Forum Topic

Unified PFSense Users

  • So basically internet pldt modem > NIC1 PC with pfsense > out to NIC 2 PC > Switch > distrubuted to other PCs.

    So sir, magserve as router ung pc. Ganun po ba pfsense? Salamat po sir polka. Na curious lng po ako sa mga package ng ccboot laging with pfsense. Try ko po muna kasi sa lan shop nmin if okay tsaka ko mag avail ng ccboot + pfsense. Thanks po sir polka. Pacheck nlng if tama ung diagram ko hehehe.
  • ^yep ganyan nga. tama yung diagram mo,
  • @all

    Madali lang ba intindihin ang pfsense configuration? kasi yung iba pinapahirap yung explanation para mag mukha silang magaling pero sa totoo lang simple lang naman, pero yung totoo po mahirap ba di ko pa kasi na ttry to e but im familiar with qos configuration and i have been using it for a while now, so far it's very effective lalo na sa games ko dito sa shop, di sila affected ng youtube at dowload tuloy ang laro at walang DC with NO LAG.
  • ^depende, pfsense was designed for enterprise use, pero pwede din gamitin for SoHo as long as you know how this thing works.

    most of the time you will be dealing with IP, subnets, ports and all other networking stuff, if youre not familiar with those things, then SOL ka na.

    yung mga newbie usually nalilito sila sa pag setup ng interface since most of the terms they used to setup the network interface which wan and lan going to. Also setting up a WiFi on pfsense is not the same setup you will be dealing with SoHo routers you commonly see, afaik, you will be doing 4-5 phases (with minimum of 4 steps per phase) to setup a WiFi network.
  • @polka

    ah ok mukhang di ko need pfsense sa computer shop, QOS lang ok na sakin. kasi years na kong walang problema sa LAG ng games ko gamit yung QOS. pero nung nag simula ako ng shop pag madming nag youyoutube nag lalag mga gamers, pero nung na setup ko qos super peace of mind.
  • maraming tweaks kay pf.. lalo na pag nahuli mo yung squid caching :) limiting blocking, throttling etc :)
  • mga boss patulong naman sa set up na gagawin ko. eto sana yung gusto ko mangyari

    nag backread nako. pero dahil sa baguhan ako sa pfsense di ko magets ibang configuration n. ang ngawa ko lang ngayon eh yug load balancing at fail over for both WAN. btw i got 2 ISP. pareho bayan.. eto sana gusto ko mangyari

    WAN1=games
    WAN2=browsing

    baguhan plang ako sa pfsense kaya d ko p msyado magets. eto lang muna gusto ko mangyari
    TIA
    <click here for link>
  • Post deleted #11541109
  • Meron po akong 2 internet connection: globe dsl and wimax...

    Possible po bang gamitin sila ng sabay but, naka priority ung dsl for online games and wimax for streaming/downloading
    Pareho po silang ethernet connections
    Possible din kay without using pfsense?

    Any tuts po?

    -- edited by jh0ng on Nov 24 2015, 02:09 AM

    -- edited by jh0ng on Nov 24 2015, 02:13 AM
  • ^bili ka ng multi-wan router ng tplink kung ayaw mo ng pfsense, if youre looking for something like a Windows Application to do this, then you can begin searching and look for nothing. But hey, you can still separate traffic by using the route command sa windows but this is much more complicated and the setting is not volatile so you have to re-execute the commands.
  • kakapalagay ko lang po ng 3mbps na PLDT Kaasenso Plan (dynamic ip)... at meron akong existing na 10mbps unlimited net pero 2 months ng intermittent na Globe. (no cap / static ip).

    pano po kaya magandang setup dyan? tama po ba na yung 3mbps (dynamic ip) ang pang gaming? at yung 10mbps (static ip) ang sa browsing?

    humihingi muna po ako ng suggestion bago ako magpa setup ng pfsense. salamat po...

    -- edited by rjrandy79 on Nov 27 2015, 02:26 AM
  • mgandang setup sir ay nakalimit ang https at http, para controlled yung bandwidth sa network mo.. garantisadong baba ng ping nyan samahan pa ng lusca :)
  • mga sir, newbie question lang po, sa traffic shaping po ba, pag nag set po ako ng 10% to control the p2p traffic, 10% po ba ang paghahatian ng lahat ng nagddownload ng torrent o per user po?
  • eto po ang sagot dyan...

    If 'source' or 'destination' slots is chosen, a dynamic pipe with the bandwidth, delay, packet loss and queue size given above will be created for each source/destination IP address encountered, respectively. This makes it possible to easily specify bandwidth limits per host.
  • @ babygel

    he he, sir, na nose bleed po ako sa reply nyo sir, pero confirm ko po sana kung saan ko makikita ang settings para ma assign ko po per ip ang bandwidth limit.

    saka normal ba sir na pag enable ang traffic shaper, medyo bumabagal po ang access ko sa web configurator?
  • Post deleted #11544976
  • hope na nakita mo un hehehe
  • @racober

    sa experience ko dito sa atom ko pag by que ang shaping..mabagal.. ano package kasama ng pfsense mo? if squidgurad nakakabagal yan ng bootup d same time process nadin ni pf.. consider checking logs
  • @ babygel

    correct ka sir, nakita ko na.. :)

    squid, squidguard at lightsquid sir ang packages na na-install ko.

    pfbox specs ko sir: core2duo 1.6ghz, 3gb ram, 40gb hdd.

    parang mas ok si utm when it comes to torrent dl blocking. app control filtering lng set ko, "connecting to peers" lang status ng downloading sa torrent client. block talaga .....
  • Kaya pala mabagal
  • Hey guys, patulong naman sa troubleshooting ng pfsense. I'm on 2.2.4 btw.

    Simple setup:
    ip.1 (lan) pfsense (wan) ip.a --> untangle (bridge) ip.b --> modem ip.c

    -pag nag ping ako from pfsense wan to untangle, ok;
    -pag nag ping ako from pfsense wan to modem, ok;
    -pag nag ping ako from my lan network to either untangle or modem, nag request timeout.

    Naglagay na ako ng firewall rule sa wan and lan na 'pass' any any, still can't connect from my lan network to my wan devices.

    Any thoughts? Thanks.
  • ^I found the solution - restore from backup 2.1.4, in 5 minutes everything is normal again.

    If it ain't broke, don't upgrade :)
  • mga sir, ano po bang maayos na settings sa limiter on specific IP? isp ko po pldt, 4mbps lang, 20 hosts computers pero di naman sabay-sabay ang gamit. i-lilimit ko lng po yung mga nagddownload ng torrent. pag traffic shaper by queue kasi parang naaapektuhan ang web browsing kahit na set ko na ang http/https high priority tapos naka 3% ang p2p. bumabagal ang response ng pfsense lalo na sa web filtering.
  • mga masters good morning paano ko po ma enable ulit yung ginawa kung sched na disable na lang bigla , ang sched niyan is from Monday - saturday 8 -11 AM , 1:30 - 8PM, ngayong umaga bigla na lang na disable, ano po ba ang nabago ko?

    <click here for link>

    Salamat po sa tutulong.

    -- edited by antoni on Dec 08 2015, 08:56 AM

    -- edited by antoni on Dec 08 2015, 08:57 AM

    -- edited by antoni on Dec 08 2015, 09:02 AM

    -- edited by antoni on Dec 08 2015, 09:04 AM
  • mga sir may gumagamit ba sa inyo ng Suricata?
  • Does anybody know where I can purchase the pfsense SG-2220 appliance? This is going to be for home use with 6 clients (combination of smart phones, tablets and laptops).
  • ^I see a lot of pfsense router boards in olx.ph

    price starts at 14k.

    I recommend buying one directly from provider, mas ok yung spec with almost the same price (excluding shipping and import tax). But if you dont want to go the online purchase path, olx is there for you.
  • Thanks! I was looking for a router/firewall that can reliably do traffic shaping to control bandwith especially at L7.. If you know any vendor that can do the same thing let me know.

    Thanks again!
  • mga boss patulong naman sa set up na gagawin ko. eto sana yung gusto ko mangyari

    nag backread nako. pero dahil sa baguhan ako sa pfsense di ko magets ibang configuration n. ang ngawa ko lang ngayon eh yug load balancing at fail over for both WAN. btw i got 2 ISP. pareho bayan.. eto sana gusto ko mangyari

    WAN1=games
    WAN2=browsing

    baguhan plang ako sa pfsense kaya d ko p msyado magets. eto lang muna gusto ko mangyari
    TIA


    gawa ka muna ng gateway group, wan1=tier1 wan2=teir2 name it GAMING. wan1=tier2 wan2=tier1 name it BROWSING.

    tas s firewall rules gawa ka ng rule yung HTTP at HTTPS dadaan s GW BROWSING. tas edit mu yung default LAN rule yung GW naman nun GAMING.

    kakapalagay ko lang po ng 3mbps na PLDT Kaasenso Plan (dynamic ip)... at meron akong existing na 10mbps unlimited net pero 2 months ng intermittent na Globe. (no cap / static ip).

    pano po kaya magandang setup dyan? tama po ba na yung 3mbps (dynamic ip) ang pang gaming? at yung 10mbps (static ip) ang sa browsing?

    humihingi muna po ako ng suggestion bago ako magpa setup ng pfsense. salamat po...


    halos same kayo ng gagawin ni explorer32
  • Meron po akong 2 internet connection: globe dsl and wimax...

    Possible po bang gamitin sila ng sabay but, naka priority ung dsl for online games and wimax for streaming/downloading
    Pareho po silang ethernet connections
    Possible din kay without using pfsense?

    Any tuts po?


    kayang kaya ni pfsense yung gusto gawin, basa at aral lang tignan mu yung link na binigay ko.

    <click here for link>
    <click here for link>

    mga sir, ano po bang maayos na settings sa limiter on specific IP? isp ko po pldt, 4mbps lang, 20 hosts computers pero di naman sabay-sabay ang gamit. i-lilimit ko lng po yung mga nagddownload ng torrent. pag traffic shaper by queue kasi parang naaapektuhan ang web browsing kahit na set ko na ang http/https high priority tapos naka 3% ang p2p. bumabagal ang response ng pfsense lalo na sa web filtering.


    bind mu yung mac add sa specific IP, tas gawa ka ng FW rule para sa specific IP with hard limits, hindi niya mahugot lahat ng bandwidth, para sa akin ito pinaka madaling solution.