• Pfsense Logging

    6
    0 Votes
    6 Posts
    2k Views
    stephenw10S
    You may be able to (it would no doubt require a lot of command line hackery) but I definitely recommend you don't. You should install a syslog server on another machine and configure pfSense to send it's logs there. If you really want to use only one machine there is a syslog-ng package for pfSense so you can store long term logs locally if you are running a full install. I've never tried that though. Steve
  • Snort 2.9.4.6 pkg v. 2.6.0

    2
    0 Votes
    2 Posts
    1k Views
    P
    You need to add an interface, then those tabs will show up under the interface. [image: snort_rules.jpg_thumb] [image: snort_rules.jpg]
  • Bridging Lan1 and Lan4

    4
    0 Votes
    4 Posts
    2k Views
    stephenw10S
    OK. So if you want to have both interfaces appear on the same subnet and you don't want any filtering between them you need to move the filtering. Go to System: Advanced: System Tunables: In the table are two sysctls that control the bridge filtering behaviour net.link.bridge.pfil_member and net.link.bridge.pfil_bridge. As the description in the table says you have to edit those values setting net.link.bridge.pfil_member to 0 and net.link.bridge.pfil_bridge to 1. You will need to reboot the box (or remake the bridge) at this point to get the values to take effect. Also you probably want to re-arrange the interface assignments. You want to end up with: LAN1 assigned as bridge0. bridge0 with the two interfaces added. This means you will have to reassign whatever NIC you have as LAN1 currently. You don't have to do that but LAN1 (assuming you renamed it from LAN) has the anit-lockout rules etc. I wrote a post about doing this sometime ago that may be helpful to you: http://forum.pfsense.org/index.php/topic,48947.msg269592.html#msg269592 Steve
  • Traffic graph resolving Windows XP hostnames, but not Windows 7

    5
    0 Votes
    5 Posts
    2k Views
    M
    Yeah I think dynamic updating is not on by default because of security risks. But I'm glad your up and running.
  • PfSense 2.1-RELEASE amd64 crashing

    3
    0 Votes
    3 Posts
    1k Views
    L
    Turns out it wasn't NRPE but something screwy along the way updating from 2.0.3 to 2.1. backed up the config, reinstalled from scratch and restored config and it's been running just fine (with NRPE) since. When in doubt, go with a fresh install.
  • [SOLVED] 2.1 release. Can you use URL_TABLE for alias?

    3
    0 Votes
    3 Posts
    1k Views
    T
    It was my mistake… I had an error in last row in the TXT with subnets for the alias. It did not mess up the 2.0.x boxes. Only the 2.1-release stopped working.
  • MOVED: Snort service wont start

    Locked
    1
    0 Votes
    1 Posts
    662 Views
    No one has replied
  • PfSense and virtualization

    4
    0 Votes
    4 Posts
    1k Views
    johnpozJ
    What hardware are you wanting to do this with - something dedicated to just pfsense and your Vms?  Or your workstation you do your normal work on? If dedicated - then install a hypervisor your choice - I use esxi, its FREE and rocks.  But you could use prob any of them you want - I would suggest a type 1 over 2 if this is dedicated to pfsense and other vms. Then as suggested you run your pfsense just like any other vm in your hypervisor..  You can then have your pfsense be router/firewall for your whole vm and physical network, or just as router between your physical network and your vms, etc. Here is doc that should get you going on the right track https://doc.pfsense.org/index.php/PfSense_2_on_VMware_ESXi_5
  • What do these logs mean?

    3
    0 Votes
    3 Posts
    2k Views
    A
    I have dsl… And have it reset the connection every day with the setting on interface options.
  • YouTube for Schools

    2
    0 Votes
    2 Posts
    2k Views
    N
    Please post screenshots of your floating rules and gateway groups. I am also trying to get youtube for schools working. I think I am getting close with the help of others. My multi wan with squid is working on 2.0.3. Testing 2.1 on a different box.
  • After upgrading to 2.1 clients loss internet and sometime IP

    1
    0 Votes
    1 Posts
    756 Views
    No one has replied
  • Class C WAN to Class B LAN?

    16
    0 Votes
    16 Posts
    8k Views
    H
    it's allways difficult to put yourself in another persons' shoes. thats why a problem so "easy' for some is incredibly 'hard' for others that aren't familiar with the material at hand. figuring out what is wrong with``` SELECT * MORF mytable; in my experience, people here are friendly and will allways try to help.
  • MOVED: block facebook.com by squidguard

    Locked
    1
    0 Votes
    1 Posts
    817 Views
    No one has replied
  • Why Pfsense doesn't keep records in our network?

    2
    0 Votes
    2 Posts
    1k Views
    T
    Make sure /var/squid/log actually exists and has the correct permissions. Usually, though, it's /var/squid/logs.
  • Crash log, then what?

    1
    0 Votes
    1 Posts
    673 Views
    No one has replied
  • RRD errors at boot

    2
    0 Votes
    2 Posts
    1k Views
    B
    I searched back through logs and it looks like a result of switching architecture from 32-bit to 64-bit but that was back when I installed 2.1 beta. Strange that the error suddenly changed from "This RRD was created on other architecture" which I had never noticed. Reset the RRD data and all appears to be OK.
  • Carp notifications: more than 300 emails for a single CARP switch

    7
    0 Votes
    7 Posts
    2k Views
    M
    Ok… I didn't know that adding/removing a Cron job with a max. frequency of 2 minutes could be a problem or something to avoid... Also, what do you think is better, to use a "single text file" to store the notifications or use different small text file, one for each single notification? I am just worry that when 300 or more notifications are generated in few seconds there could be some kind of problem in managing the single text file...
  • Strange lost connection

    1
    0 Votes
    1 Posts
    864 Views
    No one has replied
  • What is this log

    4
    0 Votes
    4 Posts
    2k Views
    A
    update.. after a while that I tick out of allow IPv6, system log still show repeat the message as above. Oct 9 18:50:15 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(opt4). Oct 9 18:50:15 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan). Oct 9 18:50:10 check_reload_status: Reloading filter Oct 9 18:50:10 check_reload_status: Restarting OpenVPN tunnels/interfaces Oct 9 18:50:10 check_reload_status: Restarting ipsec tunnels Oct 9 18:50:10 check_reload_status: updating dyndns VPNGW Oct 9 18:49:56 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(opt4). Oct 9 18:49:55 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan). Oct 9 18:49:50 check_reload_status: Reloading filter Oct 9 18:49:50 check_reload_status: Restarting OpenVPN tunnels/interfaces Oct 9 18:49:50 check_reload_status: Restarting ipsec tunnels Oct 9 18:49:50 check_reload_status: updating dyndns VPNGW Oct 9 18:48:35 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(opt4). Oct 9 18:48:35 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan). Oct 9 18:48:30 check_reload_status: Reloading filter Oct 9 18:48:30 check_reload_status: Restarting OpenVPN tunnels/interfaces Oct 9 18:48:30 check_reload_status: Restarting ipsec tunnels Oct 9 18:48:30 check_reload_status: updating dyndns VPNGW Oct 9 18:47:50 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(opt4). Oct 9 18:47:50 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan). Oct 9 18:47:45 check_reload_status: Reloading filter Oct 9 18:47:45 check_reload_status: Restarting OpenVPN tunnels/interfaces Oct 9 18:47:45 check_reload_status: Restarting ipsec tunnels Oct 9 18:47:45 check_reload_status: updating dyndns VPNGW
  • Reverse Proxy Problem

    2
    0 Votes
    2 Posts
    1k Views
    D
    To update: Progress maybe just to the side tho!! Two servers: 192.168.1.200 & 192.168.1.201 Urls: 1.a.com, 2.a.com, 3.a.com, 4.a.com. The two servers are set up as peers within the Webservers Tab of Reverse Proxy, they are both listed on port 80 and have their relevant IP address listed. subdomains 1 and 2 are meant to go to 192.168.1.200. 3 and 4 should go to 192.168.1.201. Everything is going to 200. Ideas?
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.