Nice, you seem to use it to the max ;D
However the additional hardware does need additional power. Make sure the PSU is not at it's limit. While performing a reset it might need a power peak from the PSU to reinitialise everything.
First I put the disk into my old laptop, and swapped out the intel2200bg card for an atheros one, so there would be two interfaces. PF sense intsalled, went through everything and hit 99 option for hdd install and even allocated 1gb of swap.
Then put the 2.5" disk into the soekris, and interestingly console worked enough to tell me that it could not find the original LAN interface, but let me assign a new one, from there it was GUI all the way.
It definately runs quicker from a GUI point of view, even though no swap space used as yet, I shall do some testing at some point to see if on HDD it works better under load. I have seen soekris have launched a version with 256mb of embedded memory BTW.
Has there been any thought to having a dual HDD and CF install? with read-only on CF, swap and storage on HDD. Basically it could be a CF install, then a script similar to the one to allocate free space on a CF card, but to HDD, and add packages in the process?
Thanks again for all your help, and look forward to seeing the usb boot version
That's on my list of things I'd like to work on at some point (I've got a couple Nexcom that are spinning platters that are entirely unused right now).
I have tried again just now.
This time i tried it with a bios update. Its 1.05 now.
And im still having trouble installing pfsense 1.0 beta to my HD.
I checked the bios settings and i set IDE to manual, Mode to LBA, PIO to mode4 and disabled UMDA for the master device on IDE1
that has my toshiba 40gig HD connected to it.
But i have installed pfsense ( through the Safe mode option ).
After install I still have to boot pfsense in safe mode for it to run.
If i let the boot loader run the default choice, pfsense will end with the messages that it cant mount the root partition.
And wont start.
Can keep it running in this safe mode?
Are there only hardware related options 'off' or also network specific option 'off' ?
Thanks for reminding me what hoba said earlier in this thread.
No, I did not have a serial cable plugged up.
I tried to figure out how to connect a PC monitor to the serial port :-[
and then I remembered something I read about m0n0wall on a Soekris and a serial port,
here: http://doc.m0n0.ch/quickstartsoekris/ under 3.2. Connecting to the Soekris serial console.
The null modem cable that I used had only pins 2 and 3 crossed, for the rest it was
different than the null modem cables described in http://www.nullmodem.com/NullModem.htm .
However, with HyperTerminal under Windows XP and the following settings, 2400 bits per second,
8 data bits, parity none, stop bits 1 and flow control hardware, I got some garbled output in the
Then I changed to the speed to 19200 bps, still garbled output. Finally I found here http://www.fozzee.net/wrap/ that the default speed in m0n0wall is 9600 bps. When I entered
that in HyperTerminal for the serial connection to the router, I finally got the non-garbled boot
messages in the HyperTerminal window.
pfSense rocks. Thanks for making it. I like the traffic shaper very much.
I REALLY know that these PRE…XXX-images aren't official Updates, nevertheless I'm interested in testing particular improvements as soon, as I can get them. And there are other users too, using these Images. So I think, it's ok to inform in this forum about running into problems with these images. Don't you think so?
I haven't posted to blame Scott, or any of the developers.
Alpha builds were labeled 0.xx
Beta builds are 1.0betaX (for example for beta versions of 1.0)
The files from the link I posted are more or less preview snapshots of the upcoming 1.0beta2.
I can recommend using these as they solve some ftp issues and have several other bugfixes.
Stability in my experience is no issue since around the 0.8x alphas and these were mostly freebsd related.
this thing blows my head off, it seams to me that the module or its configuration is not operational…. because it looks like the NAT part does the "bridging" instead.... I didnt use monowall, but do they have operational bridge function? caz i dont really want to dig in this for now... i just need to get my device to operate the way i need it ... and than do any improovements to the OS
Going 'back' to M0n0wall 1.21 (new release) enables this option (with some config.xml pathing).
But, anyway, in this case the ADSL device isn't a router, just a PPPOE bridge between phoneline and WAN network card, so I gave up the 'want to have' idear of having telnet/web access to this device. There isn't mutch to administer anyway.
I have a final choice of putting this modem in Router mode (my ISP doesn't bother) and give pfSense a static/fixed 'internal' IP on his WAN interface (or even use client DHCP for that mather) - this will mean that all firewall rules concerning WAN & outside NAT have to be duplicated in the modem/router - this means access is possible, and very very needed.
To make things short : don't need a gun if there are no rabbits to kill anyway :D
The basic file structure is very FreeBSDish. Expect to find files where they should normally live on a FreeBSD server. For instances, almost all FreeBSD packages install their configuration files to /usr/local/etc so if you're curious about how squid is configured you can look at /usr/local/etc/squid.conf and in there you'll find the cache_dir directive specifying where the squid cache is kept. You might reconsider using WinSCP (which is primarily used for transfering programs) and instead go with a full ssh client (like putty or SecureCRT) so that you can use very useful shell commands like find.
No basically means it is not supported. However pfSense is more or less a freebsd system so you might get things working if you know what you are doing but there probably is nobody who can help you with that kind of setup. I would go with the small/simple modemrouter in front and use that one as gateway as this saves you from reapplying your changes with each new update or updates breaking your changes.
I selected "Bridge with : none", so I used a seperate subnet.
The Lan subnet is 192.168.2.0/24
The WLan subnet is 192.168.3.0/24
All kinds of securities are off.
Firewall rule for WLan is allowed from any to any
XP client can get a correct IP (192.168.3.200), but no connection.
Check at interfaces>wan the option "Block private networks" is checked. Your WAN is a private IP range.
Btw, you don't need allow rules on WAN if all connections are opened from clients behind the pfsense to the outside world. you only need to open ports if you want to supply services to the public (you then need nat as well).
We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.
Subscribe to our Newsletter
Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.