I have created a new user via System > User manager, then …
just save the newly created user, and open it up again for editing.
You'll find a new option: "Effective Privileges" - add "User - System - Shell account access" and save.
Now this new user has SSH ans SFTP access (I tested both).
Thanks a lot. Works like a charm. Sorry for being not able to find it myself.
When you switch to MANUAL NAT you need to create a "default NAT" rule for your normal internet traffic.
Where are you trying to access it from?
By default you will only be able to connect via the LAN interface so what is em1 connected to? Which NIC is the host system using as a gateway?
Steve
Thank you very much for answer. It helped me.
I was trying to access from WAN (my host PC, lan is internal network for VMs), but from VM with LAN address it works!
Hi!
Yes, after few days of OpenLDAP expirience I understand what you're saying, I somehow underestimated the complexity (also the funcionality) of OpenLDAP. And since there seems to be a replication model for OpenLDAP, running 2 virtual machines should probably be robust enough. Thanx for the comment
If you put then all on the same network segment the traffic between then won't go through pfSense so you won't be able to filter it with firewall rules. Separate VLANs gets my vote.
IT seems your cable modem is loosing it's connection intermittently. When the motorolla modem does not detect the coax (WAN) connection, it will unbridge the two interfaces and hand out dhcp ip's in the range of 192.168.100.x.
I installed version 1.1.1 of arpwatch but I staill get the RFC warnings and it doesn't send any email messages. For the present time, I have disabled email notifications in arpwatch and removed email server name and email addresses in System -> Advanced -> Notifications to stop the messages in the system log.
Let me know if there is something else you want me to try, just remember I'm still new to pfsense. I like what I've seen so far and plan to stay with it.
Upgrading to the new version could be useful. FreeBSD 2.1 It should be, I don't expect. A small risk But of course you need to configure 2.0.and 2.0.n copy to ensure income.
If you have a pfsense box setup and routing traffic on your lan already, then you can plugin your "wireless router" to the switch, turn off dhcp, give it an ip and go.
Otherwise, get wireless card, add it to you pfsense box. add the interface.
It should work like you describe.
On OPT1 does the client get the right netmask?
The right default gateway?
The right DNS?
From a client, can you ping the pfSense OPT1 IP?
traceroute 8.8.8.8 - where does the problem come?
If you plug a PC directly into the OPT1 port with a cable, does it all work?
Ok, so you have two DSL modems? Two routers?
You say they are both connected via a single NIC using a switch? I don't think you can do pppoe directly from the pfSense box in that setup. You can do two subnets and static ips behind routers but that's also 'unconventional'. It would be better to have 3 NICs.
It does not lock the box. You can manually set an IP and get in.
The defaults are just that – defaults. Once the user changes a setting, the defaults no longer apply and any automatic method of trying to "guess" a new range will be inherently flawed or confusing. End of discussion.
