• TMobile cell spot not having internet

    11
    0 Votes
    11 Posts
    1k Views
    DerelictD
    If they did that they broke NAT-T and everything NAT-T is supposed to do. Wouldn't surprise me though. If they did that they might as well just use port 500.
  • Connect via SSH as root?

    7
    0 Votes
    7 Posts
    731 Views
    jimpJ
    In the OS, the root and admin accounts are setup using the same credentials. So you just connect with root@hostname using the password for the admin account.
  • Custom Setup Question

    5
    0 Votes
    5 Posts
    585 Views
    asphalt3A
    @Gertjan said in Custom Setup Question: @asphalt3 said in Custom Setup Question: settings do i have to change in the host's OS A PC (device) can have many NIC's, like several physical RJ45, Wifi adapters and virtual NIC's. Up to you to choose the one you need. I'm not using Virtual Box myself, but surely you could find some info on the net about how to set things up. If not, there is a Hyper-V example in the pfSense doc, you could use it as a guide. Removing the upstream router : you should analyse the WAN settings of this Netgear device. Use the same settings on the WAN interface of pfSense and you'll be fine. For example, it is was DHCP, use the DHCP (client) on the pfSense WAN device. Okay, thank you!
  • Admin best practises + Yubikey

    7
    0 Votes
    7 Posts
    5k Views
    stephenw10S
    Ooo nice.
  • Tenda W15E Router IPSec, PPTP or L2TP Router to Client VPN connection

    2
    0 Votes
    2 Posts
    752 Views
    stephenw10S
    L2TP doesn't require a 'key'. There is an optional 'secret' but you don't need to enter that in pfSense. But do you really need L2TP? It looks like it support IPSec, can you not use that? Steve
  • Curious VLAN and differentiated services traffic with new TV

    24
    0 Votes
    24 Posts
    2k Views
    stephenw10S
    @JKnott said in Curious VLAN and differentiated services traffic with new TV: TP-Link does something better than Cisco!
  • 504 gateway timeout on pfsense 2.4

    4
    0 Votes
    4 Posts
    1k Views
    stephenw10S
    Restart php and then the webconfigurator at the console, menu options 16 then 11. Then check the system logs and any php error reports. Steve
  • Huawei E303 Unsupported

    3
    0 Votes
    3 Posts
    362 Views
    stephenw10S
    What point are you stuck at? Is the modem connecting and giving you an IP and a gateway? Steve
  • inconsistent internet speeds

    2
    0 Votes
    2 Posts
    298 Views
    stephenw10S
    How are you testing? How does the usage break down across cores? top -aSH Are the interupt rates from the NIC reasonable? Are they spreading load across the cores? vmstat -i Steve
  • SPAN port

    4
    0 Votes
    4 Posts
    582 Views
    stephenw10S
    The SPAN port will reflect all traffic on the bridge so you would have to add anther port, set that as SPAN and then connect the tcpdump client to that. Steve
  • SSH connection stalls when going through pfSense

    12
    0 Votes
    12 Posts
    2k Views
    johnpozJ
    @pfuzr said in SSH connection stalls when going through pfSense: I see some CISCO switches run like a jet engine for several minutes at startup! In the smb line unless your talking higher port density >28, they are normally all fanless https://www.cisco.com/c/en/us/products/collateral/switches/small-business-smart-switches/data-sheet-c78-737359.html So you don't have any fans until you hit the 28 port poe model in the sg350 line for example. As to those features, for example the $40 dgs-1100-08 has all of that other than the ACLs, and there is a poe model. And if you look at their firmware release history, they do update it.. Just trying to point out that you don't have to drop $200 bucks to get a switch that can do what you want.. And that you can get instant gratification for a few bucks ;) vs dicking with work arounds. Especially if high port density is not a requirement currently. Keep in mind that lacp is not going to get you much with your nas unless you have lots of clients, and or your devices that are going to be moving traffic to and from it also have multiple interfaces.. Or what your worried about is failure mitigation on loss of port on your switch or nas. Since you stated 8 port would work, doesn't seem like you have enough clients to worry about setting up lacp ;)
  • Create Custom pfsense

    3
    0 Votes
    3 Posts
    437 Views
    F
    thanks for your reply.
  • "/usr/local/www/wpad.dat" failed

    5
    0 Votes
    5 Posts
    1k Views
    C
    @kiokoman Thanks!
  • Fatal error with php-fpm

    3
    1 Votes
    3 Posts
    3k Views
    guiambrosG
    Sorry to re-open an old topic, but I'm facing the same problem, and was able to reproduce: Fatal Error Zend OPcache cannot allocate buffer for interned strings. For me it's happening after I changed the VM memory size (vmWare Workstation v15). I'm using latest pfSense 2.4.4 Patch 3 out-of-the-box, just downloaded and installed with default options - ZFS, no disk encryption, no RAID. If I set the VM to 256MB, the system boots normally, I can use web configuration, etc. But if I power off and change the memory size to 2GB, it gives the error above, and the menus are all unusable. The only option that works is 8 - Shell. Going back to 256MB allows me to boot again. Screenshots here Interestingly, using 2.5.0-DEV branch (built Jul 24 21:30:13 EDT 2019) doesn't present the same problems. I can change the memory size back without any problems.
  • Would FPSense have any affect on my LAN traffic?

    6
    0 Votes
    6 Posts
    565 Views
    KOMK
    It's definitely not pfSense. Your devices talk directly to each other on the same network, as John already mentioned. pfSense doesn't even see the traffic unless it needs to be routed to a different network, eg. the Internet, or a VLAN or another interface (OPT1, OPT2 etc). Your clients know their local network based on its subnet mask, and will send any traffic for outside their network to your gateway (pfSense), who forwards it out and returns the replies back to you.
  • Netgear 4G modem on WAN port - weird IP address and no internet

    13
    0 Votes
    13 Posts
    4k Views
    D
    I know this is a old post, I had this Issue a few days ago when I registered my APN setting in the Net-gear modem with "three.co.uk" and then when changing it to "3internet" this gave me an public IP. I just need to sort out what it will not renew when the lease is up seems to be sticky :) Hope this works for you if your with Three, basically it seems like Phones >> three.co.uk Modem's / routers >> 3internet Cheers Rich
  • Need help please

    3
    0 Votes
    3 Posts
    608 Views
    johnpozJ
    Lets take look at it another way... Why are you using ospf in such a setup? As just a learning experience? I find it unlikely your adding all kinds of new networrks behind this downstream router.. The only way pfsense can get to those downstream networks is to esw1 via whatever transit network you have setup between it and pfsense. So just create static route(s) to include the networks you have downstream.. No need of routing protocols unless your trying to use it for dynamic path selection, or when downstream networks might pop up that fall outside normal space... But since I have to assume all the networks downstream of pfsense would fall in rfc1918 space - you could just route All it to esw1.
  • Can access web server externally, but not from LANs.

    28
    0 Votes
    28 Posts
    3k Views
    johnpozJ
    @PITS_King said in Can access web server externally, but not from LANs.: Then, on to getting Snort and Suricata back up and running! :-) So you have your internal working... I sure wouldn't start playing with those until you do, and you sure and the F do not need both.
  • Static IP Block & CenturyLink Fiber w. PPPoE

    6
    0 Votes
    6 Posts
    1k Views
    stephenw10S
    Ha, you could send it to Netgate HQ but someone will probably have drunk it before I get there. Glad you got it running. Steve
  • Block android apps (netflix, youtube, spotify)

    4
    0 Votes
    4 Posts
    2k Views
    GertjanG
    @erdosain9 said in Block android apps (netflix, youtube, spotify): it does not block applications. This somewhat proves that "app's" do not use the web server of the same resource. Ports and IP addresses are probably different. Two solutions : Reverse-engineer the app to find the IP and port info. or "Wireshark" the traffic generated by the app. IP and port info will show up.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.