The pfSense Store

Recent Posts

Pages: [1] 2 3 4 5 ... 10
1
Traffic Shaping / Re: HFSC & Codel
« Last post by TheNarc on Today at 09:34:36 am »
That's usually the state I find myself in when I really settle in to try to think through this stuff :)  I convince myself that I finally understand it, and then realize some nuance like this that really shatters my confidence.  However, everything you said confirms the way that I believe it works as well (including the bi-directional nature of limiters).  So I'm going to run with that unless and until proven wrong.  Thanks again to everyone who's weighed in; I'm consistently impressed with the quality of discussion here.
2
Russian / Re: Блокировка Порно
« Last post by werter on Today at 09:26:26 am »
Доброе.
Попробуйте обойтись без сквида.
Заверните весь днс-трафик клиентов на антипорно-днс от Яндекса https://dns.yandex.ru/ 77.88.8.7, 77.88.8.3
Создайте правило Port forward на LAN , где Proto - tcp\udp,  src - lan net,  dst addr - * , dest port - 53, nat ip - 77.88.8.7 (или можно алиас создать с двумя ip и указать его), nat ports - 53

P.s. И откл. антивирус, к-ый указан в настройках по вашей ссылке. Толку - почти нуль, а проблемы могут возникнуть. Правильнее будет запретить пол-лям работать с правами локального Админ-ра. В таком случае родного MSE вполне хватает для небольшой сети.
3
Setup has pfSense on port 1,

The AP in on the switch

A desktop PC

And an HTPC

Everything is currently working. How should I change the PVIDs and why?
4
General Questions / Re: Extreme low throuput ~1m
« Last post by GruensFroeschli on Today at 09:25:19 am »
How do you test this?
5
IDS/IPS / Re: Taming the beasts... aka suricata blueprint
« Last post by pfBasic on Today at 09:21:51 am »
Those two rules keep ~20k+ IPs on my 28 day snort2c table.
6
You really need to change the pvid from 1 if your going to put a port into an untagged vlan.  If your only using it for say an uplink to pfsense that does the vlans and or a AP then no there is no reason to change the pvid if your going to use vlan 1 (default) vlan as your main network with all devices on the switch being in vlan 1.
7
Hardware / Re: Setup for under 200$
« Last post by pfBasic on Today at 09:19:10 am »
J3355 is a great CPU for 100/100 VPN.

You probably should not sell your current router because you will need to use it as a WiFi access point.

Don't integrated a WiFi card into your pfsense box, it doesn't work well.
8
Derelicts instructions were exactly what I needed, all is working.

I didn't ever do anything with PVIDs, they are all set to the default VLAN 1. The discussion here helped me understand what they are used for. Thank you too all!
9
Arkadaşlar bilindiği üzere pfsense yeni sürümünde pptp desteğini kaldırıldı, buna paralel apple pptp desteğini kaldırdı, pfsensimi ipsec ve mobil client olarak yapılandırdım mobil cihazlarımla vpn girebiliyorum buraya kadar hiç bir problem yok, fakat windows 10 da bir türlü bağlayamadım mecburen pptp kullanıyorum ve pfsensi upgrade edemiyorum, open vpn gibi sertifika vs şeylerde kurmak pek işime gelmiyor. Siz neler kullanıyorsunuz böyle bir problemle karşılaştıysanız nasıl çözdünüz merak ediyorum.
10
Russian / Re: Блокировка Порно
« Last post by dimkris on Today at 09:07:29 am »
    Уважаемые знатоки и ГУРУ, по Pfsense!!!
Нужна ваша помощь по блокировке порно возможностями «squid» брал за инструкцию вот эту ссылку:
http://www.fadmin.ru/article/nastroyka-pfsense-v-kachestve-korporativnogo-proksi-servera
Не получается заблочить все сайты где то яндекс прогружает видео.
Оговорюсь, я новичок и неделю назад  установил Pfs , настроил резервирование каналов, прокси, нат, соц сети заблокировал через (через Ferewall rules и aliases), OpenVPN настроил, но тут затуп.
   Ранее  работал в керио 9.2. Там как то попроще мне показалось. Блочет и по словам, и по вURL, и по веб фильтру. Тут как то разбросано.

Научите, подскажите, пожалуйста.!
Pages: [1] 2 3 4 5 ... 10