Configuring Hp1810-24G Procurve And Pfsense?
Jun 18, 2011
I'm trying to configure Hp1810-24G and pfsense firewall with no success. I' would like to create two virtual lan on swich which share same internet connection. To simplifing I suppose
vlan 2 port 1-12
vlan 3 port 13-23
port 24 pfsense lan connection
What altready I do on pfsense I create vlan 2 called 1STVLAN VPID 2 and vlan 3 called 2NDVLAN VPID and assigned to them to LAN pfsense real port enabled and gived a static ip to them on HP procure I create two vlan with
vlan 2 port 1-12 untaged 13-23 Excluded 24 tagged
vlan 3 port 1-12 exluded 13-23 untagged 24 tagged
the problem is that I don't be able to speak with pfesense (ping failed on real lan ip and virtual lan ips) so I don't have also internet connection.The ethernet card i'm using are old (i have built the pfesense computer on spare parts that I have at home) so can be a driver issue?
View 1 Replies
ADVERTISEMENT
Apr 1, 2012
In my home setup I have an PFsense firewall wich is doing all the routing right now, but right now my net speed is maxing out about 500mbit, i my think it's the pfsense hardware, but its an 1500Mhz C7 VIA with 2Gb ram, I just bought two new switchs, HP-1910-24g and a HP 5500-24G they can do some layer 3 routing, will my speed get a bumb up when the switch is doing some of the vlan routing.
View 2 Replies
View Related
Nov 20, 2012
I'm using PfSense 2.0.1. What im trying to do is connect to a game server I have running here in my house. I can connect to it locally with 192.168.8.6 no problem. I have it port forward correctly so that the rest of the world can connect to it via my WAN ip address. The problem comes is I want to be able to connect to it with my WAN address so that if someone decides to follow me STEAM will show my WAN address not my internal IP address of the server im connected to. I have "Disable NAT Reflection for port forwards" UNCHECKED which is what I am supposed to do according to documentation from PfSEnse. But it still doesn't seem to work.
View 5 Replies
View Related
Feb 27, 2012
I wanna get one of the following Atom boards for a Pfsense box:
X7SPA-HF-D525 Mini-ITX - [URL]
X7SPE-HF-D525 FlexATX - [URL]
X7SPA-HF D510 Mini-ITX - [URL]
X7SPE-HF D510 FlexATX - [URL]
And put it in this case: [URL]
However, I can't find any info on which style motherboard is compatible with the expansion slot on the front of the case. I know you need a riser card to extend the PCI-e slot to the expansion slot, but since FlexATX and Mini-ITX are difference shapes/lengths, I don't know if the case's expansion slot is designed to only work with one or the other.
View 5 Replies
View Related
May 1, 2011
so I have a new Supermicro X7SPA-HF-D525 Mobo 4GB ram comming in and am wondering what firewall software I should put on it. This is for home use. Currently im running DD-WRT on an Asus 520GU, so anything is a step up. I have played with both, though Untangle only for about 20 or so mins on a VM, and pfSense for about an hr or so on an old P4.
By first glance at the untangle, one thing I didnt like was it looked like if I wanted anything I had to pay a yearly subscription for the same stuff that was offered for free or already included in pfSense. But i see alot of people swaring by Untangle.
View 19 Replies
View Related
Dec 13, 2011
I have gotten myself a neoware e140.It has an VIA 800MHz CPU with 128MB Flash and 128MB DDR2 RAM.he one I received a spare PCI slot which is occupied by a matrox graphic card Matrox Epica card. It shows up in the System Specs as a TC4 but I think it is a TC2.
It comes with this special adapter which splits into two DVI adapters. Each of these adapters supposedly can drive 2 monitors (I have no clue how).
The box currently has some neoware linux on it.I want to make a pfsense box out it to have support for a dual WAN setup. I have never dealt with this kind of stuff before and do not even know how to load the OS on the flash etc.
View 19 Replies
View Related
May 8, 2013
trying to get my ducks in a row for replacing a Cisco 5510 and a Barracuda Link Balancer with a virtual pfSense appliance. This is partially due to eliminating support contract costs (nearly $3k annually between both appliance) and partially to utilize the redundancy and fault tolerance that our virtual environment can provide. I'm also implementing a colo site for replication/DR this year so doing a tunnel from site to site would make it a lot easier with like for like virtual appliance firewalls.
The VPN aspect. We are currently doing Cisco VPN with Radius auth on the back end, this is seamless to setup from an end user perspective as they just hit a URL, download/install the ANyConnect client, and log in with their credentials. Is there a comparable alternative in pfSense? I'm leaning toward IPsec but it still doesn't seem as seamless as what we currently have in the ASA.
View 8 Replies
View Related
Jul 29, 2012
Unfortunately I do not remember the model and the switch is a couple of hours away without remote access.I have 4 vlans on a procurve switch.
VLAN1 - Network Devices (Server, printers, WAPs)
VLAN100 - Admin (Office workers)
VLAN200 - Teachers
VLAN300 - Students
There is a server doing DHCP. There are 4 ranges of IPs 1 for each VLAN.
The router is on Port 44. VLAN 1, 100, 200, 300 - Tagged
The Server is on Port 46. VLAN 1 - Untagged
The WAPs are on Ports 1, 11, 31 VLAN 1, 100, 200, 300 - Tagged
All other ports are on VLANs 100, 200 or 300 - Untagged
The WAPs all have VLANs 100, 200, 300. Each VLAN on a different SSID.
I have IP helper with the server IP on VLANs 100, 200, 300.
There are IPs from the different subnets on their respective VLANs in the switch.
The gateway for each subnet is on a different subinterface on the router.
The router is a linux box. (Untangle)
The WAPs are not able to talk to the server, therefore no computers on the wireless networks can get an IP.The server can only talk to the router if I change port 44 to untagged.What combination of tagged and untagged ports do I need to make everything talk?
Do I need to put the VLANs on the subinterfaces of the router?
View 1 Replies
View Related
Dec 1, 2012
I have 3 switches
Catalyst 2960
Catalyst 3750
Hp procurve 1410 24g
I want to link them using fiber as they are almost 50 meters apart. What connectors should I use and what fiber optic cable can be connected to those connectors.I have found these connectors and cables on internet will these work
GBM-7000-S85 - 1000Base-SX, multi-mode, 550m, 850nm GBIC transceiver
SC to SC Multimode Duplex High Speed Fiber Optic Ethernet Patch Cable 62.5/125
View 1 Replies
View Related
Jan 22, 2013
We have two publicly routable gateways attached to our A5500 switch that are expecting untagged traffic.
We currently have VLAN 10 as the untagged VLAN for Gateway 1, and VLAN30 as a tagged vlan for Gateway 2. Since both gateways are requiring untagged traffic, I need to make sure all ingress traffic from Gateway 2 gets tagged as VLAN30, while all egress traffic gets untagged.
The tricky part is they must come over the same port so I can't just tag it that way. I get the feeling this will require some static routes or VLAN Interfaces on the switch, but I'm not sure where to start.
View 15 Replies
View Related
Apr 17, 2012
I have 2 procurve switches
2848
2650
Procurve stacking? Is that just a way too manage both switches together?
Or is it for combining both switches together?
Or is that called something else in procurve speak?
Or is that feature not actually available etc?
Next to learn how to breakup the 2848 into multiple switches.
View 18 Replies
View Related
Jul 18, 2011
I have configured stack with 2 sge2010p switches. I want to connect this stack to the HP procurve switch using port agregation (LAG) technique. I want to use one ge port on each sge switch.How to configure it? Will it work witch port agregation on procurve?
View 2 Replies
View Related
Aug 31, 2012
So we recently moved our Comcast demarc to our new server room which resulted in moving the SMC modem from our old server room where it directly connects to the firewall - to a new room where it connects to a 2910 switch, LACP to our L3 switch, LACP to another 2910, then to Sonicwall.
Since the move our internet has been dropping off randomly for about 2-5 minutes then it will come back online. This happens anywhere from 10 to 50 times a day. Sometimes it happens a half hour apart, sometimes it is 15 minutes apart, sometimes it will go 8 hours without issue.
The modem has been replaced, the Comcast line has been "tested."
The modem remains online when we lose internet connectivity - I can connect to it using a laptop on it's lan port and ping out to google.com while an computer connected beyond the switch and sonicwall cannot connect.
I have run a constant ping from a home comptuer to the modem as well as to our sonicwall (both static addresses) and they both seem to go offline when we lose internet connectivity.
Since the issue started, I moved the Sonicwall so that it connects directly to the 2910 that the modem connects to, put it in a vlan with the modem so they only talk to each other and it still results in the same intermittent disconnects. I checked all the port statistics on both ports as well as the event logs, and trunk links and find nothing abnormal.
I take the switch out entirely and plug the modem directly into the firewall like it was prior to the whole move. Works fine.
Traffic is not an issue and the switch in question also connects all my production servers and iSCSI SAN together without issue.
View 19 Replies
View Related
Jan 28, 2013
I'm trying to determine what switches in the Procurve lineup will do Inter-VLAN routing on the same switch. Assume a basic 1 switch network.
I've determined that Procurve "Layer 3 Lite" will do static routing but not dynamic routing. So I would assume their Layer 2 switches do absolutely no routing. However I have a 2520 in front of me that HP claims is Layer 2 only yet I can route between VLAN's on that switch.
View 5 Replies
View Related
Oct 31, 2011
I have:
-Procurve 1810-24G
-Procurve 2520-8-PoE
Router (with Internet Connection) is plugged into port 24 of the 1810.My asterisk server is plugged into Port 1 of the 1810.The 2520 is plugged into Port 2 of the 1810, and all of the VoIP phones are plugged into the 2520.Rest of the office computers are plugged into the remaining ports on the 1810.
After setting up the subnet and assigning an ip to the 1810, everything else just worked out of the box. I would imagine that I should segment and prioritize the network so that the VOIP traffic is isolated and is higher priority from everything else.
I tried playing around a bit, but the phones lost connectivity, so I just defaulted everything back for now.
What would the suggestions be for setting up the VLANS properly to do this?I would also need one of the office PC's (say the one plugged into port 13 of the 1810) to be able to access the asterisk server.Also, would it be more optimal to have the asterisk server on the PoE switch or the main switch?
View 9 Replies
View Related
May 1, 2013
we're running some HP ProCurve 2520's (24 port PoE for desktops/phones) and 2510's for our server racks. The CPU's are a bit weak from what we can tell and sometimes end up with issues on them. The specs on the EAS series look like a decent jump compared to the older HP's. However I've never worked with these ever.
My other option is to go back to Cisco. However to make it fit our budget, we have to dump gig switches for 10/100 + PoE. Which isn't really a major issue on the desktop switches. We'll naturally put gig versions on the server racks. I like our ProCurves, however they cause issues from time to time.
I've also considered going back to Adtran, however I haven't kept up with what they have to offer. I'm tempted to play it safe and go the Cisco route. We're using ASA5510's active/passive for routing/firewall (gig versions).
View 13 Replies
View Related
Aug 13, 2012
My current switch layout at work is very basic and offers no redundancy. I'd like to at least setup redundant core switches, so that if any of my switches would to fail, it would result in a smaller number of systems affected.
Current Core Switch: HP Procurve 3500yl-48G (3500yl-24G as cold spare)
Internet Switch: 3com (forget model)
User distribution switches: 9 Planet 10/100 Layer 2 Managed switches, and 2 Dell Powerconnect 5448
Server switches: 5 Procurve 2810-24Gs (1 in each server rack)
In addition, we have 50+ site to site VPNs using different 192.168.x.x subnets across 2 different VPN concentrators, several routers, and a pair of MPLS's.My first step to improve speed and reliance was to reconnect the user switches. The old distribution switches were daisy chained, and all users 120 users were on a single 1GB port on the core switch, and if switch 2 of 11 failed, I'd have 10 switches knocked out of the network. I've since connected them directly to the core switch, and the users have noticed the improvement.
I'll try to get a diagram, but it's basically a large hub and spoke. Each and every switch is connected directly to the single core switch. All of the internet sources are connected directly to the 3com and are on separate VLANs which are then connected to the core via a trunk, which then handles the routing. Currently, I'm using less than half of the ports on the current core switch, so I should still have enough ports on the 24G to at least maintain the critical systems. Each server switch is trunked to the core, as is the internet switch, but the user network is not (but probably should be). Instead they are connected via simple untagged uplinks.
I absolutely cannot afford new equipment right now, so whatever I do will require reusing existing equipment. I'd very much like to increase the bandwidth from the server switches to the core if at all possible. Is there an easy way to configure and Active-Active setup that would improve bandwidth? Or would It be active-passive and require a 2 port LAG on the 48 port (for speed), and a 3rd port for the 24 port (for redundancy).
NOTE: With any luck, we'll be dropping our analog phone system and replacing it with VOIP sometime within the next year. So I should be getting some extra budget to replace the distribution switches with POE. Until then, I'll have to live with my crappy Planets.
View 6 Replies
View Related
Oct 3, 2011
Any good 24 port rack mountable Gigabit switch, that is managed. Is a HP ProCurve 1800-24G 24 port gigabit ethe switch J9028B decent ? Will i be happy ? I have currently a Dell 5224, that works, but it's getting old and for the life of me can't find rack ears AT ALL!! and i want it mounted so i can finish my rack installation.
budget is around 250-300$ 24 ports all gigabit and manage able for vlans etc etc.
View 19 Replies
View Related
Jan 23, 2013
I work as Network administrator in a building products plant at Poland. We had core switch HP Procurve 6200yl with 5 vlans, and 11 Aironet 1240AG Access points without controller. I have a problem with create 2 wi-fi VLANs on the Cisco AP's and linked it with HP switch.
VLANs on the switch:
1 - Default (for office sutff) - working great,
2 - Production (for production stuff) - working great,
3 - Inter (for Router's) - working great,
4 - WMS - i need configure it as wireless,
5 - WiFi with Radius - i need configure it as wireless.VLANS on the Access Points:
4 - WMS - for warehouse terminals - WPA2,
5 - WiFi for office stuff with Radius.
I'm easily able to get it running a single SSID (non-VLAN) network and confirm that I can use that network fine. However, I need to set up these 2 VLANs. I can connect to it via telnet if that'll let me program it faster.
View 2 Replies
View Related
Oct 5, 2011
I have a problem putting a Cisco 1141 AP in repeater mode with a AP HP Procurve.Root AP is a the Procurve, but when try to put the Cisco AP with same SSID, Authentication, etc, I receive this error:
%DOT11-4-CANT_ASSOC: Interface Dot11Radio0, cannot associate: NO Aironet Extension IE
I try disable the Aironet Extensions and always get the same error all time. It's possible connect both APs?
View 6 Replies
View Related
Apr 15, 2012
I am having difficulties implementing Mac-auth on selected ports between an HP ProCurve 2510 and Cisco ACS 5.3.The 802.1x works just fine, but for selected ports I need to implement port-access with MAC-based authentication instead of regular 802.1X (yeah, I know, but this line of ProCurve switches only support one auth-mechanism per port!).The switch successfully forwards interesting MAC-auth requests for authentication to the ACS with CHAP/MD5, but the ACS reports this:
Logged At:
April 16,2012 1:20:48.080 PM
RADIUS Status:
Authentication failed : 22056 Subject not found in the applicable identity store(s). NAS Failure:
Username:
002655886b3d MAC/IP Address:
00-26-55-88-6b-3d Network Device:
[code].....
The ACS is configured to use the Internal Hosts database, where the client computer is configured like this;MAC-address: 00-26-55-88-6B-3D
View 1 Replies
View Related
Apr 10, 2012
I wanted to know if I can somehow setup my network to use a proxy for all connected devices?
For example I can go into Firefox proxy settings and setup to browse using proxy. Is there any way to do this at the router or switch level to not have to configure every device individually I have a wndr3700 router and a HP procurve 1810g switch and am thinking of building a pfsense box.
View 8 Replies
View Related
Feb 9, 2013
We have a HP Procurve 5412zl switch as our default gateway for all our VLANs from there the traffic will be going to a Cisco ASA 5515 and then to a Cisco 3800 Router then to our ISP.
We have yet to purchase the ASA but my question is about my future configuration. I will have the router of last resort on the 5412zl setup to point to the ASA inside interface, how does that work with multiple VLANs? For instance the ASA inside interface would be 10.0.0.1 but traffic could come from another VLAN via the switch with a 192.168.1.x address. Would the ASA just pass it on to the router? Or would it conside this spoofing and drop the packet?
Lastely, if we have WCCP set for the ASA's inside interface, how would it handle the redirect for multiple VLANs ip addresses? Would I use GRE for the redirect to my web filter?
View 4 Replies
View Related
Jan 12, 2010
I have a HP Procurve 5406 connected to a Cisco 3560 on a temporary cat5e connection and I have Mitel IP phones needing to go on the Cisco switch.Ive configured the HP Procurve port to TAGGING both VLAN 10 (data) and VLAN 20 (Voice). NO is selected for default VLAN 1.The Cisco is configured on the port with switchport encap dot1q and switchport mode trunk.
Ive configured an IP for interface VLAN 10 and i cannot ping it from across the network. The interfaces are up and happy. I have tried changing the VTP status from transparent to server (VTP pruning is off) ive tried setting allowed vlans 10,20. Still not a think. The worse thing is that i have a working Cisco switch with the HP procurve that i checked the config on and its the same! The only difference is that the media type is SX over SFP in that case.
p.s not that im at this stage yet but i initially configure the FastE ports as trunks with native vlans because i was using non-cisco phones. On a spare port i convigured the voice vlan 20 and i say on the mitel phone that it was looking on vlan20! I didnt expect that, i thought the Voice VLAN ID was carried on CDP enabled devices only.
View 9 Replies
View Related
Jan 27, 2013
I have two modem USB (two ISP) and successfully created two Internet connections. However, it's useless since Windows will only use one of those connections as its default gateway. The other is essentially ignored,I have software Multi-WAN for split IP, first modem connection can't use but it ok for last modem connection to internet.
View 3 Replies
View Related
Oct 30, 2012
I have a school running at the factory network and I was forced to find another ISP just for the school. How can I configure the router/VLAN to have the school in both factory network for exchange server and File server & and the second ISP just for internet.
View 1 Replies
View Related
May 30, 2011
if I can configure a VPN on a Cisco 870 - CISCO877 V06.I either want to confiugure this as a VPN server or for it to forward PPTP traffic to a server based with the network.
View 1 Replies
View Related
Sep 6, 2011
can one connect and configure the Siemens Gigaset model SE568 wireless modem with adsl connection.
[code]...
View 1 Replies
View Related
Feb 23, 2011
having some trouble with configuring dynamic NAT
View 15 Replies
View Related
Feb 19, 2013
I'm using GNS3 in order to revise CCNA, the RIP part But I don't know why, i'v got a pbl with the routage table, especially with the metric which is wrong I don't understand wy the metric is always 1, because it should be 2 or 3 according to the network.
View 5 Replies
View Related
Nov 27, 2012
How do we setup ip pools in freeradius?
View 1 Replies
View Related
Mar 19, 2012
I bought a HooToo IP Camera (HT-IP212) to monitor my garden activities from my laptop at home. Everything so far is going as normal as it shall be. The wired connection was fine and is providing steady image and video output. Question 1# is i can't figure out how to configure the wireless section. Shall I set up the DDNS for the Cam as per the instruction? Question 2# Can I monitor my garden using the laptop in my office (not the one in my house), how can i set up the procedure?
View 1 Replies
View Related
Nov 17, 2012
I have a new house in which I have installed my cable modem and router in my storage room basement. The (4) phone jacks in the house are wired with CAT5 that runs down to my storage room. I would like to use Vonage and keep it in my storage room with the rest of my network. How would I configure Vonage with what I have described?
View 5 Replies
View Related
