@Gertjan I have two systems both 2.5-dev version . second system is up to date always. I keep an eyes on all updates and bug fixes (redmine) everyday i am testing both system in different ways.

second system i didn't apply any patch and people can reuse voucher on other device so they get disconnected from old

Aug 3 13:00:03 logportalauth 38072 Zone: campco - CONCURRENT LOGIN - TERMINATING OLD SESSION: 9478394944, 7c:78:7e:4d:1c:43, 10.10.21.188

Moving soon to FreeRADIUS base solution which has no issue with concurrent logins. I have already done initial testing in production environment.

@marcg Thank you for the tip. When I get some free time, I will check out the auto generated interface addresses prefix's.

@Cannondale Yeah, you're right the other one is an ET card. It adds support for SR-IOV and IPSec offload over VT card.

@georgelza said in pfSense not enabling port:

@Gblenn

Yes... the VM is started via the data centre and that won't allow you to start it twice. You will need to clone it and give it new name and IP.

I'd prefer to have the VM Images on local mirror via Ceph, gives me speed and Ceph will make sure there is a copy on another node.

Would like someone else to chirp in here... confirm this works with Proxmox. know other Hypervisors allow this.

G

Yes that is my understanding as well, although I have not tried it. And I totally agree that using the local nvme's will give you way more speed.

I still suggest creating a PBS VM (Proxmox Backup Server) and perhaps map e.g. a disk on your TrueNAS for that. I've had a few instanses where I have wanted to "go back in time" and restore something from a few weeks back even. Typically because I messed up and didn't realize it until some time later.

other than the official proxmox forum which does not seem to have much activity, anyone aware of a active/responsive proxmox community...
otherwise wondering if we can get the admin's here to create a proxmox section ;)

There is a virtualization section already, with plenty Proxmox activity...
https://forum.netgate.com/category/33/virtualization

Can we see a screenshot of the exact settings you're trying to enter in the package?

Is it possible your browser is auto-filling hidden fields?

Steve

This 2.4.5-p1 version also has this problem

Ah it dawns on me there is one thing I should mention so someone else doesn't get caught.

ARP cache played a huge part in this and an accidentally left over rule in one of the firewalls as well.

The firewalls were basically competing to be the gateway so things would get weird like a vm would boot up with a gw then a while later change to another.

Once ARP cleared up, everything was fine.

@BBcan177:

Hi Ben,

I already have request on Redmine to add this functionality for VirusTotal and other links.

https://forum.pfsense.org/index.php?topic=73406.msg400956#msg400956

https://redmine.pfsense.org/issues/3508#change-13575

You can manually edit that file for now.

Perfect. And now I also know where the issues log resides. Thanks.

Ben

@thebear Ah, the order was incorrect! Could have known that :(. Changed the order and will do some further testing; let you know!

Hi all,
I do not know much about pfsense command line.
Wondering if someone can help me step by step ?
Do I need command line access to the router or I can use the web access to the router ?
Can I use the command prompt section ?
So I have to create 2 executable files name notify.sh and disconnect.sh ? How I am going to create these files ?
I think I got the part to set the permissions. How can I set the permissions ? by using Execute Shell Command section on the web ?
What will be in those two files ?
So same code in both files ?

@Armstrong said in Email Notification - OpenVPN Client Connect (Common Name):

#!/usr/local/bin/php -q
<?php
require_once("/etc/inc/notices.inc");
$local_connect_value = " user_name: " . getenv('common_name') . " vpn_client_ip: " . getenv('ifconfig_pool_remote_ip') . " from: " . getenv('trusted_ip') . " on " . date('F j, Y, g:i a');
if ( strrchr (FILE , 'disconnect') ) {
$local_connect_value .= ", duration : " . getenv('time_duration') . " seconds, received : " . getenv('bytes_received') . " bytes, send : " . getenv('bytes_sent') ." bytes. DISCONNECTED.";
}
notify_all_remote($local_connect_value);
?>

Am I coping from <?php or from #!/user ?
If it is from <?php then what I have to do with first line #!/usr/local/bin/php -q

Is it possible some one can help me step by step and also tell me which part of the webconfigurator I need to use to do all this please ?

You should be able to boot pfSense fairly easily, you just end up with only 3 working ports; the two SFP ports and the management port. It would be nice to have the other 24 ports accessible. 😉
Did you reach that point?

Steve

@MikeV7896 Just want to say thank you,followed your settings and it works.

@dennypage said in Chrony, PTP, Network Time Security (NTS, NTPsec) to replace unsecure/old NTP (ntpd):

here: https://fc-ntp-100.toimii.fi.

Cool...thank you for sharing.

In the end, the point is to have two new things;

1: varnish server to handle caching

2: fixing the haproxy configuration so that it's actually load balancing those web servers.
That was an interesting find. I don't know how pfsense was sending traffic to the web servers without haproxy actually working.
Maybe it automatically round robins since the servers are listed in an alias?