Looks like it's a MIPs device. pfSense CE is x86 only so...nope. 😉

I've been doing a research about these switches and it seems that their L3 functions are half baked.
You must use the switch as the gateway and DHCP server, there is no NAT, you need to use ACLs through the CLI to filter traffic and even if you save the configuration, it won't survive a reboot.

If you are going to use this switch as a L2 only, it will do the job nicely.

@nullcure
I run pfsense CE in my home network. Since I just wanted "to give it a try" a few years ago, I run it on an APU2...so I never bothered trying to upgrade to a plus version (having read as well about some problems).

I plan on upgrading my network in the coming two years (changing to 2,5 GBit/s LAN), so my actual plan has a netgate device...with a plus version running.

What I miss under CE is the snapshot ability. Everything else is more than enough for my personal networking needs.

@Teo-En-Ming-0 said in ChatGPT says pfsense is the most popular open source firewall in the world:

ChatGPT says pfsense is the most popular open source firewall in the world

ChatGPT got that right and it will take a long time for that to change...you also came to the right place for the latest and greatest info source on pfSense...don't forget to familiarize yourself with Netgate docs: https://docs.netgate.com/pfsense/en/latest/general/index.html

Welcome!

It turned out that the Dell has four PCIe bridges that were failing. So, it was returned yesterday and now shopping for another.

@AndyRH said in Why you are scanned so soon:

I found it interesting that if you get a certificate for your web site you are publicly announced and apparently scanned immediately by the bad guys.

Ask for a certificate (a very public thing) from some CA, then know that they, the CA's, have to add you to the unique list, the same list half the computer related part of Havard (university in the US) is tapped into so they obtain data for their theses.
Something like that.

@johnpoz said in Why you are scanned so soon:

would be valuable to the bad guys

Hey, these guys are the future good guys, right ? No ?

Anyway : you use an IPv4 : you get 'scanned'. Most of it is innocent.

All my IF's with tags have PVID/"Native vlan" as 999 , and 999 is not used for anything, besides being "native".
Well ... except my Unifi WiFi IF .... I made that back when you couldn't TAG the "Control" stream for the UNiFI's.

And i have spread out the vlan load over two interfaces to improve throughput.

Vlan1 is also unused in my networks.

/Bingo

Yup, exactly as shown in those threads. You might need to add some other epp values or disable Speedshift for your CPU.

@stephenw10 no it is not a bug. That is me playing with this Squid version 3 storeID program below. I was turning on debug to log my files the second I did that it was throwing errors, I learned how to spell true. hahah

"“Store ID” is another name for the Squid cache key. By default, store IDs are computed by Squid so that different URLs are mapped to different store IDs. This feature allows the proxy admin to specify a custom store ID calculation algorithm via a helper program. It is usually used to assign the same store ID to transactions with different request URLs. Such mapping may reduce misses (i.e., increase hit ratio) when dealing with CDN URLs and similar cases where different URLs are known to point to essentially the same content.

Store ID violates HTTP and causes havoc if URLs pointing to different content are incorrectly mapped to the same Store ID. A Squid admin lacks control over URL-to-content mapping used by external CDNs and content providers. Even if the initial reverse engineering of their URL space is successful, maintaining the Store ID helper correctness is usually difficult because of sudden external mapping changes" (wiki.squid-cache.org/).

#!/usr/local/bin/php -q <?php /* This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see <http://www.gnu.org/licenses/>. Rudi Servo */ /* This is a CLI application made for PfSense and Squid 3 the idea is to use the already installed php in pfsense to do the storeid_helper. has of PfSense 2.2.6 php is on version 5.5.30 and Squid 3.4 Altough php has a bad reputation for being a continuous running application it has become more and more stable since version 5.5 now with version 7.0 it is not only stable has has many performance improvements that surpass most comon scripting languages. So there is no problem with php running this. Usage you can call out the script with many rewrite files to it or folders containing rewrite rules with .conf termination. inside the file it must have a hard tab between the match rule and and internal squid resolve */ #include a small config file, for debug and just in case something else comes up include 'conf/storeid.conf.php'; if ($_DEBUG) { file_put_contents($_LOG_FILE, 'Worker Spawn @'.date('Y-m-d H-i-s')."\n", FILE_APPEND ); } function addRules(&$rules, $filePath) { $file = fopen($filePath, 'r'); while (($line = fgets($file)) !== false) { $read = preg_split('/\s+/', $line); $rules['/'.$read[0].'/']=$read[1]; } fclose($file); } $rules = array(); $size = sizeof($argv); for ($i = 1 ; $i < $size ; $i++) { if (is_dir($argv[$i])) { $path = $argv[$i]; $files = scandir($path); foreach ($files as $file) { $p_info = pathinfo($file); if ($p_info['extension']=='conf') { addRules($rules, $path.'/'.$file); } } } else { addRules($rules, $argv[$i]); } } if (!empty($rules)) { $stdin = fopen('php://stdin', 'r'); $i_url = null; while (false !== ($url = rtrim(fgets($stdin), "\n\r")) && $url!='quit') { $found = false; foreach ($rules as $rule => $target) { if (preg_match($rule, $url, $matches)) { $i_url = $target; for ($i = 1 ; $i < sizeof($matches); $i++) { $i_url = "OK store-id=".preg_replace('/\$'.$i.'/',$matches[$i], $i_url)."\n"; } $found = true; break; } } if (!$found) { $i_url = "ERR\n"; } echo $i_url; if ($_DEBUG) { if (!$found) { $i_url = "ERR - ".$url."\n"; } file_put_contents($_LOG_FILE, $i_url, FILE_APPEND ); } } fclose($stdin); if ($_DEBUG) { file_put_contents($_LOG_FILE, 'Worker Closed @ '.date('Y-m-d H-i-s')."\n", FILE_APPEND ); } }

(github.com/rudiservo)

<?php $_DEBUG = false; $_LOG_FILE = '/var/squid/logs/storeid.log';

(github.com/rudiservo)

I am trying to get better dynamic cache hits.
1693549726245-8b56b38b-a13d-470c-9466-dd7890bd9912-image.png
Have you played with this ever? Again it should say refresh and not hit right?

The wiki status codes are confusing also.

Screenshot 2023-09-01 at 8.17.47 AM.png

1693464952581-screenshot-2023-08-30-at-11.47.10-pm.png

Ref:
https://github.com/rudiservo/pfsense_storeid/tree/master
https://wiki.squid-cache.org/Features/StoreID
https://wiki.squid-cache.org/Features/StoreID/DB

@provels said in WIFI Malware Using Geolocator...:

what does this get the hacker?

Maybe just to know the GPS info of where this WIFI lives...if the hacker lives aboard, maybe it's an invitation to visit...

@provels said in WIFI Malware Using Geolocator...:

what does Google even gain from providing this service?

More info about a potential revenue source for Google to craft and perfect their approach to extracting wealth from client's pocket to fatten their shareholders. Remember, Google is in the business of extracting wealth through behavior modification of those who use its services.