Normally if a package doesn't start, by running the startup script in /usr/local/etc/rc.d/ via command line, you'll get something spit out that says why.

Ah okay, just the settings being saved/restored.  For some how I had gotten the impression that it was saving the log data, similar to how it saves the RRD data.  Thanks for the clarification.

If
@waheedsami:

WAN is working in PPPoE mode and getting the live IP from ISP

but
@waheedsami:

i am unable to ping any website from WAN

then, assuming you are trying to ping from the pfsense box itself, you either have a routing problem of some sort or your ISP is blocking your connection requests, possibly because you have changed devices. It may be you have the wrong subnet mask. pfSense strictly adheres to the rules when it comes to talking to devices in a different subnet, other OSs do not (Windows). Hence it may be that your ISP is giving you IP information which worked fine with your previous router but is actually incorrect.
This is pure speculation.  ;)
As Podilarius said please give us more information. Answering Wallabybob's questions above would be a good start.

Steve

@stephenw10:

In your firewall rules check the box "Log packets that are handled by this rule". Any traffic that is caught by that rule will then appear in the firewall log.

When you have finished debugging you should uncheck the box to prevent your firewall logs being filled which will hide more relevant hits.

Steve

hello,thanks your reply
you mean's in Status> System logs> Firewall? it just log act,time,if,source,destination,proto,but don't have rule
how can i know which rule?

Uncheck "Block private networks" on your WAN connection as it's inside one and now blocks all traffic.

What about the logs? Where can I increase the amount of logs stored? I do not want to setup a syslog server.

^ I just added details from that forum post to the docs under howtos

http://doc.pfsense.org/index.php/Samba

Will clean it up and verify it works as stated later

sftp from what I recall is on by default - I don't think I had to configure anything to allow for it?  Just connected to it using root as name which is spelled out in the above doc link - well I use public key auth, so I am sure I set that up and turned off password auth..  That is just plain common setup practice for any ssh device - at least for me.

I don't recall ever not being able to scp or sftp to any bsd/linux box that has ssh enabled as long as had creds to auth with.  Sure you can disable them on sshd config, but I believe they are part of default features allowed.

Fire up your fav sftp client, be it winscp, filezilla, etc. and point it to your pfsense box that has ssh enabled and use root with admin users password and you should be good to go be it you use scp or sftp as protocol

@elshentenawy:

hey everybody

I want to try pfsense . but I didn't know ^^which version 2 download there is alot of stuff in the download page^^
I have an old computer and I wanne 2 install pfsense just to try it
I dont really remember the spasifecation but I think
cpu: intel celeron 3/1
ram/ 512

if i need a higher computer !! can i try it on a vmware !!
thanQ

And, yes, any Celeron with 512MB of RAM will run pfSense as a simple router.  It may not route a huge amount of data, but it should be able to saturate what is available at most homes and many businesses.  (Although, a first generation Slot 1 Celeron 266Mhz with no cache might be… slow, it should run and route a decent amount.)  Try it, see if it does what you need.

I would imagine that you would want the i386 versions, btw (while there are some Celerons that support 64 bit instructions, a Celeron with 512MB of RAM would have no use for them even if it did.)

Like johnpoz said, you probably want the the LiveCD iso, which will let you run it straight from the CD or install it to a hard drive.

Ah, thanks a lot!

Yeah even if 1 is faster than the others at the start in handing out leases - once he hits 50, he is done and the others can fill up.  But what should happen is a random here or there until full.

Test this if you want before the party, setup 2 and make very small scopes like 3 each and connect some machines and see what happens.

One of the suggestions here should work
http://doc.pfsense.org/index.php/I_locked_myself_out_of_the_WebGUI,_help!

If you are stuck and can't access the GUI, check this doc wiki article:
http://doc.pfsense.org/index.php/I_locked_myself_out_of_the_WebGUI,_help!

i figured it would be something along these lines ;)

could i propose a feature request for pfsense 2.2 or 2.3 to have a migration "wizard" for this scenario ?

What is your Monitoring IP set to?  I had mine set up to monitor the router IP address, which for some reason wouldn't renew even if it said the link was down.  I chose something like 8.8.8.8, which for the time being has maintained my connection when the connection goes down.  My ISP was working on their infrastructure and I wouldn't get the same router address when their systems came back up.  This would force my IP address to completely change.  This for some reason would cause the WAN port to not renew it's IP address and I'd have to come in and manually release/renew it.  For now I haven't seen the problem occur again and changing the Monitoring IP may have helped.  System->Routing->Gateways.

Any time you go through the setup wizard, it pre-fills the values from the last time the setup wizard was run. That may or may not be the actual config that's in use now

Well that answered a question I had on why my setup got all bollixed up.

Maybe a warning note in the wizard letting you know "The settings suggested may not match your current ones, check carefully." would save others from grief.

Thanks!