Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - bcruze

Pages: [1] 2 3 4
1
Official pfSense Hardware / Re: SG-2220 BIOS Updates for Meltdown/Spectre
« on: January 18, 2018, 06:47:50 am »
i have the same device i would like to know as well

2
OpenVPN / Re: SG 2220 with PIA strong 256 bit openvpn encryption errors
« on: January 08, 2018, 02:04:30 pm »
i understand what you are saying about the GUI.  and they were chosen.. in the openvpn log i would get these:

WARNING: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher BF-CBC'

WARNING: 'auth' is used inconsistently, local='auth SHA256', remote='auth SHA1'

WARNING: 'keysize' is used inconsistently, local='keysize 256', remote='keysize 128'

now that i have added them as i posted i get :

Jan 8 15:02:01   openvpn   21720   Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
Jan 8 15:02:01   openvpn   21720   Outgoing Data Channel: Using 256 bit message hash 'SHA256' for HMAC authentication
Jan 8 15:02:01   openvpn   21720   Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
Jan 8 15:02:01   openvpn   21720   Incoming Data Channel: Using 256 bit message hash 'SHA256' for HMAC authentication

those never showed up in the log before until i manually added as its shown in the openvpn config file by PIA

just my experience,  PIA has been updating quite a bit i have read as well

3
OpenVPN / Re: SG 2220 with PIA strong 256 bit openvpn encryption errors
« on: January 08, 2018, 08:49:44 am »
for anyone that cares.  i have been able to read online and pretty much fix this my self by doing the following:

1.  i moved away from the  servers CLOSEST to me.   it had the most servers available but they are clearly overloaded OR configured wrong.
2.  i added
a.  comp-lzo
b.  auth sha256     since i am connecting to the openvpn strong server
c. cipher aes-256-cbc      since i am connecting to the openvpn strong server

to my configuration and it has gotten rid of the MTU and all the warnings about it connecting to the old cipher.

night and day difference.    the main key is reading the configuration files provided and mimicking it to your configuration in the client. 

i have a 100Mb down 10up spectrum account.  and on a good server i can get 90Mb down and 10Mb up consistently


4
i am following the newest guide:

https://www.privateinternetaccess.com/forum/discussion/29231/tutorial-pia-on-pfsense-2-4?new=1


i also posted an updated link just about the top page of 22.  from a PIA staff

5
Thanks! Precisely what I was wanting. em0 egress is looking better now.

To fix this, go to System / General Setup and specify a 3rd party DNS resolver of your choosing

I'm assuming the screenshot is correct?

see now this is when my head starts hurting.    the  instructions never say to create a new interface.  so when i got home i disabled, the PIA interface to test my connection to see if it still worked and it did.  so i deleted the openvpn/ PIA interface.    so i can't change this setting.

so are you saying on the standard PIA instructions your data is not routed correctly on the outgoing interface..?

when i go to PIA.com i have a protected IP.   and i am getting my normal speeds and i have not for some time.   i really don't want to alter this unless i have too




6
thank you very much!     i will compare shortly to my home setup

7
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN (LOGS!)
« on: January 04, 2018, 09:48:28 am »
Not sure how anyone actually thought that these commodity VPN providers had a sustainable business model as traffic/subscribership increased.

i understand what you are saying but they advertise only 30% decrease in speeds from your ISP.
I, for one, have never seen misleading advertising or inflated claims!

The bottom line is that no VPN can avoid adding latency. Depending on what you're doing that may be a small impact or a huge impact. But, given the billions of dollars of R&D that have poured into reducing latency over the internet, it's got to have some noticeable effect. You may be willing to make that tradeoff, but be aware there is a tradeoff.

i had over 15 support tickets to nordvpn in the past 2 and a half weeks.  at home and work.  whether i used my pfsense box or their proprietary software.   i could not get half of my internet speed on ANY device i used. (heck it couldn't get 1/8 of my connection)

they refunded my money yesterday and I won't go back.   that was my 2nd time using their service,  the last time was 2 years ago so they have not improved at all.    buggy software, and servers either overloaded or misconfigured.

just my experience at multiple locations with multiple devices

i don't have that exact issue with PIA.    but their servers work more reliably and are faster.

i am still looking for an alternative to PIA.  i am open to any suggestion for   Pfsense/ Openvpn use and for Apple, windows 10 use

8
Hardware / Re: Minnowboard dual ethernet quadcore HDMI Problem
« on: January 04, 2018, 07:30:12 am »
please let us know the outcome.   that was my next purchase once i decide to replace my sg2220

9
this works for me

180 is the static ip address of my tv

10
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN (LOGS!)
« on: January 02, 2018, 06:12:51 am »
Not sure how anyone actually thought that these commodity VPN providers had a sustainable business model as traffic/subscribership increased.

i understand what you are saying but they advertise only 30% decrease in speeds from your ISP.    clearly their servers are overloaded/ their encryptition level is set TOO high ...  PIA servers were never as bad shockingly

i just recently subscribed to NORDvpn.  everytime i give them a chance they ruin it, so i have requested they refund my money since i am still in the trial 30 days.

i have the list of server names,  all i have to do is https://ipleak.net/ to find their location.  its just extremely time consuming


11
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN (LOGS!)
« on: January 01, 2018, 04:03:38 pm »
you Sir are on to something.

for PIA i have been using east coast primarily but using nslookup to find the different address and then connecting statically when one of them is slow.

i tried another coast and i have faster speed tests than ever.   WTH .


i think i'll leave this for a while.   its ALOT harder to find where the nordvpn servers are as they want you to use their tool to "automagically" find a server for you.     either way i have not been happy with their service i may end up dropping Nord. 

i never even thought to try another location... i appreciate the post

12
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN
« on: January 01, 2018, 11:06:11 am »
TWC / spectrum.  i hear you on that.

i guess time will tell when more people start to experience this

13
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN
« on: January 01, 2018, 09:03:17 am »
its like clock work.   10am EST.  i have been remoted in to my mac from work.        been getting 100Mb down for about an hour connected to PIA.   10am hits and i am now limited to less than 5Mb down 5Mb up.

doesn't matter what server i connect to.    disconnect and its back to normal speeds

14
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN
« on: January 01, 2018, 06:57:51 am »
i have been trying to get PIA and nordvpn on 256bitCBC encryption to stay at at least 30% below my full internet connection and it has been impossible for the past few weeks.    i even bought a new zoom 5370 modem.  to replace the arris provided by my ISP.   still the same issue!

PIA connects at SHA256.    Nord is SHA512.     both AES 256CBC though

what will happen is it will stay connected all night.   work from 6am until about 10am.   then my speeds will drop to the 2-5Mb area ALL during the day.

i know what your thinking its my ISP.    well if i disconnect my speeds are still FULL download and uploads provided by my ISP.

Nordvpn replied last night saying its a limitation of my router.  SG2220  1.7Ghz.   i don't believe that is the case.  cisco lower end equipment is that same specs and it does not have this issue.
i am going to guess this is a Openvpn issue/   BSD issue on 2.42 p1 that is out of my control until someone who knows what they are doing trys this and see's the issue

until then i am having better luck and better support from PIA.  so i will keep that config file running on this router

15
OpenVPN / Re: Extremely Low Download Speed (0.5mbps?!) ExpressVPN
« on: December 30, 2017, 04:58:52 am »
Could this be part of the problem?


You need a aes ni compatible processor

Mine is and on or off it doesn’t help or hurt speeds


Pages: [1] 2 3 4