Forum Topic

Unified PFSense Users

  • ^i think that's normal since there's a NAT between the your voip server and the voip client it self.

    solution, just implement your own VPN server in pfsense and set the interfaces act as a bridge.

    something like this <click here for link> just a example but replace the LAN with the subnet where your voip is working.
  • Edit.......

    -- edited by dawinsm on May 23 2017, 09:39 PM
  • Question mga sir's


    may na eencounter ako sa PFsence ko.
    ung mga naka kabit na access point ko (bridge mode ung mga access point) hindi makapag bato ng DHCP sa client (WIFI) pero ung local ok naman na check ko na ung DHCP LOGS nagbibigay naman sa LAN pag wifi ayaw, dati gumagana naman. even ung mga biometrix ko na naka static ip nag RTO minsan pa destination host unreachable. pfence version 2.3.3-RELEASE. baka may naka encountyer na sa inyo to, sana may makatulong
  • maybe pfsense see's your AP as a single MAC address. meron mga AP na improperly implemented when it comes to this kaya nagkakaroon ng conflict sa DHCP server.

    basically everything on your wifi devices, pfsense see's it as a single device (eg, your AP Mac address).

    solution? firmware upgrade, possible migrating to open source firmware like openwrt can fix it.
  • @polka

    based sa pag scan ko ng mga IP's magkakaibang MAC address naman mga AP. and do some troubleshooting riht now kasi alang tao sa office. using a different AP. mukhang may problem ako sa mga AP ko na linksys its either na sira na or need nga i re-flash. sa biometrix naman erratic parin. sa tingin mo pag pinatay ko na ung pfsence and still the same, possible na ung device ang may problem or its cable connection?
  • good evening guys.

    i have this board: Asrock H270M-ITX/ac.

    it has a built-in Intel 802.11ac WiFi (Intel Dual Band Wireless AC 3160)
    since the AC3160 will be supported in pFsense 2.4.0, I went ahead and installed a snapshot copy of that version.
    the installation went without a problem but it did not detect the built-in WiFi.
    is there a way I can make this work?

    @polka, salamat pala sa reply mo sa last query ko. :)

    -- edited by NotSoSmart on May 30 2017, 08:46 PM
  • @notsosmart

    afaik, very picky si pfsense when it comes to wifi cards, most likely 90% ng wifi cards hindi gagana sa pfsense, luckily the card that I had is working just fine with pfsense pero that's only a N-draft card.

    my suggestion is drop that wifi card and instead buy a legit AP or recycle a existing wifi router and turn it into a dumb AP.
  • thanks polka. i see. gamitin ko na lang yung existing wifi router ko as your suggestion. hopefully in the future release, masupport na properly. sayang din kasi yung dual-band wifi.

    another thing pala, that asrock has a Dual Intel Gigabit LAN. normal lang ba na pfsense would detect the interfaces as igb01 and em01? akala ko since parehong intel, it should be igb01 and igb02. magkaiba din yung detected description ni pfsense sa dual lan na yun.
  • ^unfortunately, dual band wifi will not work as you expected.

    you may be expecting it to broadcast both 2.4ghz and 5ghz right? In reality, only one of them is usable. This has been the case, google mo na lang yung mga OpenWRT x86 custom builds, most likely makaka encounter ka ng post regarding a dual band wifi issues.

    if you want both frequencies, you need to have a dedicated card for each frequency. this is why mas recommended ko yung dedicated AP na lang.
  • Mga master meron ba kayong link na pwede kong gayahin ang setup. New to Pfsense sa office kasi nag resign na ang mga dating IT na nag implement.
    So ngayon kayod kalabaw ako sa kaka upgrade ng knowledge.

    Setup namin is Cisco AP's ang authentication then point sa pfsense for Internet access.
    Pfsense setup namin is dual WAN failover. Lately eh nagkaka issue ang internet either mabagal or wala talaga pero pag direct kung ginamit ang WAN sa laptop eh mabilis naman.

    Any tips would be appreciated. Salamat
  • Question:

    may isa akong laptop na di nakaka kuha ng dhcp (sya lang ata) pero pag nag set ako ng static dun palang sya nakaka connect sa network, what is the possible problem???

    di ko na ginagamit ung DHCP MAPPING.
  • mga sir,

    may naka eexperience na po ba sa inyo and ano po ginawa nyo?

    Yung captive portal ko bigla na lang di gumana. tried restarting the service and also restarting the pfsense box pero ganun pa din. di na nalabas portal page. kahit pinalitan ko na din ung login page ayaw.

    version 2.1.5 po
  • Post deleted #11958992
  • wrong thread .......

    -- edited by dawinsm on Jun 14 2017, 04:28 PM
  • sa mga naka captive portal, na encounter nyo ba yung ganito? ano kayang remedyo,

    config:
    AP: no Wifi password dahil naka voucher ang config ko.
    LAN ip: 192.168.xxx.xxx
    Captive portal ip: 10.10.10.x
    DHCP server is on on sa Captive portal interface.
    Dual WAN


    Problem; kahit hindi sila mag pasok ng password o voucher, kahit naka block yung mac address nila, nakakapag viber at FB sila,
    ano kaya mali o problem nito?

    -- edited by dawinsm on Jun 16 2017, 10:10 AM
  • ^i never encountered this issues before. are the LAN and CP have their own interfaces? if yes dapat walang issue yan, all traffic should be redirected to portal first bago sila makapag net. no unless you touch something on the firewall setting in CP interface.

    most likely ganito setup ko

    4 port Intel NIC

    2 port for WAN/Internet
    1 port for unrestricted network/LAN
    1 port for dedicated AP for Captive portal

    firewall setup, all vanilla, at least on the CP interface side., you can also add a additional firewall setting CP interface to block any kind of connection between CP interface and LAN interface. If you have a proxy server, well probably that's the issue but afaik this issue on squid caching and CP portal and bandwith limiter are now working together just fine in v2.4 pfsense but still its in beta phase so not recommended for commercial setup.

    -- edited by polka on Jun 16 2017, 11:57 AM
  • ganon naman sya, pag connect nila lumalabas naman agad yung portal, pag labas ng portal ignore lang punta sa home screen, tas mapapansin mo nalang nagpapasukan na yung mga message sa FB, ano kaya issue?

    mag lagay ako ng screenshot
  • kaya ba ng atom 330 kapag 100 Mbps na yung internet connection? currently naka 8Mbps lang ako ngayon
    ito yung active and isntalled packages
    Squid Proxy Server
    PRD
    Light Squid

    problema ko lang ay one slot lang pci yung board ko kaya need ko bumili ng dual port nic na PCI, ano marecommend nyo bukod kay intel?
  • ^around 400mbit+ speed ang kaya ng 330 sa pfsense in 1 direction pa lang yan (half duplex) pero pag full dubplex nasa 200mbps+.

    so 100mbps kakayanin pa rin ni atom 330.

    -- edited by polka on Jun 28 2017, 06:06 PM
  • guys talaga bang hanggang 10 OpenVPN clients lang magagawa ko sa isang server certificate???
  • ^not sure, post your processor model here, baka kasi hindi AES-NI capable yang processor and openvpn cant handle more than 10 connections at the same time due to CPU load.

    but in theory dapat kaya yan hanggat kakayanin pa ng computer.

    other possible issues is:

    - certificate limitations
    - limited IP allocations
  • - certificate limitations
    - limited IP allocations


    ^ ok will check on that sir. On testing ko palang naman tong OpenVPN sa PFsence
  • Mga sir/mam, ask lang po ako if meron ba dito nakapagconnect ng PLDT Fibr ONU (bridge mode) sa pfsense, napagana nyo po ba ang port forward? TIA!
  • ^im using PLDT Fibr running at 100mbps with pfsense, naka bridge mode yung ONU from day1 of its connection. it works fine naman. port forwarding works just fine.
  • @polka
    may i know how did you implement the port forwarding? same sa setting sa globe ang gamit ko pero hindi talaga nag wowowork... baka may mali sa setup ko
  • Paano po kaya ito mga master

    Bali nagawa ko na po Failover Dual Wan

    TIER1: 100Mbps FIBER
    TIER 2: 5Mbps DSL

    Paano ko po gagawin lagyan ng Limiter yung back up WAN ko which is DSL, bali 5mbps DSL lalagyan ko mga browsing ports ng 1Mbps DL, .05 UL then 5Mbps buo makukuha ng mga gaming ports, parang sa Single WAN setup ba hindi mag lag kahit may mag youtube kapag gamit na yung DSL ko. Paano po kaya ito ilang araw na kasi ako Trial and Error sakit na sa ulo.
  • Mga master
    Ano kaya pwede ko gawin sa pf ko. I have 3 wan and my modem router ot350 with same all gateway ip. Hindi mapalitan ng gateway ip hindi naman pwede sa pf na same gateway ip per interface. Magastos naman kung bbili ko ng router pra maiba un gateway. I know may other ways pa sa config ni pf. Salamat sa tutulong
  • Please help me do this
    *I have TWO WAN
    WAN 1: FIBER DL SPEED: 100Mbps, UL SPEED: 100Mbps
    WAN 2: DSL DL SPEED: 5Mbps, UL SPEED: 1Mbps

    1. WAN 1 will be set as my Main Internet Connection (NO SPEED LIMIT).
    2. WAN 2 will be use only if WAN 1 is DOWN.
    3. TCP Ports 80, 8080 and 443 will be limit to 2Mbps download speed and 300Kbps upload speed only when WAN 2 is in use.
    4. If my WAN 1 connection is back to normal, automatically WAN 1 will be use again and WAN 2 will wait to use again until WAN 1 is DOWN.

    Thank you very much!

    -- edited by rock2death on Aug 24 2017, 12:23 AM
  • Any recommended hardware?
    Susubukan ko sana ung mga fanless na nasa aliexpress specifically yung qotom, may nakasubok naba?
  • please help baka meron makatulong

    im using pfsense 2.3.4-RELEASE-p1 (i386)

    pag boot palang meron na error na Can't open /var/unbound/root.key

    then pag enable ko ung dns resolver may error na ganito:

    [1504451195] unbound-checkconf[73844:0] fatal error: user 'unbound' does not exist

    please patulong lang ano problem nito