Pfsense + untangle ?
-
I setup my pfsense box behind my untangle box, I am using pfsense as firewall, and router and the untangle as web filtering etc etc. Here is my question,
connected clients disconnecting very frequently sometimes every 1 or two minutes,
DISCONNECTING : nothing like cable unplugged or wireless connection dropped.
lets say I am on wireless laptop, I am browsing, when I try an address or a page, it waits, and fails, If I re-try same page or address in some couple seconds it succeeds. sometimes no problems,
on wired computers same thing it comes and goes,
here is my partial log with dhcp
Jan 18 12:38:28 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:40:25 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:40:25 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:42:12 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:42:12 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:44:26 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:44:26 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:46:27 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:46:27 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:47:29 dhcpd: Wrote 9 leases to leases file.
Jan 18 12:47:29 dhcpd: DHCPREQUEST for 192.168.0.243 from 00:22 (WNR2000) via em0
Jan 18 12:47:29 dhcpd: DHCPACK on 192.168.0.243 to b7:d1 (WNR2000) via em0
Jan 18 12:48:28 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:48:28 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:50:29 dhcpd: DHCPINFORM from 192.168.0.244 via em0
Jan 18 12:50:29 dhcpd: DHCPACK to 192.168.0.244 () via em0
Jan 18 12:52:29 dhcpd: DHCPINFORM from 192.168.0.244 via em00.244 is my untangle box, and this is a long list with repeating lines. What exactly this means? Also my pfsense box is quite powerful for the purpose, before I used untangle with no problems, after adding pfsense I started experiencing such problems. Please advice.
-
Have you set a 4 minute least on your DHCP server?
-
sure, sometimes its ok, but sometimes … it drops like crazy ... but i have multiple clients on dhcp. when the connection is gone or the yellow warning sign comes on wifi bars I can rdp into wired client and there is no internet ther as well.
-
The log reports the untangle box is attempting to renew its DHCP lease every two minutes. This could be because it thinks its DHCP lease time is 4 minutes or because its restarting or resetting every two minutes.
However 192.168.0.243 apparently doesn't think its lease time is 4 minutes - perhaps its talking to a different DHCP server.Please answer the following questions:
-
Is the untangle box reporting something about every two minutes? If so, what?
-
What is the lease time in pfSense of the DHCP server on em0?
-
Are there any other DHCP servers on the network?
-
-
The log reports the untangle box is attempting to renew its DHCP lease every two minutes. This could be because it thinks its DHCP lease time is 4 minutes or because its restarting or resetting every two minutes.
However 192.168.0.243 apparently doesn't think its lease time is 4 minutes - perhaps its talking to a different DHCP server.Please answer the following questions:
-
Is the untangle box reporting something about every two minutes? If so, what?
-
What is the lease time in pfSense of the DHCP server on em0?
-
Are there any other DHCP servers on the network?
1. Nothing in MY knowledge? This is suspicious now …
2. Default, untouched
3. No and untangle's dhcp is disabled as wellAlso it configured to see pfsense as its default gateway and dns server
Thanks
-
-
Also it configured to see pfsense as its default gateway and dns server
Thats what happens when an interface gets its IP address by DHCP. Thats good if thats what you want.
What are you wanting to do? How you interconnected the boxes? (Please provide a network diagram showing the connection to the internet, connection between untangle and pfSense, the pfSense interfaces (LAN, WAN, OPT1 etc) and connections to clients.)
I don't know very much about untangle. I think its intended to do similar things to pfSense in which case particular interfaces will have particular roles (e.g. the pfSense LAN interface has firewall defaults to allow any traffic while the WAN interface defaults to blocking everything that was unsolicited) so to get things working correctly it is important to make the correct interconnections between interfaces.
-
Ok, It is very weird now, because I found that 0.244 is not untangle box, it is a wireless laptop, but the funny thing is even the laptop is turned off
Jan 19 12:08:17 dhcpd: DHCPACK to 192.168.0.244 (fb:26) via em0
Jan 19 12:10:18 dhcpd: DHCPINFORM from 192.168.0.244 via em0repeats every two minutes
when I turn it on
Jan 19 12:52:31 dhcpd: DHCPACK on 192.168.0.244 to fb:26 (pc-name) via em0
Jan 19 12:52:44 dhcpd: DHCPINFORM from 192.168.0.244 via em0then repeats again.
Any thoughts?
-
Any thoughts?
-
Though your laptop is "turned off" its transmitter is not disabled. (There are various states of "turned off", commonly called shutdown, hibernate, suspend, …) Disconnect the laptop from the mains and remove the battery - that should ensure it is "completely turned off".
-
You have another box on the network with a similar enough MAC address (xx:xx:xx:xx:fb:26) or even the same MAC address as the laptop.
-
-
I setup DHCP lease time to 7 days and my cpu reached constant 100% utilization (unless I remove the 7 days and reboot the machine) this is really weird as it is…
