PFSENSE on TrendMicro network virus wall 1200?
-
Please post the output of the pfSense shell command ifconfig -a
When you run a ping on pfSense do the activity LEDs on the Netgear switch register anything? Does a trace (tcpdump) on the ping target show any incoming frames?
If you switch roles (so the pfSense box becomes the ping target) does a trace of pfSense show any incoming frames?
-
Please post the output of the pfSense shell command ifconfig -a
When you run a ping on pfSense do the activity LEDs on the Netgear switch register anything? Does a trace (tcpdump) on the ping target show any incoming frames?
If you switch roles (so the pfSense box becomes the ping target) does a trace of pfSense show any incoming frames?
fxp0: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=8 <vlan_mtu>ether 00:d0:c9:95:0d:c3 inet6 fe80::2d0:c9ff:fe95:dc3%fxp0 prefixlen 64 scopeid 0x1 media: Ethernet autoselect (none) status: no carrier fxp1: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=9 <rxcsum,vlan_mtu>ether 00:d0:c9:95:0d:c1 inet 192.168.200.26 netmask 0xffffff00 broadcast 192.168.200.255 inet6 fe80::2d0:c9ff:fe95:dc1%fxp1 prefixlen 64 scopeid 0x2 media: Ethernet autoselect (100baseTX <full-duplex>) status: active fxp2: flags=8802 <broadcast,simplex,multicast>metric 0 mtu 1500 options=9 <rxcsum,vlan_mtu>ether 00:d0:c9:95:0d:c2 media: Ethernet autoselect (none) status: no carrier enc0: flags=0<> metric 0 mtu 1536 lo0: flags=8049 <up,loopback,running,multicast>metric 0 mtu 16384 inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 pfsync0: flags=41 <up,running>metric 0 mtu 1460 pfsync: syncdev: lo0 syncpeer: 224.0.0.240 maxupd: 128 pflog0: flags=100 <promisc>metric 0 mtu 33204</promisc></up,running></up,loopback,running,multicast></rxcsum,vlan_mtu></broadcast,simplex,multicast></full-duplex></rxcsum,vlan_mtu></up,broadcast,running,simplex,multicast></vlan_mtu></up,broadcast,running,simplex,multicast>
also there is no record of pings on either machine i try and ping, and there is no trace on pfsense etc
-
ok forget that last post my wireshark program foooked up on me, please see the screen shot, it seems that the device is sending pings out and my computer is trying to reply to them but my computer can not ping nor access the web interface…. both machines say 100% of packets lost..... im confuzzeld.... i have also tried the same thing from other computers and the same thing hapens i get pings showing in wireshark but i can not ping the device ...... strange................ and the other two interfaces are still not working either. very odd.....
-
And you are sure the settings on the switch are set to auto for NIC speed???
-
And you are sure the settings on the switch are set to auto for NIC speed???
yep, i have tried this is 2 switches Netgear, Dell and the same thing happens…..
-
I don't remember the exact details but there was a bug in the fxp driver such that it erroneously marked some fxps as having some type of hardware checksum capability. I suggest you try disabling hardware checksum offload (in web GUI: System -> Advanced, scroll down to Hardware Options and check the box Disable Hardware Checksum Offloading then click the Save button and try again.
-
I don't remember the exact details but there was a bug in the fxp driver such that it erroneously marked some fxps as having some type of hardware checksum capability. I suggest you try disabling hardware checksum offload (in web GUI: System -> Advanced, scroll down to Hardware Options and check the box Disable Hardware Checksum Offloading then click the Save button and try again.
thats good advice, but how am i ment to do this when i can not access the gui ?
-
thats good advice, but how am i ment to do this when i can not access the gui ?
Sorry, senior's moment :)
At the pfSense shell prompt issue the command ifconfig fxp1 -rxcsum (assuming you are still using fxp1).
You would need ifconfig fxp1 -rxcsum -txcsum -tso to turn off all checksum capablities but the ifconfig output you displayed earlier says only rxcsum is enabled so the first command should be sufficient. -
thats good advice, but how am i ment to do this when i can not access the gui ?
Sorry, senior's moment :)
At the pfSense shell prompt issue the command ifconfig fxp1 -rxcsum (assuming you are still using fxp1).
You would need ifconfig fxp1 -rxcsum -txcsum -tso to turn off all checksum capablities but the ifconfig output you displayed earlier says only rxcsum is enabled so the first command should be sufficient.Many Thanks for this, as soon as i typed in the command i got pings….. however the other 2 interfaces are still not working ..... i only have 1 NIC working..... what else do you suggest?
-
I downloaded the manual and had a quick scan. Perhaps the jumpers for the onboard LAN controller power supply are missing or don't jumper.
It appears the PCI slot is occupied by a dual port card. I'm guessing one port on that card is fxp1. Perhaps the other port is wired with the opposite polarity and you should try a cross over cable (though the switch should automatically adjust if its reasonably modern).
Perhaps the two ports that don't currently work are terminally broken. You might be able to purchase an equivalent dual port card on eBay. The board supposedly has two USB ports. You could use one for a NIC.
A further scan of the manual suggests the onboard ethernet is supposedly a Realtek 8139. Maybe the PCI slot has a three port card and the onboard Ethernet is disabled in the BIOS.
Update: You said this was a PCM-9578 but the web link pointed to PCM-9579. Significant?
-
i have verified the network ports work with the oringial trendmicro antivirus CF card also the board is correct just its not listed on there site for some reason so i choose the nearest board on there site etc.
i will look at the power settings for the ports later as im at work at the mo..
many thanks for your help
-
At the pfSense shell prompt issue the command ifconfig fxp1 -rxcsum (assuming you are still using fxp1).
Many Thanks for this, as soon as i typed in the command i got pings….. however the other 2 interfaces are still not working ....
Dumb question: did you turn off checksum offloading for the other IFs as well? By console as you did for FXP1 or through the now available GUI?
The datasheet following your link says it only has one Realtek NIC. Where are those Intel's connected to? Onboard or PCIIs this more like the board you have: http://support.advantech.com.tw/support/DownloadSearchByProduct.aspx?keyword=PCM-9578
This would have 4 onboard NICs, though… -
i have run the command on the other interfaces and it did not work, the other nics are on the board not on a pci card, there is no pci slot on the board, there are only 3 nics as the pic i hae linked to shows.
http://www.shout.com.hk/trend/eps/Network%20VirusWall%20photo%20-%20front.jpg
the one of the far right is the only working port in PFsense, however in the trendmicro software all 3 interfaces work…..
-
Hi, i have not been very successful with this, maybe someone with a bit more experiance can do this, any way i am selling the box for £60, i will put it on ebay shortly, but want to offer people on here first grabs, it will be on ebay from monday on wards.
-
I don't know if you're still working on this, but this seems similar behavior to my Nokia ip530. I needed to enable "device polling" in the advanced setup (while the HDD was still in the host machine used to load pfSense). Otherwise, ifconfig would show two NICs as active, but would not have an IP or be pingable and the other 2 NICs wouldn't come up at all. YMMV.
edit: these were Intel 21143 NICs.