Recent searches

No recent searches

Search options

Only available when logged in.
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.

Administered by:

Server stats:

517
active users

101010.pl: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0-beta.1

#pfsense

0 posts0 participants0 posts today
sudonem

I recently discovered that despite having a business account, my ISP will automatically block #WireGuard traffic if I use a tunnel actively for an extended period, or if there is just a lot of traffic. (Tech support swears they don't do this but the internet suggests otherwise).

The only viable workaround I've found is to somewhat regularly rotate the listen port on the tunnel.

This, it turns out, is a headache with #pfSense.

It's very crude and only supports a single tunnel at the moment, but I just spent an absurd amount of time on a solution - so here it is if anyone is interested:

github.com/sudonem/pfsense-wg-

GitHubGitHub - sudonem/pfsense-wg-rotateContribute to sudonem/pfsense-wg-rotate development by creating an account on GitHub.
#ShellScripts#PHPshell#Privacy
90s Script Kiddie

Hi I'm 90s Script Kiddie, I grew up online. I do #devops and #automation code stuff for my job. My hobbies are #gamedev, #vintageelectronics, #gaming, #repair ing stuff to keep it out of the landfill, old #apple hardware, #linux admin (I run my own mail, web, media etc servers) #network admin especially #pfsense, I love #books, #anime, #manga - reading in general really. #music too! Jazz, alt-rock, pop, folk, chiptunes... I also enjoy #cooking and am trying to get better at it. Beliefs-wise I'm something of an anarchist, yearning for a #solarpunk future I'll probably never live in, but I do what I can to do #mutualaid for the people in my circle. If you're my friend, I will set up all your electronics for you, replace the battery in your phone, give you some free mail or web hosting... whatever! I try to limit my consumption of news media for my own sanity, but I love reading about what people are doing in their own words. That's why I love the Fediverse, and it's why I'm lurking around on #gopher

I don't have a lot of friends. I've always been kind of a loner, and a little awkward. Luckily, I love my own company and have no problem spending time alone. Those few in my circle are people who I think make the world better by being in it.

I'm a #queer #bi #enby and I don't really give a hoot about what pronouns you use for me. Actually, I sort of feel like however you labeled me I'd want to break out of that box somehow. I guess I'm pretty contrary.

New #introduction who dis.

samurro

I am trying to configure #pfsense #openvpn through alias instead of single CIDR notations, as soon as I make the changes, clients from the outside can't connect, even after restarting the openvpn server. But testing with a machine I have here through a mobile provider hotspot the new openvpn settings work. *scratches head* #sysadmin #IPV6 #ipv4

Timo Geusch

One for my fellow #FreeBSD and #OpenBSD users. I used to build my own simple firewalls using either OS until I ended up with dual upstream, non-aggregated connections and switch to #pfsense CE for that.

I would much rather prefer to go back to a regular artisanal firewall, but wasn't able to find any configuration examples for an ideally pf-based firewall setup that has the ability to handle routing traffic between two distinct upstream providers without using LAGG or a similar aggregation setup.

Does anyone have such a setup that they're willing to share, or should I just stick with pfSense or OPNSense?

ij

Ich hab uebrigens meine beiden #pfSense CE Firewall im Datacenter auf pfSense+ geupgraded.

Neben dem #Proxmox Mail Gateway ist das das zweite Open Source Produkt, was ich mit einer Subscription supporte.

Mir waere es eigentlich fast lieber, in einen Topf/Fund einzuzahlen und da dann zu sagen, was ich gerne unterstuetzt haben sehen wollen wuerde und der Fund verteilt die Gelder dann halt anteilig weiter.
Aber vielleicht ist das ja auch das Business Modell von OpenCollective... wer weiss...

*
mephisto

#pfsense service toot:

Using #ACME certificates on your #freeradius for wifi authentication and things stop working after 60 days when the cert renews?

in the acme configuration add the follwing php-command to the actions list:

require_once('/usr/local/pkg/freeradius.inc'); freeradius_eapconf_resync(true);

(Long time lingering bug in pfsense, #netgate is not willing to fix)

thechrisdantes

All right. Got most of my #docker containers moved over to #proxmox. I had to rebuild my Homarr page, but that's fine. I've made some progress on the reverse proxy, by running #haproxy on #pfsense. Setup the proxmox backups.

I still have to configure a container, and get the rest of the reverse proxy to work. I'd also like to setup local DNS

Separately, #reolink is pissing me the fuck off.

All in all, a quite productive nerdy weekend.

Fratm

Looking for a good, easy to follow tutorial on how to setup pfsense HAProxy to route web traffic between 3 different web servers, not a round robin, but 3 independently different pages, haproxy would serve the right pages based on hostname. Also, use the acme certificates manager to manage certs.

I keep screwing this up haha, and then giving up.

Any suggestions?
#pfsense #networking #firewall #haproxy

elbast

Gibt es Bestrebungen seitens #OPNsense oder #pfsense oder einer anderen #foss #Firewall ihre Firewall mit dem integrierten DNS (z.b. #unbound) zu verknüpfen?
#RethinkDNS ermöglicht dieses bereits und blockiert alle IP-Verbindungen, welche nicht vom DNS-Server erfragt und zugelassen wurden.
Ein mächtiges Werkzeug für eine firewall und würde ich mir sehr für mein lokales Netzwerk wünschen.

TrendingLive feeds
About