Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - newUser2pfSense

Pages: [1]
1
General Questions / Suricata & IPv6 Alerts
« on: February 06, 2018, 04:37:32 pm »
Iíve installed and configured Suricata with no issues; currently only using it on the WAN.  For blocking, Iím using the Inline IPS Mode; it seems to be working so far.  In System / Advanced / Networking, Iíve unchecked Allow IPv6.

From the Suricata WAN Categories/Rules Iíve enabled, when I look at the Suricata Alerts, I see a lot of IPv6 addresses in the Src and Dst columns.  They seem to stem from entries in the decoder-events.rules:
SURICATA zero length padN option
SURICATA ICMPv6 unknown code
Sport 131 and 132 are used.

Iíve configured both entries for Rule action is drop.

Nevertheless, I thought I disabled IPv6.  I have no devices on my network configured for IPv6.  Any suggestions as to why Iím seeing these IPv6 addresses in the the Src and Dst columns of the Suricata Alerts section?  Thanks.

2
OpenVPN / OpenVPN File to iPhone
« on: February 04, 2018, 03:07:41 pm »
I realize the iPhone OpenVPN app has several different methods of importing a private tunnel (apparently it's an .ovpn file), however, I'm just wondering if anyone has ever tried to import their private tunnel by connecting their iPhone to a Linux or Mac machine and copied it to the iPhone in this manner?  Can it even be done?  Thanks.

3
Firewalling / Apple Remote Desktop (ARD)
« on: January 22, 2018, 12:31:00 pm »
Hello...

I'm currently running pfSense 2.4.2-RELEASE-p1 (amd64).  I've been attempting to connect to a relatives MacBook Pro from my Mac using Apple Remote Desktop with no luck.  I've always been able to connect in the past.  There are only two things that have changed since that time; my relative got a new router from her ISP which they stated they put it in bridged mode and I began to use pfSense.  Each of our Macs are up to date as well.  I don't know that pfSense is blocking the connection but am wondering if anyone has any experience with pfSense and Apple Remote Desktop that may be able to provide some guidance?

Thank you.

4
Installation and Upgrades / 2.4.0 ZFS Install
« on: October 16, 2017, 07:18:34 pm »
During the installation process of pfSense 2.4.0, does anyone know if you can choose/select the ZFS file system; a checkbox, radio button or something similar?  I thought I would backup my current pfSense instance and create a fresh install of pfSense 2.4.0 with ZFS and then restore my backup.  Any response would be appreciated.  Thank you.

5
Firewalling / Block private networks - Block bogon networks
« on: June 25, 2017, 02:52:00 pm »
My WAN interface has the Block private networks... and Block bogon networks checked.
My LAN interface, 192.168.1/24, and my WLAN interface, 192.168.2/24, do not have either checked.  Do I need to check these for my LAN and WLAN?  I couldn't find the correct answer in the forums.
Thanks in advance.

6
Firewalling / Setting Gateways
« on: June 16, 2017, 06:03:29 pm »
I'm currently using pfSense 2.3.4-RELEASE (amd64).

My LAN interface is set to 192.168.1.1.
My WLAN interface is set to 192.168.2.1.

Do I also need to go to System | Routing | Gateways and configure a:
LAN gateway and set to 192.168.1.1?
WLAN gateway and set to 192.168.2.1?

7
Firewalling / Checking Email Wirelessly With Apple iPhone
« on: January 15, 2017, 06:11:24 pm »
Does anyone know if the Apple iPhone uses a specific protocol to check Gmail email by wireless?  I've enabled the following firewall rules on my wireless:
1)  TCP/UDP port 53
2)  HTTP port 80
3)  HTTPS port 443
4)  UDP port 123

I just noticed that my iPhone is not checking my Gmail email as it should.  Any suggestions?

Thank you.

8
Firewalling / Wireless Webcam Access to Wired NAS
« on: October 17, 2016, 08:33:26 pm »
I donít know that much about networking; more theory than practical application.  I have a question about routing data from one network interface to another network interface.  I currently have a fresh install of pfSense 2.3.2-RELEASE-p1 (amd64). 

My wired lan is on an interface configured with a 192.168.1 network.
My wireless lan is on an interface configured with a 192.168.2 network.

I have a wired NAS on the 192.168.1 network.
I have a wireless webcam on the 192.168.2 network.

I would like to have the wireless webcam record to a path on my wired NAS; yes, the wireless webcam has this functionality.

Even though the NAS and webcam are configured with static IPs, Iíve also set DHCP Static Mappings, I guess you might call them DHCP reservations, for the devices as well.  (I read it in a post somewhere to do this).

From the Firewall | Rules | WLAN section, I created a rule to-
Action:  Pass
Disabled:  unchecked
Interface:  WLAN  (wireless lan)
Address Family:  IPv4
Protocol:  Any
Source:  Single host or alias, 192.168.2.100
Destination:  Single host or alias, 192.168.1.130

From the Firewall | Rules | LAN section, I created a rule to-
Action:  Pass
Disabled:  unchecked
Interface:  LAN  (wired lan)
Address Family:  IPv4
Protocol:  Any
Source:  Single host or alias, 192.168.2.100
Destination:  Single host or alias, 192.168.1.130

Iíve checked and re-checked the NAS path including the username and password.  There is no data being recorded to the NAS.

Obviously I have something configured incorrectly.  Anyone have any ideas?  Any suggestions would be helpful.  Thanks.

9
Wireless / pfSense Wireless Access Point Use Setup
« on: October 12, 2016, 07:10:29 pm »
I currently have a fresh install of pfSense 2.3.2-RELEASE-p1 (amd64); the installation went smoothly.  I have an Intel 4 port Gigabit NIC in the computer with one of the ports set for my LAN.  Iíve assigned another port on the NIC specifically for my wireless access point (WAP); my WAP has a static IP and connected directly to the NIC port I assigned for it - DHCP is disabled on the WAP.  My WAP is not a wireless router, it's a dedicated WAP.  Iím very new to pfSense.  What settings would I need to configure in pfSense to provide internet access to my wireless devices?  Is there anything I need to configure in the Interfaces menu for the interface I created for the wireless?  Do I need to configure a rule in the Firewall | Rules menu for internet access, and if so, what would the rule look like?

LAN IP:  192.168.1.1/24
WAP IP:  192.168.2.1/24

Suggestions would be very helpful.  Thank you.

10
Wireless / Adding an autonomous Cisco wireless access point to pfSense
« on: September 12, 2016, 05:26:44 pm »
Iím currently using pfSense 2.3.2-RELEASE (amd64) and I would like to connect my standalone/autonomous Cisco wireless access point (no wireless LAN controller needed) to my pfSense firewall/router.  Iíve given my wireless access point an IP of 192.168.2.1/24, segregating it from my internal private LAN of 192.168.1.1/24.  I'll setup Rules later on for allowing wireless device traffic into my private LAN. 

I went to Interfaces | (assign) and chose the network port I wish to use and clicked on +Add and Save which gave me an OPT1 interface.  Clicking on the OPT1 interface, Iíve changed the default settings to the below and saved:

General Configuration
- check Enable interface
- Description:  WLAN
- IPv4 Configuration Type:  Static IPv4
- IPv6 Configuration Type:  None
- MAC Address:  not configured
- MTU:  not configured
- MSS:  not configured
- Speed and Duplex:  1000baseT full-duplex

Static IPv4 Configuration
- IPv4 Address:  192.168.2.1
- IPv4 Upstream gateway:  None

Reserved Networks
- Block private networks and loopback addresses:  left unchecked
- Block bogon networks:  check

I then went to Interfaces | Bridges and clicked on +Add and I configured the Bridge and saved it as:

Bridge Configuration
- Member interfaces:  highlighted WAN and WLAN
- Description:  WLAN to WAN Bridge

Iíve done quite a bit of targeted searching and couldnít find any current posts about adding a wireless access point to pfSense 2.3.2.  Most older posts talked about making the pfSense box itself a wireless router which Iím not doing.

Is my configuration correct for the addition of a standalone wireless access point or do I need to make some adjustments?  Any suggestions would be helpful.

11
Cache/Proxy / Squid ClamAV Not Reporting Virus'
« on: August 18, 2016, 08:15:19 pm »
Hello all...

I have a full install of pfSense 2.3.2-RELEASE (amd64).  I have installed Squid from the Package Manager specifically to use the ClamAV antivirus.  I believe I have everything enabled to include the Squid Proxy.  As well, I'm able to update the virus definitions with no issues. 

Squid Version      3.5.19_1
Antivirus       ClamAV 0.99.2    C-ICAP 0.4.3
Scanner  SquidClamav 6.10

The following services are all running:
c-icap    ICAP Inteface for Squid and ClamAV integration
clamd    ClamAV Antivirus
squid    Squid Proxy Server Service

When I go to download an eicar virus test file, I'm able to download the file with no virus message displaying.  I thought SquidClamAV would show some kind of virus detected message and that the file cannot be downloaded. 

Would anyone happen to know what I might be doing incorrectly?  Any suggestions would be helpful.

12
Installation and Upgrades / Snort Install Failed - 2.3.2-RELEASE (amd64)
« on: August 11, 2016, 05:57:56 pm »
Hello all...

I have stopped using two different brands of enterprise network equipment and opted to begin using pfSense instead.  What a great decision!

I have installed the newest version of pfSense which at the time of this post is 2.3.2-RELEASE (amd64).  I was attempting to install snort from the System | Package Manager menu and I received the following error message:

>>> Installing pfSense-pkg-snort...
Updating pfSense-core repository catalogue...
pfSense-core repository is up-to-date.
Updating pfSense repository catalogue...
pfSense repository is up-to-date.
All repositories are up-to-date.
New version of pkg detected; it needs to be installed first.
The following 1 package(s) will be affected (of 0 checked):

Installed packages to be UPGRADED:
   pkg: 1.8.7 -> 1.8.7_1 [pfSense]

Number of packages to be upgraded: 1

2 MiB to be downloaded.
pkg: https://pkg.pfsense.org/pfSense_v2_3_2_amd64-pfSense_v2_3_2/All/pkg-1.8.7_1.txz: Not Found
Failed

Anyone have any ideas how I can resolve this issue and install snort?  Any suggestions would be helpful.

Pages: [1]