Good to hear.

Thanks to all involved in creating this.

I am now able to cast to 'Google Home device/speaker groups' across VLANs, which wasn't previously possible.

@gertjan Thank you. Your advice worked for me as well.

Stopped dhcpd service

cd /var/dhcpd/var/db mv dhcpd.leases dhcpdleases.bak mv dhcpd.leases~ dhcpdleases~.bak

Started dhcpd service

@stephenw10

@stephenw10 said in SG-1100 Won’t Reboot on Upgrade - no internet access!:

Yeah I could see that. Thanks for the feedback, I'll pass that up the chain.

Much appreciated!

My new 1100 came in and is hooked up - no problem with that! I still have the troublesome one here, with pf+ on the USB stick. If there's anything I've encountered that it would help if I tested it, this is a good time to do that. I don't think there was anything outstanding, just the issue of pass-through and the subnet range. All the other issues that are unresolved could be explained if the internal storage is wonky.

@bonkas:

Has this issue been resolved?

I am also running a PPPoE Connection and trying to get Suricata configured but my logs are flooded with "SC_ERR_DATALINK_UNIMPLEMENTED" errors.

Suricata will not start automatically after a pfsense restart, is this by design or caused by these errors?

Regards,

No, not resolved and can't be really resolved until there is an upstream patch to Suricata so it recognizes the DLT_NULL data link type that FreeBSD assigns to PPPoE interfaces.  This is a problem in the Suricata binary that comes from upstream.

You can make it partially work by hand-editing the suricata.yaml file and telling it the interface is an Ethernet physical link (by using the real physical NIC driver name), but you will still get occasional errors due to the PPPoE frame headers since Suricata does not expect to see them on a physical Ethernet interface.  Also, I can't guarantee you that all the detection signatures will work properly.  In short, this kind of hack is unsupported and you would be on your own.

If you have a PPPoE interface and want IDS/IPS on it, then you should use Snort instead of Suricata.  The Snort binary fully supports the DLT_NULL data link type that FreeBSD uses.

Bill

@ethereal
I was referring to the Raspberry Pi network interface , if you chose that for running ISC-DHCP-Server.
Some might chose to get the cheaper "wireless only" Raspberry board.

/Bingo

@idiotzoo I'll give it a try! Always good to learn something new. All my local layer 3 is done in a stack of 3850s, firewall and NAT in pf. Literally just need a packet pusher that can do per-packet load sharing and failover.

@bmeeks True! This happens when one is "new" to pfsense.

Thank you.
Wi-Fi network seems to be working and WPA2 password authentication working.
See how it goes with some other mobiles when visitors test it during the week.

there are 3 LED related functions in the Check Point kernel ...

janus_pld_red_led_set (Bit 0x01) janus_pld_yellow_led_set (Bit 0x02) janus_pld_green_led_set (Bit 0x08)
they write to port 0x348 ... this seems to be the Altera MAX II chip (PLD) next to the diag display
btw: the PLD also monitors powersupply status
... and there are 4 LED related functions for 'Phalanx PLD' ... phalanx_pld_red_led_set phalanx_pld_yellow_led_set phalanx_pld_green_led_set phalanx_pld_disk_led_set *****
this might be the explanation for the 'missing' led on the frontpanel PCB (Bit 0x04 is assume)
hope this helps - sorry for the late reply ;)
/paketix

@stephenw10 Hi,
Upgrading fails in all cases I have tried if upgrading from 2.6.0
Hyper-V and 4 different PC hardware routers I have tried it on.
I have two separate threads I started on that yesterday.
in the dev section for 2.7.0 CE
It used to work awhile back but at some point along the way it no longer works.
You can't upgrade from 2.6.0 to 2.7.0 dev latest
Well- you can but it results in an unbootable kernel or driver immediate failure when it goes
to reboot.
But works fine if you install the 2.7.0 CE memstick and then update from that.
That is my work-around and I'm very happy that at least works.
2.7 openvpns setups stay up like they're supposed to :)

@barindervicky89 That could be phrased better, it actually means “auto Dashboard update check”

@mynameisozz said in Squid 3.5 ile HTTPS siteleri domain adiyla yasaklamak:

5223, 5228, 4244, 5242 ve 5222

Merhaba bu sorunu bende yaşıyorum. Nereden izin vermem gerekiyor. Kural olarak mı squid üzerinden mi?

@sub2010, stell den Limiter doch einfach mal auf 4 Mbit/s im Download und 1 Mbit/s im Upload, mach einen ganz normalen Speedtest auf speedtest.net und poste das Ergebnis hier. Sonst drehen wir uns noch zwei Wochen im Kreis.