Well ring fence is valid term in finance world - it means separation of assets or profits.. So I could see why a cfo would use such a term to describe a segmented network.

We have used the term for people, when a employee is ours, but only allowed to work for a specific customer and not any other projects, etc.

But if the networks were allowed to talk to each other at all - then the term would break down in validity. I wouldn't use the term to describe the segmentation of networks in a location that can talk to each other.

But say you had a location for example in china that wasn't allowed to talk to the rest of global network - guess you could say they are ring fenced ;)

@Lococent said in be honest are you worried about corona:

I've done the same. Let me tell my story. I have lost my job and the only source of income, and trust me, I've been extremely worried about it. But soon I learned how to use video editor and started working as a freelancer on Upwork. Soon I started earning very good money from home just with video editing skills. I am happy now that I lost my boring job that took all my time. Now I have more free time and money

That is great, I like the fact that people now can work from their computers and not being linked anywhere

@hadi57

if you want to restict connection time you might also want to
separate the domesitc helper from rest of the family net (just to think about)
anothe thing to point out ... think about bandwidh limitation for the helper

easy way like @NogBadTheBad said
DHCP with a fixed IP
then set up alias for this ip eg domHelper
set up scheduler
the firewall rule with scheduler for this alias

other way
captive portal (used with a network (this will separate the helper from the family net)
and schedule time

another way
set up a separate wifi with a vlan on your pfS
then you can also separate
and with the scheduler solve the connection time prob

brNP

@esogas said in gs348t static IP - no admin page:

I went to the browser for the admin page of the switch it wouldn't pull up.

Might be good advice.

I never use that browser to configure network devices, which I use to browse the web.

For this purpose I installed a Chromium or Iridium or LibreWolf (for Firefox fork) browser, without any addons, the default setting should always delete and or not store cookies + history, and of course use CCleaner or similar.

https://docs.netgate.com/pfsense/en/latest/recipes/http-client-proxy-transparent.html

ssh into pfsense box > shell >

pkg install -g libidn2 ca_root_nss pkg add "https://install.speedtest.net/app/cli/ookla-speedtest-1.0.0-freebsd.pkg"

then simple run speedtest

@lawrence90 Steam works fine through pfSense without anything special needing to be done. Your problem sounds more like data corruption.

If you flag it then a moderator can edit you post and change the title liker it says there.
I have done so for this. But there is no way to mark a thread solved beyond that.

Steve

@pete35 said in What's the difference between WS-C2960S-48LPD-L and WS-C2960S-48LPS-L ?:

I would like to mention, that the used 2960 have serious power supply problems.

I haven't had any PSU issues w. my 2960X'es , but they are in a Clima Controlled Server room.
But i'd hate to be in the same room & pay the electricity bill.

But you could be right .. If the switch has already had ie. 5..7 years of 24/7 runtime , especially in a hot environment.

/Bingo

@matinsnaff

You asked the one question that can be answered by yourself in 5 minutes ;)
pfSense has something Cisco can't offer :
If you have an older (thus non used) desktop PC somewhere, snap in a second (third etc) extra NIC, and you're to discover it for yourself.
The initial set-up will have a WAN and LAN interface, and perfectly working initial firewall rules.
Which means 'none' on WAN so nothing enters.
And a single "pas all" rule on LAN so everybody can do what she/he wants on the net.

At this moment, you'll face just one issue : your firewall will be as good as the admin guy handling it.
Typically, it could be a close to "set it and forget it installation". Just update it ones in a while.

If you want to,play with the many 'whistles and bells' : please, do understand that they work for you as long as you understand how they work.

@matinsnaff said in Is PFsense a Good Choice For a Small Business Office?:

(blocking websites that we use for no reason

Could it be true that some sites do 'break' ones in a while ? It happens to all of them.
Router/firewall do not block randomly some sites. If that happens, go for the door that says 'admin' and ask the guy behind it some questions.

Btw : there is no need to buy a device to get your hands on the manual : the manual is freely available.

@billjcarlos #1 I don't think there are many Canadians here so you probably won't get many replies. #2 it's going to die in the Senate anyway so forget about it. I'm really surprised at the lengths the Libs, NDP and Greens went to ramrod this through despite all the pushback, and the Cons were the voice of reason for once in their lives.

@stephenw10
Thank you

@bkyuksel said in I need assistance to create company subnets:

7 access points connected to switches (no-smart or managable switch)

Well that is a problem.. For you to segment your network you either need vlan capable devices switches and AP. Or you need to do it full physical where each network is on its own hardware.

Pfsense is capable of doing vlans - but you need the rest of your infrastructure to support it. So you need at min a vlan capable switch to use as core switch, downstream switches can be dumb as long as you plan on all devices connected to these dumb switches to be in the same network/vlan.

Same goes for your AP.. if they are dumb then you would plug them into different switch port that is only on the vlan you want all wireless devices to be on that connect to that AP.

I would really suggest you invest in some vlan capable switches and AP. Doesn't have to break the bank.. This can really be done on a shoestring budget if need be..

@gertjan
This worked perfect for me thanks

Btw did any of you who participated in this UFO discussion received inbound connections (logs) from National Aeronautics and Space Administration?

AS21556 NASA Ames Research Center:
192.12.28.0/24
192.203.230.0/24
2001:500:a8::/48
2620:126:e000::/48