The pfSense Store

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - virgiliomi

Pages: 1 2 [3] 4 5 6 7 ... 38
Official pfSense Hardware / Re: New SG-3100
« on: September 15, 2017, 07:56:53 am »
Yes, but ports on the same VLAN will be handled in the switch without having to be handed off to the SoC. Silly things like bridging interfaces onto one "LAN" should be a thing of the past on the SG-3100.

True, though my thought was more if you have one VLAN on one port, another VLAN on another port, then routing between them would be handed back to the SoC, etc. But yes, same VLANs stay within the switch.

Official pfSense Hardware / Re: New SG-3100
« on: September 14, 2017, 09:46:38 pm »
Just remember that the 4-port switch is linked at 2.5 Gbps to the pfSense LAN interface... so you won't be able to use more than two switch ports to full capacity if you're going to have inter-VLAN routing going on.

General Questions / Re: pfSense with ARRIS MODEM and Linksys E900 DDWRT
« on: September 13, 2017, 09:25:14 am »
Some ISPs require that you use their gateway (modem + router in one) in order to get a static public IP address. They run a routing protocol on their router that communicates with their upstream routers, telling them to route data for your static IP address to your gateway. They don't allow third-party devices to run the same routing protocol because there is significant potential for abuse by giving out the key(s) needed for the routing protocol to function.

So if you were using your "modem" (in quotes because I'm guessing that it's really a gateway) as a router before, and you had a static IP address before, then that's why you're not getting a static IP address anymore. You've changed your "modem" so that it is strictly operating as a modem (bridge mode), so it's not running that routing protocol anymore and isn't able to accommodate a static IP address as a result.

General Questions / Re: Is SSDP functionality connected to UPnP?
« on: September 11, 2017, 08:53:00 pm »
UPnP is used for more than just setting port forwards on a router/gateway. There are media operations that it's also capable of, and many devices that support DLNA will also detect UPnP devices (for example, my smart TV will detect all of my Sonos speakers, even though my Sonos speakers only speak UPnP, not DLNA).

Windows Media Player's media library sharing functionality also uses UPnP.

virgiliomi - my Sonos is on ethernet, my laptop is on Wifi - it seems you have your sonos & the app via ethernet?

re: avahi , i've just installed the package, trying to figure out the specific setup.

in the meantime if anyone has other thoughts - pls share.
No, my WiFi just doesn't use a separate subnet from the rest of my LAN. I have a specific Guest VLAN/SSID that is separate, but my main WiFi SSID is on the same subnet as my wired network.

Re: Avahi... like I said, I've not used it myself, but maybe this thread might get you pointed in the right direction:

General Questions / Re: Plex keeps changing from nearby to indirect
« on: September 10, 2017, 08:35:11 am »
First, I wouldn't enable NAT Reflection on a global level. It can be set for each NAT rule individually, and that's how I would do it as not everything needs it. I do have it enabled for my Plex port forward, and have found things to work seamlessly with it this way. It's actually required for Sonos to be able to access Plex because of a limitation in Plex's Sonos implementation.

Using the custom setting for DNS Rebinding would be a good idea too. I also have this set in my DNS Resolver settings. There is also a setting for DNS Forwarder (dnsmasq). Both can be found here.

And if you're forwarding DNS to OpenDNS or somewhere else that blocks DNS Rebinding on its own, a domain override for the domain would be good too, though I'd override with Plex's own DNS servers instead of using another DNS provider to remove a variable from the equation.

I think people have used Avahi to get Sonos' device discovery to work across different subnets. I've not had to do this myself (I have a Sonos component wired to my network, rather than using their WiFi setup) so I can't provide much insight, but that might give you something else to search for that might turn up results.

Most providers' gateway devices have some way to enable bridge mode... some will have it buried in an advanced option, others you may need to call and have them enable it instead... but this is what you want so you don't have pfSense sitting behind another router with its own firewall and security settings. With their device in bridge mode, your pfSense box should be able to request an IPv6 address for WAN and a prefix for LAN. If you have multiple internal networks that you want IPv6 addresses for, you'll need to get a smaller prefix that gives you multiple /64's for your own use.

General Questions / Re: Send an email when the gateway falls
« on: September 07, 2017, 07:17:32 am »
For public IP addresses, use dynamic DNS with a static hostname then... the router will update the hostname with the correct IP address if/when it changes.

Not sure of a way to handle it if your carrier is using NAT. Maybe see if they have IPv6 available also, and use that instead as your down-detector?

2.4 Development Snapshots / Re: ZFS install
« on: September 07, 2017, 07:03:18 am »
Are you pressing the space bar to select the disk?
This. It isn't immediately evident, but you actually need to select the disk to tell the installer to use it. This confused me for a bit when I first reloaded my system to use ZFS also.

Ok. I was expecting the reload of the OS image... just wasn't sure if something in my CE config would replace/overwrite something in the factory setup. Glad to know I can just reload my CE config onto the factory version.

So I've been running the 2.4 beta from the day I got my SG-2440. As release nears, I know that the "factory" version is of course optimized for the Netgate hardware, and thus would like to return to that once 2.4 has been released. But I don't want to just restore my CE config file and have it remove any of those optimizations because they aren't present in my config.

Is there a way to get my box back to running the factory version with its optimizations without having to manually redo my config? Are there certain sections that I shouldn't import from my CE config, or that I could merge between my config and an unmodified factory one?

2.4 Development Snapshots / Re: 2.4.0 - How Often to Update?
« on: August 15, 2017, 08:15:19 pm »
When I first start running a beta version, I'll update maybe once every two to three weeks... four if I'm being especially lazy. As we get closer to release, I'll update weekly. If there's an issue I've experienced that has been fixed, or something that wasn't affecting me but I want to test the fix for, I'll update sooner.

Then when the release hits, I'll run that for a few months before determining if I want to participate in the next beta. I usually join in for major release betas, not so much for minor ones.

I'm not sure what's going on here, but while swapping modems this afternoon (upgraded to a DOCSIS 3.1 modem), I had my pfSense WAN interface not connected for a bit. After reconnecting it, and just now looking in the DNS Resolver logs, I have extended the log view up to 5000 lines and over 95% of the lines are...

Code: [Select]
Jul 18 17:30:46 unbound 82208:1 error: can't bind socket: Can't assign requested address for x.x.x.x
or replace the IPv4 address with an IPv6 address. The timestamp is the exact same to the minute, with a variance of 3 seconds over more than 4900 lines. That's some MAJOR log spamming going on while the connection is down.

Maybe it's always done that and I just haven't noticed (I don't tend to look at dns resolver logs often)... but that's pretty severe to be writing over 4900 lines to a log file in just three seconds. Possibly related? If not, please feel free to split this to a new topic.

webGUI / Re: CPU speed only shows on occasion.
« on: June 19, 2017, 08:40:15 am »
If I remember correctly, the "Current" CPU speed only shows if it is different from the full speed of the processor. So if you have a 1.8 GHz processor that has been throttled down to 1.3 GHz to save some power, then it would likely show the current speed. But if it's doing some processing and running at full speed, then it probably won't show up.

Pages: 1 2 [3] 4 5 6 7 ... 38