6 Jan
2017
6 Jan
'17
3:38 p.m.
Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net
protocols on it without manual editing. It is FreeBSD based, but I want
to get the webConfigurator way to get 44net trafic forwarded to my Linux
Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's
webConfigurator does not show all protocols to be listed in the NAT
configuration page. Despite all IP protocols being supported in
"/etc/protocols", only the most common protocols are listed in the
protocols drop-down of NAT configuration page (it is a webConfigurator
limitation). There is a workaround by editing system files, but I am
wondering if someone already have a system patch handy to add the needed
protocols without manual editing, by using only the "System Patches"
package. I don't like the idea of myself editing system files, since I
don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system
components (easy for the ones that understand it). Can someone help me
to build a system patch to show 44net protocols in the NAT protocol
drop-down menu?
There are some comments on the link below, but I could not figure out
how to do so by making a system patch, so anyone could apply the patch
without manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
6 Jan
6 Jan
4:45 p.m.
As far as I can tell (and sounds like what you're discovering too) is
that pfsense just doesn't support specifying arbitrary protocols.
However, pf does.
Maybe instead of editing PHP, you would be comfortable editing the pf
template? A rule could be added into /etc/inc/filter.inc, which the
webconfigurator templates with.
--j
On Fri, Jan 6, 2017 at 8:38 PM, Luzemário Dantas
<luzemario(a)luzemario.net.br> wrote:
(Please trim inclusions from previous messages)
_______________________________________________
Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net protocols
on it without manual editing. It is FreeBSD based, but I want to get the
webConfigurator way to get 44net trafic forwarded to my Linux Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's
webConfigurator does not show all protocols to be listed in the NAT
configuration page. Despite all IP protocols being supported in
"/etc/protocols", only the most common protocols are listed in the protocols
drop-down of NAT configuration page (it is a webConfigurator limitation).
There is a workaround by editing system files, but I am wondering if someone
already have a system patch handy to add the needed protocols without manual
editing, by using only the "System Patches" package. I don't like the idea
of myself editing system files, since I don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system
components (easy for the ones that understand it). Can someone help me to
build a system patch to show 44net protocols in the NAT protocol drop-down
menu?
There are some comments on the link below, but I could not figure out how to
do so by making a system patch, so anyone could apply the patch without
manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
_________________________________________
44Net mailing list
44Net(a)hamradio.ucsd.edu
http://hamradio.ucsd.edu/mailman/listinfo/44net
7 Jan
7 Jan
3 a.m.
In regards to that, you won't be doing any patching.
Directly from the website:
/usr/local/www/firewall_nat_edit.php:535:
<?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP");
foreach (
$protocols as $proto): ?>
/usr/local/www/firewall_nat_out_edit.php:488:
<?php $protocols = explode(" ",
"any TCP UDP TCP/UDP ICMP ESP AH GRE IPV6 IGMP carp pfsync");
/usr/local/www/firewall_rules_edit.php:861:
$protocols = explode(" ",
"TCP UDP TCP/UDP ICMP ESP AH GRE IPV6 IGMP OSPF any carp pfsync");
If you notice, its (file):(line#) (content of line).
Basically, within those files and lines, you just need to add ipencap and
ax.25. For example:
/usr/local/www/firewall_nat_edit.php:535:
<?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP");
foreach (
$protocols as $proto): ?>
Should be:
/usr/local/www/firewall_nat_edit.php:535:
<?php $protocols = explode(" ", "TCP UDP TCP/UDP GRE ESP ICMP ipencap
ax.25"
); foreach ($protocols as $proto): ?>
On Fri, Jan 6, 2017 at 3:38 PM, Luzemário Dantas <luzemario(a)luzemario.net.br
wrote:
(Please trim inclusions from previous messages)
_______________________________________________
Hi guys,
Anyone of you do use pfSense? I want a clue about forwarding 44net
protocols on it without manual editing. It is FreeBSD based, but I want to
get the webConfigurator way to get 44net trafic forwarded to my Linux
Debian box.
PfSense allows NATting 44net protocols to a Linux box. But it's
webConfigurator does not show all protocols to be listed in the NAT
configuration page. Despite all IP protocols being supported in
"/etc/protocols", only the most common protocols are listed in the
protocols drop-down of NAT configuration page (it is a webConfigurator
limitation). There is a workaround by editing system files, but I am
wondering if someone already have a system patch handy to add the needed
protocols without manual editing, by using only the "System Patches"
package. I don't like the idea of myself editing system files, since I
don't know too much PHP programming.
PfSense has a System Patches package wich makes easy to change system
components (easy for the ones that understand it). Can someone help me to
build a system patch to show 44net protocols in the NAT protocol drop-down
menu?
There are some comments on the link below, but I could not figure out how
to do so by making a system patch, so anyone could apply the patch without
manual editing.
Thanks for your comments.
https://forum.pfsense.org/index.php?topic=64060.msg346690#msg346690
73 de PT2LDR
Luzemario
_________________________________________
44Net mailing list
44Net(a)hamradio.ucsd.edu
http://hamradio.ucsd.edu/mailman/listinfo/44net
--
Miguel Rodriguez
12th Grade Student
MIGUELR-DN42 / KM4VYU
miguemely101(a)gmail.com
Tel: *561-758-0631*
*Accredited District Since 2008; Re-certification - January 2013*
Home of Florida's first LEED Gold Certified School
*Disclaimer*: Under Florida law, e-mail addresses are *public records*. If
you do not want your e-mail address released in response to a public
records request, do not send electronic mail to this entity. Instead,
contact this office by phone or in writing.
2688
days inactive
2689
days old
2 comments
3 participants
participants (3)
-
Jonathan Lassoff -
Luzemário Dantas -
Miguel Rodriguez