Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - bcruze

Pages: [1] 2 3 4 5 ... 7
1
Hardware / Re: MinnowBoard Turbot Dual Ethernet systems!
« on: Today at 06:35:25 am »
i didn't subscribe to the thread....   ok so they should be legit good to know.  i still want a backup router, and Netgate hasn't posted any updates on new products i may end up going this way

@Derelict  Aimpoint FTW :)

2
Official pfSense Hardware / Re: XG-7100
« on: Yesterday at 06:08:10 am »
i've considered purchasing a 7100 but its extremely overkill for me.   I am eagerly waiting for new devices to come available.   

so i understand the issue before it was returned

you don't like the fact that port 1 is the wan.  and you only have 7 ports remaining after that?


3
Hardware / Re: Intel atom E3845 openvpn speeds?
« on: April 15, 2018, 07:48:11 am »
this is the route i would go: https://store.netgate.com/MBT-4220-system.aspx

does AES, intel has a fan to keep it coool   you just need a simple switch

FYI.  i have a SG 2220 with a 120Mb connection at nearly full speeds and it never goes above 46 degrees C

HIGHLY recommend netgate products.

4
Hello, I followed these instructions to the letter. I have VPN up but I have horrible speeds. I have 400/40 internet service but with VPN I barely get between 20-40 Mb download. Is anyone running this setup with pfsense    2.4.3? My motherboard I'm running is Super Micro C2758 which has aes-ni capability.

which one did you follow?  least secure or most ?

i am doing most secure on a 1.7Ghz atom processor and get full speeds from a 100Mb download 10Mb upload connection.




5
Hardware / Re: MinnowBoard Turbot Dual Ethernet systems!
« on: April 03, 2018, 07:18:30 pm »
this is available on Amazon, and it says its from Netgate.  is that true?



6
OpenVPN / Re: OpenVPN needs to be restarted at pfsense reboot
« on: April 01, 2018, 07:36:04 am »
to best honest that looks the exact same as my setup when i tried their service.

several steps different that other providers that i could not understand.     my service would work.   but on a 100Mb download i could not get above 25Mb

the ONLY thing i could come up with was their super high level encryption...


if i reboot my pfsense my connection starts on startup.   here are my custom options you may try adding them to see if it starts... sorry i am not an openvpn expert hopefully someone else can chime in:

remote-cert-tls server;
reneg-sec 0;
resolv-retry infinite;
persist-key;
persist-tun;
cipher aes-256-cbc;
auth sha256;
tls-client;
pull-filter ignore "auth-token"

7
OpenVPN / Re: OpenVPN needs to be restarted at pfsense reboot
« on: March 31, 2018, 07:11:14 am »
I see that with my current provider but if I refresh the page it is actually connected?

Could you share what they gave you?  I tried to work with them during the entire trial period and my speeds were horrible using openvpn on pfsense and using their proprietary software

8
General Discussion / Re: 2.4.3 dropping soon?
« on: March 29, 2018, 01:17:10 pm »
just installed 2.4.3 on a SG 2220 with no issues!

9
i've always followed the directions and use CBC:

Mar 24 21:08:24   openvpn   15361   Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
Mar 24 21:08:24   openvpn   15361   Outgoing Data Channel: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 24 21:08:24   openvpn   15361   Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key

OK so a line above i do see this: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA

but i enabled 128 and 256 GCM for NCP Algorithms and it still connected as CBC

shrug

10
OpenVPN / Re: PIA OpenVPN ridiculously slow since upgrade to 2.4.2
« on: March 25, 2018, 06:56:09 am »
not sure if you read my post after i edited it but my speeds on atlanta went down to 40Mb shortly afterwards.   i  rarely use that server.

i would suggest trying another server until you find one more consistent

11
i've posted it a few times on here.    i did 2 trials with Nordvpn and my speeds with openvpn on pfsense and their proprietary software.  with 3 different devices at 3 different locations were terrible.


i canceled both trials within the cancellation period.     i've love to hears others experiences

12
OpenVPN / Re: PIA OpenVPN ridiculously slow since upgrade to 2.4.2
« on: March 24, 2018, 07:18:25 pm »
page 4.  change to LZO compression - compress lzo, equivalent to comp-lzo yes

page 5 enabled UDP fast write I/O operations


i would save your current configuration under diagnostic - backup and restore. and try the strong vpn.  i will attach my speeds to the Atlanta server


UPDATE.  well that was short lived.  my download speed is now 45Mb down according to the same test!

13
OpenVPN / Re: PIA OpenVPN ridiculously slow since upgrade to 2.4.2
« on: March 24, 2018, 04:20:32 am »
Which guide did you follow to set it up

Can you post your general configuration

follow this guide and use strong encryption: https://www.privateinternetaccess.com/forum/discussion/29231/tutorial-pia-on-pfsense-2-4?new=1

here are my custom options:
remote-cert-tls server;
reneg-sec 0;
resolv-retry infinite;
persist-key;
persist-tun;
cipher aes-256-cbc;
auth sha256;
tls-client;
pull-filter ignore "auth-token"

14
OpenVPN / slow speeds over openvpn? enable powerd set to maxium
« on: March 23, 2018, 06:59:24 pm »
my speeds over openvpn for the past few months have been great using PIA as my VPN provider.  honestly the best they have been in a while.

decided to turn off maximum CPU usage and instantly found my connection speed dropped significantly.

i am using a sg 2220 and it was set to max 1.74Ghz.     when i turned off maximum it dropped it down to 1.4GHZ.

my speeds on maximum were 100Mb down 10Mb up.   my actual internet connection.

with Maximum CPU turn OFF.   i was getting 40Mb down 10Mb up.

this may be obvious for some of you. but honestly i had no idea.  so hopefully this helps someone else out


can anyone else confirm that these helps speed up their openvpn speeds?

15
from what i can read of your log you are using the wrong encryption:

the airwatch pfsense states: Encryption Algorithm = [ AES-256-CBC (256 bit) ▼]    you are not utilizing that

i would start there, not saying that will fix it though

Pages: [1] 2 3 4 5 ... 7