Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - jahonix

Pages: [1] 2 3 4 5 ... 170
Firewalling / Re: Communication between devices
« on: Yesterday at 05:49:11 pm »
No bridge, no nothing, it's now working as i wanted.
Great, isn't it? Without any strange fiddling just straight work.
I appreciate you followed this forum's advise and that you posted back!

General Questions / Re: Legally use PFsense in a company
« on: March 13, 2018, 07:31:25 am »
I am currently working on a blog in which a complete network is set up and configured. It also contains a PFsense.
To me that would start with spelling the name correctly. It's pfSense®::)

Deutsch / Erfahrung mit DeutschlandLAN CloudPBX / SIP-Trunk?
« on: March 13, 2018, 07:15:50 am »
Wir müssen in absehbarer Zeit unseren ISDN Anlagenanschluss durch eine IP Variante ersetzen und überlegen, dabei evtl. die Anlage in die Telekom-Cloud zu verlegen (DeutschlandLAN CloudPBX). Alternativ wäre halt ein DeutschlandLAN SIP-Trunk mit lokaler PBX.

Hat jemand von Euch Erfahrungen mit der CloudPBX, die er mit mir/uns teilen würde?

Firewalling / Re: Communication between devices
« on: March 13, 2018, 06:47:43 am »
I think with vlans, but ...
Forget about VLANs for now, you would need a managed switch. Get your basic setup working first. 0 1
And you already know what that means or it's like this just because it's in the tutorial?

So forget the $5 switch for all devices?
No. 5 minutes are over. Get a $5 switch. Forget about the rest.

Hardware / Re: Hardware for small business
« on: March 13, 2018, 06:37:43 am »
but the connections are on opposite sides of the building
And that's an excuse for what? Not running a single system with WAN failover/load-balaning or for being lazy and not pulling a cable (copper or fiber)?

Installation and Upgrades / Re: pfsense on Mac Pro
« on: March 12, 2018, 08:20:52 pm »
^^that. You might want to exchange the Realtek for an Intel NIC and speed should go up.
At least if your CPU can still cope with it.

Deutsch / Re: Neuling braucht Hilfe
« on: March 12, 2018, 08:11:38 pm »
... ein Relikt aus Zeiten vor pfSense.
Trau' Dich und frag hier im Forum nach Hilfe, auch Dir kann bestimmt geholfen werden!  :P

Hardware / Re: Hardware for small business
« on: March 12, 2018, 05:53:53 pm »
That thing burns 54 Watts with only two (physical) cores. Nice heating and not really the top pick in 2018.

Deutsch / Re: Neuling braucht Hilfe
« on: March 12, 2018, 05:44:49 pm »
Hast du kein internes DNS, kannst du mit "NAT Reflection" ...
Das wäre schon ein ungewöhnliches Setup, wenn man unter pfSense keinen lokalen DNS Server laufen lässt, meinst Du nicht auch?

Firewalling / Re: Communication between devices
« on: March 12, 2018, 05:40:09 pm »
I have tried to block (nas) to (pihole) but they are still able to talk to each other.

How did you set and from system tunables?

Imagine your bridged interfaces to be a switch (just for now, forget about that in 5 min again!). Traffic between hosts on the same subnet will not hit the router (it is not routed to another network, right?) and therefore cannot be filtered.
Put them on different subnets (that's what multiple interfaces are there for!) and filter between them. But don't expect near line-speed traffic to/from your NAS!

Firewalling / Re: Communication between devices
« on: March 12, 2018, 05:27:10 pm »
Why the heck do so many unexperienced users bridge interfaces? What are the thoughts when doing so?
Bridging interfaces is not a general purpose replacement for a switch. Never was, never will be.

Even your cited site reads: "A good rule of thumb is switch when you can, bridge only if you must."

One of the ports of the quad nic is set up as wan (igb0) and lan is igb0, ...
as the Highlander used to say: there can be only one (on igb0 without VLANs).

For the other interfaces better get a $5 switch hocked up to LAN and connect hosts, NAS and WLAN APs there. Way better performance and zero problems with traffic between devices.

For $35 plus s&h I'd say why not?
It is loud, it consumes quite a lot of energy, but it's cheap.

Firewalling / Re: Firewall for Smart TV?
« on: March 12, 2018, 06:55:59 am »
I obviously have a fundamental misunderstanding of firewall setups, but unfortunately I don't have much time to delve deeply into the subject
Basically, what lonsense says is: I don't have the time needed to do all the reading, testing and learning so I need the volunteers on this forum to do my homework for me.
What an attitude...

You will not be able to successfully configure pfSense to your needs if you don't understand the basics.
Read about "Stateful Packet Inspection" whenever your time permits. Start here
Review your LAN rules and change accordingly.
Post back if something's not working.

Did you replace the CAT cable already?

Firewalling / Re: Firewall for Smart TV?
« on: March 11, 2018, 06:57:18 pm »
If those are rules for your LAN net then how would you expect any traffic FROM Content entering there?

You may need to figure out which rules apply where before creating all of them...

On the LAN net tab you only have rules for traffic which enters into the LAN interface, e.g. from all devices on that interface.
You can not define (block or allow) traffic from WAN to your LAN net there! That would be done on the WAN tab. Only there.

Before you spent too much time watching YT videos from guys with not too much a clue may I suggest reading some of the documentation here:
I'm pretty sure there's not much nonsense there.

Pages: [1] 2 3 4 5 ... 170