Pfsense (6)

ESXI & PfSense comme firewall

http://forum.online.net/index.php?/topic/1240-tuto-esxi-pfsense-comme-firewall/   Bonjour à tous, Petit Long tuto fastidieux pour ceux qui souhaiterai comme moi, mettre en place PfSense sur leur serveur dédié Dedibox. A priori rien de bien compliqué sauf qu'en fait si, d'où ce tuto ! Ce que vous devez avoir avant de commencer : - Un serveur dédié chez Online.net - Vous avez acheté une IP supplémentaire via le portail Online.net (IP Failover) et l'avez associée à votre serveur. - Avoir obtenu une adresse MAC virtuelle pour VMware (toujours via le portail Online.net) - Vous avez déployé ESXI sur votre serveur (toujours via le portail Online.net) L'objectif est…
Read more...

PF - pfctl命令备忘

  # pfctl -d Disable the packet filter. # pfctl -e Enable the packet filter. # pfctl -f /etc/pf.conf 载入 pf.conf 文件 # pfctl -nf /etc/pf.conf 解析文件,但不载入 # pfctl -Nf /etc/pf.conf 只载入文件中的NAT规则 # pfctl -Rf /etc/pf.conf 只载入文件中的过滤规则 # pfctl -sn 显示当前的NAT规则 # pfctl -sr 显示当前的过滤规则 # pfctl -ss 显示当前的状态表 # pfctl -si 显示过滤状态和计数 # pfctl -sa 显示任何可显示的
Read more...

Setup a pfSense 2.0 firewall when default gateway is on a different subnet

http://blog.magiksys.net/pfsense-firewall-default-gateway-different-subnet     I have written a better article, using the firewall in transparent mode here . This article has been updated for pfSense 2.0. The original article about pfSense 1.2.X has moved here. News: It looks like the OVH gateway works like an universal ARP proxy or Captive portal. I means my OVH gateway replies to any ARP request. This means that for any given a.b.c.d/32 failover IP, I can setup a host or virtual host using a mask /24 (instead of /32) and my gateway a.b.c.X where X can be anything not in ( 0, 255 or d ) and it will works.…
Read more...

pfsense Enable WAN using shell

* Install pfSense  on your target machine * Unless your WAN gets a DHCP address, you will need to manually assign the IP Address of the WAN interface:   --> Get to the CLI (option 8 )   --> Type "ifconfig en0 10.20.30.40 255.255.255.248" (substitute en0 for your WAN interface and use the correct IP Address/Mask)   --> Type "route add default <default-gw-ip>"   --> Type "pfctl -d" to temporarily disable the packet filter * Point your browser to your WAN IP address then login as admin/pfsense * Once you have done your initial configuration, MAKE SURE to enable the packet filter again (CLI…
Read more...

( ! ) Warning: count(): Parameter must be an array or an object that implements Countable in /var/www/vhosts/shan.info/httpdocs/templates/gk_publisher/html/com_k2/templates/default/category.php on line 191
Call Stack
#TimeMemoryFunctionLocation
10.0003411904{main}( ).../index.php:0
20.11144261808Joomla\CMS\Application\SiteApplication->execute( ).../index.php:49
30.11144261808Joomla\CMS\Application\SiteApplication->doExecute( ).../CMSApplication.php:196
40.454111451544Joomla\CMS\Application\SiteApplication->dispatch( ).../SiteApplication.php:233
50.454711475808Joomla\CMS\Component\ComponentHelper::renderComponent( ).../SiteApplication.php:194
60.455411531136Joomla\CMS\Component\ComponentHelper::executeComponent( ).../ComponentHelper.php:377
70.455611558536require_once( '/var/www/vhosts/shan.info/httpdocs/components/com_k2/k2.php' ).../ComponentHelper.php:402
80.462511893728K2ControllerItemlist->execute( ).../k2.php:64
90.462511893728K2ControllerItemlist->display( ).../BaseController.php:710
100.477812800672K2ControllerItemlist->display( ).../itemlist.php:49
110.477812800672K2ControllerItemlist->display( ).../controller.php:19
120.481813014936Joomla\CMS\Cache\Controller\ViewController->get( ).../BaseController.php:663
130.483713035624K2ViewItemlist->display( ).../ViewController.php:102
140.622716001160K2ViewItemlist->display( ).../view.html.php:1407
150.622716001160K2ViewItemlist->loadTemplate( ).../HtmlView.php:230
160.624516069632include( '/var/www/vhosts/shan.info/httpdocs/templates/gk_publisher/html/com_k2/templates/default/category.php' ).../HtmlView.php:701