Enabling iOS devices to find a printer on a separate subnet is easy - just
install the Avahi package. I have used this in the past, and it works very
well.
Moshe
On Fri, Mar 30, 2018, 1:03 PM Yılmaz Bilgili
wrote:
> Thank you for your reply. Especially IOS devices can not find others if
> they
On Wed, Mar 28, 2018 at 9:44 PM, Paul Mather
wrote:
> On Mar 27, 2018, at 8:10 PM, Moshe Katz wrote:
>
> Many thanks for the information and advice. It is much appreciated.
>
> > According to the specs that I found on HP's website, your HP switch does
> > not suppo
Note: that should say CAT*6*A, not *7*. Other than that, no changes.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Mar 27, 2018 at 8:10 PM, Moshe Katz wrote:
> According to the specs that I found on HP's website, your HP switch does
> not support 10Gb, only 1Gb on it
ey
perform well. (Note that Approved Optics does not have official Ubiquiti
cables, but many on the Ubiquiti forums report that it works with Cisco and
other brand cables as long as they are 2 meters or shorter. In a single
rack, that should not be an issue.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
u said you already have multiple LANs, you should be
familiar with this process.)
9. Configure firewall rules between the different interfaces as
necessary.
That should be enough to get you started.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732 <(301)%20867-3732>
On
that?
Any other ideas?
Thanks,
Moshe
--
Moshe Katz
-- kohenk...@gmail.com
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
to do this. Most hardware supports running multiple SSIDs (a.k.a.
WiFi network names) on a single band, so you could have both of your WiFi
networks on both bands - 5Ghz for performance and 2.4Ghz for longer range.
Most modern dual-band devices will automatically pick the best oft eh two
sign
comes a point in time at which it's
time to move on, and ten years is a very long life for commodity computing
hardware.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
I know that negative experience isn't so helpful to diagnose an issue, but
we have a very similar setup that's been in place for over 10 years, and
we've never seen such a thing.
Moshe
On Mon, Aug 21, 2017 at 12:09 PM, greg whynott
wrote:
> I'm not seeking help but rather thought I'd share an
The page you linked to says that the SG-2220 needs 5A, but you say the
Leviton power supply is 4A. That's probably a bad idea. In fact, according
to the spec sheet though, the Leviton power supply is actually only
3.3A. That's almost definitely a bad idea.
--
Moshe Katz
-- mo...@
those have been
IPv6 enabled for ages. It's an experiment to see how many visitors can get
away with not noticing that they have no IPv4 connectivity.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732 <(301)%20867-3732>
On Wed, Aug 2, 2017 at 10:32 PM, Adam Thompson
wrote:
>
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Jul 12, 2017 at 9:43 PM, WebDawg wrote:
> Hello,
>
> I just upgraded 2.3.something to 2.3.4 and immediately upon reboot
> experienced kernel panics/crash dumps over and over. The system would
> cycle over and over.
>
>
I'm not entirely sure how you had this working with your old firewall - I
would think it would have the same issue.
The best thing for you to do would be to separate the two LANs. You
probably don't need to change any cabling because most server network cards
let you set a default VLAN to use. (If
For front USB ports (on a traditional case -- small form factor may have
the front ports directly connected too), the best way is to open the case
and unplug them from the motherboard.
For the ports on the motherboard itself, the glue and/or covers that other
people suggested are likely your best o
, PiHole -> pfSense, or pfSense ->
Internet) seems to be the problem. Set a filter on the packet capture to
capture only DNS traffic (port 53). Then you can see if the request is
malformed, if no response ever comes back, or if the response is malformed.
Moshe
--
Moshe Katz
-- mo...@ymkatz.n
This is exactly what we have done for our guest WiFi network to allow users
on the WiFi to access the Internet and all of the public services that run
on our internal network.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, Dec 8, 2016 at 11:51 AM, Luc Paulin wrote:
> Hi
he
dynamic DNS to the other users.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sat, Nov 5, 2016 at 8:18 PM, Kelly Prescott wrote:
> Create a dynamic dns name for your ip address, have your client update it
> when it gets a new ip and use the dns name as your alias.
>
lp.php to point to your local copy.
Keep in mind that you will probably have to do this again every time you
update pfSense.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 30, 2016 at 11:33 AM, qmail wrote:
> Everythime i as for help from pfsense, it appears that it
t
outgoing traffic rule on each interface.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 23, 2016 at 2:03 PM, Rodrigo Cunha
wrote:
> Ii list, have a problem
> I make 2 networks wich 2 private ips diferents i have three diferents
> enernet cards.
> the Pfs
uld only have a single hop - directly from .15 to .250.
It will never hit the pfSense.
What type of switches do you have? How are they configured?
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 9, 2016 at 12:31 PM, Pol Hallen
wrote:
> Does the traceroute fail on the
Does the traceroute fail on the first hop, or does it get to the pfSense?
Can you share with us the actual terminal output of the traceroute?
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Sep 9, 2016 at 12:21 PM, Pol Hallen
wrote:
> In Status/System Logs/Settings check the &
quot;
- Source: "LAN3 net"
- Destination: "HostsWebAllowedFromWifi"
- Destination Port Range: "PortsWebAllowedFromWifi"
- Rule on LAN3 interface (our guest WiFi):
- Action: "Pass"
- Source: "LAN3 net"
- Destina
Ray,
Can you clarify which IP range is assigned where?
We can make an educated guess based on the information you provided, but
it's always better to have confirmation.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, Sep 8, 2016 at 6:06 AM, Ray wrote:
> Hi,
I have seen those symptoms on three different machines over the years, and
all of them were hardware failures - RAM on one of them, power supply on
another, and an old consumer-grade PCI network card on the third. (Most of
the pfSense machines I support are running low-end salvaged hardware, so in
ou and the Internet, so your pfSense
is doing "double NAT" - a.k.a NAT inside NAT. While this usually works,
it's poor network design and it can sometimes cause weird problems.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sun, Aug 14, 2016 at 4:55 AM, Antonio wrote:
lt to deal with.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Aug 9, 2016 at 8:10 PM, Alexandre Paradis <
alexandre.para...@gmail.com> wrote:
> Hello everyone,
>
> I am trying to figure out if a Mellanox connect X-2/3 will support a 10 gig
> gpon gbic.
>
message, and I'm glad to find that I was reading too much into those words.
I look forward to continuing to support pfSense with my participation and,
in the future, purchases when the opportunity presents itself for me to do
so.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu
ht me into the pfSense community ten years ago in
the first place.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Aug 3, 2016 at 9:36 PM, Jim Thompson wrote:
> Here's all you need to know:
>
> 1) we only test releases on the hardware we sell, or have sold in t
dapter.
You could also use a set of USB over twisted pair adapters, but those
aren't necessarily the most dependable pieces of hardware over long
distances.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Mon, Aug 1, 2016 at 4:10 PM, Karl Fife wrote:
> USB HOST to RS232 ada
On Jul 25, 2016 7:06 PM, "Jim Thompson" wrote:
> Pic of 7541, see for yourself.
>
> http://imgur.com/5RiHxOz
>
> On Mon, Jul 25, 2016 at 5:57 PM, Moshe Katz wrote:
>
> > Since you described that the board has isolation transformers, I would
> > assume
ut looking at the board directly.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Mon, Jul 25, 2016 at 5:41 PM, Karl Fife wrote:
> The 6th Ethernet port (em5) on my Lanner fw-7541D died Saturday night
> during the electrical storm. Just the one port.
>
> Appar
Yes. You need to make sure that any firewall rules to allow LAN traffic are
applied to the bridge instead of to just a single interface (whichever
interface used to be your LAN).
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, May 24, 2016 at 11:24 AM, FrancisM
wrote:
>
Yes, you can, but don't expect the performance to be as good as a real
switch. What the real switch is doing in hardware, you will be doing in
software.
To do this, you need to add those ports to a "Bridge" interface and set
that bridge to be your LAN.
Moshe
--
Moshe Katz
-- m
On Fri, May 20, 2016 at 12:19 PM, WebDawg wrote:
> On Fri, May 20, 2016 at 11:06 AM, Moshe Katz wrote:
>
> > If you have static IPs from Comcast, you cannot put the device in bridge
> > mode. The way that Comcast static IPs work is that your Comcast device
> > advertis
If you have static IPs from Comcast, you cannot put the device in bridge
mode. The way that Comcast static IPs work is that your Comcast device
advertises itself to the rest of Comcast's network as the route to your
static addresses. In effect, just pretend that this Comcast device is in
Comcast's
nd runner-up of Consumerist's "Golden Poo Award" for
worst company in America.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Thu, May 19, 2016 at 2:49 PM, Steve Yates wrote:
> I neglected to mention it but I did find and read many articles on
> Comcast modem suppor
at defies all logical explanation, Comcast will
not let you BYOM if you use static IPs.
Some people (also mentioned in the forum link above) have gotten prefix
delegation to work by asking Comcast to switch their SMC router for a
Netgear one.
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
When I had problems with throughput through Unifi Access Points with
pfSense, I replaced every network component, including the pfSense box and
the access points. In the end, my problem turned out to be an issue in how
some of the VLANs were handled by the (defective) switch.
Can you test to see w
wo used Dell switches that
have been great.
Like WebDawg, I have had a lot of good experiences with buying Dell 28xx
switches on eBay.
Note that you will probably also find a lot of 27xx switches on eBay. While
those are also gigabit (unlike the 26xx and older, which only have 2-4
gigabit por
I sent an email to list-ow...@lists.pfsense.org asking for action on this.
All of those people are on the list itself too, but it may help get
something done.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Apr 26, 2016 at 10:08 AM, WebDawg wrote:
> On Tue, Apr 26, 2016
quot; router while I order and replace
hardware is painful!
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Apr 15, 2016 at 2:23 PM, Steve Yates wrote:
> Are either of you on 2.3?
>
>
> https://doc.pfsense.org/index.php/2.3_New_Features_and_Changes#Gateways.2FRouting
>
only thing wrong with it is that the software just plain
wasn't designed for this use-case.
Anyone please feel free to correct me if this information is no longer
correct.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Apr 15, 2016 at 1:31 PM, Karl Fife wrote:
> I&
boxes that receives a domain
name in the DHCP response.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Fri, Nov 20, 2015 at 4:05 AM, Marco wrote:
> We receive the interface network configuration on the WAN via DHCP.
> This works, however somehow our ISP or the modem pushes a doma
On Tue, Jul 28, 2015 at 3:54 PM, Ryan Coleman wrote:
>
> > On Jul 28, 2015, at 2:50 PM, Moshe Katz wrote:
> >
> > On Tue, Jul 28, 2015 at 3:44 PM, Vick Khera vi...@khera.org>> wrote:
> >
> >> On Sun, Jul 26, 2015 at 10:31 PM, Ryan Coleman
> >
me that people
always have their sites set up so that www redirects to bare, bare
redirects to www, or both bare and www show the same content. While this
may not always be true, it is an assumption that Qualys and many other
people make, so it is included in the grade.
Moshe
--
Moshe Katz
-- mo..
Do you have the IP alias entered once for the whole /29 subnet or do you
have all of the addresses entered as individual virtual IPs? We had a
similar issue when we switched from Verizon DSL to Verizon FIOS many years
ago - the Virtual IPs had worked on the DSL when they had been defined as a
grou
ng-dns-server
I think there also used to be something on the Wiki, but I can't seem to
find it there or via the WayBack Machine.
If all you hook up to the pfSense box is a LAN connection, then it doesn't
do any firewall/routing stuff but you can still use its DNS server, DHCP
server, etc
h the ISP, but
I doubt that it'll make any difference. Just ignore the message. Your virus
scanner did catch it, after all.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Tue, Mar 24, 2015 at 6:09 AM, Mikey van der Worp
wrote:
> Em?
>
> Why is this list sending me vir
Just three things to add to what Brian said.
For Windows hosts, run "ipconfig /flushdns" to clear the cache. (You can
also use "/displaydns" to set what's in the cache, but you're going to have
to ease through the entire thing so it's probably not worth it.)
If you are using Google Chrome (on any
@athompso.net
>
>
As Adam said, I'm pretty sure that there used to be something in the Wiki.
However, I'm also pretty sure that it was targeted at pfSense 1.x and that
it was removed from there because something in the 2.x changes broke it.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
--
n all other interfaces
except the VPN. (Aliases could help simplify that, but you may or may not
actually want to do it, depending on the rule complexity.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
pfSense mailing list
ht
DAP server supports it.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Wed, Dec 17, 2014 at 12:06 AM, Jérôme Alet
wrote:
>
> Hi there,
>
> Does anyone know how to use ldaps:// to connect to the LDAP server from
> FreeRadius's configuration web form in pfSense
interface. Your changes
would also likely be overwritten when the firewall reboots.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
ettings in the pfSense
web interface. Will the claimed "support" work with pfSense, or is this
one of the card types that doesn't work?
Thanks,
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
Lis
it's annoying and loud in my
> office. Boo.
>
> Thanks,
> Ryan
>
It's at the bottom of system_advanced_notifications.php. There is a
checkbox "Disable the startup/shutdown beep".
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
_
The pfSense bogon list is at
https://files.pfsense.org/lists/fullbogons-ipv4.txt and the current version
there also doesn't have your block. Make sure that your pfSense has the
newest list. (This should usually be done automatically, but you should be
able to do it from the console/SSH by running
! Thanks!
>
>
> Kenward
>
If you don't need to do any fancy routing or VLAN stuff, just go on Amazon
or NewEgg and get the top-rated 16-port *unmanaged* gigabit switch.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List
the system timer to LAPIC, and the load now looks much more like what I
expect it to be.
My question is two-fold:
1. Has anyone else seen this behavior?
2. I haven't noticed any performance issues after the switch, but is there
anything that I need to be concerned about?
Thanks,
Moshe
--
the schedule disables the filter
> rule.
>
> Thanks
>
Peter,
It's probably not the most elegant of solutions, but you could try putting
in a *deny* rule for the times that you do not want to allow access. Just
make sure that it is higher up in the rules list than the
On Aug 1, 2014 6:46 PM, "Brian Caouette" wrote:
>
> I subscribe to a karaoke service for my DJ business. When i'm connected
to pfsense downloads are failing. This is what it looks like in squid
realtime:
>
> 01.08.2014 18:41:10
> 192.168.1.10
> NONE/411
>
http://www.kjmediaservices.com/safefiles/D
he setup itself. I used an Apple Airport
Express as my travel router, but there are others that may work better -
and the Airport Express is very hard to troubleshoot because it has no web
interface.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
t Squid itself is caching the
> response from when my configuration was previously broken?
>
> Thanks,
> Dean
>
>
> On Thu, Jul 17, 2014 at 12:00 PM, Moshe Katz wrote:
>
>> The first thing you can check is whether the error is being introduced in
>> SquidGuard
The first thing you can check is whether the error is being introduced in
SquidGuard itself or later in the stack.
Run "/usr/pbi/squidguard-squid3-amd64/bin/squidGuard -c
/usr/pbi/squidguard-squid3-amd64/etc/squidGuard/squidGuard.conf" in a shell
(console or SSH) and pass those URLs to it to see t
s of packages than the ones already installed. Is this to be
> expected?
>
> The only other package I had installed was iperf (via the GUI).
>
> Thanks,
>
> Brian.
>
I'm not sure that it's a big deal, at least for wget. On my pfSense test
machine which is cur
On Wed, May 21, 2014 at 11:57 AM, Moshe Katz wrote:
>
>> On Wed, May 21, 2014 at 2:39 PM, Florio, Christopher N <
>> flo...@email.unc.edu> wrote:
>>
>>> Any idea a URL that I could get this package from? Sounds like a good
>>> option.
>>
>>
.freebsd.org/pub/FreeBSD/ports/amd64/packages-9-current/perl5/(or
the i386 location) for other versions of 5.12, 5.14, and 5.18
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfs
s/i386/packages-8.3-release/Latest/lsof.tbz
"
(The 8.3 version of the package should work even on the older 8.1-based
pfSense. I've had no problems with it on an older testing box I have.)
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
__
these (and the Dual-port Pro/1000 MT version) in pfSense with
no problems.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
swapped around?
>
> -A
>
>
> On Sat, May 10, 2014 at 7:55 PM, Moshe Katz wrote:
>
>>
>> Hi Aaron,
>>
>> Most cable modems I have worked with in the US (on Comcast, Optimum, and
>> RCN) all do ARP caching, so you need to reboot them when you change the
SL, it is best to already be on the phone
with Verizon support to have them manually clear the cache. At least
rebooting the cable modem is something you can do yourself.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
;
"Firewall" page. You can use "pfctl -sa" to verify that the "scrub" rules
exist on your firewall.
I have not been able to determine on my own whether pfSense is affected by
14:09 or not.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
On Sun, Apr 20, 2014 at 6:32 PM, Volker Kuhlmann
wrote:
> I've been running pfsense for many years (and been very happy with it)
> on scrapped PCs with a Sun 4-port Ethernet PCI card because I need 5
> Ethernet ports.
>
> Now freebsd dieing on the hme driver effectively turns those cards into
> sc
On Mar 27, 2014 4:22 PM, "Chris Bagnall" wrote:
> On 27/3/14 8:17 pm, Walter Parker wrote:
>
>> That's what I would recommend. The VPN can serve as a second gateway to
>> protect the RDP from the outside world, so you could pitch this solution
>> as
>> higher security method of network access.
>>
I do this using one of the Windows servers as a "Remote Desktop Gateway".
This feature is built in to the Remote Desktop server and client (so no
need for VPN - though you may choose to use one anyway) a you need to do is
enabled it on the server and set the client to use it.
Moshe
(Sorry for top
On Mar 19, 2014 7:59 AM, "Brian Caouette" wrote:
>
>
>
>
> Original Message
> Subject:
> Firewall Log
> Date:
> Thu, 13 Mar 2014 12:48:33 -0400
> From:
> Brian Caouette
> To:
> pfSense support and discussion
>
>
> Also seeing this in the log:
>
> Mar 13 11:37:36
> WAN
> 0.0.0.0
lready have) to keep the process running. (Something like this: "nohup
tcpdump &")
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On Feb 26, 2014 9:32 AM, "kol" wrote:
>
>
> Just wondering if someone could explain to me why does the pfSense syslog
> show the host name (HP-SLVR in the output below) when requesting DHCP via
> the LAN segment, but no host name displayed when requesting via the
> wireless ?
>
>
>
> Feb 25 15:45
Spam" package
and in the upgrade script for 025 to 026 and for 099 to 100. However,
since it is not in the current default config
file<https://github.com/pfsense/pfsense/blob/master/conf.default/config.xml>,
I don't know if it's still needed.
Since "vnstat" is a pa
.2.tbz
Alternatively, you could write a small PHP script that calls "
send_smtp_message" in "/etc/inc/notices.inc" to send the email using the
email notification settings that are set in "System" -> "Advanced" ->
"Notifications", and cal
ntion this workaround, if you do use SNMP,
you can probably get away with only allowing SNMP traffic from trusted
hosts. (In truth, you should be doing that anyway.)
> http://www.freebsd.org/security/advisories.html
>
> Thanks,
> Adam
>
HTH,
Moshe
--
Moshe Katz
-- mo..
On Dec 9, 2013 6:37 PM, "Adam Hunt" wrote:
>
> What parts of pfSense are so arch dependent. One would expect being based
on FreeBSD would make it quite portable.
>
>
> On Mon, Dec 9, 2013 at 3:25 PM, Jim Thompson wrote:
>>
>> it would be a lot of work.
>>
>> There was some work done back in histo
capacity, you
will still be saving processor cycles for doing the other stuff that the
machine needs to do.
Whatever you do, stay* very far away* from the Celeron. Performance will
likely be terrible.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
RY boards (Intel NIC, onboard video, so
> ideal for server environments).
I'm going to second this one - stay away from Realtek NICs for real work
(though if you go with AMD as I mentioned above, you'll likely be Broadcom
onboard, not Intel, and y
says "Enable SSL/TLS Authentication". Make sure that box is checked,
and it should work.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
On Fri, Oct 11, 2013 at 3:11 PM, Thinker Rix wrote:
> On 2013-10-11 21:20, Walter Parker wrote:
>
>> Who would you trust more that ESF? Why,specifically, would you trust
>> another group of people to be more trustworthy?
>>
>
> The point is not untrusting ESF or anybody else. The point is that ESF
to work properly. I have absolutely no idea why this is the case, and I
never had time to look into it further.
If you do have to add them all individually, the easiest way is probably to
add one, then download a Configuration backup, edit the backup file
te:
>
> Good to know it should work. If onlyi can get it to actually work. It has
> 2 drives which I doubt both are bad so it's got to be some configuration.
> I just wish I knew what I was doing.
>
> On 6/11/2013 at 9:08 PM, "Moshe Katz" wrote:
>
> On Tue, Jun
On Tue, Jun 11, 2013 at 11:48 PM, wrote:
> I recently traded some old computer equipment for an HP Proliant DL360 G3.
> Its a nice little rackmount with dual Intel Xeon 2.8GHz processors 3
> onboard gigabit NIC's and a PCI-X bus and 2 PCI-X expansion slots. Its
> light on RAM at only 512MB but th
o the Internet. You can confirm this by looking
at the routes page in the web interface. To fix it, you need to add a
route manually to tell it to send the traffic out on the Internet instead
of directly from one vlan to the other.
Moshe
--
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
_
On Wed, Apr 17, 2013 at 8:39 AM, Cristian Ionescu-Idbohrn <
cristian.ionescu-idbo...@axis.com> wrote:
> On Wed, 17 Apr 2013, Moshe Katz wrote:
> >
> > Did you reboot the machine after you changed the time zone? As I
> > understand it, many system components don&
e.org
> http://lists.pfsense.org/**mailman/listinfo/list<http://lists.pfsense.org/mailman/listinfo/list>
>
Hello,
Did you reboot the machine after you changed the time zone? As I
understand it, many system components don't see the change unless you
restart them, and the easiest way to r
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
I see the CD images on all of the mirrors that I looked at.
However, they are not called "pfSense-2.0.2-RELEASE-[arch].iso.gz".
Instead, look for: "pfSense-*LiveCD*-2.0.2-RELEASE-[arch].iso.gz"
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
On Sat, Jan 19, 201
n all kinds of
other services on a pfSense box that I use for testing.
The main issue will likely be network performance. As has been discussed
many times on this list in the past, software routing is inherently slower
than routing at a hardware level using purpose-built devices. Any
addit
On Wed, Sep 12, 2012 at 1:38 PM, Nenhum_de_Nos wrote:
>
> On Wed, September 12, 2012 13:29, Moshe Katz wrote:
> > On Wed, Sep 12, 2012 at 12:35 AM, Nenhum_de_Nos <
> math...@eternamente.info>wrote:
> >
> >> hail,
> >>
> >> I tried and got:
&
gt;
> matheus
The 6501 <http://soekris.com/products/net6501.html> uses 32-bit Atom E6xx
chips, which are 32-bit
only<http://en.wikipedia.org/wiki/List_of_Intel_Atom_microprocessors#Single-Core_Embedded_processors>.
I'd try 32-bit and see if it works.
Truth is though, that I'
On WAN, we set a rule for "Allow ICMP from * to *". You may be
able to get by with a more-restrictive rule but this is the one we use.
Moshe
--
Moshe Katz
-- mo...@ymkatz.net
-- +1(301)867-3732
___
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
o use the "IP Alias" type instead of the
"Other" type and then not have to configure anything using ifconfig.
I am away from the office for the next few days, but if you still need help
when I get back I can plug something in on the W
one give me some advice on this?
>
> Cheers,
> James
>
I don't know the full details, but I do know that certain Virtual Address
types support/do-not-support certain features.
I use ProxyARP Virtual Addresses on my systems (though I don't currently
use IPSec so I don'
people who have gotten Pound (
http://www.apsis.ch/pound/) to run on a pfSense box, but there is currently
no package for it and therefore no GUI.
Two parenthetical notes about SNI:
- IIS 8 (release next month or so, RC currently available) does support
SNI.
- Windows XP does
1 - 100 of 128 matches
Mail list logo
