General Questions / PPPoE Server (Connecting over Unifi Mesh Points)
« on: March 13, 2018, 07:26:29 am »
Hi there, My name is Finny

I'm looking at using pfSense as a PPPoE server, and looking at connecting clients using UniFi Mesh Points.

Unfortunately, it is not yet possible to set a management VLAN on Unifi Mesh Points, so I was thinking of setting the network up in the following way -

Private LAN 192.168.1.x

Mesh Points 192.168.2.x

I would run a Cloud Key on the private LAN, which has access to the internet for the Updates etc. The Mesh points I would connect to the second LAN, which has a rule to allow traffic from port 8080 (Inform port) through to the cloud key as the only rule.

PPPoE server would be set to run on the Mesh Points LAN.

That would mean I would still have management of the Mesh Units via the Cloud Key, but if a client was to disconnect their PPPoE router from the mesh point and plug a laptop directly into the Mesh point, as the Mesh Points network doesn't have internet access, they won't be able to circumnavigate the PPPoE requirements.

Would this setup work?

General Questions / Networking puzzle Mac -> Windows
« on: March 08, 2018, 11:39:33 am »
Hi there, My name is Gozzi
It kills me maybe some smart people here can help with clues.

I have several machines on my network, OpenVPN, Windows VM, Ubuntu, Mac.


- connect to external WiFi
- VPN to my network
- ping machines

If I do it with iPhone everything works fine.  Only from my Mac I can't ping/connect to my Windows VM (all other machines ping-able)

Any clues appreciated !

General Questions / Pfsense 2.4.2_1 stuck in boot loop
« on: February 28, 2018, 12:31:28 pm »
Hi there, My name is Gozzi

I was in the middle of doing things (specifically installing the openvpn client export package )on my pfsense router from the web ui. when it restarted all of a sudden, it seemed like it was taking a while to turn back on so i went and grabbed a monitor to plug into it, to see what was happening, and it would boot to pfsense do a massive text dump then just keep rebooting and doing the same thing.  I thought this could be the hard drive failing, so i grabbed a spare drive quickly installed pfsense in it so i could at least have an internet connection.  I had a backup of my pfsense configuration, but it was old, my question is is there a way i can get that configuration file from the hdd it still spins up, i did see a recover xml configuration, when i booted up the pfsense installer, how would i go about using that.

General Questions / No WAN IP address from Spectrum
« on: February 28, 2018, 12:27:22 pm »
Hi there, My name is Gozzi

I swapped out the cable modem at my house with a new one with phone support. After the new modem was installed, no IP address was supplied by Spectrum. I decided to check DHCP by plugging my Windows 10 laptop into the modem. DHCP worked. Hmm. So I tried my Mint 18 laptop - no address. I then installed wireshark on both and checked the DHCP process. Sure enough Windows discover was immediately followed by a DHCP offer. No response on the linux box. Hmm. Then I noticed that the Windows system also got a reply from a DHCPv6 server and IPv6 was enabled on the interface.
Back to the interface definition and added IPv6 to the WAN port. Success. Now I'm on both IPv4 and IPv6 on this port.

Firewalling / Modifying URL via matching regex to rewrite url
« on: February 25, 2018, 05:28:56 am »
Hi there, My name is Gozzi

While looking up how to append safe search parameters to the search engines requests at my house, had an idea (not related to search engines).  I go to a variety of sites, and continually have to reset parameters for the site.  Everything from sorting to date ranges.

How can I take a url, for example something like craigslist, and change/append the url with the parameters to show search results how I wish?

I am new at this, just starting to learn about pfsense as I wanted to ensure safe search for kids.


David

-- modified to add - if this is not correct board, please let me know.

General Questions / Need to Reapply Default Gateway after brief WAN drop
« on: February 25, 2018, 05:25:05 am »
We're having a strange issue at a few of our sites with PFSense firewalls. The WAN interface will drop briefly, like a few seconds at most, at which point the user will lose internet access until we log into the firewall and reapply the gateway. Remote access to the FW still works as does VPN to other sites. These are single WAN connections (Comcast, Optimum).

The logs usually display something like:
We've tried disabling gateway monitoring and disabling gateway monitoring action to no avail. This is happening at sites with both Netgate 2440s and Netgate 3100s

The logs usually show something like:

Jan 13 20:40:11    php-fpm    49750    /rc.linkup: Hotplug event detected for WAN1COM(wan) static IP ( )
Jan 13 20:40:11    check_reload_status       rc.newwanip starting igb0
Jan 13 20:40:11    check_reload_status       Reloading filter
Jan 13 20:40:12    php-fpm    49750    /rc.newwanip: rc.newwanip: Info: starting on igb0.
Jan 13 20:40:12    php-fpm    49750    /rc.newwanip: rc.newwanip: on (IP address: (interface: WAN1COM[wan]) (real interface: igb0).
Jan 13 20:40:12    check_reload_status       Reloading filter
Jan 13 20:40:46    rc.gateway_alarm    77603    >>> Gateway alarm: WAN1COMGW (Addr: Alarm:0 RTT:4898ms RTTsd:3127ms Loss:16%)
Jan 13 20:40:46    check_reload_status       updating dyndns WAN1COMGW
Jan 13 20:40:46    check_reload_status       Restarting ipsec tunnels
Jan 13 20:40:46    check_reload_status       Restarting OpenVPN tunnels/interfaces
Jan 13 20:40:46    check_reload_status       Reloading filter
Jan 13 20:40:47    php-fpm    49750    /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use WAN1COMGW.

Is this a known issue with PFsense? We deploy a lot of these but it only seems to be happening at a handful of sites. Could this be an ISP problem?

Thanks for any help you can provide.

