Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - sisko212

Pages: [1]
1
Italiano / [SOLVED] Traffico Voip priorità
« on: May 23, 2017, 02:04:58 am »
Salve,
Qualcuno di voi ha mai fatto una configurazione del traffic shaper per dare priorità al traffico voip ?
La mia configurazione è composta da N schede di rete
WAN
DMZ
LAN1
LAN2
LANX
Il pbx asterisk si trova in Dmz, ed ho un trunk sip, ovviamente in wan, verso il mio provider di telefonia.
Come posso far in modo che il voip wan-dmz abbia priorità massima e magari un minimo di banda garantita, diciamo 512Kbit ?
Grazie in anticipo a tutti.

2
Hardware / Raid Perc 5/I freeze when high write activity disk
« on: December 04, 2015, 02:49:22 am »
Good morning to everyone
I am using a old Dell Poweredge 2950 with a Raid 1 as work volume.
It is based on an internal hardware raid Perc 5/I, and it works well for months, a parts when i want to delete large amount of files from shell (ex. with rm -rf when deleting entire logs dir o sarg report dirs) it completely freezes, and i have to do an hard reset.
This is its configuration:

[2.2.4-RELEASE][admin@firewall.local]/root: mfiutil show volumes
mfi0 Volumes:
  Id     Size    Level   Stripe  State   Cache   Name
 mfid0 (   68G) RAID-1       8K OPTIMAL Enabled  <BootVolume>

[2.2.4-RELEASE][admin@firewall.local]/root: mfiutil show adapter
mfi0 Adapter:
    Product Name: PERC 5/i Integrated
   Serial Number: 12345
        Firmware: 5.2.2-0072
     RAID Levels: JBOD, RAID0, RAID1, RAID5, RAID10, RAID50
  Battery Backup: not present
           NVRAM: 32K
  Onboard Memory: 256M
  Minimum Stripe: 8K
  Maximum Stripe: 128K

[2.2.4-RELEASE][admin@firewall.local]/root: mfiutil show config
mfi0 Configuration: 1 arrays, 1 volumes, 1 spares
    array 0 of 2 drives:
        drive  0 (   68G) ONLINE <MAXTOR ATLAS10K5_073SAS BP00 serial=J20YVCRK    \000???> SAS
        drive  1 (   68G) ONLINE <MAXTOR ATLAS10K5_073SAS BP00 serial=J20Z7B3K    \000???> SAS
    volume mfid0 (68G) RAID-1 8K OPTIMAL <BootVolume> spans:
        array 0
    global spare  2 (  279G) HOT SPARE <HITACHI HUS156030VLS600 E516 serial=LVWLVNUS> SCSI-6

[2.2.4-RELEASE][admin@firewall.local]/root: mfiutil show volumes
mfi0 Volumes:
  Id     Size    Level   Stripe  State   Cache   Name
 mfid0 (   68G) RAID-1       8K OPTIMAL Enabled  <BootVolume>
 
 Any idea ?
 Thanks a lot in advance for any suggestion or help.

3
Hi to everybody,
After a fresh installation and restore of pfsense 2.2.4 amd64, clamd and c-icap under squid3 do not want to start.
Some days ago, cause a disk failure, I did a pfsense fresh installation, and I restored, with a backup configuration taken a couple days before failure.
The configuration backup, comes from same pfsense version 2.2.4, and, excluding the hard disk, is same hardware.
After reboot, when pfsense had finished all packages reinstallation, antivirus clamd and c-icap, refused to start.
Later I found the issue for Clamav... the "clamav" user was missing, but c-icap it is still a trouble.
I noted, that executable file is not been installed, and it is not available on its folder "/usr/local/bin/c-icap".
Not only... today i also did a squid3 reinstallation, because a  new version 0.3.2, was available, and now also clamav binary is missing into "/usr/local/sbin/clamd".
Unfortunatelly, uninstall and reinstall squid3 has no effect.
To me, it is clear that something on configuration backup has broken, and has caused those troubles to squid3.
So, someone could tell me, how to delete any previous squid3 configuration ONLY ?
Thanks in advance for your patience.

4
Italiano / [SOLVED] Eseguibile antivirus C-ICAP non installato.
« on: September 10, 2015, 08:01:48 am »
Salve a tutti.
Ho fatto una reinstallazione from scratch di un pfsense amd64, di cui avevo una configurazione .xml di backup presa qualche minuto prima.
Nella reinstallazione dei pacchetti mi sono accorto che lo squid3, non faceva partire ne clamav ne l'antivirus c-icap.
Clamav aveva il noto problema della mancanca dell'user clamav, e vabbè... l'ho risolto velocemente, ma l'antivirus è più problematico.
Alla fine mi sono accorto che manca completamente il binario eseguibile in "/usr/local/bin/c-icap"
Ovviamente dis-installare e reinstallare il pacchetto, dal package manager, non sortisce nessun effetto...
Qualcuno è a conoscenza, se è il pacchetto .pbi ad aver problemi, o se può essere un problema del restore della mia configurazione ??
Grazie a tutti.

5
NAT / Is ftp nat broken on 2.2 ?
« on: February 03, 2015, 05:22:34 am »
Hello to everyone,
Somebody has experimented trouble with ftp server (but also client on lan) behind pfsense, after upgrading to 2.2 (amd64 version)?
In my case, my ftp server, has stopped to work in passive mode (could be proxy ftp module ? ) and also a setting of "System Tunables", debug.pfftpproxy=1, doesn't make differences
The only way to make it work, is to set as active mode.
While for ftp clients on lan, I have not yet a reasonable solution... the only way is to open all port (and not only 20-21), but it is not so acceptable.
Thanks a lot in advance for any suggestion

Pages: [1]