• Yet another "swap_pager_getswapspace" issue

    4
    0 Votes
    4 Posts
    1k Views
    stephenw10S

    The best way is to remove the SWAP partition at install time. If re-installing is an option for you.

  • How to enable 802.1x on wired lan interface?

    8
    0 Votes
    8 Posts
    3k Views
    T

    @johnpoz @jimp that's exactly what I was missing, thank you for pointing that out.

    Lesson n.1: There are different types of layer 2 switches (managed and unmanaged), some of them support 802.1x protocol and some of them not.

    Lesson n.2: The 802.1x authentication is done at the layer 2, before the IPs are handled to the devices. When packets reach the layer 3 is too late to do any kind of 802.1x authentication as the devices were already authorized to enter the network.

    Cheers!

  • WOL packets across subnets?

    34
    0 Votes
    34 Posts
    10k Views
    johnpozJ

    Just because you have something that will relay or forward (that device that has access to both L2s) doesn't mean its going to work with alexa or google home or homekit, etc. etc.

    Not without some major background work and setup most likely, and understanding the details of how your device you want to say wakeup X actually does that..

    My Alexa can turn on my TV, and off.. but I have my harmony remote in the same vlan as alexa, while my tv is in its own vlan. Both of these vlans are different than my other vlans. It would prob work without even... Since the harmony remote isn't in standby and the alexa should be able to talk to it over L3.

    But trying to find ways to move L2 data into another L2 is not the right approach.. Correct design of your L2s is better option from a security standpoint.. You need X to talk to Y via layer 2 - then put them in the same layer 2, its really that simple!!! Isolate that network from your other stuff..

    Do you trust alexa... do you trust your tv, do you trust your iot - well no that is why we isolate them.. But if X needs to talk to Y via layer 2 stuff.. The simple solution is just put them in the same L2 ;)

  • Using FreeBSD as a DHCP server

    4
    0 Votes
    4 Posts
    652 Views
    johnpozJ

    There are lots of things you could do with running your dhcpd on another box, if that is what they want.. Be it windows, freebsd, linux, etc. etc.. That you can not do with pfsense dhcpd instance.. Multiple scopes without having to have leg in the network for one thing.. Reservations inside the pool range, etc.

    While the dhcpd setup in pfsense is easy to use and has easy to use gui, etc. Not all the features of running say isc dhcpd on some other os or box..

    But turning off dhcpd on pfsense has zero to do with running unbound (resolver)...

  • PFSense problem on Openstack/KVM

    17
    0 Votes
    17 Posts
    2k Views
    R

    Thank you all, i modified configuration via web configurator and it works perfectly.

    Thank you again.

    Roberto

  • Slow Dahua RTSP stream with VLC when going through pfSense

    8
    0 Votes
    8 Posts
    3k Views
    stephenw10S

    Nice catch! Thanks for the follow up. 👍

  • ADSL and SIP

    6
    0 Votes
    6 Posts
    994 Views
    QinnQ

    @AndrewZ I don't know if there is a permanent virtual circuit for voice.

  • Debugging PXE booting

    4
    0 Votes
    4 Posts
    1k Views
    stephenw10S

    Many years ago we did a hangout on this: https://youtu.be/1wfjv3j57KI?t=1228

    Gui looks outdated now but the principals are all the same. Not sure what potato converter was used from Fuze. 😬

    I would probably switch to tftp server that does log what's happening at least as a test.

    Steve

  • Pfsense limiting wan?

    9
    0 Votes
    9 Posts
    973 Views
    stephenw10S

    Ah, bad cable, bad port maybe?

  • Network Setup Suggestions For XG-7100

    10
    0 Votes
    10 Posts
    871 Views
    stephenw10S

    @ThePieMonster said in Network Setup Suggestions For XG-7100:

    Are you saying that I can delete the VLAN groups 2,3, & 4 in the following screenshot?

    Yes, you only need those defined there at all if you want to truck VLAN through the on-board switch. If you're using ix0/1 directly for VLANs the switch plays no part in that.

    Steve

  • Can I use pfSense in a Pi as a bridge between to networks?

    4
    0 Votes
    4 Posts
    449 Views
    M

    I thought pfSense was working on the Pi, since Gonozopancho did it, but I guess he didn't make a how-to. ;) OK, so that's out. As for ad hoc network I had even forgotten that the damned thing excisted, from back in the 90's when it was actually in use! ;) I agree that if it had been a cowboy car factory (like so many electric car companies now) it could be a problem, but Mitsu has been around for a long time, so I wouldn't be more scared about them stopping the service then Volvo doing it for my car. And malware is not really a thing with simple stuff like setting the heater, but with a Tesla I agree it could be a problem.

    I will take the extender out there some time during next week and see if that picks up anything, thanks!

  • Copy Firewall Rules from a Interface to another.

    12
    0 Votes
    12 Posts
    2k Views
    stephenw10S

    Simply creating the group will not do anything beyond giving you a new tab in Firewall > Rules.

    Steve

  • [Solved] Ooma not working

    50
    0 Votes
    50 Posts
    9k Views
    johnpozJ

    @stephenw10 said in [Solved] Ooma not working:

    You shouldn't need any of those ports forwards.

    Exactly - says right on their site, these are "outbound" ports

    https://support.ooma.com/home/advanced-connections-and-service-ports/

    outbound.jpg

  • Slow LAN speed after pfsense on a few computers on my network.

    2
    0 Votes
    2 Posts
    207 Views
    stephenw10S

    If you saw that limit between two hosts in the same subnet that traffic goes directly, or at least it should. pfSense never sees it and cannot do anything to affect it.
    I would have to guess something is misconfigured on the client.

    Steve

  • Unraid WebUI not accessible from another computer on host network

    2
    0 Votes
    2 Posts
    2k Views
    stephenw10S

    Hard to give any specific advice without knowing exactly how it's setup. But in general...

    Try to access the webgui from another device then:

    Check the firewall logs for blocked traffic from the test client.

    Check the state table in Diag > States for open states from the test client to pfSense on port 80 (asssuming you're using http still).

    Run a packet capture on the internal interface the test client is connected to. Filter by the test client IP and port 80. Is that traffic even arriving at pfSense.

    Steve

  • Intermittently high latency on WAN

    1
    0 Votes
    1 Posts
    134 Views
    No one has replied
  • pfSense is restoring the configuration

    14
    0 Votes
    14 Posts
    1k Views
    jimpJ

    Back then it might have been wiped out automatically. The error was from two days ago in your screenshot, though. I'd still say it was a failed attempt to change a setting to something with an international character.

    No matter what, though, the best path forward is to upgrade.

  • Strange behavior

    4
    0 Votes
    4 Posts
    398 Views
    stephenw10S

    Check the firewall logs for blocked traffic. I could imagine it's trying to open a different port perhaps and has to timeout.
    Otherwise it's hard to see what pfSense could be doing there. You are fowarding ports to it I assume? 80 and 443?

    Steve

  • Why does my post fail?

    12
    7 Votes
    12 Posts
    1k Views
    J

    Yes. I was thinking that they might be able to help getting me off those spam lists since it is their IP block. But now that I think about it, talking to ATT is probably a waste of time. At a minimum they will tell me to use sbcglobal.

    My email ISP has tried to help with spf and that worked for several years but it's apparent that is no longer good enough. This is the handwriting on the wall for me. I'll have to pull the plug on my old address and wait out the blacklisters.

  • WAN interface changed speed from 1000 base to 100 on it's own.

    10
    0 Votes
    10 Posts
    817 Views
    H

    @JKnott I did, see past reply's. I will not know till and if it happens again.

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.