• Ghost vulnerability

    2
    0 Votes
    2 Posts
    993 Views
    pttP
    https://forum.pfsense.org/index.php?topic=87700.msg482549#msg482549
  • Cant't figure out how to port forward?

    7
    0 Votes
    7 Posts
    1k Views
    H
    you'll have to change the pfsense webgui to different ports if you wish to portforward 80/443
  • LAN Failover on Packet Loss to Specific Address Possible with pfSense?

    4
    0 Votes
    4 Posts
    2k Views
    H
    High end switches support multi-pathing for the layer 2 and can fail an interface when errors start to happen. The original question asked how to fail over "like the WAN". The issue is easier on the WAN because you just say "This route is bad, fail over to another route". The problem with the LAN side is you have only one route. Clients have only one gateway, that is one route. That is a layer 3 issue. LAN failures is a layer 2 issue. It's best to handle it at the Layer 2, which is the switch. I'm wondering why an interface would have loss and why failing over would fix the issue. There is a "raid 1" for Ethernet. I forget the protocol name, but packets are duplicated on all interfaces in a group.
  • Vpn passthrough help

    2
    0 Votes
    2 Posts
    820 Views
    M
    on most firewalls this is called vpn passthrough. any ideas? Thank you!
  • Acd0:failure - request_sense timed out

    4
    0 Votes
    4 Posts
    967 Views
    I
    Thank you so much for your kind and helpful response. No CD or DVD in the drive so I shall ignore the warnings as you suggest. Btw, I just love pfSense.  :)
  • Generate email on match in system log?

    2
    0 Votes
    2 Posts
    667 Views
    jimpJ
    We don't have that capability in pfSense, but if you send the syslog messages to a remote server, there are likely other dedicated monitoring packages that do support such notifications.
  • Basic question about Privat Addresse

    1
    0 Votes
    1 Posts
    539 Views
    No one has replied
  • Push settings to our Firewalls?

    4
    0 Votes
    4 Posts
    940 Views
    M
    You could use rsync to copy the file(s) from firewall to firewall, assuming you have the right ports open across the back of all the systems: https://www.freebsd.org/doc/en/articles/hubs/index.html
  • Routes vanishing

    5
    0 Votes
    5 Posts
    935 Views
    S
    @cmb: The routes are handled by each side on its own with shared key, fill in the "remote network" on each end accordingly. With SSL/TLS, the server side can push route(s) to the client but they're still required on the server side. Ah, I see. All working now. Thanks!
  • Configuring vlanpcp on pfSense 2.2

    3
    0 Votes
    3 Posts
    1k Views
    B
    Thanks so much for your reply heper.  I am going to try that out and let you know if it works. Much appreciated.
  • MS server LDAP search

    1
    0 Votes
    1 Posts
    572 Views
    No one has replied
  • Wireless Config - Internet not working.

    2
    0 Votes
    2 Posts
    541 Views
    P
    have you set your interface rules for the wifi network?
  • Captive Portal redirect

    1
    0 Votes
    1 Posts
    467 Views
    No one has replied
  • Pfsense iphone app store

    4
    0 Votes
    4 Posts
    2k Views
    johnpozJ
    Are you using proxy?  Are you using portal?  Do you have snort installed?  is your wireless part of pfsene or a stand alone AP connected to pfsense on its own segment or same segment as your lan? I can tell you have 2 iphones, 5c and 5s and ipad none of which have any problems grabbing new apps from the store, or updating existing apps, etc..
  • FTP Dropped SINCE 2.2

    4
    0 Votes
    4 Posts
    1k Views
    jimpJ
    https://doc.pfsense.org/index.php/FTP_without_a_Proxy
  • STUNNEL Transparent Source

    2
    0 Votes
    2 Posts
    1k Views
    P
    If you are willing to switch to haproxy-devel (1.5) it should be able to do both ssl-offloading and transparent-clientip. Also in the background it will create the needed ipfw rules. How good of a job it will do for pop3s / imaps / smtps.. i have no experience there.
  • Services: DHCP server ip range round the wrong way.

    8
    0 Votes
    8 Posts
    1k Views
    johnpozJ
    "but it would be useful if it could default to a common subnet mask imo." And who says what is common.. is /24 common?  Maybe to you - but to others maybe they always use /25 when bringing up a new segment..  You have no idea what a user might be creating a interface for..  To assume /24 solves nothing - if the user doesn't understand what the mask is in the first place.. Put in a feature request if you would like the drop down to start on /24 for new interfaces for ipv4, and /64 for ipv6 since drop down on that one is /128
  • High rate of state table searches

    6
    0 Votes
    6 Posts
    2k Views
    C
    Check the Packets RRD graphs, it's likely more or less in line with the search rate. There isn't a "you must have X rate of searches given Y rate of insertions/deletions", an average setup will be roughly along the lines of the numbers I posted previously, but that's dependent on what's happening on your network and can vary widely depending on the typical load your system is under. It sounds like you have many packets going through a small number of connections.
  • /var RAMDISK size (running Squid) and i386 system memory considerations

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • Question about OpenSSL & pfSense

    1
    0 Votes
    1 Posts
    634 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.