Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - revengineer

Pages: [1]
IDS/IPS / pfsense reinstall hangin on rules download
« on: November 03, 2017, 09:22:52 pm »
I have reinstalled pfsense 2.4.1 to get the zfs file system. On restore of the config, pfsense hangs on "Downloading snortrules-snapshot-2990.tar.gz". I can download these rules manually just fine. Any help to get my pfsense back up and running is greatly appreciated. Thank you!

Feedback / August 2017 Hangout
« on: August 31, 2017, 09:32:36 am »
Can the August 2017 hangout video be made available in the hangouts archive? Thank you.

Official pfSense Hardware / 2.4.0-RC for SG-1000?
« on: August 23, 2017, 02:23:39 pm »
I logged into my pfsense portal account to download 2.4.0-RC for my SG-1000, but I can only find the latest BETA version there (not the RC). Am I missing something?

Packages / Tracking cable modem signal quality
« on: June 10, 2017, 07:18:43 am »
Is there a package for pfsense to track cable modem upstream and downstream power levels and SNR? This has helped me on another firewall software in the past with debugging connection issues with the ISP. Thank you in advance for your feedback.

Packages / Feature Request: Disable Service Watchdog
« on: April 29, 2017, 05:54:39 am »
For network trouble shooting, it would be nice to add an option (check box) to the Service Watchdog package to enable or disable the watchdog service. Currently one has to manually delete and later add all the watched services. If the author is reading this, your help is appreciated!!!

Development / pfSense seems impossible to build
« on: January 28, 2017, 09:39:59 am »
After four hours of utter frustration due to the attempt to build pfSense, I thought I post a comment on my experience.

First, I have previously worked with firewall appliances but am new to pfSense. I am generally impressed with pfSense, so much so that after running it on a PC as my main firewall, I bought an SG-1000 with Gold subscription. The pfSense book and hangouts accessible with the subscription are wonderful.

After some tinkering with lcdcproc, I took on the attempt to compile pfSense to explore the possibility to further contribute. I have contributed to other firewall software before, where the process was as simple as install OS, clone git repository, and run the build script.

Taking the above approach failed miserable with pfSense. The build script complain right away about "nonSense" files missing. The furthest I got was using the "pfSense" build name and circumventing licensing regulation. But not only is this prohibited, it will also eventually fail to create a working distro.

I have searched the internet for several hours. I cannot definitely say that the information required to build a "nonSense" distro is not available anywhere, but it is certainly impossible to find in a reasonable amount of time.

I saw posts from several noobs with similar problems who gave up trying due to the lack of community support. So my issues are not solely due to PEBKAC. I understand that supporting noobs is inconvenient, but it would take the pros probably less than an hour to put a wiki post with the compile steps together.

Please support us noobs in our desire to contribute. We need instructions for building pfsense and add-on packages please.

I hope that my experience provides some food for thought.


Packages / LCDproc with Matrix Orbital LCD
« on: January 21, 2017, 04:40:43 pm »
I just soldered together this kit for use with lcdproc in pfsense 2.4 beta. The display works using the Matrix Orbital (MtxOrb) driver. However, the first and sometimes the last character is replaced with the letter "K" and occasionally there are some filled in block. The Matrix Orbital forum shows that this can be resolved chosing "Typce=lkd" and "hasAdjustableBacklight=no" in LCDd.conf. Problem is that after making the changes, the config gets overwritten with the previous data, which cause the problem. I tried to set LCDd.conf to read only but this did not help. Can anyone tell me how to prevent the pfsense package from overwriting the config?

Thanks for the help in advance.

Cache/Proxy / Squidguard blacklist notification
« on: December 29, 2016, 04:05:55 pm »
I am new to pfsense and could not find a satisfactory solution to the following problem. I installed the squid and squidguard packages. When I try to go to a blacklisted page, I get the web error "400 Bad request The plain HTTP request was sent to HTTPS port nginx".

This was previously noted in post The work around is no move the web GUI from https to http.

I have tested this solution and it works. The workaround is not entirely satisfying because security is compromised using unencrypted http access to the web GUI.

Is this issue a bug? Or can this be fixed through other configuration options? I have worked myself through most of the configuration options but have not found anything obvious.

Any help is greatly appreciated.

Pages: [1]