• Not able to block PING to an AP

    21
    0 Votes
    21 Posts
    3k Views
    N

    Hi Guys,Thanks for your advice !

  • HELP: Dual CARP/pFSync pFSense Routers + Multi-WAN + LAN + VoIP-Hybrid

    1
    0 Votes
    1 Posts
    622 Views
    No one has replied
  • 0 Votes
    5 Posts
    1k Views
    A

    interesting… :)

  • Get Internet through WAN and VLAN

    4
    0 Votes
    4 Posts
    873 Views
    I

    Thank you all for Answers!

    But may be no need to use VLANs at all. Get the config file form the old GW and don't see any VLAN configurations there. May be ISP admins think that they have active VLAN.

    First Ill tray IP configuration without VLAN.

  • How to setup WiFi on pfSense router

    4
    0 Votes
    4 Posts
    2k Views
    E

    I'm moving this thread over to here.

  • [SOLVED] VLAN treachery - DHCP Addresses but No Internet Access

    10
    0 Votes
    10 Posts
    4k Views
    T

    @Derelict:

    You can't use 10.0.0.0/8 and 10.X.X.X/16. those subnets conflict.

    facepalms  Doh, I knew I forgot something.  I've given the non-VLAN'd LAN 10.0.0.0/16 and left the rest as it was, and tweaked the config on the switch itself so it has the right net mask.

    Anyways, weird discovery: Apparently there was a static DHCP assignment that got added for the client system and somehow THAT broke VLAN routing of information.  Either that, or dhclient decided to go and break itself.  It looks like the issue might've been related to that, because now data's being routed correctly.  shrugs

  • VLAN

    10
    0 Votes
    10 Posts
    2k Views
    DerelictD

    @AIMS-Informatique:

    Why are you telling him to switch from trunk to general

    This is due to the way some switchs understand and handle this spécific Trunk mode. And no, Trunk isn't like general, as a Trunk would assume to carry and forward all VLANs, even thoses not configured. So the behavior of a Trunk is slightly different. Generally a Trunk config will be necessary if you plan to enable GVRP.
    Plus, for my point of view, it is better to know your network and set up only what needed.

    It is true that ciscos switchports in trunk mode can carry all VLANs, but you can also limit them only to specific VLANs with "switchport trunk allowed vlan add XXX,YYY,ZZZ" like I described. This has the effect of making the trunkport only forward traffic for the allowed vlans and discarding any received frames tagged for unconfigured VLANs.

  • Authentication based routing

    2
    0 Votes
    2 Posts
    769 Views
    A

    Yes you can. This is called Squid + SquidGuard as PF packages.

    Good luck.

  • No connection on DMZ

    15
    0 Votes
    15 Posts
    3k Views
    A

    Mark,
    You are not displaying the good RULE interface. What you need for playing, is INCOMMING connection. What shows your DMZ tab in your FW rules are your OUTGOING trafic (pass or block).
    On your WAN tab, specify an allow all rule to DMZ subnet destination. So that your DMZ play its role : being demilitarized…

    I'm afraid you will have to deal with AON to... (manual NAT). Unless you struggle with port forwarding from each of your game support (Nintendo / Sony / steam...), and configure the good ports to be forwarded for each service.
    Believe me, you'de better work on Manual NAT (and static ports) rather thant seeking for editor's information about port forwarding.

  • Xauth.tbz after install errors

    3
    0 Votes
    3 Posts
    861 Views
    F

    Well I got it figured out.. pretty easy fix..  i was using i386 when i needed amd64..  doh!

  • How to setup 20 public IPs

    5
    0 Votes
    5 Posts
    1k Views
    A

    In your VIP configuration, try to specify your WAN IP considered, as a /24 and not a /32.

    For instance…
    Let say your ISP gave you this set of IPs :
    193.204.32.1, .2, .3, .4
    Let say you want your web site on the 193.204.32.3.
    In your VIP configuration, spercify the VIP IP as 193.204.32.3, but force it on /24 mask (not a /32).

  • Android phone won't connect to internet (but connects to LAN)

    4
    0 Votes
    4 Posts
    826 Views
    A

    Chek you FW rules for WiFi interface.
    Check your MTUs.

    Does a PC have the same issue with Internet over WiFI ?

  • 404 Not found when browsing certains sites

    5
    0 Votes
    5 Posts
    2k Views
    N

    THanks will post there.

  • Pfsense not accessable through VLAN?

    6
    0 Votes
    6 Posts
    1k Views
    stephenw10S

    If you haven't already added a route (or used some routing protocol) that will definitely stop any replies reaching you. Looks like you may have found your problem.  :)

    Steve

  • Bypasssing dsl modem

    1
    0 Votes
    1 Posts
    737 Views
    No one has replied
  • Hot plug event detected

    3
    0 Votes
    3 Posts
    2k Views
    T

    sorry about the delay but what information do you need so i can post it i need to know if i need to get a new nic or not cause the message is still showing up in the logs

  • USB stick access via shell…?

    4
    0 Votes
    4 Posts
    8k Views
    dotdashD

    Not familiar with that. In ESXi, you can pass the device from the host to the guest. Perhaps you can do something similar.

  • POP3 Mail Scanning ??

    1
    0 Votes
    1 Posts
    574 Views
    No one has replied
  • Connectivity problems with bridge interface

    10
    0 Votes
    10 Posts
    2k Views
    C

    I haven't found any obvious conflict in the config file so I might try the deletion of interfaces and let you know.

  • [SOLVED] Squid blocking all sites except Google and a few others

    7
    0 Votes
    7 Posts
    8k Views
    A

    Figured it out! So apparently within the Squid Allowed ports, despite Squid configuration page stating:

    This is a space-separated list of "safe ports" in addition to the already defined list: 21 70 80 210 280 443 488 563 591 631 777 901 1025-65535

    I had to make the following modifications:

    acl safeports: 21-65535 acl sslports: 443 563 995

    All good  :o

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.