Yes you can enter a range like that in a pfBlocker and it will create it from CIDRs. For example:
Screenshot from 2022-03-30 18-15-46.png

Resulting in an alias table:
Screenshot from 2022-03-30 18-16-10.png

Steve

That's not something I can do for you and it's probably not something we can help with in Netgate support because it's a completely unsupported config.

Steve

Those two packets look like they are ~30mins after the rest of the session. TCP states normally close as soon as the session is complete so they would certainly be closed at that point.

Steve

So it only failed in Tor Browser?

Probably some additional security setting in there to prevent cross-site tracking. I'm not sure there's much we can do about that.

Steve

@mike115 said in reestablish relayd:

Anyways, have you tried an interface trigger? It may be a little redundant. I like those in my C# programs because then I don't have to write conditional tests at the granular level, although checking the IP like you did is good too because the interface may not always be reported as down. I also imagine you could further simplify this by using the built in watchdog.

I'm not sure if we are talking about the same thing here?
Interface triggers could possible be used on the FW to determine if/when the FW interface changes (for tracking the CARP IP, for example), but it can not be used to determine if a web server on the internal network is working properly. For that functionality we need to use ping och http requests.
The reason for not using interface triggers for CARP monitoring is mainly simplicity. I'm not sure if interface triggers will survive a pfSense version upgrade.

@bingo600 said in Critical Bugs Could Let Attackers Remotely Hack, Damage APC Smart UPS Devices:

Looks like a nasty one

shit case, that's why we use CyberPower 😉

@furom said in Got a virus and need advice please:

triggered the alert

triggered alert from what?

One step at a time!

VLAN assignment via radius is by far the most complex part of that. I'm not sure I've seen that done with Freeradius in pfSense.

But I'd start out doing the other parts one at a time and troubleshooting as you go.
Remote Access OpenVPN, VLANs and 1:1NAT are all relatively simple.

Steve

@stephenw10 Yeah. They asked me to email their technical support team, which also deals with this. They did confirm in writing. It is what it is. 😊