2.0RC1 : PPPoE not working yet
-
Hi,
first of all thanks to every one for the help and contribution you are giving to newbie like me.I have used for 5 years m0n0wall successfully in many installation.
As we have shifted our business to a new plant, we have 2 ADSL connection that we have decided to use it as folow:- ADSL #1 for telephone Voip only
- ADSL #2 for internet, mail, etc only
This because ADSL #1 is very good as ping while ADSL2 is excellent in terms of speed etc.
We had 2 choice: either use 2 separate embedded system, both in m0n0wall, one handling each of the ADSL, or move into 1 server with PFSENSE and multiwan, especially 2.0 due both ADSL have their own particular device that require PPPoE to be handled by the firewall.
Anyhow, although I think to have a good experience in PFSENSE 1.2.x that working perfectly with any ADSL (WAN:PPPOE), I'm not able to have the WAN up and connected.
Burned latest snapshot (12 march) of PFSENSE 2.0RC1 on a new cd, live it and installed on a Dell Server PE 750 (P4 2.8 with 1GB ram, 1 HDD 40GB) with the only 2 em port onboard (without any other network card for this initial setup) I was confident that everything was going smooth.
Once installed and assigned em0 for LAN and em1 for WAN, changed the IP to 192.168.0.1/24 without DHCP, I can successfully login from remote pc.
As usual go to INTERFACES change the WAN from DHCP to PPPOE.
Type in both USERID and PASSWORD correctly 5 times, WAN interface remain DOWN all the time; a reboot of PFSENSE doesn't help.
When I try to push the button "CONNECT" on the status-page for interface, it doesn't help. It remain down.
Ethernet modem is connected and working.
I'm sure about this because 5 minutes later, a live-cd m0n0wall 1.3.2 is working perfectly.
Startup (with a floppy where to save the config is inserted), assigned em0/em1 and ip/24.
Remotely access, completed the configuration of WAN and it's up in less than 30 second.
All the PC on the network can surf without hassle.Back to PFSENSE, it seems that WAN is not trying at all to connect.
I have typed in the USERID and PASSWORD 5 times, copy & past, digit one-by-one, copy from m0n0wall config, etc.
No way… WAN is dead.Switch off and tried the other ADSL (with its ADSL modem) and again... m0n0wall perfect, PFSENSE's WAN down and dead.
I reconfirm: I have tried only 1 wan (Adsl PPPOE) at a time.
I like to take 1 stage at time.One question: does PFSENSE change the PPPoE/WAN setup procedure from 1.2.x to 2.0 ?
Am I missing something ?Ethernet (em0 em1), ethernet modems etc are working otherwise they shouldn't work also in m0n0wall. But there they are perfect.
Thank you
P. -
Forgot to mention 1 thing….
PFSENSE 1.2.3 live cd + floppy is working perfectly.
PFSENSE 2.0RC1 live cd with floppy is again not working (no difference from livecd -or- installed on hd).
I have tried to copy 2.0RC1 configuration on the floppy used by 1.2.3 and run it: not working! -
Have you tried the official rc1 release, 20110226?
Steve
-
Hi Steve
thanks for your quick reply.
No I haven't!
I was thinking that latest snapshot should be "better" than previous RC date
My mistake then.
I will give it a try tomorrow morning when back office.
DOwnloading now.Keep informed & thanks.
-
Hi, im new to pfSense too, and i have problems with my PPPoE config, till i set "configure a NULL service name " ( Interfaces : PPPs : Edit )
( my ISP use "My_server" as service name and pfS dont allow this name )
Now im a happy pfSense user, since 4 months ago….. :D
-
The ppp log could also provide some useful hints as to what is wrong. See Status -> System logs, click on PPP tab
-
The ppp log could also provide some useful hints as to what is wrong. See Status -> System logs, click on PPP tab
Hi downloaded RC1 (feb 2011) as suggested by Steve.
Still not working.
Tried both way : WAN manual setup and through WIZARD.
Both give me same log.
Here below just 1 of the 2 as they are the same…Mar 14 07:19:44 ppp: [wan_link0] PPPoE connection timeout after 9 seconds
Mar 14 07:19:44 ppp: [wan_link0] Link: DOWN event
Mar 14 07:19:44 ppp: [wan_link0] LCP: Down event
Mar 14 07:19:44 ppp: [wan_link0] Link: reconnection attempt 1 in 2 seconds
Mar 14 07:19:46 ppp: [wan_link0] Link: reconnection attempt 1
Mar 14 07:19:46 ppp: [wan_link0] PPPoE: Connecting to ''
Mar 14 07:19:55 ppp: [wan_link0] PPPoE connection timeout after 9 seconds
Mar 14 07:19:55 ppp: [wan_link0] Link: DOWN event
Mar 14 07:19:55 ppp: [wan_link0] LCP: Down event
Mar 14 07:19:55 ppp: [wan_link0] Link: reconnection attempt 2 in 3 seconds
Mar 14 07:19:58 ppp: [wan_link0] Link: reconnection attempt 2
Mar 14 07:19:58 ppp: [wan_link0] PPPoE: Connecting to ''
Mar 14 07:20:07 ppp: [wan_link0] PPPoE connection timeout after 9 seconds
Mar 14 07:20:07 ppp: [wan_link0] Link: DOWN event
Mar 14 07:20:07 ppp: [wan_link0] LCP: Down event
Mar 14 07:20:07 ppp: [wan_link0] Link: reconnection attempt 3 in 3 seconds
Mar 14 07:20:10 ppp: [wan_link0] Link: reconnection attempt 3
Mar 14 07:20:10 ppp: [wan_link0] PPPoE: Connecting to '*'
Mar 14 07:20:19 ppp: [wan_link0] PPPoE connection timeout after 9 seconds
Mar 14 07:20:19 ppp: [wan_link0] Link: DOWN event
Mar 14 07:20:19 ppp: [wan_link0] LCP: Down eventNow running M0n0wall 1.3.2. same modem, same em0, WAN up and smooth.
-
i'm seeing a similar issue with pppoe. i did manage to get it to connect once but have no idea what i managed to fluke.
I've currently got a failover configured to a nextg modem and am running in that.
I haven't put a packet sniffer onto the wan ethernet port to confirm this but I don't see any indication of Ip traffic on the LAN side of the modem.
When i connect the modem back onto an IPCOP system it comes up straight away. -
I have gave up, at least for the moment, as I don't have time to invest around this….
I have 2 server PE750 and I spli the 2 ADSL connection into these 2 machines.
Now both networks are run and Voip working.I will stuck to this until I will have sometime to test and see what is happening with PFSENSE.
-
Had a bit more of as play this morning.
it appears to be related to what is and isn't plugged in when the pfsense box is rebooted.
there appears to be a race condition that excludes the second wan device ( whichever is happens to be ) from connecting.
almost as though oce the ppp script starts with a failed connection it can't ever connect to the wan device to complete a connection.
is there anyway i can abort the failed ppp process and restart a new process to see if that works?not sure whaat else to do.
-
if the hsdpa usb modem is connected and the wan interface isn't connected during startup it doesn't seem to bring up the pppoe connection via the bridged adsl modem. ie no ethernet cable to adsl bridged modem and hsdpa modem connected during reboot of pfsense box. ppp log says it is trying but there is no ethernet traffic ( confirmed with a hub and wireshark ) on the wan port.
if the link is up during boot ( even just connected to the hub with no modem ) when the adsl modem is connected it connects.
ifconfig is reporting the correct state of the hardware link.summary.
1/ ethernet link active ( hub and/or adsl bridged modem ) and hsdpa usb modem connected or disconnected.
Then when adsl bridge modem is connected then pppoe connection comes up ok. hdspa modem doesn't connect.
2/ no ethernet link active during boot, hsdpa modem connected.
no traffic on ethernet link and adsl link never connects even though ifconfig detects link status. hdspa connects ok.is there an issue with a pppoe wan link and another wan link using ppp ( umts/hsdpa usb modem )? ie is there a limit on the number of ppp connections for wan links?
-
Please put screenshots of all your configs or config.xml here.
I have not understood the config explanation. -
internet <-> adsl bridge modem <-> ethernet ( WAN PPPoE ) <-> | | <-> ethernet ( LAN bridged with wireless )
internet <-> HSDPA Cellular modem <-> USB ( OPT3 PPP ) <-> | pfsense| <-> wireless ( LAN bridged with LAN)<pfsense><version>7.7</version> <lastchange><theme>pfsense_ng</theme> <sysctl><tunable>debug.pfftpproxy</tunable> <value>default</value> <tunable>vfs.read_max</tunable> <value>default</value> <tunable>net.inet.ip.portrange.first</tunable> <value>default</value> <tunable>net.inet.tcp.blackhole</tunable> <value>default</value> <tunable>net.inet.udp.blackhole</tunable> <value>default</value> <tunable>net.inet.ip.random_id</tunable> <value>default</value> <tunable>net.inet.tcp.drop_synfin</tunable> <value>default</value> <tunable>net.inet.ip.redirect</tunable> <value>default</value> <tunable>net.inet6.ip6.redirect</tunable> <value>default</value> <tunable>net.inet.tcp.syncookies</tunable> <value>default</value> <tunable>net.inet.tcp.recvspace</tunable> <value>default</value> <tunable>net.inet.tcp.sendspace</tunable> <value>default</value> <tunable>net.inet.ip.fastforwarding</tunable> <value>default</value> <tunable>net.inet.tcp.delayed_ack</tunable> <value>default</value> <tunable>net.inet.udp.maxdgram</tunable> <value>default</value> <tunable>net.link.bridge.pfil_onlyip</tunable> <value>default</value> <tunable>net.link.bridge.pfil_member</tunable> <value>default</value> <tunable>net.link.bridge.pfil_bridge</tunable> <value>default</value> <tunable>net.link.tap.user_open</tunable> <value>default</value> <tunable>kern.rndtest.verbose</tunable> <value>default</value> <tunable>kern.randompid</tunable> <value>default</value> <tunable>net.inet.ip.intr_queue_maxlen</tunable> <value>default</value> <tunable>hw.syscons.kbd_reboot</tunable> <value>default</value> <tunable>net.inet.tcp.inflight.enable</tunable> <value>default</value> <tunable>net.inet.tcp.log_debug</tunable> <value>default</value> <tunable>net.inet.icmp.icmplim</tunable> <value>default</value> <tunable>net.inet.tcp.tso</tunable> <value>default</value> <tunable>kern.ipc.maxsockbuf</tunable> <value>default</value></sysctl> <system><optimization>normal</optimization> <hostname>pfsense</hostname> <domain>localdomain</domain> <group><name>all</name> <scope>system</scope> <gid>1998</gid> <member>0</member></group> <group><name>admins</name> <scope>system</scope> <gid>1999</gid> <member>0</member> <priv>page-all</priv></group> <user><name>admin</name> <scope>system</scope> <groupname>admins</groupname> <password></password> <uid>0</uid> <priv>user-shell-access</priv> <md5-hash></md5-hash> <nt-hash></nt-hash></user> <nextuid>2000</nextuid> <nextgid>2000</nextgid> <timezone>Australia/Perth</timezone> <time-update-interval><timeservers>ntp.westnet.net.au 0.pfsense.pool.ntp.org</timeservers> <webgui><protocol>https</protocol> <ssl-certref>4d79bbfce9eb9</ssl-certref></webgui> <disablenatreflection>yes</disablenatreflection> <disablesegmentationoffloading><disablelargereceiveoffloading><enablesshd><rrdbackup>24</rrdbackup> <dns1gwint>wan</dns1gwint> <dns2gwint>opt3</dns2gwint> <dns3gwint>wan</dns3gwint> <dns4gwint>opt3</dns4gwint> <dnsserver>203.56.14.17</dnsserver> <dnsserver>203.50.2.71</dnsserver> <dnsserver>203.56.14.20</dnsserver> <dnsserver>139.130.4.4</dnsserver> <dnsallowoverride><gitsync><repositoryurl><branch></branch></repositoryurl></gitsync></dnsallowoverride></enablesshd></disablelargereceiveoffloading></disablesegmentationoffloading></time-update-interval></system> <interfaces><wan><if>pppoe0</if> <blockpriv><blockbogons><media><mediaopt><spoofmac><enable><ipaddr>pppoe</ipaddr></enable></spoofmac></mediaopt></media></blockbogons></blockpriv></wan> <lan><enable><if>bridge0</if> <media><mediaopt><ipaddr>192.168.128.254</ipaddr> <subnet>24</subnet> <spoofmac></spoofmac></mediaopt></media></enable></lan> <opt1><if>ath0</if> <wireless><mode>hostap</mode> <standard>11g</standard> <protmode>off</protmode> <ssid>sages1</ssid> <channel>6</channel> <authmode></authmode> <txpower>99</txpower> <distance><regdomain>row</regdomain> <regcountry>AU</regcountry> <reglocation><wpa><macaddr_acl></macaddr_acl> <auth_algs>1</auth_algs> <wpa_mode>3</wpa_mode> <wpa_key_mgmt>WPA-PSK</wpa_key_mgmt> <wpa_pairwise>CCMP TKIP</wpa_pairwise> <wpa_group_rekey>60</wpa_group_rekey> <wpa_gmk_rekey>3600</wpa_gmk_rekey> <passphrase></passphrase> <ext_wpa_sw></ext_wpa_sw> <enable></enable></wpa> <auth_server_addr><auth_server_port><auth_server_shared_secret><turbo><wme><enable></enable></wme></turbo></auth_server_shared_secret></auth_server_port></auth_server_addr></reglocation></distance></wireless> <enable><spoofmac></spoofmac></enable></opt1> <opt2><if>rl0</if> <enable><spoofmac></spoofmac></enable></opt2> <opt3><if>ppp2</if> <ipaddr>ppp</ipaddr> <spoofmac><enable></enable></spoofmac></opt3></interfaces> <staticroutes><dhcpd><lan><enable><range><from>192.168.128.100</from> <to>192.168.128.250</to></range> <defaultleasetime><maxleasetime><netmask><failover_peerip><gateway><domain><domainsearchlist><ddnsdomain><tftp><ldap><next-server><filename><rootpath><numberoptions><staticmap><mac>00:00:48:7b:74:a9</mac> <ipaddr>192.168.128.80</ipaddr> <hostname>EPSON7B7479</hostname></staticmap> <staticmap><mac>00:15:65:10:43:85</mac> <ipaddr>192.168.128.81</ipaddr> <hostname>VOIP</hostname></staticmap> <winsserver>192.168.128.1</winsserver> <ntpserver>192.168.128.254</ntpserver></numberoptions></rootpath></filename></next-server></ldap></tftp></ddnsdomain></domainsearchlist></domain></gateway></failover_peerip></netmask></maxleasetime></defaultleasetime></enable></lan></dhcpd> <pptpd><mode><redir><localip></localip></redir></mode></pptpd> <dnsmasq><enable><regdhcp><regdhcpstatic><hosts><host>mail</host> <domain>sages.com.au</domain> <ip>192.168.128.1</ip></hosts></regdhcpstatic></regdhcp></enable></dnsmasq> <snmpd><syslocation><syscontact><rocommunity>public</rocommunity></syscontact></syslocation></snmpd> <diag><ipv6nat><ipaddr></ipaddr></ipv6nat></diag> <bridge><syslog><reverse><nentries>500</nentries></reverse></syslog> <nat><ipsecpassthru><enable></enable></ipsecpassthru> <rule><source> <any><destination><network>wanip</network> <port>80</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>80</local-port> <interface>wan</interface> <descr><associated-rule-id>nat_4d79ee608d8bc8.84269583</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>wanip</network> <port>443</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>443</local-port> <interface>wan</interface> <descr><associated-rule-id>nat_4d79ee8e5cbbf6.69418561</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>wanip</network> <port>25</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>25</local-port> <interface>wan</interface> <descr><associated-rule-id>nat_4d79eeae592b77.59055317</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>wanip</network> <port>22</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>22</local-port> <interface>wan</interface> <descr><associated-rule-id>nat_4d79f91d3a9309.70392785</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>opt3ip</network> <port>80</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>80</local-port> <interface>opt3</interface> <descr><associated-rule-id>nat_4d7f0795c5d453.74966316</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>opt3ip</network> <port>443</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>443</local-port> <interface>opt3</interface> <descr><associated-rule-id>nat_4d7f07aee17e13.49596429</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>opt3ip</network> <port>25</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>25</local-port> <interface>opt3</interface> <descr><associated-rule-id>nat_4d7f07ca6e0d48.51856478</associated-rule-id></descr></any></rule> <rule><source> <any><destination><network>opt3ip</network> <port>22</port></destination> <protocol>tcp</protocol> <target>192.168.128.1</target> <local-port>22</local-port> <interface>opt3</interface> <descr><associated-rule-id>nat_4d7f07e09e6cf5.32996948</associated-rule-id></descr></any></rule></nat> <filter><rule><type>match</type> <protocol>udp</protocol> <source> <any><defaultqueue>qVoIP</defaultqueue> <destination><any></any></destination> <iptos>lowdelay</iptos> <floating>yes</floating> <wizard>yes</wizard> <enabled>on</enabled></any></rule> <rule><id><type>pass</type> <interface>wan</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><protocol>tcp/udp</protocol> <source> <any><destination><network>wanip</network></destination> <disabled></disabled></any></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><direction>in</direction> <source> <any><destination><network>wanip</network> <port>1195</port></destination> <interface>wan</interface> <protocol>udp</protocol> <type>pass</type> <enabled>on</enabled></any></rule> <rule><source> <any><interface>wan</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>22</port></destination> <associated-rule-id>nat_4d79f91d3a9309.70392785</associated-rule-id></any></rule> <rule><source> <any><interface>wan</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>80</port></destination> <associated-rule-id>nat_4d79ee608d8bc8.84269583</associated-rule-id></any></rule> <rule><source> <any><interface>wan</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>443</port></destination> <associated-rule-id>nat_4d79ee8e5cbbf6.69418561</associated-rule-id></any></rule> <rule><source> <any><interface>wan</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>25</port></destination> <associated-rule-id>nat_4d79eeae592b77.59055317</associated-rule-id></any></rule> <rule><id><type>pass</type> <interface>wan</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><protocol>icmp</protocol> <source> <any><destination><network>wanip</network></destination></any></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><id><type>pass</type> <interface>lan</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><source> <any><destination><any></any></destination> <descr><gateway>Internet</gateway></descr></any></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><id><type>pass</type> <interface>lan</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><source> <network>lan</network> <destination><any></any></destination></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><source> <any><destination><any></any></destination> <interface>openvpn</interface> <type>pass</type> <enabled>on</enabled></any></rule> <rule><id><type>pass</type> <interface>opt1</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><protocol>tcp</protocol> <source> <network>opt1</network> <destination><any></any></destination> <disabled></disabled></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><id><type>pass</type> <interface>opt3</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><protocol>tcp/udp</protocol> <source> <any><destination><network>opt3ip</network></destination> <disabled></disabled></any></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><id><type>pass</type> <interface>opt3</interface> <tag><tagged><max><max-src-nodes><max-src-conn><max-src-states><statetimeout><statetype>keep state</statetype> <os><protocol>icmp</protocol> <source> <any><destination><network>opt3ip</network></destination></any></os></statetimeout></max-src-states></max-src-conn></max-src-nodes></max></tagged></tag></id></rule> <rule><source> <any><interface>opt3</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>80</port></destination> <associated-rule-id>nat_4d7f0795c5d453.74966316</associated-rule-id></any></rule> <rule><source> <any><interface>opt3</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>443</port></destination> <associated-rule-id>nat_4d7f07aee17e13.49596429</associated-rule-id></any></rule> <rule><source> <any><interface>opt3</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>25</port></destination> <associated-rule-id>nat_4d7f07ca6e0d48.51856478</associated-rule-id></any></rule> <rule><source> <any><interface>opt3</interface> <protocol>tcp</protocol> <destination><address>192.168.128.1</address> <port>22</port></destination> <associated-rule-id>nat_4d7f07e09e6cf5.32996948</associated-rule-id></any></rule></filter> <shaper><queue><interface>wan</interface> <name>wan</name> <scheduler>HFSC</scheduler> <bandwidth>4000</bandwidth> <bandwidthtype>Kb</bandwidthtype> <queue><name>qACK</name> <interface>wan</interface> <priority>6</priority> <bandwidth>19.75</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>19.75%</linkshare3> <linkshare>on</linkshare></queue> <queue><name>qDefault</name> <interface>wan</interface> <priority>3</priority> <bandwidth>9.875</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <default>on</default> <ecn>on</ecn></queue> <queue><name>qP2P</name> <interface>wan</interface> <priority>1</priority> <bandwidth>4.9375</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>4.9375%</linkshare3> <linkshare>on</linkshare> <upperlimit3>4.9375%</upperlimit3> <upperlimit>on</upperlimit></queue> <queue><name>qVoIP</name> <interface>wan</interface> <priority>7</priority> <bandwidth>32</bandwidth> <bandwidthtype>Kb</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <realtime3>50Kb</realtime3> <realtime>on</realtime></queue> <queue><name>qOthersHigh</name> <interface>wan</interface> <priority>4</priority> <bandwidth>9.875</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>9.875%</linkshare3> <linkshare>on</linkshare></queue> <queue><name>qOthersLow</name> <interface>wan</interface> <priority>2</priority> <bandwidth>4.9375</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>4.9375%</linkshare3> <linkshare>on</linkshare></queue></queue> <queue><interface>opt3</interface> <name>opt3</name> <scheduler>HFSC</scheduler> <bandwidth>500</bandwidth> <bandwidthtype>Kb</bandwidthtype> <queue><name>qACK</name> <interface>opt3</interface> <priority>6</priority> <bandwidth>18</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>18%</linkshare3> <linkshare>on</linkshare></queue> <queue><name>qDefault</name> <interface>opt3</interface> <priority>3</priority> <bandwidth>9</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <default>on</default> <ecn>on</ecn></queue> <queue><name>qP2P</name> <interface>opt3</interface> <priority>1</priority> <bandwidth>4.5</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>4.5%</linkshare3> <linkshare>on</linkshare> <upperlimit3>4.5%</upperlimit3> <upperlimit>on</upperlimit></queue> <queue><name>qVoIP</name> <interface>opt3</interface> <priority>7</priority> <bandwidth>32</bandwidth> <bandwidthtype>Kb</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <realtime3>50Kb</realtime3> <realtime>on</realtime></queue> <queue><name>qOthersHigh</name> <interface>opt3</interface> <priority>4</priority> <bandwidth>9</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>9%</linkshare3> <linkshare>on</linkshare></queue> <queue><name>qOthersLow</name> <interface>opt3</interface> <priority>2</priority> <bandwidth>4.5</bandwidth> <bandwidthtype>%</bandwidthtype> <enabled>on</enabled> <ecn>on</ecn> <linkshare3>4.5%</linkshare3> <linkshare>on</linkshare></queue></queue></shaper> <ipsec><preferoldsa></preferoldsa></ipsec> <aliases><alias><name>fwbox</name> <address>192.168.128.1</address> <type>host</type> <detail></detail></alias></aliases> <proxyarp><cron><minute>0</minute> <hour>*</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 newsyslog <minute>1,31</minute> <hour>0-5</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 adjkerntz -a <minute>1</minute> <hour>3</hour> <mday>1</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh <minute>*/60</minute> <hour>*</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout <minute>1</minute> <hour>1</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 /etc/rc.dyndns.update <minute>*/60</minute> <hour>*</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot <minute>30</minute> <hour>12</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/usr/bin/nice -n20 /etc/rc.update_urltables <minute>0</minute> <hour>*/24</hour> <mday>*</mday> <month>*</month> <wday>*</wday> <who>root</who> <command></command>/etc/rc.backup_rrd.sh</cron> <wol><rrd><enable></enable></rrd> <load_balancer><monitor_type><name>ICMP</name> <type>icmp</type></monitor_type> <monitor_type><name>TCP</name> <type>tcp</type></monitor_type> <monitor_type><name>HTTP</name> <type>http</type> <options><path>/</path> <host>`200`</host></options></monitor_type> <monitor_type><name>HTTPS</name> <type>https</type> <options><path>/</path> <host>`200`</host></options></monitor_type> <monitor_type><name>SMTP</name> <type>send</type> <options><send>EHLO nosuchhost</send> <expect>250-</expect></options></monitor_type></load_balancer> <widgets><sequence>system_information-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gateways-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,interface_statistics-container:col1:show,interfaces-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:close,picture-container:col2:close,rss-container:col2:close,services_status-container:col2:close,traffic_graphs-container:col2:close,openvpn-container:col2:none,wake_on_lan-container:col2:none</sequence></widgets> <revision><time>1300173191</time> <username>admin</username></revision> <openvpn><openvpn-server><vpnid>2</vpnid> <disable><mode>server_tls_user</mode> <authmode>Local Database</authmode> <protocol>UDP</protocol> <ipaddr><interface>wan</interface> <local_port>1194</local_port> <custom_options><caref>4d79f5e632d90</caref> <crlref><certref>4d79f645221d4</certref> <dh_length>1024</dh_length> <strictusercn><crypto>AES-128-CBC</crypto> <engine>none</engine> <tunnel_network>10.21.162.0/24</tunnel_network> <remote_network><gwredir><local_network>192.168.128.0/24</local_network> <maxclients>20</maxclients> <compression><passtos><client2client><dynamic_ip>yes</dynamic_ip> <pool_enable>yes</pool_enable> <dns_domain>int.sages</dns_domain> <dns_server1>192.168.128.254</dns_server1> <dns_server2><dns_server3><dns_server4><ntp_server1>192.168.128.1</ntp_server1> <ntp_server2><netbios_enable>yes</netbios_enable> <netbios_ntype>0</netbios_ntype> <netbios_scope><wins_server1>192.168.128.1</wins_server1></netbios_scope></ntp_server2></dns_server4></dns_server3></dns_server2></client2client></passtos></compression></gwredir></remote_network></strictusercn></crlref></custom_options></ipaddr></disable></openvpn-server> <openvpn-client><vpnid>1</vpnid> <disable><protocol>UDP</protocol> <dev_mode>tun</dev_mode> <ipaddr><interface>wan</interface> <local_port><server_addr>rodlaptop</server_addr> <server_port>1194</server_port> <resolve_retry><proxy_addr><proxy_port><proxy_authtype>none</proxy_authtype> <proxy_user><proxy_passwd><mode>p2p_tls</mode> <custom_options><caref>4d79f5e632d90</caref> <certref>4d79f645221d4</certref> <crypto>AES-128-CBC</crypto> <engine>none</engine> <tunnel_network><remote_network><compression><passtos></passtos></compression></remote_network></tunnel_network></custom_options></proxy_passwd></proxy_user></proxy_port></proxy_addr></resolve_retry></local_port></ipaddr></disable></openvpn-client></openvpn> <l7shaper><container></container></l7shaper> <dnshaper><cert><refid>4d79bbfce9eb9</refid></cert> <cert><refid>4d79f645221d4</refid> <caref>4d79f5e632d90</caref></cert> <ppps><ppp><ptpid>2</ptpid> <type>ppp</type> <if>ppp2</if> <ports>/dev/cuaU0.0</ports> <username><password><apn>VirginBroadband</apn> <apnum><phone>*99#</phone> <localip><gateway><bandwidth></bandwidth></gateway></localip></apnum></password></username></ppp> <ppp><ptpid>1</ptpid> <type>ppp</type> <if>ppp1</if> <ports>/dev/cuaU0.0</ports> <username></username> <password></password> <uptime><apn>telstra.internet</apn> <apnum><phone>*99#</phone> <localip><gateway><bandwidth></bandwidth></gateway></localip></apnum></uptime></ppp> <ppp><ptpid>0</ptpid> <type>pppoe</type> <if>pppoe0</if> <ports>vr0</ports> <username>xxxx</username> <password>xxxx</password> <provider><bandwidth></bandwidth></provider></ppp></ppps> <wireless><clone><if>ath0</if> <mode>hostap</mode> <descr><cloneif>ath0_wlan1</cloneif></descr></clone> <interfaces><ath0><standard>11g</standard> <turbo><protmode>off</protmode> <txpower>99</txpower> <channel>6</channel> <distance><regdomain>row</regdomain> <regcountry>AU</regcountry> <reglocation></reglocation></distance></turbo></ath0></interfaces></wireless> <gateways><gateway_group><name>Internet</name> NEXTG|2 GW_WAN|1 <trigger>downlosslatency</trigger></gateway_group> <gateway_item><interface>opt3</interface> <gateway>dynamic</gateway> <name>NEXTG</name> <weight>2</weight> <monitor>xxx</monitor> <latencylow>300</latencylow> <latencyhigh>500</latencyhigh> <losslow>5</losslow> <losshigh>10</losshigh> <down>2</down></gateway_item> <gateway_item><interface>wan</interface> <gateway>dynamic</gateway> <name>GW_WAN</name> <weight>1</weight> <monitor>xxx</monitor> <latencylow>100</latencylow> <latencyhigh>200</latencyhigh> <losslow>5</losslow> <losshigh>10</losshigh> <down>2</down></gateway_item></gateways> <bridges><bridged><members>opt1,opt2</members> <descr><maxaddr><timeout><maxage><fwdelay><hellotime><priority><proto>rstp</proto> <holdcount><ifpriority><ifpathcost><bridgeif>bridge0</bridgeif></ifpathcost></ifpriority></holdcount></priority></hellotime></fwdelay></maxage></timeout></maxaddr></descr></bridged></bridges> <installedpackages><openntpd><config><enable>on</enable> <interface>lan</interface></config></openntpd></installedpackages> <ca><refid>4d79f5e632d90</refid> <crt>xxx</crt> <prv>xxxx</prv> <serial>1</serial></ca> <ovpnserver><step1><type>local</type></step1> <step6><authcertca>4d79f5e632d90</authcertca></step6> <step9><authcertname>4d79f645221d4</authcertname></step9> <step10><protocol>UDP</protocol> <localport>1195</localport> <tlsauth>on</tlsauth> <gentlskey>on</gentlskey> <dhkey>1024</dhkey> <crypto>AES-128-CBC</crypto> <engine>none</engine> <tunnelnet>10.0.8.0/24</tunnelnet> <localnet>192.168.128.0/24</localnet> <concurrentcon>2</concurrentcon> <dynip>on</dynip> <addrpool>on</addrpool> <nbttype>0</nbttype> <wins1>192.168.128.1</wins1> <interface>wan</interface></step10> <step11><ovpnrule>on</ovpnrule> <ovpnallow>on</ovpnallow></step11></ovpnserver> <ezshaper><step1><numberofconnections>2</numberofconnections></step1> <step2><downloadscheduler>HFSC</downloadscheduler> <conn0uploadscheduler>HFSC</conn0uploadscheduler> <conn0upload>4000</conn0upload> <conn0uploadspeed>Kb</conn0uploadspeed> <conn0download>300</conn0download> <conn0downloadspeed>Kb</conn0downloadspeed> <conn0interface>wan</conn0interface> <conn1uploadscheduler>HFSC</conn1uploadscheduler> <conn1upload>500</conn1upload> <conn1uploadspeed>Kb</conn1uploadspeed> <conn1download>100</conn1download> <conn1downloadspeed>Kb</conn1downloadspeed> <conn1interface>opt3</conn1interface></step2> <step3><enable>on</enable> <provider>Generic</provider> <download>50</download> <downloadspeed>Kb</downloadspeed> <conn0upload>50</conn0upload> <conn0uploadspeed>Kb</conn0uploadspeed> <conn1upload>50</conn1upload> <conn1uploadspeed>Kb</conn1uploadspeed></step3> <step4><bandwidthunit>%</bandwidthunit></step4> <step5><enable>on</enable> <bandwidthunit>%</bandwidthunit></step5> <step7><enable>on</enable> <msrdp>D</msrdp> <vnc>D</vnc> <appleremotedesktop>D</appleremotedesktop> <pcanywhere>D</pcanywhere> <irc>D</irc> <jabber>D</jabber> <icq>D</icq> <aolinstantmessenger>D</aolinstantmessenger> <msnmessenger>D</msnmessenger> <teamspeak>D</teamspeak> <pptp>D</pptp> <ipsec>D</ipsec> <streamingmp3>D</streamingmp3> <rtsp>D</rtsp> <http>D</http> <smtp>D</smtp> <pop3>D</pop3> <imap>D</imap> <lotusnotes>D</lotusnotes> <dns>D</dns> <icmp>D</icmp> <smb>D</smb> <snmp>D</snmp> <mysqlserver>D</mysqlserver> <nntp>D</nntp> <cvsup>D</cvsup> <slingbox>D</slingbox> <hbci>D</hbci></step7></ezshaper> <dyndnses><dyndns><type>freedns</type> <username><password>xxxxxx</password> <host>xxxx</host> <mx><enable><interface>opt3</interface></enable></mx></username></dyndns></dyndnses></dnshaper></wol></proxyarp></bridge></staticroutes></lastchange></pfsense>
edit, is there a simple way to de-identify the xml before posting?
-
Looks to me that the posted config.xml has two ppp interfaces saying they use /dev/cuaU0.0 but only one (ppp2) seems to be mapped to a pfSense interface (opt3).
Could this be a rarely encountered configuration that causes pfSense to create a ppp configuration file that confuses the ppp daemon?
I've previously reported pfSense 2.0 seems to have a bit of trouble deleting interfaces. Might this be another example? Can you account for the two ppp interfaces referencing /dev/cuaU0.0?
-
I need the system logs.
I did this commit which should help with the config.xml provided here https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/01c201e3d19dd7fc37e8b33f1d27861e514c805c
though some more strict checking needs to be done to prevent such kind of configurations.
I am still thinking the correct solution on this -
Looks to me that the posted config.xml has two ppp interfaces saying they use /dev/cuaU0.0 but only one (ppp2) seems to be mapped to a pfSense interface (opt3).
Could this be a rarely encountered configuration that causes pfSense to create a ppp configuration file that confuses the ppp daemon?
I've previously reported pfSense 2.0 seems to have a bit of trouble deleting interfaces. Might this be another example? Can you account for the two ppp interfaces referencing /dev/cuaU0.0?
the second ppp interface isn't mapped. I have two sim cards with different network providers and have switched between the two depending upon the sim fitted to the hsdpa modem.
-
@ermal:
I need the system logs.
which ones? ppp and system?
and is there a simple way to extract them or do I just download the log file? -
tried this snapshot yesterday, pfSense-2.0-RC1-1g-i386-20110315-1934-nanobsd-upgrade.img.gz
better than it has been but it still hasn't consistantly resolved the underlying issue.
removing the hsdpa usb modem and then reconnecting the usb is detected by the system but the ppp code doesn't detect it. which is the same symptom as we had originally.
i'll leave this for a while until some of the other rc1 issues have been worked through and/or I get some more time to document the operation. -
You mean that you want to triger a connection reload when the modem is put in?
-
@ermal:
I need the system logs.
which ones? ppp and system?
and is there a simple way to extract them or do I just download the log file?In case you haven't figured t out already, truncated forms of the system logs are available in the web GUI from Status -> System Logs, click on the appropriate tab.
If you want the full system log(s) they can be displayed by shell command # clog /var/log/ (replace <file>by the name of the appropriate file, e.g. system.log, ppp.log etc)
The logs are "circular buffer" files which are a fixed size. Once the file is full old entries drop out to make room for new entries.</file>