Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    1. Home
    2. Popular
    Log in to post
    • All Time
    • Day
    • Week
    • Month
    • All Topics
    • New Topics
    • Watched Topics
    • Unreplied Topics
    • All categories
    • A

      Guide to filtering web content (http and https) with pfsense 2.3

      Watching Ignoring Scheduled Pinned Locked Moved Documentation
      190
      1 Votes
      190 Posts
      236k Views
      N

      Wow! Thanks for this amazing guide!

    • W

      Intel Ethernet Controller I225-LM Support?

      Watching Ignoring Scheduled Pinned Locked Moved Hardware
      189
      0 Votes
      189 Posts
      85k Views
      L

      So I finally tested the qnap card on another machine and it is detected and properly working.
      Googling around I found another user who had no luck with this card on an Asus J serie mobo with Celeron CPU, so I can only think about some kind of conflict or incompatibility.
      Just my two cents to avoid someone else to loose time.

    • H

      {Complete} Timebased Rules

      Watching Ignoring Scheduled Pinned Locked Moved Completed Bounties
      187
      0 Votes
      187 Posts
      157k Views
      Y

      I'm marking this bounty as complete and locking the thread. All further suggestions/bugs should be reported under the firewall section.

    • Bob.DigB

      [solved] pfSense (2.6.0 & 22.01 ) is very slow on Hyper-V

      Watching Ignoring Scheduled Pinned Locked Moved Virtualization
      187
      3 Votes
      187 Posts
      124k Views
      ChrisLynchC

      @stephenw10 I can confirm just like @hendryjl that this happens VM to VM in the same host or across Hyper-V hosts. Disabling RSC in the vSwitch fixed the issue I was having with pfSense 2.6.0. I didn't want to update to 2.7_devel branch, and didn't want to go back to 2.5.2. Will wait for 2.7 CE to be officially released and test again.

    • W

      DNS Resolver

      Watching Ignoring Scheduled Pinned Locked Moved 2.2 Snapshot Feedback and Problems - RETIRED
      186
      0 Votes
      186 Posts
      149k Views
      W

      @doktornotor:

      @dennypage:

      What is the advantage of putting this in the "Advanced" section instead of the "Host Overrides" section?

      Ever tried to put hundreds/thousands entries in there (like, ad blocking)? :D

      Something like 45,618? Wouldn't it be nice to have a package that put's it all together? Ad blocking, is that really politically correct?  :P

      DNSResolver.JPG
      DNSResolver.JPG_thumb
      Alerts.JPG
      Alerts.JPG_thumb

    • W

      TP-Link Easy Smart Switch security question

      Watching Ignoring Scheduled Pinned Locked Moved Hardware
      185
      0 Votes
      185 Posts
      89k Views
      G

      Hello,

      I've just completed setting up VLANs using a TL-SG105e switch. Despite encountering issues with the switch management software being accessible on every port within each VLAN, I found a solution. I created an additional VLAN called "LINK" with a subnet mask of /30 (in my case, 192.168.10/30) on my Netgate 1100 router. I didn't set up DHCP for this VLAN. The Netgate router was assigned 192.168.10.1, and the switch was given 192.168.10.2.

      I'm not a network security expert, so I can't vouch for how secure this setup is, but at least it prevents unauthorized access to the switch admin panel. However, a drawback is that if you need to reconfigure something, you must temporarily expand the subnet mask to /29, assign an IP alias, make your changes, and then return to the "secure" settings.

    • N

      Major DNS Bug 23.01 with Quad9 on SSL

      Watching Ignoring Scheduled Pinned Locked Moved General pfSense Questions
      185
      3 Votes
      185 Posts
      185k Views
      jimpJ

      While we are likely to include the patch from that EN in future builds it isn't relevant to Unbound.

      They only use those sanitizers for debug/test builds and not for normal/production builds.

    • D

      WAN periodically Rebooting

      Watching Ignoring Scheduled Pinned Locked Moved General pfSense Questions
      184
      0 Votes
      184 Posts
      31k Views
      D

      @diyhouse: Trying to get log files...but web documentation does not seem to work,.. will have to contact Draytek tomorrow..

      adsl idle dti_on # Followed by sys reboot

      Does not give me the ability to pull logs in the diagnostic window

    • S

      PfSense with Gigabyte GA-J1900N-D3V

      Watching Ignoring Scheduled Pinned Locked Moved Hardware
      182
      0 Votes
      182 Posts
      156k Views
      J

      @RussellB:

      I think the PCI bus on the GA-J1900N-D3V is too limited for a gigabit connection.

      No surprise that PCI doesn't have the bandwidth for gigabit, never mind dual gigabit on the same bus!  But you still have that mini-PCIe socket which could prove useful using something like this: http://www.ebay.com/itm/Mini-PCI-E-to-PCI-E-Express-1X-USB-Riser-Card-with-FFC-Cable-Up-to-2-5Gpbs-/262289991565
      Combined with a cheap server-class dual Intel NIC which seem to be quite cheap on eBay these days, I'd bet your throughput would be significantly improved.

    • B

      [GUIA] Proxy HTTP/HTTPS + SquidGuard + sgerror.php + WPAD via DHCP e DNS 100%

      Watching Ignoring Scheduled Pinned Locked Moved Portuguese
      182
      0 Votes
      182 Posts
      60k Views
      D

      Fiz o procedimento mas quando é para aparecer o wpad nos package manager, nada.

    • R

      OpenVPN PSK: Site-to-Site инструкция для обсуждения

      Watching Ignoring Scheduled Pinned Locked Moved Russian
      180
      0 Votes
      180 Posts
      102k Views
      P

      @werter said in OpenVPN PSK: Site-to-Site инструкция для обсуждения:

      Это "неочевидное" правило и сейчас более чем очевидно в случае, если на сервере неск-ко ВАНов и нужно дать доступ и в сети впн-клиентов и выпустить через Failover_GW_Group в Инет.

      Да. Недавно пришлось вспомнить. Стоит задействовать группу шлюзов для выхода в интернет и без этого правила сеть за клиентом Open VPN становится недоступна.

    • S

      PFSense Ghost Hot Spot Modülü Kurulumu ve İlk Ayarlar

      Watching Ignoring Scheduled Pinned Locked Moved Turkish
      180
      0 Votes
      180 Posts
      112k Views
      E

      @fatboy:

      @micromedia:

      Farklı SMS gönderme servisleri ile sms göndermeyi deneyen oldu mu? Örn. Posta güvercini.
      captiveportal-sms.php dosyasında gönderme işlemi yapıldığını görüyorum. Ama yeterli Php/xml vs. bilgim olmadığından işin içinden çıkamadım.

      Konuyu hortlatmak gibi olacak ama birkaç düzenleme ile entegre etmeyi başardım. Dilerseniz kodları paylaşabilirim.

      Merhaba, benimle paylaşabilir misiniz?
      Saygılarımla

    • _

      DNSSEC on pfSense

      Watching Ignoring Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
      178
      0 Votes
      178 Posts
      73k Views
      W

      @wagonza:

      @johnpoz:

      OK so I updated my snap, and now its showing my domain overrides.

      Domain overrides

      stub-zone:
      name: "test.ip"
      stub-addr: 192.168.1.4
      stub-prime: no

      But I agree its not working like it should.. So there is a server at 192.168.1.4 running bind with a zone for test.ip

      see – if I query it directly authoritative for the host3 record I created.

      ; <<>> DiG 9.7.2-P3 <<>> @192.168.1.4 host3.test.ip
      ; (1 server found)
      ;; global options: +cmd
      ;; Got answer:
      ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15037
      ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1

      ;; QUESTION SECTION:
      ;host3.test.ip.                 IN      A

      ;; ANSWER SECTION:
      host3.test.ip.          21600   IN      A       192.168.1.101

      ;; AUTHORITY SECTION:
      test.ip.                21600   IN      NS      p4-28g.local.lan.

      ;; ADDITIONAL SECTION:
      p4-28g.local.lan.       21600   IN      A       192.168.1.4

      ;; Query time: 5 msec
      ;; SERVER: 192.168.1.4#53(192.168.1.4)
      ;; WHEN: Mon Jan 10 23:32:39 2011
      ;; MSG SIZE  rcvd: 93

      Now if I ask the pfsense box that has an override set to ask 192.168.1.4 for the domain test.ip it also gives me back servfail

      ; <<>> DiG 9.7.2-P3 <<>> @192.168.1.253 host3.test.ip
      ; (1 server found)
      ;; global options: +cmd
      ;; Got answer:
      ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 49426
      ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

      ;; QUESTION SECTION:
      ;host3.test.ip.                 IN      A

      ;; Query time: 11 msec
      ;; SERVER: 192.168.1.253#53(192.168.1.253)
      ;; WHEN: Mon Jan 10 23:40:03 2011
      ;; MSG SIZE  rcvd: 31

      So seems domain override is not working??

      Currently running
      2.0-BETA5 (i386)
      built on Mon Jan 10 13:14:45 EST 2011

      Ok I managed to get time to simulate this. I see the answer is returned however Unbound is still returning a SERVFAIL. Will investigate further as to why… :-\

      Ok sorted - fix committed. Reinstall package and let me know how it goes.

      thx

    • C

      Unbound seems to be restarting frequently

      Watching Ignoring Scheduled Pinned Locked Moved DHCP and DNS
      178
      0 Votes
      178 Posts
      84k Views
      luckman212L

      Nothing to add right now, other than: count me in as someone who hopes this gets addressed. The closest we've come appears to still be this draft PR from 2+ years ago.

      I personally don't use the "register DHCP leases" option but most customers expect stuff like "a device named LAPTOP_3f7ea4 connects to the network, then try to connect to smb://LAPTOP_3f7ea4 should work"...

    • A

      I made a WireGuard package for pfSense

      Watching Ignoring Scheduled Pinned Locked Moved pfSense Packages
      178
      18 Votes
      178 Posts
      118k Views
      J

      how can i manually remove this wireguard go version on my 2.4.5 system.I want to update my firewall and use the latest wireguard package..

    • XianderX

      be honest are you worried about corona

      Watching Ignoring Scheduled Pinned Locked Moved Off-Topic & Non-Support Discussion
      178
      0 Votes
      178 Posts
      56k Views
      O

      @Lococent said in be honest are you worried about corona:

      I've done the same. Let me tell my story. I have lost my job and the only source of income, and trust me, I've been extremely worried about it. But soon I learned how to use video editor and started working as a freelancer on Upwork. Soon I started earning very good money from home just with video editing skills. I am happy now that I lost my boring job that took all my time. Now I have more free time and money

      That is great, I like the fact that people now can work from their computers and not being linked anywhere

    • R

      Updated Realtek NIC drivers missing in PfSense 2.6.0

      Watching Ignoring Scheduled Pinned Locked Moved Hardware
      178
      3 Votes
      178 Posts
      106k Views
      stephenw10S

      At the command line run:

      echo 'if_re_load="YES"' >> /boot/loader.conf.local echo 'if_re_name="/boot/modules/if_re.ko"' >> /boot/loader.conf.local
    • R

      DNS_PROBE_FINISHED_NXDOMAIN sporadically for anywhere from 30secs to 10min. works flawlessly at all other times

      Watching Ignoring Scheduled Pinned Locked Moved DHCP and DNS
      176
      0 Votes
      176 Posts
      34k Views
      R

      Edit: Just heard back from VSSL. known issue with Google Home/Speaker Groups. Sorry about that!

      @johnpoz @Gertjan @SteveITS @bmeeks Hey all! sorry to necromance an old thread but I ran into a possibly related issue and just wanted to see if anyone that was up to speed had any thoughts.

      I've noticed that my VSSL (zoned audio like sonos) speakers show as offline in the Google Home app. But i'm able to stream spotify to the individual zones no problem. I see all the zones/speakers in the proprietary VSSL App and there are no errors on the physical VSSL units. When I pull up the Spotify "select your device" menu to choose speakers, I see all the zones AND the Speaker Groups (multiple zones, that I define in the Google Home), BUT if I select a Speaker Group it spins forever saying it's connecting and never does. Each zone has a static IP on the IoT VLAN and playing to Speaker Groups def worked before the do-ip6:no option was added. Does anyone know if Google Speaker Groups use ip6? Any ideas how to fix this?

      Full disclosure: It's obviously been a while since I used the zoned audio, so it's possible something else is causing the issue but I'm somewhat convinced that VSSL is related to the DNS_PROBE_FINISHED_NXDOMAIN exceeded maximum number of sends error. It's a wild hunch, but I was having an issue much earlier where turning on the VSSL's would boot a bunch of devices off the DHCP server (still operating but no way to access them over IP). It was actually one of the motivations for segmenting the networks in the first place. Seems like too many coincidences.....

    • D

      SquidGuard package TEST

      Watching Ignoring Scheduled Pinned Locked Moved Russian
      175
      0 Votes
      175 Posts
      153k Views
      D

      @KARLAGIN:

      19.03.2008 11:56:14 : sg_reconfigure_user_db: STOPPED; User destinations list empty

      What is mean?

      In Destinations page you have Empty item(s)
      One from domains, expressions, urls must be defined.

    • V

      Grafana Dashboard using Telegraf with additional plugins

      Watching Ignoring Scheduled Pinned Locked Moved pfSense Packages
      173
      11 Votes
      173 Posts
      83k Views
      B

      @thimplicity You should see this being mentioned above
      https://forum.netgate.com/post/992280