Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - leoalfa09

Pages: [1] 2
1
General Questions / pfsense certifition
« on: November 18, 2010, 03:38:20 pm »
Hi!!!
How can i certify me in pfsense??? its posible??

2
Español / Problemas rutas estaticas
« on: November 02, 2010, 08:04:09 pm »
Hola comunidad!!!!

Recien hoy instale un pfsense en uno de mis clientes, resulta que poseen una conexion vpn que nos provee nuestro isp site to site, lo que necesito es crear una ruta estatica de la subred 192.168.1.0/24 a la subred 192.168.0.0/24, creee la ruta utilizando el comando route add -net 192.168.0.0/24 192.168.1.1 y tambien lo hice agrgandola en webgui, la coneccion funciona correctamente y puedo ver la subred 192.168.0.0 pero el problema es que se torna inestable por momentos(los pings nuca se caen), este es un registro de los logs del firewall:

todo el trafico correponde a trafico bloqueado, cabe destacar que tengo una regla ´permitiendo todo el trafico que puede estar sucediendo??

Nov 3 00:39:07 LAN 192.168.1.5:63316 192.168.0.3:445 TCP:P
Nov 3 00:39:34 LAN 192.168.1.5:63316 192.168.0.3:445 TCP:R
Nov 3 00:41:36 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:39 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:41 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:43 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:45 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:47 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:49 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:51 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:53 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:41:55 LAN 192.168.1.5:63323 192.168.0.3:445 TCP:A
Nov 3 00:42:48 WAN 190.241.18.1:67 255.255.255.255:68 UDP
Nov 3 00:44:00 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:02 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:04 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:06 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:08 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:10 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:12 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:14 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:17 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:19 LAN 192.168.1.5:63332 192.168.0.3:445 TCP:A
Nov 3 00:44:27 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:44:27 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:46:05 WAN 190.241.18.1:67 255.255.255.255:68 UDP
Nov 3 00:46:23 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:25 WAN 128.242.240.61:80 190.10.115.15:29329 TCP:S
Nov 3 00:46:25 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:27 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:29 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:32 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:34 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:36 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:38 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:40 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:42 LAN 192.168.1.5:63351 192.168.0.3:445 TCP:A
Nov 3 00:46:47 WAN 128.242.240.61:80 190.10.115.15:50830 TCP:S
Nov 3 00:47:08 WAN 128.242.240.61:80 190.10.115.15:34635 TCP:S
Nov 3 00:47:52 WAN 190.241.19.254:67 255.255.255.255:68 UDP
Nov 3 00:47:52 WAN 190.241.19.254:67 255.255.255.255:68 UDP
Nov 3 00:48:47 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:49 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:51 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:53 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:55 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:57 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:48:59 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:49:01 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:49:03 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:49:05 LAN 192.168.1.5:63357 192.168.0.3:445 TCP:A
Nov 3 00:49:49 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:49:51 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:51:10 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:12 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:14 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:16 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:18 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:20 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:22 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:25 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:27 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:51:29 LAN 192.168.1.5:63375 192.168.0.3:445 TCP:A
Nov 3 00:53:33 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:35 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:37 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:40 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:41 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:53:41 WAN 186.4.34.1:67 255.255.255.255:68 UDP
Nov 3 00:53:42 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:43 WAN 10.24.0.1:67 255.255.255.255:68 UDP
Nov 3 00:53:44 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:46 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:47 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:P
Nov 3 00:53:47 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:P
Nov 3 00:53:47 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:P
Nov 3 00:53:48 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:49 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:P
Nov 3 00:53:50 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:53:51 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:P
Nov 3 00:53:52 LAN 192.168.1.5:63381 192.168.0.3:445 TCP:A
Nov 3 00:54:06 WAN 186.4.34.1:67 255.255.255.255:68 UDP
Nov 3 00:54:22 WAN 190.10.114.1:67 255.255.255.255:68 UDP
Nov 3 00:55:11 WAN 190.10.110.136 190.10.115.15 ICMP
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:15 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:16 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:17 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:17 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:20 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:20 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:24 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:26 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:28 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:34 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:57:38 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:A
Nov 3 00:57:47 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:P
Nov 3 00:58:13 LAN 192.168.1.5:63404 192.168.0.3:445 TCP:R
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:47 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:48 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:50 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:58:55 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A
Nov 3 00:59:03 LAN 192.168.1.5:63416 192.168.0.3:445 TCP:A



3
Español / Examen certificacion o equivalente
« on: August 03, 2010, 10:28:49 am »
Hola como van todos??

Tengo una pregunta, existe algun tipo de examen o certificacion para pfsense??

Quizas bellera nos pueda ayudar con esto... lo sabes??

4
Español / NAT a nivel de capa de aplicacion
« on: July 16, 2010, 10:45:15 am »
Es posible hacer NAT con el pfsense a nivel de capa de aplicacion, me explico si tengo 2 servidores web en mi red y 2 exchange todos ingresando por el puerto 80 que el pfsense sepa que si colocan abc.com me envie a los server web pero que si colocan abc.com/exchange me redireccione al exchange esto lo he logrado utilizando isa server con sus respectivos paths y listeners pero no se me ocurre con pfsense.



alguna idea?????

5
Español / sstp pfsense 2.0
« on: May 22, 2010, 07:04:04 pm »
puede el pfsense gestionar vpns utilizando sstp o hay algun paquete que agregue esta funcionalidad?

6
PPTP / PPTP VPN issue
« on: May 17, 2010, 10:16:34 pm »
Hi!
A curious case occurred to me today,i was working on a pfSense with squid and squidGuard packages installed with running a pptp vpn, the vpn connections were possible, but each time the vpn client was disconnected all communication was falling behind pfSense on the lan and internet.
Made the following tests:
Packages  squid and squid guard  are uninstalled and test the connection with the same results.
It will disable the rules and allowed all traffic with the same results.
Hardware problems were ruled out getting the same results on multiple computers.
if vpn connections are not made the pfSense does not generate any problem.
Service is redirected to a microsoft vpn server and connections in this case well and not experiencing any problems, the issue is that i want to centralize all services in pfSense.

The configuration that is doing work in other pfSense implemented using the same configuartions, is curious that in this place does not work.

noteworthy that the pfSense this after a 3com adsl modem by forward all incoming traffic to the WAN IP of the pfSense, which in this case would correspond to a private ip.

7
Español / problema pfsense-3com pptp vpn
« on: May 17, 2010, 09:37:12 pm »
Hola!!
Un curioso caso me ocurri hoy, se estaba trabajando sobre un pfsense, con los paquetes squid y squidguard instalados corriendo una vpn con pptp, las conexiones por la vpn eran posibles pero cada vez que el cliente de la vpn se desconectaba se caia toda comunicacion tras el pfsense en la lan e internet.
Se hicieron las siguientes pruebas:
Se desinstalaron los paquetes squid y squid guard y se probo la conexion obteniendo los mismos resultados.
Se desabilitaron las reglas y se permitio todo el trafico con los mismos resultados.
Se descartaron problemas de hardware obteniendo los mismos resultados en varios equipos.
si las conexiones vpn no se realizan el pfsense no genera ningun problema.
Se redirecciono el servicio de vpn a un server ms y las conexiones se realizanban bien y en este caso no presentaban problemas, el tema es que se desea centralizar todos los servicios en el pfsense.

La configuracion que se esta haciendo funciona en otros pfsense implementados utilizando la misma revision es curioso que en este lugar no funcione.

cabe destacar que el pfsense esta tras un modem adsl 3com realizando forward de todo el trafico entrante hacia la ip de la wan del pfsense, que en este caso corresponderia a una ip privada.

8
Español / PPTP VPN
« on: April 29, 2010, 10:23:17 pm »
shotokan podrias explicar algo resumido tu configuracion de vpn pptp pq yo lo intento hacer al aprecer todo bien pero no me logro conectar o sera pq lo hago desde windows 7, si pudieras un pantallazo de tu configuracion, Gracias
 
 
Mira el hecho que lo hagas desde windows 7 no debe influir en nada. desactiva tu firewall,,aunque tampoco debe ser problema

Elimine todas las reglas y nat configuradas que tenian relacion con mi acceso remoto, y reinicie pfsense creo q esto es importante por q volvi a configurar todo segun lo que realizo leoalfa,,pero el primer paso q menciona, yo habilite el puerto dentro de rules: pptp vpn, esto fue lo unico distinto,,lo demas pasos estan seguidos como dice la guia.


Ya tengo acceso a pfsense y todos los ap de mi red



ademas activaste pptp, asignaste ip fija a tu servidor,,, y el rango de ip q se utilizaran. creaste el usuario ??
 
 
 
 

9
Español / Problema al crear graficos
« on: April 07, 2010, 10:52:13 am »
Hola al intentar revisar los graficos que me da el pfsense en RDD Graphs me dice que el grafico no pudo ser creado, revisando en system logs el siguiente es el erro que encuentro
php: /status_rrd_graph_img.php: Failed to create graph with error code 1, the error is: /libexec/ld-elf.so.1: Shared object "libz.so.5" not found, required by "libfreetype.so.9"

No he agragado paquetes nuevos que pudieran crear incompatibilad o algo por el estilo.

Alguna idea?
Gracias!!

10
Español / Nagios + Pfsense
« on: April 06, 2010, 02:07:18 am »
Hola, recientemente he comenzado a instalar nagios sobre pfsense, leyendo un poco sobre freebsd encuentro que es posible por medio del comando pkg_add nombre del paquete.

Ahora bien tengo varias consultas:

Es recomendable instalar este paquete directamente en el pfsense para realizar el monitoreo?
A la hora de instalar al parecer las dependencias que utiliza este paquete no pueden ser instaladas debido a que ya se encuentran versiones anteriores de las dependencias en el pfsense, seria un  problema eliminirlas e instalar las mas actuales?

11
Español / Consulta capacidad
« on: March 17, 2010, 12:09:56 pm »
Hola mucho tiempo de no pasar por el foro!!!

He montado varios pfsense pero siempre en redes pequeñas maximo 40 o 50 equipos.

Ahora me piden montarlo en una red con 150 equipos y el pfsense debera correr los servicio de dhcp, squid, squid guard y openvpn.

el pfsense es capaz de aguantar esta cantidad de equipos y si si lo es que tipo de hardware necesito??

Lo siguiente es con el harware que cuento un core duo de 2.6, 2 gb ram y 160 gb de disco duro es recomendable montarlo en una red de este tipo?

12
Español / Intrusos?
« on: December 13, 2009, 11:01:19 pm »
sshd[63106]: Failed password for invalid user test from 211.92.149.147 port 43668 ssh2
Dec 13 20:05:18 sshd[63106]: Invalid user test from 211.92.149.147
Dec 13 20:05:15 sshd[63092]: Failed password for invalid user oracle from 211.92.149.147 port 43341 ssh2
Dec 13 20:05:15 sshd[63092]: Invalid user oracle from 211.92.149.147
Dec 13 20:05:12 sshd[63025]: Failed password for root from 211.92.149.147 port 43088 ssh2
Dec 13 20:05:09 sshd[63022]: Failed password for root from 211.92.149.147 port 42769 ssh2
Dec 13 20:05:06 sshd[63019]: Failed password for root from 211.92.149.147 port 42498 ssh2
Dec 13 20:05:03 sshd[63017]: Failed password for root from 211.92.149.147 port 42223 ssh2
Dec 13 20:04:59 sshd[63003]: Failed password for root from 211.92.149.147 port 41976 ssh2
Dec 13 20:04:56 sshd[62988]: Failed password for root from 211.92.149.147 port 41711 ssh2
Dec 13 20:04:53 sshd[62985]: Failed password for root from 211.92.149.147 port 41440 ssh2
Dec 13 20:04:50 sshd[62982]: Failed password for root from 211.92.149.147 port 41203 ssh2
Dec 13 20:04:47 sshd[62980]: Failed password for root from 211.92.149.147 port 40910 ssh2
Dec 13 20:04:44 sshd[62977]: Failed password for root from 211.92.149.147 port 40662 ssh2
Dec 13 20:04:41 sshd[62974]: Failed password for root from 211.92.149.147 port 40403 ssh2
Dec 13 20:04:37 sshd[62972]: Failed password for root from 211.92.149.147 port 40158 ssh2
Dec 13 20:04:34 sshd[62969]: Failed password for root from 211.92.149.147 port 39892 ssh2
Dec 13 19:49:00 dnsmasq[59538]: reading /var/dhcpd/var/db/dhcpd.leases
Dec 13 19:34:48 check_reload_status: reloading filter
Dec 13 19:34:45 dhcpd: For info, please visit http://www.isc.org/sw/dhcp/
Dec 13 19:34:45 dhcpd: All rights reserved.
Dec 13 19:34:45 dhcpd: Copyright 2004-2008 Internet Systems Consortium.
Dec 13 19:34:45 dhcpd: Internet Systems Consortium DHCP Server V3.0.7
Dec 13 19:34:44 dnsmasq[59538]: read /etc/hosts - 2 addresses
Dec 13 19:34:44 dnsmasq[59538]: using nameserver 208.67.220.220#53
Dec 13 19:34:44 dnsmasq[59538]: using nameserver 208.133.206.44#53
Dec 13 19:34:43 dnsmasq[59538]: reading /etc/resolv.conf
Dec 13 19:34:43 dnsmasq[59538]: reading /var/dhcpd/var/db/dhcpd.leases
Dec 13 19:34:43 dnsmasq[59538]: compile time options: IPv6 GNU-getopt BSD-bridge ISC-leasefile no-DBus no-I18N TFTP
Dec 13 19:34:43 dnsmasq[59538]: started, version 2.45 cachesize 150
Dec 13 19:34:42 dnsmasq[59096]: exiting on receipt of SIGTERM
Dec 13 19:34:42 dnsmasq[59096]: using nameserver 208.67.220.220#53
Dec 13 19:34:42 dnsmasq[59096]: using nameserver 208.133.206.44#53
Dec 13 19:34:42 dnsmasq[59096]: reading /etc/resolv.conf
Dec 13 19:34:42 dnsmasq[59096]: reading /var/dhcpd/var/db/dhcpd.leases
Dec 13 19:34:42 dhcpd: For info, please visit http://www.isc.org/sw/dhcp/
Dec 13 19:34:42 dhcpd: All rights reserved.
Dec 13 19:34:42 dhcpd: Copyright 2004-2008 Internet Systems Consortium.
Dec 13 19:34:42 dhcpd: Internet Systems Consortium DHCP Server V3.0.7
Dec 13 19:32:50 check_reload_status: reloading filter
Dec 13 19:32:45 dhcpd: For info, please visit http://www.isc.org/sw/dhcp/
Dec 13 19:32:45 dhcpd: All rights reserved.
Dec 13 19:32:45 dhcpd: Copyright 2004-2008 Internet Systems Consortium.
Dec 13 19:32:45 dhcpd: Internet Systems Consortium DHCP Server V3.0.7
Dec 13 19:32:44 dnsmasq[59096]: read /etc/hosts - 2 addresses
Dec 13 19:32:44 dnsmasq[59096]: using nameserver 208.67.220.220#53
Dec 13 19:32:44 dnsmasq[59096]: using nameserver 208.133.206.44#53
Dec 13 19:32:44 dnsmasq[59096]: reading /etc/resolv.conf
Dec 13 19:32:44 dnsmasq[59096]: reading /var/dhcpd/var/db/dhcpd.leases
Dec 13 19:32:44 dnsmasq[59096]: compile time options: IPv6 GNU-getopt BSD-bridge ISC-leasefile no-DBus no-I18N TFTP
Dec 13 19:32:44 dnsmasq[59096]: started, version 2.45 cachesize 150
Dec 13 19:32:43 dnsmasq[536]: exiting on receipt of SIGTERM
Dec 13 19:32:43 dnsmasq[536]: using nameserver 208.67.220.220#53
Dec 13 19:32:43 dnsmasq[536]: using nameserver 208.133.206.44#53
Dec 13 19:32:43 dnsmasq[536]: reading /etc/resolv.conf
Dec 13 19:32:43 dnsmasq[536]: reading /var/dhcpd/var/db/dhcpd.leases
Dec 13 19:32:43 dhcpd: For info, please visit http://www.isc.org/sw/dhcp/
Dec 13 19:32:43 dhcpd: All rights reserved.
Dec 13 19:32:43 dhcpd: Copyright 2004-2008 Internet Systems Consortium.
Dec 13 19:32:43 dhcpd: Internet Systems Consortium DHCP Server V3.0.7
Dec 13 18:16:15 sshd[50728]: Did not receive identification string from 140.116.91.23
Dec 13 18:16:01 sshd[50724]: Failed password for root from 140.116.91.23 port 52190 ssh2
Dec 13 18:15:58 sshd[50721]: Failed password for root from 140.116.91.23 port 51783 ssh2
Dec 13 18:15:54 sshd[50718]: Failed password for root from 140.116.91.23 port 51414 ssh2
Dec 13 18:15:50 sshd[50716]: Failed password for root from 140.116.91.23 port 51216 ssh2
Dec 13 18:15:48 sshd[50713]: Failed password for root from 140.116.91.23 port 50860 ssh2
Dec 13 18:15:45 sshd[50711]: Failed password for root from 140.116.91.23 port 50734 ssh2
Dec 13 18:15:42 sshd[50708]: Failed password for root from 140.116.91.23 port 50313 ssh2
Dec 13 18:15:38 sshd[50692]: Failed password for root from 140.116.91.23 port 49947 ssh2
Dec 13 18:15:34 sshd[50689]: Failed password for root from 140.116.91.23 port 49551 ssh2
Dec 13 18:15:31 sshd[50687]: Failed password for root from 140.116.91.23 port 49261 ssh2
Dec 13 18:15:27 sshd[50675]: Failed password for root from 140.116.91.23 port 48865 ssh2
Dec 13 18:15:25 sshd[50658]: Failed password for root from 140.116.91.23 port 48668 ssh2
Dec 13 18:15:22 sshd[50603]: Failed password for root from 140.116.91.23 port 48292 ssh2
Dec 13 18:15:19 sshd[50600]: Failed password for root from 140.116.91.23 port 47763 ssh2
Dec 13 18:15:16 sshd[50598]: Failed password for root from 140.116.91.23 port 47357 ssh2
Dec 13 18:15:12 sshd[50595]: Failed password for root from 140.116.91.23 port 46859 ssh2
Dec 13 18:15:09 sshd[50593]: Failed password for root from 140.116.91.23 port 46638 ssh2
Dec 13 18:15:06 sshd[50590]: Failed password for root from 140.116.91.23 port 45818 ssh2
Dec 13 18:15:01 sshd[50576]: Failed password for root from 140.116.91.23 port 45583 ssh2
Dec 13 18:14:57 sshd[50573]: Failed password for root from 140.116.91.23 port 45134 ssh2
Dec 13 18:14:53 sshd[50570]: Failed password for root from 140.116.91.23 port 44740 ssh2
Dec 13 18:14:49 sshd[50567]: Failed password for root from 140.116.91.23 port 44207 ssh2
Dec 13 18:14:45 sshd[50552]: Failed password for root from 140.116.91.23 port 43910 ssh2
Dec 13 18:14:42 sshd[50549]: Failed password for root from 140.116.91.23 port 43536 ssh2
Dec 13 18:14:39 sshd[50547]: Failed password for root from 140.116.91.23 port 43433 ssh2
Dec 13 18:14:36 sshd[50544]: Failed password for root from 140.116.91.23 port 43048 ssh2
Dec 13 18:14:33 sshd[50541]: Failed password for root from 140.116.91.23 port 42619 ssh2
Dec 13 18:14:29 sshd[50538]: Failed password for root from 140.116.91.23 port 42248 ssh2
Dec 13 18:14:25 sshd[50527]: Failed password for root from 140.116.91.23 port 42111 ssh2
Dec 13 18:14:22 sshd[50457]: Failed password for root from 140.116.91.23 port 41674 ssh2
Dec 13 18:14:18 sshd[50454]: Failed password for root from 140.116.91.23 port 41304 ssh2
Dec 13 18:14:14 sshd[50451]: Failed password for root from 140.116.91.23 port 40875 ssh2
Dec 13 18:14:10 sshd[50449]: Failed password for root from 140.116.91.23 port 40638 ssh2
Dec 13 18:14:06 sshd[50434]: Failed password for root from 140.116.91.23 port 40235 ssh2
Dec 13 18:14:03 sshd[50431]: Failed password for root from 140.116.91.23 port 39693 ssh2
Dec 13 18:13:57 sshd[50428]: Failed password for root from 140.116.91.23 port 39351 ssh2
Dec 13 18:13:54 sshd[50425]: Failed password for root from 140.116.91.23 port 38873 ssh2
Dec 13 18:13:50 sshd[50410]: Failed password for root from 140.116.91.23 port 38633 ssh2
Dec 13 18:13:47 sshd[50407]: Failed password for invalid user teste from 140.116.91.23 port 38296 ssh2
Dec 13 18:13:47 sshd[50407]: Invalid user teste from 140.116.91.23
Dec 13 18:13:44 sshd[50405]: Failed password for invalid user teste from 140.116.91.23 port 38099 ssh2
Dec 13 18:13:44 sshd[50405]: Invalid user teste from 140.116.91.23
Dec 13 18:13:42 sshd[50402]: Failed password for invalid user teste from 140.116.91.23 port 37642 ssh2
Dec 13 18:13:42 sshd[50402]: Invalid user teste from 140.116.91.23
Dec 13 18:13:38 sshd[50399]: Failed password for invalid user teste from 140.116.91.23 port 37232 ssh2
Dec 13 18:13:38 sshd[50399]: Invalid user teste from 140.116.91.23
Dec 13 18:13:34 sshd[50396]: Failed password for invalid user teste from 140.116.91.23 port 36733 ssh2
Dec 13 18:13:34 sshd[50396]: Invalid user teste from 140.116.91.23
Dec 13 18:13:30 sshd[50394]: Failed password for invalid user teste from 140.116.91.23 port 36473 ssh2
Dec 13 18:13:30 sshd[50394]: Invalid user teste from 140.116.91.23
Dec 13 18:13:26 sshd[50382]: Failed password for invalid user teste from 140.116.91.23 port 36028 ssh2
Dec 13 18:13:26 sshd[50382]: Invalid user teste from 140.116.91.23
Dec 13 18:13:22 sshd[50333]: Failed password for invalid user teste from 140.116.91.23 port 35502 ssh2
Dec 13 18:13:22 sshd[50333]: Invalid user teste from 140.116.91.23
Dec 13 18:13:18 sshd[50309]: Failed password for invalid user teste from 140.116.91.23 port 35033 ssh2
Dec 13 18:13:18 sshd[50309]: Invalid user teste from 140.116.91.23
Dec 13 18:13:15 sshd[50307]: Failed password for root from 140.116.91.23 port 34855 ssh2
Dec 13 18:13:12 sshd[50304]: Failed password for root from 140.116.91.23 port 34435 ssh2
Dec 13 18:13:08 sshd[50301]: Failed password for root from 140.116.91.23 port 34059 ssh2
Dec 13 18:13:05 sshd[50299]: Failed password for root from 140.116.91.23 port 33865 ssh2
Dec 13 18:13:02 sshd[50296]: Failed password for root from 140.116.91.23 port 33413 ssh2
Dec 13 18:12:58 sshd[50293]: Failed password for root from 140.116.91.23 port 32904 ssh2
Dec 13 18:12:54 sshd[50277]: Failed password for root from 140.116.91.23 port 60705 ssh2
Dec 13 18:12:50 sshd[50275]: Failed password for root from 140.116.91.23 port 60579 ssh2
Dec 13 18:12:47 sshd[50272]: Failed password for root from 140.116.91.23 port 60059 ssh2
Dec 13 18:12:43 sshd[50269]: Failed password for root from 140.116.91.23 port 59584 ssh2
Dec 13 18:12:39 sshd[50267]: Failed password for root from 140.116.91.23 port 59070 ssh2
Dec 13 18:12:36 sshd[50264]: Failed password for root from 140.116.91.23 port 58949 ssh2
Dec 13 18:12:33 sshd[50261]: Failed password for root from 140.116.91.23 port 58463 ssh2
Dec 13 18:12:29 sshd[50258]: Failed password for root from 140.116.91.23 port 57970 ssh2
Dec 13 18:12:25 sshd[50256]: Failed password for root from 140.116.91.23 port 57768 ssh2
Dec 13 18:12:21 sshd[50244]: Failed password for root from 140.116.91.23 port 57353 ssh2
Dec 13 18:12:19 sshd[50174]: Failed password for root from 140.116.91.23 port 56877 ssh2
Dec 13 18:12:15 sshd[50172]: Failed password for root from 140.116.91.23 port 56350 ssh2
Dec 13 18:12:11 sshd[50169]: Failed password for root from 140.116.91.23 port 56226 ssh2
Dec 13 18:12:07 sshd[50166]: Failed password for root from 140.116.91.23 port 55774 ssh2
Dec 13 18:12:05 sshd[50164]: Failed password for root from 140.116.91.23 port 55280 ssh2
Dec 13 18:12:01 sshd[50160]: Failed password for root from 140.116.91.23 port 55140 ssh2
Dec 13 18:11:57 sshd[50145]: Failed password for root from 140.116.91.23 port 54723 ssh2
Dec 13 18:11:54 sshd[50143]: Failed password for root from 140.116.91.23 port 54232 ssh2
Dec 13 18:11:51 sshd[50140]: Failed password for root from 140.116.91.23 port 54144 ssh2
Dec 13 18:11:48 sshd[50137]: Failed password for root from 140.116.91.23 port 53638 ssh2
Dec 13 18:11:44 sshd[50135]: Failed password for root from 140.116.91.23 port 53160 ssh2
Dec 13 18:11:41 sshd[50132]: Failed password for root from 140.116.91.23 port 53031 ssh2
Dec 13 18:11:37 sshd[50129]: Failed password for root from 140.116.91.23 port 52531 ssh2
Dec 13 18:11:33 sshd[50126]: Failed password for root from 140.116.91.23 port 52017 ssh2
Dec 13 18:11:30 sshd[50124]: Failed password for root from 140.116.91.23 port 51916 ssh2
Dec 13 18:11:27 sshd[50121]: Failed password for root from 140.116.91.23 port 51429 ssh2
Dec 13 18:11:23 sshd[50118]: Failed password for root from 140.116.91.23 port 50894 ssh2
Dec 13 18:11:20 sshd[50105]: Failed password for root from 140.116.91.23 port 50805 ssh2
Dec 13 18:11:17 sshd[50037]: Failed password for root from 140.116.91.23 port 50287 ssh2
Dec 13 18:11:13 sshd[50034]: Failed password for root from 140.116.91.23 port 49795 ssh2
Dec 13 18:11:10 sshd[50032]: Failed password for invalid user postgres from 140.116.91.23 port 49671 ssh2
Dec 13 18:11:10 sshd[50032]: Invalid user postgres from 140.116.91.23
Dec 13 18:11:07 sshd[50029]: Failed password for invalid user postgres from 140.116.91.23 port 49214 ssh2
Dec 13 18:11:07 sshd[50029]: Invalid user postgres from 140.116.91.23
Dec 13 18:11:04 sshd[50013]: Failed password for invalid user oracle from 140.116.91.23 port 48679 ssh2
Dec 13 18:11:04 sshd[50013]: Invalid user oracle from 140.116.91.23
Dec 13 18:11:00 sshd[50011]: Failed password for invalid user oracle from 140.116.91.23 port 48137 ssh2
Dec 13 18:11:00 sshd[50011]: Invalid user oracle from 140.116.91.23
Dec 13 18:10:56 sshd[50008]: Failed password for invalid user oracle from 140.116.91.23 port 48092 ssh2
Dec 13 18:10:56 sshd[50008]: Invalid user oracle from 140.116.91.23
Dec 13 18:10:54 sshd[50005]: Failed password for root from 140.116.91.23 port 48001 ssh2
Dec 13 18:10:50 sshd[50003]: Failed password for root from 140.116.91.23 port 47877 ssh2
Dec 13 18:10:44 sshd[50000]: Failed password for root from 140.116.91.23 port 47819 ssh2
Dec 13 18:10:41 sshd[49997]: Failed password for root from 140.116.91.23 port 47750 ssh2
Dec 13 18:10:38 sshd[49994]: Failed password for root from 140.116.91.23 port 47701 ssh2
Dec 13 18:10:35 sshd[49992]: Failed password for root from 140.116.91.23 port 47630 ssh2
Dec 13 18:10:33 sshd[49989]: Failed password for root from 140.116.91.23 port 47553 ssh2
Dec 13 18:10:29 sshd[49986]: Failed password for root from 140.116.91.23 port 47464 ssh2
Dec 13 18:10:25 sshd[49984]: Failed password for root from 140.116.91.23 port 47401 ssh2
Dec 13 18:10:22 sshd[49981]: Failed password for root from 140.116.91.23 port 47316 ssh2
Dec 13 18:10:19 sshd[49970]: Failed password for root from 140.116.91.23 port 47246 ssh2
Dec 13 18:10:16 sshd[49900]: Failed password for root from 140.116.91.23 port 47150 ssh2
Dec 13 18:10:12 sshd[49897]: Failed password for root from 140.116.91.23 port 47045 ssh2
Dec 13 18:10:08 sshd[49869]: Failed password for root from 140.116.91.23 port 46853 ssh2
Dec 13 18:10:04 sshd[49867]: Failed password for root from 140.116.91.23 port 46666 ssh2
Dec 13 18:10:02 sshd[49853]: Failed password for root from 140.116.91.23 port 46391 ssh2
Dec 13 17:57:29 sshd[48541]: Did not receive identification string from 140.116.91.23
Dec 13 16:21:10 sshd[38357]: Failed password for invalid user test from 211.92.149.147 port 59236 ssh2
Dec 13 16:21:10 sshd[38357]: Invalid user test from 211.92.149.147
Dec 13 16:21:07 sshd[38355]: Failed password for invalid user oracle from 211.92.149.147 port 58877 ssh2
Dec 13 16:21:07 sshd[38355]: Invalid user oracle from 211.92.149.147
Dec 13 16:21:03 sshd[38352]: Failed password for root from 211.92.149.147 port 58571 ssh2
Dec 13 16:21:00 sshd[38349]: Failed password for root from 211.92.149.147 port 58276 ssh2
Dec 13 16:20:57 sshd[38347]: Failed password for root from 211.92.149.147 port 57946 ssh2
Dec 13 16:20:53 sshd[38344]: Failed password for root from 211.92.149.147 port 57640 ssh2
Dec 13 16:20:50 sshd[38328]: Failed password for root from 211.92.149.147 port 57359 ssh2
Dec 13 16:20:47 sshd[38326]: Failed password for root from 211.92.149.147 port 57124 ssh2
Dec 13 16:20:44 sshd[38323]: Failed password for root from 211.92.149.147 port 56858 ssh2

Que significan estos logs estan intentando entrara a mi red o son intentos de logueo internos hacia otros sitios?

13
Español / pfsense inestable
« on: December 12, 2009, 12:44:23 am »
Hola a todos!!
Recientemente he empezado a tener problemas con un pfsense les comento mi caso.
Primero el pfsense esta montado sobre una maquina con un procesador celeron de 1.7, 1 gb de ram y 160 de disco duro, y dos tarjetas de red de 100 mbps.

Tengo 1536/512 mb de conexion para internet, y unos 22 clientes que pasan todo el dia conectados al skype por motivos de trabajo.

El problema es el siguiente pase dos semanas con pfsense sobre esta maquina con la version 1.2, y me estuvo generando problemas no a nivel de red, si no a nivel de internet, a veces se ponia lento, se caia, se perdian entre un 33 a un 66 porciento de paquetes al hacer un ping etc.

Debido a esto y pensando que era un problema de version me pase a la version 1.2.3 que recien descargue, despues de instalado configure el squid, squid guard y ligthsquid en esta maquina(en estos momentos a pesar de que los instale no los estoy utilizando), pero el problema persiste sigo perdiendo paquetes en los ping a veces la navegacion se torna normal y de repente otra vez comienza mal.

Para descartar que era un problema de mi isp probe poniendo un router linksys como router principal y tuve cero problemas por este medio.

Luego he estado revisando los rrd graphs del pfsense y efectivamente veo como por horas se presenta mucha perdida de paquetes a veces casi ni se nota pero siempre la hay.

Dentro del pfsense tengo configurado open vpn(que no se usa)
y pptp vpn(esta si se usa)

Creo quye esta es la mayoria de la informacion que puedo brindar espero que alguien puedea guiarme en el asunto.

14
Español / Consulta
« on: December 01, 2009, 10:53:37 pm »
Hola compo estan todos!!!!

Mi consulta es la siguiente, tengo la siguiente estructura en una empresa y queremos implementar un web filter(en esta red esa seria la unica funcion del pf)

                                                                ----------------- domain controler
modem adsl--------cisco con vpn------switch  ----------------- LAN
                                                                ----------------- Pfsense


La duda es es posible hacer que el web filter funcione estructurando la red de este modo o deberia de hacer cambios

Creo que con el modo bridge en la red LAN del pf funcionaria estoy en lo correcto?

15
Español / Open vpn se desconecta
« on: November 20, 2009, 04:54:22 pm »
Buenas Tardes a todos!!

Hace unos dias atras configure una open vpn para accesar desde otra sucursal a mi empresa, todo iba funcionando perfecto hasta que hoy no se por que motivo el cliente se desconecta y se desconecta solo

Alguien me podria ayudar



Pages: [1] 2