9 Jul
2014
9 Jul
'14
8:22 p.m.
I have set up a new firewall for my network, and am wanting to use it to
also perform either the encap.txt updates, or even a few isolated IPIP
tunnels to get my connections back to the 44/8 network.
Is anyone else running pfSense to do this? I would be interested in some
help in making this work. Screenshots, a write up.. Anything!!!
I'll explore it more today for a bit, but I'm still baffled by some of the
way pfSense does things and still trying to figure it out.
Thanks for any help you can offer!
--
Rod Ekholm
kc7aad(a)gmail.com
9 Jul
9 Jul
10 p.m.
Hi Rod,
This is fairly trivial to do. I'm doing it here @ NI2O.
You simply need to edit the GUI php files so that you can select IPIP,
AX25 etc from the GUI and then it all works. I'm at work currently so
am unable to tell you what files to edit. Email me offlist and I'll
tell you.
At some point I should write a wiki article about how to do this.
Mark
On Wed, Jul 9, 2014 at 3:22 PM, Rod Ekholm <kc7aad(a)gmail.com> wrote:
> (Please trim inclusions from previous messages)
> _______________________________________________
> I have set up a new firewall for my network, and am wanting to use it to
> also perform either the encap.txt updates, or even a few isolated IPIP
> tunnels to get my connections back to the 44/8 network.
> Is anyone else running pfSense to do this? I would be interested in some
> help in making this work. Screenshots, a write up.. Anything!!!
>
> I'll explore it more today for a bit, but I'm still baffled by some of the
> way pfSense does things and still trying to figure it out.
>
>
> Thanks for any help you can offer!
>
> --
> Rod Ekholm
>
> kc7aad(a)gmail.com
>
10 Jul
10 Jul
1:32 p.m.
Whist Rod replied to me off list as requested I've had a few other
folks ask for this info.
I used this advice that I found in a mailing list a few years back.
https://forum.pfsense.org/index.php?topic=64060.0
Basicly one edits some GUI pages so that the drop down menu's offer
the protocols you want to use. I added quite a few including IPIP,
IPtunnel, AX25 etc. pFsense (and probably m0n0Wall etc) can do these
protocols but the GUI developers did not list all the protocols that
the platform can do. Break open /etc/protocols for a HUGE list of the
stuff pFsense can do,most of which is not listed in the GUI.
Alternatively, you could always write the pFsense rules into the
config files by hand thus eliminating the need for the GUI. I can
never remember the subtle switches etc so use the GUI.
pFsense has a file editor available as a GUI addon which could make
life easier by I like using the command line editor "vi". Simply SSH
into the box, select "shell" from the menu and you have a BSD (kinda
like Linux) command line.
The usual health warnings apply!!!
Mark
On Wed, Jul 9, 2014 at 5:00 PM, Mark Phillips <g7ltt(a)g7ltt.com> wrote:
> Hi Rod,
>
> This is fairly trivial to do. I'm doing it here @ NI2O.
>
> You simply need to edit the GUI php files so that you can select IPIP,
> AX25 etc from the GUI and then it all works. I'm at work currently so
> am unable to tell you what files to edit. Email me offlist and I'll
> tell you.
>
> At some point I should write a wiki article about how to do this.
>
> Mark
>
> On Wed, Jul 9, 2014 at 3:22 PM, Rod Ekholm <kc7aad(a)gmail.com> wrote:
>> (Please trim inclusions from previous messages)
>> _______________________________________________
>> I have set up a new firewall for my network, and am wanting to use it to
>> also perform either the encap.txt updates, or even a few isolated IPIP
>> tunnels to get my connections back to the 44/8 network.
>> Is anyone else running pfSense to do this? I would be interested in some
>> help in making this work. Screenshots, a write up.. Anything!!!
>>
>> I'll explore it more today for a bit, but I'm still baffled by some of
the
>> way pfSense does things and still trying to figure it out.
>>
>>
>> Thanks for any help you can offer!
>>
>> --
>> Rod Ekholm
>>
>> kc7aad(a)gmail.com
>>
8:24 p.m.
Thanks for sharing that information.
It may be beneficial to make an overlay that can easily be sftp'd to the
target pfsense device.
Or the pfsense project could be forked similar to how open wrt was forked
for ham use as this has just as much flexibility as the hsmm-mesh software.
I have been a deployer and tester for years, great software. I have also
created custom patched versions to support things like soundmodems, strange
wifi cards, and weird 3g card drivers.
If there is anyone interested, please send me an email off list as I have
been thinking of a ham version of pfsense for years.
Best Regards,
Elias Basse
KD5JFE
SELCOMS Board Member
Louisiana AMPRNET Coordinator
3800
days inactive
3801
days old
3 comments
3 participants
participants (3)
-
Elias Basse -
Mark Phillips -
Rod Ekholm