

  Norwegian

  Portuguese

  Polish

  Romanian

  Swedish

  Turkish
  40196
  Topics
  253959
  Posts

  J

  Vous êtes nouveau : regarder A LIRE EN PREMIER et présentez votre problème comme indiqué ...

  Vous n'êtes pas un expert, néanmoins vous devez savoir qu'un PC reçoit, avec DHCP, 4 informations : l'adresse ip, le masque, la passerelle (gateway) et le serveur dns : si vous configurez WAN en statique (ce qui est le mieux), pensez à configurer les 4 paramètres (et pas seulement les 2 premiers). (Tout ne se trouve pas dans 'Interface' !)

  Ce que vous écrivez semble logique, mais selon la façon avec laquelle vous l'avez configuré, cela peut fonctionner ou non : je vous suggère que vous fassiez une image de vos règles, cela évitera les doutes (sérieux).

  Exemple : une règle NAT s'écrit sur le port destination seulement ... (erreur fréquente du débutant)

• Official Netgate® Hardware

  Information about hardware available from Netgate

  1437
  Topics
  10228
  Posts

  S

  Please forgive me if I am posting this in the incorrect location.

  I purchased and installed a couple of SG-1100s within the last month. I place one in a datacenter and the other in our office. The one in our office works perfectly. The one that I am having issues with is in the datacenter.

  The 1100 in the datacenter is running 21.05.1. It ran without any issues for three days at the datacenter. I have not made the long trip to the datacenter yet to power cycle it. I have tried rebooting it using (Normal Reboot, Reboot with Filesystem Check, and Reroot) without any change to the issues that I will describe.

  The WebGUI is not working properly (after 3 days). It says unable to check for updates, CPU type displays Non/Unknown Platform, Uptime is blank, show table - NA% (0/0), MBUF Usage - NA% (/), Load average is blank, CPU Usage - NAN%, Memory usage - NA% of 0 MiB, all system logs (or at least the ones I have tried) are blank, and nothing is displayed in the ARP table. Status/Services shows that everything is stopped, but I know that at least some of them are running since OpenVPN between the two locations is still working.

  This is a simple configuration with the following services: dhcp, gateway monitoring daemon, OpenVPN server, system logger daemon, DNS resolver, and PC/SC Smart Card Daemon (which I think I had disabled on the initial install).

  I left a console cable attached to it in case of an issue, but all I see on it is: kern.ipc.maxpipekva exceeded; see tuning(7).

  Any advice or is it just a matter of power cycling the unit?

  Thank you,
  Stephen

• Netgate Announcements

  Information about hardware available from Netgate

  16
  Topics
  59
  Posts

  S

  @prtonguy77 Well there was the 6100...

• Off-Topic & Non-Support Discussion

  Feel free to talk about anything and everything here

  Forum Feedback

  Community Job Board
  2912
  Topics
  15904
  Posts

  S

  I actually graduated with both my masters and bachelors from [url snipped mod - not a actual wgu link] and then decided to make a career change. I thought I would need to complete a 'traditional' bachelors, but after reaching out to 11 DO schools regarding my bachelors degree, 9 got back to me (2 never replied) and stated my WGU degree would be accepted as it is regionally accredited. One school suggested I complete 60 science credits prior to applying, which is already in my plan. I'm completing all required & suggested DO pre-reqs at a CC.