I have set up a new firewall for my network, and am wanting to use it to also perform either the encap.txt updates, or even a few isolated IPIP tunnels to get my connections back to the 44/8 network. Is anyone else running pfSense to do this? I would be interested in some help in making this work. Screenshots, a write up.. Anything!!!
I'll explore it more today for a bit, but I'm still baffled by some of the way pfSense does things and still trying to figure it out.
Thanks for any help you can offer!
Hi Rod,
This is fairly trivial to do. I'm doing it here @ NI2O.
You simply need to edit the GUI php files so that you can select IPIP, AX25 etc from the GUI and then it all works. I'm at work currently so am unable to tell you what files to edit. Email me offlist and I'll tell you.
At some point I should write a wiki article about how to do this.
Mark
On Wed, Jul 9, 2014 at 3:22 PM, Rod Ekholm kc7aad@gmail.com wrote:
(Please trim inclusions from previous messages) _______________________________________________ I have set up a new firewall for my network, and am wanting to use it to also perform either the encap.txt updates, or even a few isolated IPIP tunnels to get my connections back to the 44/8 network. Is anyone else running pfSense to do this? I would be interested in some help in making this work. Screenshots, a write up.. Anything!!!
I'll explore it more today for a bit, but I'm still baffled by some of the way pfSense does things and still trying to figure it out.
Thanks for any help you can offer!
-- Rod Ekholm
kc7aad@gmail.com
Whist Rod replied to me off list as requested I've had a few other folks ask for this info.
I used this advice that I found in a mailing list a few years back.
https://forum.pfsense.org/index.php?topic=64060.0
Basicly one edits some GUI pages so that the drop down menu's offer the protocols you want to use. I added quite a few including IPIP, IPtunnel, AX25 etc. pFsense (and probably m0n0Wall etc) can do these protocols but the GUI developers did not list all the protocols that the platform can do. Break open /etc/protocols for a HUGE list of the stuff pFsense can do,most of which is not listed in the GUI.
Alternatively, you could always write the pFsense rules into the config files by hand thus eliminating the need for the GUI. I can never remember the subtle switches etc so use the GUI.
pFsense has a file editor available as a GUI addon which could make life easier by I like using the command line editor "vi". Simply SSH into the box, select "shell" from the menu and you have a BSD (kinda like Linux) command line.
The usual health warnings apply!!!
Mark
On Wed, Jul 9, 2014 at 5:00 PM, Mark Phillips g7ltt@g7ltt.com wrote:
Hi Rod,
This is fairly trivial to do. I'm doing it here @ NI2O.
You simply need to edit the GUI php files so that you can select IPIP, AX25 etc from the GUI and then it all works. I'm at work currently so am unable to tell you what files to edit. Email me offlist and I'll tell you.
At some point I should write a wiki article about how to do this.
Mark
On Wed, Jul 9, 2014 at 3:22 PM, Rod Ekholm kc7aad@gmail.com wrote:
(Please trim inclusions from previous messages) _______________________________________________ I have set up a new firewall for my network, and am wanting to use it to also perform either the encap.txt updates, or even a few isolated IPIP tunnels to get my connections back to the 44/8 network. Is anyone else running pfSense to do this? I would be interested in some help in making this work. Screenshots, a write up.. Anything!!!
I'll explore it more today for a bit, but I'm still baffled by some of the way pfSense does things and still trying to figure it out.
Thanks for any help you can offer!
-- Rod Ekholm
kc7aad@gmail.com
Thanks for sharing that information.
It may be beneficial to make an overlay that can easily be sftp'd to the target pfsense device.
Or the pfsense project could be forked similar to how open wrt was forked for ham use as this has just as much flexibility as the hsmm-mesh software.
I have been a deployer and tester for years, great software. I have also created custom patched versions to support things like soundmodems, strange wifi cards, and weird 3g card drivers.
If there is anyone interested, please send me an email off list as I have been thinking of a ham version of pfsense for years.
Best Regards,
Elias Basse KD5JFE SELCOMS Board Member Louisiana AMPRNET Coordinator
-
Elias Basse -
Mark Phillips -
Rod Ekholm