Installing on a Firebox X700
-
Hmm,
That's odd. It could be that pfSense.org was down for maintenance.
The file required to generate the package list is: http://www.pfsense.org/packages/pkg_config.8.xml
If you can see the list but can't install the package then maybe it was updating at the time.Can you ping any external address from the pfSense box?
I take it you have successfully accessed the web GUI? ;)
Steve
-
yes i pinged google and other outside ips and all my lan ips but could not get the install package to work
-
Can you see the list of available packages?
What about the firmware upgrade?
If you go to System: Firmware: Auto Update:
does it show this:Downloading new version information...done Obtaining current version information...done You are on the latest version.Steve
-
ok i got the packages to install but what setting do i choose?
-
Ok, the lcdproc-dev package is still being worked on, I agree it's somewhat confusing at present.
Go to the config page, Services: LCDproc:, on the server tab select:
Enable LCDproc at startup: check this
Com Port: parallel port 1
Display Size: 2 rows 20 columns (I don't think this actually matters for the firebox but this is the correct value)
Driver : Watchguard Firebox with SDEC
Refresh Frequency: 5s (the display is slow to update so 5 seconds is reasonable)Click the 'Save' button.
On the screens tab just select some screens you want. Try it with one or two to start off with.
Click the 'Save' button.Now goto: Status: Services: click the 'start' button next to lcdproc.
You should now see the display working.Steve
-
Steve thanks!!!
Next question!! ok so i have a block of five static IPS from my isp, one of them was on the wan side of there router so i took that IP and put on the WAN side of the FB now i can get out to the internet and ping google.com and so forth. When i was using there router which had wifi built in i pluged a cable into a port and was able to use 192.168.1.0 block on my LAN. Im trying to do that now and cant seem to figure out how! Can you point me in the right direction? The static IPS were public if that helps at all!!!
Thanks for all the help!!!!
-
Next question!!
:D
Hmm, I'm not sure I understand what you're asking.
Have you replaced the ISP supplied router entirely with the firebox?
In it's default config pfSense uses 192.168.1.1/24 for it's LAN interface and has dhcp enabled. You can just plug in a client and it will receive an IP and start working.
The firebox has 6 interfaces so you still have four left after assigning WAN and LAN. If you haven't assigned them they won't do anything. You can configure them in various ways to meet your requirements. For example, you can bridge them with LAN so that you effectively have a 5 port switch all on the LAN interface. You can assign each to its own interface so you can set firewall rules individually for maximum control. Any combination of the two.Do you need to use more of your public IPs?
Steve
-
Yes im trying tpo replace the whole ISP and run my static and my 192.168.1 on my lan
-
Ok, well what exactly are you struggling with?
How have you setup your different interfaces so far?What are you hoping to achieve as the final network setup?
Steve
-
my wan has a static of 108 X X X and can go up to 110 but i have a staic and my email server so it can be accessed publicly everything else has a 192 x x x address beside that one email server
-
ok i want to have my wan set to the static and then be able to plug the server in using another 108 x x x address and then plug a switch to connect all the lan devices like other servers and computers and so forth . Then be able to set up a vpn to access stuff and add another public email server!!!!
-
Ah ok.
You can do this in the traditional way using port forwarding as you would have with your old router.
http://doc.pfsense.org/index.php/How_can_I_forward_ports_with_pfSense%3FOr, because you have 5 interfaces available you can use a public IP on one of those directly. However this is far more complex.
You cannot have public and private IPs on the same interface:
http://doc.pfsense.org/index.php/Can_I_have_public_and_private_IPs_on_my_LAN_interface%3FI recommend you use port forwarding for now and get more pfSense experience before attempting a complex configuration.
Steve
-
Steve,
Im still having a hell of a time trying to get this to work!! sorry im a newbeeOK so all i want to do is configure this pfsense box this what im trying to do!
PFSENSE BOX WITH WAN PUBLIC IP>FIREBOX PORT 2 WITH ANOTHER PUBLIC STATIC FOR EMAIL SERVER/WEBSERVER>THEN A SWITCH FOR THE LAN THAT WILL HAVE 4 OTHER SERVERS RUNNING, WIFI, PRINTER AND THE STUFF I USE ON THE WAN.
I'm just sorts of confused is this how you would do it????
IF not let me know like i said i was using my ISP given router but go sick of all the problems this is something new for me~~~
Thanks for helping me out!!!!
-
Ok, so you want to have one of your public IPs for the firebox and another for your mail server. This is fairly common.
It's possible to pass the public IP to your mail server directly but I've never tried that. You can always change things later.
This is what I would do.Enable and assign an extra interface on the firebox. E.g. re2 as OPT1. Rename it as LAN2 (entirely optional).
Set it as static IP, say 192.168.2.1/24, and enable a DHCP server on it.
Add a firewall rule on the new interface to allow traffic out from it to the internet.
Connect your mail/web server to LAN2 and ensure that in receives an IP and you can access it.Now in order to assign a different public IP to it you need to add a virtual IP to the WAN interface.
Go to Firewall: Virtual IPs: and add a new one with type 'IP alias' on your WAN interface. Give it one of your public IP addresses.Now you can either add port forwarding rules to your server if you just need a few services or use 1:1 NAT for all services. Use your new virtual IP as the destination.
As I write this I realise I'm a bit vague on the details here. You may want to search the forum for other explanations.
Steve
-
Steve ,
Still cant get a ip on the lan, from the new lan 2 i can ping the wan but cant get a ip when i plug in a device
-
You need to leave the gateway as 'none' in the interface config (gateways are only used on WAN interfaces).
Then setup a dhcp server on the interface in Services: DHCP Server: LAN2.Steve
-
Ok i just tried what ou said took all the gateways off and reconfigured the dhcp server on LAN2 and still nothing? what should i do give up? ???
-
What else could i be missing?
-
Are you getting a phsical connection on the LAN2 interface?(the leds lighting up when you plug in the client). I only ask because on my box I had to put a switch in between the firebox and any client computers. Hard to beleive but I think the X-Core may be old enough that it doesn't has auto MDIX.
Dont give up now after 5 pages! :D
Steve
-
this is weird to me so i tried using 192.168.2.0 for the lan it didnt work and used the 192.168.1.1 and i can plug stuff in and it works do you know why? also by using the 192.168.1.0 range when i install wifi is this gonna cause problems?
