No not really, in such a setup it would have no internet access even. Most soho router have no way to set a gateway on the lan.

So even if you forwarded traffic to it from the internet, it wouldn't be able to answer back, unless you also had setup a source nat on pfsense.

While sure as any device on your network, pc, iot device, etc. It's on your network and things on your network would be able to talk to it.. But not sure what sort of vulnerability you would be worried about in such a setup.

Correctly secure your wifi, wpa2 with good complex length psk and you should be good to go.

@the-prince-of-peckham said in Keystrokes for a blind install?:

I've made an order for a dongle

you only need it as long as you configure it, then you can forget about it

dongle = adapter 😉

@johnpoz thanks, its working now, I upgraded to latest ,and now I have package manager

Tried it just now and it generated/downloaded the .xml.

Its a mystery.

@cabledude When going from the 1100 to the 5100, just reassign WAN, LAN, and OPT to igb0....etc and you should be good.

@luisaraujo
😊

Does your restore really know what's inside the ISO ?

Can't you just be "nasty" , and rename the 2.4.5.iso to 2.4.4.iso, and do the restore ?

@gertjan

very cool :)

even better then going to the console

Thank you so much!

@caveat
remove the usb stick
there are other errors maybe try a clean install
or you can try with pfsense 2.5.0
https://forum.netgate.com/topic/154804/updating-to-2-4-5-release-p1-with-usb-wifi-adapter-rum-ralink-crashed

Hi,
No, I never did solve the display problem, fortunately I've only once needed it and just did a hard reset instead.
The Z90D7 is brilliant with pFsense. I have it set up with a TP-Link 5 port managed hub using one direct network connection to the Z90D7, four V-Lans (WAN + 3 x LANs) and two WiFi networks (Home + Guest) using the built in WiFi card. I use pFsense for all DHCP, DNS, firewall rules and schedules and it manages four Gigabit networks and a 75Mbps broadband connection with no hassle. The only thing I have noticed is the web DNS lookup seems to be slightly slower than using IpFire with four dedicated network ports on an HP microserver. My usage is not particularly demanding (home use) although I shift quite few video files around (editing etc.) and have a teenager with permanently attached mobile devices used mainly for gaming and social networking :-(
I have two Z90D7s, both bought from 'connie100779' on eBay with no problems.

Hope that helps
PaulM

@lucky06480 said in Fresh install does not give Internet access [RESOLVED]:

Thank you for the link. But unfortunately , all checks pass …

I finally found the solution:

Valid (tick) "Disable hardware checksum offload" resolved my problem"
in [[i]System / Advanced / Networking]

Probably the external (WAN) USB-ETHERNET is the problem source.
It is curious, because the same hardware work perfect on different computer (Raspberry Pi, netbook, DELL PC, …).

May be a driver bug ?

Best Regards,
Lucky

Came here and made an account just to rant about this issue. I spent a whole workday finding the problem, installed pfsense multiple times because i thought something is wrong with the image or some bug in recent release. And i am not using USB-ethernet but VIRTIO in Proxmox on Intel Hetzner-Server. I bet i am not the first stumbling across this problem.
Outbound NAT just simply stopped working when having this hardware checksum offloading not deactivated. It doesn't even throw an error anyway. Guys....

Editing the /conf/config.xml AND deleting the /tmp/config.cache file should work in general.. Then changes should show up in the webgui, and after applying the settings haproxy should just start running. For haproxy i dont see any issue why it wouldn't work.. (besides perhaps some reference to a certificate-ID that might not exist in the current config..) The haproxy config itself is pretty stand alone regarding all the other parts. (unlike some packages that generate certificates/config on first install already) imho the issue with restoring a complete backup file is that it go's trough a reboot which isn't always nice when just adding a package to a production system..

It's not really a bad assumption, I would also expect that to work in there. Sometimes you just hit a corner case and some odd incompatiobility.

Steve

@gertjan Thanks, that's all I need to know!

@jasonl I got it working...bounced my phone :)

I had a GEDODE board that refused to boot from USB , and made a CD. Now it "booted" , but i think i got the same error as above.

I don't have access to my notes right now , but i think the solution was to specify some kind of "Wait for disk ready" delay or retrys , in the CLI.

And then boot.

/Bingo