Project Log / Neoware E140 800MHz Pfsense Dual WAN
Dec 13, 2011
I have gotten myself a neoware e140.It has an VIA 800MHz CPU with 128MB Flash and 128MB DDR2 RAM.he one I received a spare PCI slot which is occupied by a matrox graphic card Matrox Epica card. It shows up in the System Specs as a TC4 but I think it is a TC2.
It comes with this special adapter which splits into two DVI adapters. Each of these adapters supposedly can drive 2 monitors (I have no clue how).
The box currently has some neoware linux on it.I want to make a pfsense box out it to have support for a dual WAN setup. I have never dealt with this kind of stuff before and do not even know how to load the OS on the flash etc.
I'm looking at doing an intranet project at work. What i want is to have one main machine that will have a forum and website on (probably Windows IIS on Windows 7). Then i want to have approximately 10 other users on laptops that can connect to my intranet forum and site via "wireless" connection, but at the same time none of those 10 laptops or my main machine having any "internet" access. Is this possible and if so how
I'm trying to configure Hp1810-24G and pfsense firewall with no success. I' would like to create two virtual lan on swich which share same internet connection. To simplifing I suppose
vlan 2 port 1-12 vlan 3 port 13-23 port 24 pfsense lan connection
What altready I do on pfsense I create vlan 2 called 1STVLAN VPID 2 and vlan 3 called 2NDVLAN VPID and assigned to them to LAN pfsense real port enabled and gived a static ip to them on HP procure I create two vlan with
vlan 2 port 1-12 untaged 13-23 Excluded 24 tagged vlan 3 port 1-12 exluded 13-23 untagged 24 tagged
the problem is that I don't be able to speak with pfesense (ping failed on real lan ip and virtual lan ips) so I don't have also internet connection.The ethernet card i'm using are old (i have built the pfesense computer on spare parts that I have at home) so can be a driver issue?
I have a SONY J series and I want to know how to make it project a wireless connection without using a router, as I have an ehternet cable going in to the sony but want to change that internet connection into wireless so I can connect my laptop to it, is there a way of doing this or am I imagining you can do this?
In my home setup I have an PFsense firewall wich is doing all the routing right now, but right now my net speed is maxing out about 500mbit, i my think it's the pfsense hardware, but its an 1500Mhz C7 VIA with 2Gb ram, I just bought two new switchs, HP-1910-24g and a HP 5500-24G they can do some layer 3 routing, will my speed get a bumb up when the switch is doing some of the vlan routing.
I'm using PfSense 2.0.1. What im trying to do is connect to a game server I have running here in my house. I can connect to it locally with 192.168.8.6 no problem. I have it port forward correctly so that the rest of the world can connect to it via my WAN ip address. The problem comes is I want to be able to connect to it with my WAN address so that if someone decides to follow me STEAM will show my WAN address not my internal IP address of the server im connected to. I have "Disable NAT Reflection for port forwards" UNCHECKED which is what I am supposed to do according to documentation from PfSEnse. But it still doesn't seem to work.
I wanna get one of the following Atom boards for a Pfsense box:
X7SPA-HF-D525 Mini-ITX - [URL] X7SPE-HF-D525 FlexATX - [URL] X7SPA-HF D510 Mini-ITX - [URL] X7SPE-HF D510 FlexATX - [URL] And put it in this case: [URL]
However, I can't find any info on which style motherboard is compatible with the expansion slot on the front of the case. I know you need a riser card to extend the PCI-e slot to the expansion slot, but since FlexATX and Mini-ITX are difference shapes/lengths, I don't know if the case's expansion slot is designed to only work with one or the other.
so I have a new Supermicro X7SPA-HF-D525 Mobo 4GB ram comming in and am wondering what firewall software I should put on it. This is for home use. Currently im running DD-WRT on an Asus 520GU, so anything is a step up. I have played with both, though Untangle only for about 20 or so mins on a VM, and pfSense for about an hr or so on an old P4.
By first glance at the untangle, one thing I didnt like was it looked like if I wanted anything I had to pay a yearly subscription for the same stuff that was offered for free or already included in pfSense. But i see alot of people swaring by Untangle.
I've got a relative that needs a wireless solution for their new HD LCD. The spouse has vetoed running cat-5 (I'd have told her to pound sand...) so we're looking for an inexpensive router that we can install dd-wrt on and throw it in bridge mode. The Linksys wrt54g seems to have dried up in the area, no one seems to have one in stock and I haven't had any luck finding an Asus RT-N12 that I can get delivered in a timely fashion, that would have been my second pick.
Any recommendation for a fairly inexpensive G/N router that either features a robust bridge mode or that I can flash for this project?
trying to get my ducks in a row for replacing a Cisco 5510 and a Barracuda Link Balancer with a virtual pfSense appliance. This is partially due to eliminating support contract costs (nearly $3k annually between both appliance) and partially to utilize the redundancy and fault tolerance that our virtual environment can provide. I'm also implementing a colo site for replication/DR this year so doing a tunnel from site to site would make it a lot easier with like for like virtual appliance firewalls.
The VPN aspect. We are currently doing Cisco VPN with Radius auth on the back end, this is seamless to setup from an end user perspective as they just hit a URL, download/install the ANyConnect client, and log in with their credentials. Is there a comparable alternative in pfSense? I'm leaning toward IPsec but it still doesn't seem as seamless as what we currently have in the ASA.
Currently in place ISP WISP Point to Point network would like some pointers to exceed in doing it right. Here are some issues.ISP Fiber 50 Megs down and 50 Megs up ( Working )What Router do I use? Looking at Cisco RVS4000 at JDT Site as main router I have routers at others towers using the 10.1.19.xxx address as wans setup.Do I pull out all routers and use only one from the JDT Site?
a. Due to Port forwarding
b. Lets say main Wan is 74.144.55.159 Lan 10.1.19.1
1. Site BTT router is assign address 10.1.19.33 Lan 192.168.6.1
a. Can I setup 74.144.55.159:85 to see 10.1.19.33?
My Point ot Point radio use different IP address to separate from lan address (10.1.19.xxx) Radios (10.1.119.xxx)1. Everything is working just want to re-design everything never thought I would grow this fast with in 2 years. Hope I explain this well enought. 90% of users are out in the country without high speed internet.
I would like to make a design with 4 Nexus 5596UP. 2 of them equipped with Layer 3 Expansion Module so they can serve as core layer and the other 2 Nexus used as Layer 2 for aggregation server layer.The 2 Nexus in the core layer will run HSRP and will peer with ISP via BGP for Internet connection The 2 Nexus in the aggregation layer will be configured as layer 2 device and have FEX and switches connected to them.What I am ensure of is how the vpc and port-channel configuration should look like between the 4 nexus. What I was thinking is to run vpc between the 2 Nexus in the aggregation layer and between the 2 Nexus in the core layer. Than I was thinking of connecting each Nexus in the aggragtion layer to both Nexus in the core layer using port-channel and vice-versa.
how to change our wireless setup. Currently, we have 2 Cisco AiroNet 1130 WAP's in the office that go directly into the 2 POE ports on our Cisco ASA 5500. These WAP's have 1 SSID and are using WEP for security. After demonstrating the flaws of WEP to my boss, he has agreed that we should use something more secure and I've suggested WPA. We want visitors to our office to be able to hop on our wireless but on a separate guest SSID with WEP.
I'd like the internal SSID to route to the ASA and take the default route to the internet (it will be our new fiber connection once it's installed in a couple weeks). The default route is whichever connection is working since our ASA 5500 will fail over when it detects an outage.
I'd like the guest SSID to route to the ASA and then go over our existing cable connection. This connection will be our backup once the fiber connection is installed. Since we won't be using it very often, but will be paying for it, I advised that we send all guest wireless traffic over this connection since 50/5 is plenty for guests.
The current SSID (which will be the internal SSID) has no VLAN. We do currently have a few VLANS on our network, one for voice (.42) and one for data (.100) and the default (.0). What device to I create the VLAN on (Cisco 5500?) and how to I setup the WAP? I need very basic instructions to start and I'm also trying to do this without causing downtime if possible.
I've attached a diagram of what it should look like. Red indicates our internal network and Blue indicates the guest network. I can send screenshots as well.
I wanted to ask a question about the diagram I have included. We are bringing up 2 MPLS WAN connections and would like some specifics on the best design. We are using BGP to the providers. From there we have big questions. We can run BGP internal and are licensed to do so on the N5K's. The N5Ks are currently using HSRP for inside LAN clients as default gateway. We want to load balance and provide redundant routes using a dynamic approach. Should we use BGP internal utilizing the connections between the routers? Should we use HSRP on the routers? How best to get the routes to the N5K and should we be considering this?
I run 2 RV042 V1 for home and office with Gateway to Gateway VPN connection with single WAN connection in use. Everything works like a charm!
I was even able to create VPN connection with 2 WAN connection on one Router and 1 WAN connection on another with Smart link failover and VPN Tunel Backup.
I got problem though when i tried more complex connection diagram. [URL]
So basically I now have 2 ISP connections on each point with Static IPs and I'd like VPN Connection to be alive for ALL 4 options automatically with failovers (smart links) And tunel backups but i'm not sure if that's ever possible with my equipment.
currently my organization is connected to internet through a checkpoint cluster directly connected to ISP router.I'd like to use both links, placing a brand new 2 cisco router between Checkpoint and ISP routers.
I just upgraded his personal computer. It has an internal wireless card and we have a USB wireless adapter installed.What is the proper way to configure one adapter to connect to the network (via the existing linksys router) and the other adapter to connect to the ATT Hotspot? The goal being able to access the internet from the PC while still being connected to the network. Not interested in sharing the internet connection across the network or anything.It works sometimes, but establishing and maintaining a working connection to both simultaneously is not consistent. From the internet research I've done, it seems like there can be issue with the IP addresses, but I can't find a tutorial for my exact situation.
We have a server which in addition to other services is used to stream live hi-def video from our building during special events.We use a software video/audio production mixer which works very well. But we now would like to make a change in the system.Is it possible/practical to use Remote Desktop via the second - as yet unused - LAN in our server. We really would like to put the operators in a different location where they have both video and in-person view of the event being streamed. But we don't want to use more bandwidth on the LAN...the production mixer handles a *lot* of uncompressed video and tends to be a bandwidth hog.
Basically, he has an office he's supporting on a contract basis, they have a cable modem uplink. They move very large (100MB or so) EXCEL files to/from a server "somewhere out there"...The place has 19 users on cable modem (presumably commercial level). They're having "severe latency due to all the users". They're also using VOIP (not sure what product, shouldn't really matter)this doesn't pass the sniff test to me- I have 70+ users on 4 T1s and don't have the problems they claim to be having. Suspect they should be doing some packet sniffing to see who's camping on Youtube, but this is not an option....They're adding in a second cable modem line and want to bind both together. I immediately figured they should do QOS, dedicate the mission-critical traffic to 1 line and let it bleed over onto the other and take precedence if necessary. They have a Cisco 1811 router. I haven't messed with those before, but what I am seeing is they are a "fixed-configuration router". Obviously there has to be SOME config changeable- if for nothing other than IP assignment to interface and such. So what does Cisco mean by "fixed-config"? Is this basically a dumbed-down Linksys router?
i am trying to configure Dual NAT (source and destination) with multiple subnets in the source, i am trying to figure out how to accomplish this with 8.2 ASA ,
The basic setup Newly installed redundant ISP, thus setting up the 891 with dual WAN Using PFR to load balance between the two. Did initial config through CCP (not express), but I am familiar with the basics of IOS CLI (not used to the new zone based firewall yet, managed aour old Pix for too long, but that is a different subject)
I cannot seem to get anything but Gi0 to be accepted as a WAN interface. I go through the entire setup in CCP, test each connection, etc, and it all looks good until I exit out of CCP and go back in. At that point, I get squat out of Fa8. CCP won't let me test the connection, won't let me edit the connection, wont let me delete the connection. The wizard for a new WAN connection becomes available again (Wanting to set up a "second" WAN on Fa7...)
Again, I have verified connections to each ISP line independently, either one works just fine on Gi0, neither ever works on Fa8. This is my first real foray into PfR.
Building configuration...
Current configuration : 21486 bytes
Last configuration change at 18:59:43 UTC Mon Mar 26 2012 by admin [URL]....
I would like to configure my Cisco 881 enabling Dual Wan (load balancing and failover). First link: HTTP, FTP, SMTP,...Second link: DATA inter-site (VPN), VoIP,Does the configuration seem OK?What does the command line "track 1 rtr 1 reachability delay down 1 up 1" mean?To send the different flow on one or the other port, do i have to configure it on the ACL1 and ACL2 ?
I have an ASA 5505 with the Security License running 8.4 and 6.4.5 software, I have a fully working VPN solution on there using a ISP IP - works fine. My boss wants to split the lines/bandwidth to another ISP we have coming into the office. So what I want to acheieve if possible is this Say my current isp is 5.5.5.5, my internal network is 192.168.2.x and my other ISP is 6.6.6.6 - is it possible to use the ASA to accept VPN clients from both ISP's and use the internal network?
At the moment I'm running a T1 to a Cisco ASA 5505 device. I'm in the process of getting a backup ISP. My question is, is it possible to configure this firewall with two ISPs so that the same internal webserver can be accessed via backup ISP?
What the purpose for having a dual gigabit LAN would be? That is, having two LAN ports on your motherboard as I saw in a new MSI P67 model. I can see it for sharing your LAN through your computer if you don't have access to the router.
I configured dual ISP on ASA 5520 following cisco doc below. Now I would like to configure SSL VPN to work with this for failover? I tried to find an article regarding this but I could not. [URL]
I would like to configure & utilize the dual WAN / ISP to which we have subscribed. At present we are serving web-pages through our primary ISP which is working fine.
We have two internet connections with 2mbps each. I would like to go for Wireless Dual WAN Router. know the +ve and -ve of this usage. know the best modals. We have 30 macs in my company.
i have verizon DSL. Their newest router, the westell 7500, and their older one, the westell 327w. I want to setup a home network. I have heard there is a way to have these 2 routers connect wirelessly (one threw the other) so that i can hook up direct tv dvr to the internet w/out running a long cable.
