• Block traffic from specific sites.

    Locked
    8
    0 Votes
    8 Posts
    5k Views
    M

    As I said they are 'regular expressions' used in unix and other OS's. Many OS's use a subset of the main expressions. A Google search for them will reveal many examples.

    regular-expressions-cheat-sheet.png
    regular-expressions-cheat-sheet.png_thumb

  • Can't DHCP from Cable modem

    Locked
    28
    0 Votes
    28 Posts
    18k Views
    R

    My experience was MAC spoofing and VLAN tagging does not work together.  To work around my problem I set the spoofed MAC address that I wanted my cable modem to see from my WAN interface, inside the VM setup inside VMware and removed the spoofed MAC address from pfSense.  This way pfSense sees and uses my spoofed MAC at boot time as if it was a MAC address on a physical NIC.  My cable modem sees and locks to my spoofed MAC and all 3 WAN interfaces works correctly on separate VLAN's on the same physical interface.

    This setup has been working fine for a week now.  I finally have IP's on all three WAN interfaces with the cable modem locked to the MAC address I need it to use.

    Thanks to everyone for all your suggestions!

  • Mac adress filtering and arp

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    C

    what exactly are you setting up?

    Every method you can use there is easy to get around, control at the switch level if it's a wired network is generally the best if not only way to prevent such things.

  • PFSENSE OPT1 no internet +

    Locked
    4
    0 Votes
    4 Posts
    15k Views
    M

    NP, glad to help.  :D

    Even if it just made you look at it again.

    I would have kicked myself tho,  ??? annoying when u miss one thing.

  • MultiWAN + Squid +pfsense 2.0.1

    Locked
    3
    0 Votes
    3 Posts
    3k Views
    S

    i read the multiwan configuration for PfSense 2.0 ( http://doc.pfsense.org/index.php/Multi-WAN_2.0 )

    and applied the same gateway group for the squid users. and  am not using transparent squid, anyway i will do that configuration and update soon.

  • Diagnosing WAN Stutter

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    B

    @mibovrd:

    I take it the LAN interface is similar, with no collisions, etc.
    Any mbuf errors in syslog? type in mbuf in the filter at the bottom. I had an issue with a realtek gig card that I added for an opt interface. I think my issue was running too many Gig cards on a PCI interface, and I had similar problems, a little more frequent than yours though. Need PCIe or x for Gig cards really.
    I would Google for the intel and realtek chipset models cards to see if there are any issue that might require tweaks, there are a few that have issues. More with Realtek than Intel, but intel has some too. I would try Google pfSense 2.0.1 + chipset model numbers and then FreeBSD 8.1 + chipset model numbers.

    Nothing shows up when I apply a filter for mbuf in Status: System logs: System

    Thank you for the input. I'll research more into the chipsets.

    Anyone use any other tools?

    I am running a SmokePing test as well. NY looks interesting, have a look.

    http://www.dslreports.com/r3/smokeping.cgi?target=network.0e4309b87aadaaef433745f5ccdd14ce

    Edit:
    Tests are done. Looks like route through NY is the worst. For the overall test through NY, it looks to be about over 2% packet loss. The others were slightly better.

    No, mbuf errors and the WAN interface doesn't show any errors.

    Based on this, it doesn't appear that the problem is on my end, but how can I be sure?

    Media 100baseTX <full-duplex>In/out packets 21190740/20936341 (17.38 GB/1.62 GB)
    In/out packets (pass) 20936341/14416830 (17.35 GB/1.62 GB)
    In/out packets (block) 254399/0 (29.57 MB/0 bytes)
    In/out errors 0/0
    Collisions 0</full-duplex>

  • Trashed RRD graphs

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    0

    It turned out that also the "libpng.so.6" was missing, after transferring the files with pscp (from a virtual installation) it seems the graphs are live again.

  • PFSense support SIP Traffic Through NAT?

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    stephenw10S

    @dhatz:

    "symmetric NAT" (more) i.e. the most restrictive (and secure) type of NAT.

    Wow, 100% pure information on that page. I just discovered I knew nothing.
    Thanks Dhatz.  :)

    Steve

  • Unfortunately we have detected a kernel crash (panic).

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    w0wW

    I have similar crashes with PPPoE client (WAN) from time to time (sometimes it is up and running for 80+ days), for me it looks like there is common problems with  PPP in pfsense. I did not reported them as it always reported in redmine. Those kernel panics are related to PPPoE reconnection in most cases.

  • Alix 2d13 - adding USB storage for use with PFSense

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • Dropped from 1000Mbit to 100Mbit

    Locked
    9
    0 Votes
    9 Posts
    3k Views
    stephenw10S

    Huh, that is not something I would have thought of.
    Weird.  ::)

    Steve

  • VoIP Rules on Pfsense

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    M

    This will help for a start, eh?

    http://doc.pfsense.org/index.php/Asterisk_VoIP

  • Problem Setup VideoCache with Squid

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • SQUID + Load Balacing + Failover NEW VERSION ITS POSSIBLE ?

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    O

    ohh i want to use:

    squid and as parent havp anti virus

    and

    load-balancing with failover

    ON ONE machine! ;)

  • Cant achieve simple port forward

    Locked
    17
    0 Votes
    17 Posts
    6k Views
    stephenw10S

    No NAT reflection is the correct way to do this if you are using a URL to access an internal server.
    The Winbox software appears to use it's own dynamic DNS lookup somehow so this would probably apply.
    http://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks%3F

    Steve

    Edit: I can't find where I read that about WinBox and DNS now.

  • School Usage - 300 Users

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    stephenw10S

    Yes it can do that.
    However it's likely to to take a little playing around with the configuration to get it doing what you need. Still if you've got £12K to save that could be worthwhile!
    What exactly do you mean by 'AD reporting'?
    If you mean running a webproxy that each user has to login to authenticated against Active Directory then you may struggle to get exactly what you want. It can be done though, via captive portal and freeradius for example.

    In my opinion the one part of pfSense you are likely to find lacking is logging/reporting. pfSense can export all it's logs to external reporting software though.

    If you have VM servers setup then I suggest installing it and having a play around.

    Steve

  • 0 Votes
    3 Posts
    3k Views
    E

    Yeah, it certainly looks something like that.

    I don't have the log, from when the connection re-made, but here's a snippet from the point it was lost.  In this case, it was reporting the ISP's Gateway as the problem.

    Is there any way that any process, that's using the gateway address, be re-started when the gateway changes, as the log shows:

    dhclient: New Routers (re0): 192.168.100.1

    So it does know that it could have changed.

    Cheers.

    llinfolog.txt

  • PfSense Instability Help

    Locked
    13
    0 Votes
    13 Posts
    6k Views
    M

    @jimp:

    Probably worth applying the em tweaks from here:
    http://doc.pfsense.org/index.php/Tuning_and_Troubleshooting_Network_Cards

    Thank you, I'll have to take a look at this.

    I don't think the mbuf's are the issue for me.

    The pfsense guest became unresponsive again on Friday (just getting around to posting now), and the following was the last entry in my scripted log file:

    Fri Mar 30 16:16:44 EDT 2012 514/5758/6272 mbufs in use (current/cache/total) 513/5541/6054/25600 mbuf clusters in use (current/cache/total/max) 512/5376 mbuf+clusters out of packet secondary zone in use (current/cache) 0/0/0 requests for mbufs denied (mbufs/clusters/mbuf+clusters)

    This seems to suggest that mbuf's are not my issue.

  • PfSense directory structure; debugging approach

    Locked
    3
    0 Votes
    3 Posts
    8k Views
    C

    @jupiters_spot:

    It appears all the php files are to be found in /usr/local/www

    the front end files, most of the back end work is done by files in /etc/inc/.  for packages, /usr/local/pkg/

  • General VPN Throughput Confussion - The Definitive Guide

    Locked
    3
    0 Votes
    3 Posts
    1k Views
    C

    Depends on what combination of traffic you have. If you have any VPN traffic it's going to lower your total possible throughput, by how much depending on how much VPN traffic you have. If you have the maximum possible VPN throughput going, you're not going to push a whole lot of traffic outside the VPN (though in reality what you'll see is more of an even split between inside VPN and outside VPN traffic, you're not going to achieve the full possible VPN throughput if you have a lot of non-VPN traffic going).

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.