1. Home
  2. pfSense® Software
  3. General pfSense Questions
Log in to post
Load new posts
  • A

    Scheduled block of MAC address

    4
    0 Votes
    4 Posts
    521 Views
    A
    @johnpoz: Now once your device always is 192.168.1.X you can setup a firewall rule per a schedule that allows them to only use the internet when you want.  You will need to make sure the states are reset when you do this or any current connections they have open would continue to work until that state expired on its own or they closed the connection.. Can show an example of this if need be… Many thanks. Yes, an example of how-to, including resetting the states, would be highly appreciated!
  • R

    Cannot get WAN IP on reboot.

    8
    0 Votes
    8 Posts
    782 Views
    R
    Great, guess I'll try my hand at shell scripts.
  • A

    IPSEC/L2TP VPN Connects with IOS and fails with Windows 10

    4
    0 Votes
    4 Posts
    728 Views
    A
    The laptop will connect when it's on the lan and the ras server lan ip is used, this is what leads me to believe it's PFsense.
  • B

    PfSense KERNEL configuration.

    4
    0 Votes
    4 Posts
    835 Views
    jimpJ
    To see the configuration of the kernel your firewall is running, use this command: sysctl kern.conftxt
  • A

    WOL via VPN

    2
    0 Votes
    2 Posts
    483 Views
    JKnottJ
    No.  WOL requires a specific Ethernet frame, not IP packet.  So, it will not pass through an IPSec VPN.  The best you could do is use the smart phone to trigger something on the network to send that frame. https://en.wikipedia.org/wiki/Wake-on-LAN
  • H

    Resolve internal web server

    6
    0 Votes
    6 Posts
    799 Views
    V
    What you want, can only be achieved with a proxy. To make it less complicated, configure your web server to (also) listen to http://xyz.com. Then set the host override with "xyz.com" in the Host box and only "192.168.100.76" in the IP Address field.
  • QinnQ

    Sonos access from other subnet(s)

    3
    0 Votes
    3 Posts
    643 Views
    QinnQ
    Thanks for the reply, but how to do this?
  • I

    Convert cisco IOS to pfSense config

    3
    0 Votes
    3 Posts
    695 Views
    I
    Thanks, Derelict, I will have a look at their service offerings
  • P

    Squid and YouTube

    1
    0 Votes
    1 Posts
    357 Views
    No one has replied
  • B

    No WAN IP address from Spectrum

    1
    0 Votes
    1 Posts
    544 Views
    No one has replied
  • J

    [Solved] DHCP Error while connected to VPN

    1
    0 Votes
    1 Posts
    186 Views
    No one has replied
  • D

    Squid guard does not work

    2
    0 Votes
    2 Posts
    393 Views
    KOMK
    Squid/squidguard forum. Go there and post your current config, any error messages, etc.
  • john_galtJ

    Recommend Intel multi-port NIC for GP server use

    3
    0 Votes
    3 Posts
    507 Views
    john_galtJ
    Thank you Derelict. I will search there and other online sellers. Doug
  • K

    Windows VPN client can't get through pfSense w/o pfSense restart

    5
    0 Votes
    5 Posts
    720 Views
    DerelictD
    And again: https://doc.pfsense.org/index.php/PPTP_VPN What are you not understanding that PPTP is broken, insecure, should not be used, and there are limitations in the pf firewall that prevent multiple connections from the inside to the same address on the outside? If PPTP is what you require, you should probably use another firewall.
  • R

    DNS Forwarder not working on reboot

    3
    0 Votes
    3 Posts
    550 Views
    M
    Several upgrades ago, I had a similar issue with the forwarder… where it would not resolve anything after an upgrade.    I never tried re-saving the config, but what did work for me was specifically selecting my LAN interfaces on Services -> DNS Forwarder instead of leaving it on "All". We may have two totally separate issues, but it's worth a shot.
  • JKnottJ

    Setting display columns

    6
    0 Votes
    6 Posts
    748 Views
    johnpozJ
    depends… it will overflow if your doing really long ones like with names but if you do a -rnW it should look pretty good even with long address with vlans on them, etc.. [image: long.png] [image: long.png_thumb]
  • B

    Bootloop after black out

    5
    0 Votes
    5 Posts
    653 Views
    B
    In system_hasync.php I can see " Synchronize Interface" setted with my WAN interface, but I have not setted it, I suppose is default. If interface need to be configured somewhere else, could you help me to check? BTW thanks for your reply, I will try to replicate the error in VM and from here upgrade to 2.4.3 develop to see if is fixed even to me.
  • M

    (solved) Nessus vulnerability false positives

    Locked
    40
    0 Votes
    40 Posts
    7k Views
    jimpJ
    @Sn3ak: Obscurity is not security. This is a bad line of thinking, especially if you wish to sell to Enterprises. Sure, hiding as much as possible from external attackers is nice but hiding from your CS department (or yourself) is generally not a good practice. This is not security by obscurity. It's reducing unnecessary information exposure. If you rely on the device itself to tell you what version something is, you need to have a proper mechanism setup and in place to do that internally (e.g. SNMP or other means of querying the device). Being able to determine the OS based on network behavior or daemon responses is not a reliable detection mechanism, and being able to do so is a problem, not a solution. I wouldn't go so far as to say it's a security issue if you can identify the OS, but it's still better if it's not accurately discernible.
  • N

    Need to Reapply Default Gateway after brief WAN drop

    1
    0 Votes
    1 Posts
    321 Views
    No one has replied
  • emammadovE

    PfSense 2.3.5 or 2.4.2 to install?

    5
    0 Votes
    5 Posts
    2k Views
    J
    @emammadov: Thank you for your reply. Is 2.4.2 version stable? Yes, 2.4.2 is stable.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.