Categories

  • Discussions about TNSR

    458 Topics
    1k Posts
    D
    Hi @Tyronejackson839, Thanks for the awesome advice! Your ACL tips worked perfectly—enabling fragment-checking and lean rules secured my nginx webserver without sacrificing performance. Really appreciate your detailed help! Best, David James | Founder of The Yes No Button!

  • Discussions about pfSense Software, click a category below

    120k Topics
    764k Posts
    B
    @rfranzke I'm seeing the same issue here with GPFs occurring regularly every 7~12 hours after a 2.8.0ce install/upgrade. I previously had no issues with either 2.6 or 2.7.2 running on the same hardware prior to upgrade. I did perform the upgrade as a 'fresh install' using the netgate memstick installer and then uploaded the prior configuration xml file to the system. So far I have seen three crashes in the last 24 hours here. All three times Pfsense did reboot after the crash and generate crash reports. (I posted the crash reports in my other message in the 2.8.0ce upgrade thread.) Given the apparent instability of 2.8.0ce at this point, I am seriously considering a roll back to at least 2.7.2. All the best, bill

  • Discussions about pfSense software packages

    20k Topics
    128k Posts
    D
    I recently start have trouble saving my HAProxy configuration due to a error. It keeps adding clientca_ in front of the SSL offload certificate name. On file level this file does not exist! I tested with both HA Proxy plugins, the regular and dev version. I tried to regenerate the SSL (Lets Encrypt) but this keeps happening. [ALERT] (45623) : config : Couldn't open the ca-file '/var/etc/haproxy_test/clientca_shared-frontend.pem' (No such file or directory). [ALERT] (45623) : config : parsing [/var/etc/haproxy_test/haproxy.cfg:28] : 'bind 0.0.0.0:443' in section 'frontend' : 'ca-file' : unable to load /var/etc/haproxy_test/clientca_shared-frontend.pem Does anybody have the same behaviour? to be clear I have the 25.07-RC running. The relevant part of /var/etc/haproxy_test/haproxy.cfg frontend shared-frontend bind 0.0.0.0:443 name 0.0.0.0:443 ssl crt-list /var/etc/haproxy_test/shared-frontend.crt_list ca-file /var/etc/haproxy_test/**clientca_**shared-frontend.pem verify required crl-file /var/etc/haproxy_test/**clientcrl_**shared-frontend.pem

  • Discuss pfSense in other languages

    43k Topics
    267k Posts
    Moty_pM
    hi all I have an OPT1 network and I can't install Portal Captive. I opened a rule in the firewall. I have config DHCP Sever and it on enable DNS resolver is on enable but i don't have ping to google.com or 8.8.8.8 also if Portal Captive it off i don't have ping(s) what can i do now? plz help ty :)

  • Information about hardware available from Netgate

    3k Topics
    20k Posts
    keyserK
    @stephenw10 said in SG-2100 packetloss in internal 5 port switch: Did you try enabling dot1q mode and trunking the VLANs through the internal switch on one port? Hard to see why that would be any different but.... Did you try a different external switch? Yes, I tried all combinations, and the issue remains as long as the builtin switch is the connection to the Internal aruba Switch.

  • Information about hardware available from Netgate

    44 Topics
    211 Posts
    AriKellyA
    It looks like unified web management could be coming soon. It would be great if it means easier control and management of all web services in one place. Let's see if any companies announce more details about it!

  • Feel free to talk about anything and everything here

    3k Topics
    19k Posts
    AndyRHA
    @dennypage PoE is definitely on our feature list.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.