Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net protocols on it without manual editing. It is FreeBSD based, but I want to get the webConfigurator way to get 44net trafic forwarded to my Linux Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's webConfigurator does not show all protocols to be listed in the NAT configuration page. Despite all IP protocols being supported in "/etc/protocols", only the most common protocols are listed in the protocols drop-down of NAT configuration page (it is a webConfigurator limitation). There is a workaround by editing system files, but I am wondering if someone already have a system patch handy to add the needed protocols without manual editing, by using only the "System Patches" package. I don't like the idea of myself editing system files, since I don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system components (easy for the ones that understand it). Can someone help me to build a system patch to show 44net protocols in the NAT protocol drop-down menu?
There are some comments on the link below, but I could not figure out how to do so by making a system patch, so anyone could apply the patch without manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
As far as I can tell (and sounds like what you're discovering too) is that pfsense just doesn't support specifying arbitrary protocols. However, pf does. Maybe instead of editing PHP, you would be comfortable editing the pf template? A rule could be added into /etc/inc/filter.inc, which the webconfigurator templates with.
--j
On Fri, Jan 6, 2017 at 8:38 PM, Luzemário Dantas luzemario@luzemario.net.br wrote:
(Please trim inclusions from previous messages) _______________________________________________ Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net protocols on it without manual editing. It is FreeBSD based, but I want to get the webConfigurator way to get 44net trafic forwarded to my Linux Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's webConfigurator does not show all protocols to be listed in the NAT configuration page. Despite all IP protocols being supported in "/etc/protocols", only the most common protocols are listed in the protocols drop-down of NAT configuration page (it is a webConfigurator limitation). There is a workaround by editing system files, but I am wondering if someone already have a system patch handy to add the needed protocols without manual editing, by using only the "System Patches" package. I don't like the idea of myself editing system files, since I don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system components (easy for the ones that understand it). Can someone help me to build a system patch to show 44net protocols in the NAT protocol drop-down menu?
There are some comments on the link below, but I could not figure out how to do so by making a system patch, so anyone could apply the patch without manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net
In regards to that, you won't be doing any patching. Directly from the website: /usr/local/www/firewall_nat_edit.php:535: <?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP"); foreach ( $protocols as $proto): ?> /usr/local/www/firewall_nat_out_edit.php:488: <?php $protocols = explode(" ", "any TCP UDP TCP/UDP ICMP ESP AH GRE IPV6 IGMP carp pfsync"); /usr/local/www/firewall_rules_edit.php:861: $protocols = explode(" ", "TCP UDP TCP/UDP ICMP ESP AH GRE IPV6 IGMP OSPF any carp pfsync");
If you notice, its (file):(line#) (content of line). Basically, within those files and lines, you just need to add ipencap and ax.25. For example: /usr/local/www/firewall_nat_edit.php:535: <?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP"); foreach ( $protocols as $proto): ?> Should be: /usr/local/www/firewall_nat_edit.php:535: <?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP ipencap ax.25" ); foreach ($protocols as $proto): ?>
On Fri, Jan 6, 2017 at 3:38 PM, Luzemário Dantas <luzemario@luzemario.net.br
wrote:
(Please trim inclusions from previous messages) _______________________________________________ Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net protocols on it without manual editing. It is FreeBSD based, but I want to get the webConfigurator way to get 44net trafic forwarded to my Linux Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's webConfigurator does not show all protocols to be listed in the NAT configuration page. Despite all IP protocols being supported in "/etc/protocols", only the most common protocols are listed in the protocols drop-down of NAT configuration page (it is a webConfigurator limitation). There is a workaround by editing system files, but I am wondering if someone already have a system patch handy to add the needed protocols without manual editing, by using only the "System Patches" package. I don't like the idea of myself editing system files, since I don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system components (easy for the ones that understand it). Can someone help me to build a system patch to show 44net protocols in the NAT protocol drop-down menu?
There are some comments on the link below, but I could not figure out how to do so by making a system patch, so anyone could apply the patch without manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net
-
Jonathan Lassoff -
Luzemário Dantas -
Miguel Rodriguez