@wallabybob:

@vitesse:

I'll check out logging flow on google (Mule) has popped up as one suggestion.

Some posts in http://forum.pfsense.org/index.php/topic,32256.msg238508.html give some more details on netflows, a book reference and some examples of the sort of reports that can be generated by the flow-tools package.

Thanks checking them out now and added my two cents as well.  ;)

Ok yeah, after some client disconnects, the process dies, and you can't connect again. I don't know why that's happening.

Also, I'm assuming this might be getting fixed, but if DHCP leases for OpenVPN clients don't show up in the management console.

for which type of account?

You can always just check the source of the page that adds those accounts and track down the function that adds that type of account.

Ssh into sense. Start pftop (9 I think). press 'R', press 'v'. Press 'f' for filter and then type 'host 192.168.1.10' where the ip is that of your client of interest.

Ah, gotcha. I just found it confusing because most of the time if you hit a top level resource you'll get a 403 forbidden instead of a 404 not-found. Also for some reason that time the Obtaining update status… was saying not found, but it seems to be working again.

It's not OT actually it's perfectly on topic in this thread :-)

The nmap package is handy for these kinds of tasks. I had to run a report for someone earlier today and discovered that quirk.

For whatever bizarre reason nmap (on two separate pfSense boxes) decided it wanted to source traffic weirdly, even when there was a locally connected interface, so the arp failed to respond as expected. Without passing "-e foo0" it would not get valid results no matter how I tried to scan. I pass it "-e foo0" and bam, perfect.

@marcelloc:

Your cron job is scheduled to run every hour at minute 5.

If What you need it every five minutes, change first value from 5 to */5

Hi

i set it to */5 just i didnt copy the whole line of text :)

Zasa :)

This would be easy to accomplish if you had two physical WAN interfaces.
Because you are using one NIC and virtual interfaces, either in pfSense or in ESXi, you are asking it to spoof the MAC on an individual packet basis. Neither ESXi or pfSense are able to this it would appear.

Steve

i have another crash. this time i was able to save it to notepad.

after the crash, the error was gone.

[crash report.txt](/public/imported_attachments/1/crash report.txt)

@ajm786:

Let me rephrase the first question. Is there a way to enable logging per MAC/IP rather than having logging enabled for an entire interface?

What logging do you want? Connection attempts can be logged as an option to a firewall rule. The pfSense logs are "circular" recording only the last "n" bytes of log. You can log flow records or syslog records to external servers if you want to keep a lot of history. pfSense has facilities for packet capture (traffic logging).

@ajm786:

Is there any reason why pfSense doesn't recognize it by default (or show it in the DHCP leases)? Technically speaking, the DHCP leases page is also supposed to show statically assigned IP addresses, so I'm not sure why it doesn't come up at all.

No, the DHCP leases page is for showing DHCP leases. Are you confusing DHCP and ARP, thinking the DHCP leases page should show the ARP table (list of recently used IP address to MAC address mappings)? If you want a system to appear in the DHCP leases page it should have a DHCP lease which means it should request a DHCP lease.

I would recommend using OpenVPN if possible.  I have to use IPSEC as I want VPN access from my iPhone and I cannot jailbreak because it is a work device.

For those that are interested, I started using DNS-O-Matic as an intermediary to my dynamic DNS host, which provides email notification on every successful IP address update:

http://www.dnsomatic.com/

You can just reassign or rename the interfaces after you have setup your 3g modem.

The only difference between any of the interfaces in pfSense is whether or not it has a gateway assigned to it. (AFAIK  ;))

Steve

In addition, screen shots can help us find the problem. In this case, port forward rules, FW rules and out bound NAT rules. How is Zimbra getting mail to it? Is https enabled? The more details, the better we can help you.

Just checking…
Did you ever get this working?
Not having any luck here with the new files.
appears to fail getting groups from AD.

@Nachtfalke:

Not sure if it is possible with PPPoE and pfsense but with CaptivePortal and freeradius you are able to limit bandwidth, time and so on for every user.

Yes correct, i am currently doing that with FreeRADIUS.

i'am new to this stuff… how do i make a backup??? :P