Hi @jimp I will try it, thanks !!

@bmeeks I am sorry for the delay, being an enthusiast puts a limit on how much time I can devote to my server... I disabled the widget and saw no other errors. I will re-enable it (just for testing) and will pull any logs on the first available chance.

Thanks for all feedbacks!

@stephenw10 said in pfSense LAGG-LACP with HP VC FlexFabric Switch:

Timeouts might be a fast/slow mismatch.

Can you see any debug info from the switch stack?

Changing of the Timeout did not help. I tried it on both side so that every side had the same setting.
We are looking for the debug log, so far there are not many info's in the log.

@havanna said in pfSense LAGG-LACP with HP VC FlexFabric Switch:

You can try:
...

Hmm non of the command are working.
We are using the HPE Virtual Connect Management CLI v4.85

Are you commands for this type of switch? I look around and could not find any similar commands. We configured everything on the WEBgui.

@rcoleman-netgate I was so excited I forgot, thank you for removing...really excited each day I learn something new about pfSense and its resilience.

@robbiett said in Netgate 8200 and Unifi L3 Switch Configuration:

've had to do something like that before, plus leaving myself # instructions in the file so I know what I did:

Thanks for the suggestion. We have a bunch of ephemeral linux containers spinning up and down so I would not want to have to manage updating the host file in our case I think. I could see this being an option if things weren't moving around so much though.

Thanks again.

@jimp fix confirmed. thanks.

@rcoleman-netgate said in Popups when loggin in to pfsense:

@blankman it will also do it on the first login of the calendar year I believe.

Not quite, but close.

It will display the popup if any part of the text changes. We change the copyright year in the text around the first of the year, so the first time someone logs in after that copyright year gets bumped, they'll see the popup again.

@jimp I was afraid of that. :(

Ah, that would do it. Not sure how that could have changed since 22.05 though.

Steve

Strange. Tested now again, and this time it showed up immediately. The one from yesterday is yet to show though... But that is still a finding, then I know that it in fact does work.

Thanks guys!

For anyone that comes across this, to sum up, using a Spider KVM and attaching virtual media to that is what was not working, at least not with BSD.
Using the servers IPMI virtual functions worked.

You should be able to enter hostnames as aliases and the firewall will resolve them if Unbound is configured to resolve DHCP leases. Then you would only need update aliases. That is updated every 300s by default but you can change that in Sys > Adv > Firewall&NAT.

Steve

https://redmine.pfsense.org/issues/14174

@josephchrzempiec

View status without having to login?

I'm not telling you you should, but I can show you what I have : this.
This permits me to see some basic pfSense parameters with the 'tap of a finger' wherever I am on the planet.
It's not a click here, click there solution, as it implies that you temporarily ( ! ) activate FreeBSD package source to install a FreeBSD package called Munin (it will pull in a boatload of dependencies - this was fine, but can be 'dangerous'), and then you have to set it up (some script coding is needed).
Munin isn't the most beautiful grapher out there, it's the one I use for .... many years.

@josephchrzempiec said in View status without having to login?:

Is it possible to run python on pfsense?

I guess it's there in the basic install. I'm not sure.
But install pfBlockerNG-devel or pfBlockerNG :

fa349811-b3d2-4c71-8c66-64bbee3c48af-image.png

and that will pull in Python for sure.

@gertjan

pfBlockerNG, by default, right after installing, does contain an 'example' DNSBL feed

DNSBL isn’t enabled by default. There are plenty of DNSBL feeds that appear on the Feeds tab, but none of those are enabled either.

Hello all, Thank you for replying back to my post. I'm only trying having one server connected to my pfsense router that is all. I was looking for the minimum requirements to run a pfsense router. I have found a few. Sense I only have one server and no need of more I have a small computer with 2gb of memory and 32gb of hard drive on a computer I have should be perfect for it.

Joseph

@steveits Thanks a lot!! it worked!! I wish i could buy you a cup of coffee.

@deanfourie Normally MITM is achieved by installing a CA cert on each device and then creating "certificates" on the fly. Can be done on a PC but you can't really install your cert on an IoT device.

Easier to just block DoH per the above and then if you need to, allow a device to use it.

@patryan I like the simple ones!

Ted Quade

@pf-sense-help here is a quick walk thru I did years ago, that still valid

https://forum.netgate.com/post/831783

This is how you would create a CA, sign a cert and have your browser trust it. You can use whatever sections of it you need if parts have already been accomplished.