Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Installing on a Firebox X700

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    108 Posts 7 Posters 45.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • stephenw10S Offline
      stephenw10 Netgate Administrator
      last edited by

      You have to add firewall rules (or modify the existing rules) to allow access between LANs.
      For example the default rule on the LAN interface is Source: LAN net and Destination: any. This destination, any, includes all your other subnets on other interfaces so traffic can reach them. This default rule doesn't exist on any other interfaces so you have to add it.

      Steve

      1 Reply Last reply Reply Quote 0
      • G Offline
        GOBIGRED
        last edited by

        so i need to make a rule saying destination any and source any? also what are some good steps to secure pfsense and my network?

        1 Reply Last reply Reply Quote 0
        • stephenw10S Offline
          stephenw10 Netgate Administrator
          last edited by

          pfSense is secure by default.  ;)
          In order to make it as secure as possible you should use rules that only open ports and interfaces you need. For example you should use, source: LANnet (or equivalent interface), in your rules to restrict what machines are allowed out.
          You can restrict this further but only allowing ports you need, http, ssh, pop3 etc. Though it's easy to overlook something and end up blocking your own traffic.

          Steve

          1 Reply Last reply Reply Quote 0
          • G Offline
            GOBIGRED
            last edited by

            just got a e series firebox upon receiving it doing research on pfsense and it said special tools required to get pfsense working is that correct?

            1 Reply Last reply Reply Quote 0
            • stephenw10S Offline
              stephenw10 Netgate Administrator
              last edited by

              Yes you need to do a workaround in the bios to make it boot a CF card larger than 512MB. In order to do that you can either make up cables to connect a monitor and keyboard or reflash the bios with one that allows console redirect.
              See:
              http://forum.pfsense.org/index.php/topic,20095.msg190456.html#msg190456

              Which e series model do you have?

              Steve

              1 Reply Last reply Reply Quote 0
              • G Offline
                GOBIGRED
                last edited by

                i got x750e 1250e and some peak models. I plan on listing the x750e since i got a lot for a great price.

                1 Reply Last reply Reply Quote 0
                • stephenw10S Offline
                  stephenw10 Netgate Administrator
                  last edited by

                  Nice!  :)
                  The peak-e models are actually less good for pfSense as the CPU is not correctly picked up by the speedstep driver and hence they run much hotter. The Core-e has a Celeron which doesn't have speedstep but can be replaced by a pentium-m for very little.

                  Steve

                  1 Reply Last reply Reply Quote 0
                  • N Offline
                    Nico621
                    last edited by

                    Hello,

                    Does anyone know what 512 sticks of ram will work in these boxes, some people say they get it to work and others don't. I am currently looking at the ones on newegg and see they have three brands to choose from and they're all double sided dimms, any suggestions or specific models that are known to work?

                    Thanks,
                    Nico

                    1 Reply Last reply Reply Quote 0
                    • stephenw10S Offline
                      stephenw10 Netgate Administrator
                      last edited by

                      You mean the X700 series?
                      They seem to be very fussy, so much so that I'm just sticking with 256MB.  ::)
                      The best person to comment on this would be Brak since he has upgraded many of these boxes.

                      Steve

                      1 Reply Last reply Reply Quote 0
                      • S Offline
                        Sleeps
                        last edited by

                        @Nico621:

                        Hello,

                        Does anyone know what 512 sticks of ram will work in these boxes, some people say they get it to work and others don't. I am currently looking at the ones on newegg and see they have three brands to choose from and they're all double sided dimms, any suggestions or specific models that are known to work?

                        Thanks,
                        Nico

                        Purchased this memory module "Kingston KVR133X64C3/512 512mb SDRAM 133 MHz 168pin" from ebay and it works fine in the X700

                        Sleeps

                        1 Reply Last reply Reply Quote 0
                        • G Offline
                          GOBIGRED
                          last edited by

                          Trying to get another pfsense box up and running but cant get it to install say "Found compressed image file
                          Write error after 0 bytes (8192)." tried 3 diffrent files anyone know whats wrong?

                          1 Reply Last reply Reply Quote 0
                          • stephenw10S Offline
                            stephenw10 Netgate Administrator
                            last edited by

                            Where are you seeing that error? When writing the image to the CF card? Using what?

                            Steve

                            1 Reply Last reply Reply Quote 0
                            • G Offline
                              GOBIGRED
                              last edited by

                              Yes

                              1 Reply Last reply Reply Quote 0
                              • G Offline
                                GOBIGRED
                                last edited by

                                tried physdiskwrite

                                1 Reply Last reply Reply Quote 0
                                • stephenw10S Offline
                                  stephenw10 Netgate Administrator
                                  last edited by

                                  It can't write to the card for some reason.
                                  The card is read only? The CF adapter is faulty or not installed correctly? The card is faulty? Some other reason….
                                  You could try using Win32diskimager instead: https://launchpad.net/win32-image-writer

                                  Steve

                                  1 Reply Last reply Reply Quote 0
                                  • G Offline
                                    GOBIGRED
                                    last edited by

                                    Would you be able to help me nat (Newbie here trying to do a 1:1 NAT and having trouble. All I am trying to do is NAT a single host to one of my 10 public IPS and cant seem to get it to work. I am able to RDP from and diffrent lan but cant see it outside the lan or even get to the internet from that machine but can RDP into it. Any help would be great

                                    Thanks

                                    1 Reply Last reply Reply Quote 0
                                    • W Offline
                                      wallabybob
                                      last edited by

                                      @GOBIGRED:

                                      Would you be able to help me nat (Newbie here trying to do a 1:1 NAT and having trouble.

                                      This doen't see to have anything to do with pfSense installation or Fireboxes so please start a new topic in a more appropriate forum (perhaps General)/

                                      In the new post it would be helpful to add some configuration information and clarify a few points:
                                      @GOBIGRED:

                                      I am able to RDP from and diffrent lan but cant see it outside the lan

                                      This seems contradictory: how can you RDP into it a different lan if it can't be seen outside tha lan? (Guess it depends on which LAN you are talking about. A diagram identifying the differents lans would be helpful.)

                                      @GOBIGRED:

                                      or even get to the internet from that machine but can RDP into it.

                                      Is a firewall rule on the adjacent pfSense interface could be blocking internet access. Is there a relevant entry in the firewall log?

                                      1 Reply Last reply Reply Quote 0
                                      • G Offline
                                        GOBIGRED
                                        last edited by

                                        Sorry about that i posted int he wrong section

                                        Now on tho the nat 1:1 nat

                                        public address 106.57.4.107
                                        Lan host wanting to be seen public 10.8.16.100

                                        From another lan in my network i can access the 10.8.16.100 (the server from a rdp connection)
                                        but cant see it public
                                        Hope this helps

                                        nat.PNG
                                        nat.PNG_thumb

                                        1 Reply Last reply Reply Quote 0
                                        • stephenw10S Offline
                                          stephenw10 Netgate Administrator
                                          last edited by

                                          Did you setup a virtual IP on your WAN for the external address?

                                          Like Wallabybob said, this would be better in a new thread.

                                          Steve

                                          1 Reply Last reply Reply Quote 0
                                          • 2 Offline
                                            22213w
                                            last edited by

                                            @stephenw10:

                                            Nice!  :)
                                            The peak-e models are actually less good for pfSense as the CPU is not correctly picked up by the speedstep driver and hence they run much hotter. The Core-e has a Celeron which doesn't have speedstep but can be replaced by a pentium-m for very little.

                                            Steve

                                            Hi
                                            My First Post… @stephenw10 I just purchased a e750x and you are say that the Celeron should be replaced with the Pentium-m. I don't know much about this but can you post which pentium-m model number so I can purchase it on ebay. I would like to have the speedstep feature like you mention....

                                            thanks in advance

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.