Search found 370 matches

by dnl
July 15th, 2019, 2:26 am
Forum: IPFire in General
Topic: GREEN + BLUE + BLUE2 network?
Replies: 2
Views: 130

Re: GREEN + BLUE + BLUE2 network?

I'm running green, blue, orange. You should be able to get what you want with a few rules. The default policy is a handy place to start planning. https://wiki.ipfire.org/configuration/firewall/default-policy Thanks Mentalic! That does sound much easier than I had expected. That wiki page has change...
by dnl
July 14th, 2019, 11:05 am
Forum: IPFire in General
Topic: GREEN + BLUE + BLUE2 network?
Replies: 2
Views: 130

GREEN + BLUE + BLUE2 network?

Hello, I have spent some time search these forums but have not found a way to set up an internal network in addition to GREEN, BLUE and ORANGE. I would like to set up a network for IoT devices (my IPFire system has an unused NIC) however I'm already using GREEN and BLUE. I do not want the IoT device...
by dnl
July 13th, 2019, 4:16 am
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 49
Views: 3810

Re: Intrusion Prevention System - core 131

With both Talos and ET rules (all of them) loaded the memory consumption is steady at 780MB for suricata processess - past 50 days usage! Ouch! It is not wise to use an IPS with all the rules enabled. It's only creating spam alerts and wasting your power. How do you know what alerts to act on? Have...
by dnl
July 11th, 2019, 9:37 am
Forum: Addons
Topic: apcupsd on RPi
Replies: 3
Views: 907

Re: apcupsd on RPi

I was going to suggest that, after you'd fixed the problem, you could try "nut" Network UPS tools instead, but while it has activity on it's github site, the main maintainer seems to have lost interest as the last release was 2016.
by dnl
July 9th, 2019, 11:45 am
Forum: IPFire in General
Topic: Bypass Transparent Proxy for one internel IP?
Replies: 15
Views: 10673

Bypass Transparent Proxy for one internal IP?

For bypassing SQUID for one IP (no matter the destination) add in /etc/sysconfig/firewall.local section start) and another one in section stop) . The one in section start uses "-A", the one in section stop uses "-D" (delete). #!/bin/sh case "$1" in start) #Bypass SQUID rule for 192.168.2.2 iptables...
by dnl
July 5th, 2019, 10:12 am
Forum: IPFire in General
Topic: IPFire status graph not displayed
Replies: 17
Views: 5337

Re: IPFire status graph not displayed

Well I found the problem and the fix. The QoS graps appear to be in the /var/log/rrd/ base directory, not under 'collectd'. Switching from PPPoE to DHCP does not appear to have been catered for in the QoS interface. The configuration files all refer to ppp0 not "red0" and the upload classes are not ...
by dnl
July 5th, 2019, 10:05 am
Forum: IPFire in General
Topic: IPFire status graph not displayed
Replies: 17
Views: 5337

Re: IPFire status graph not displayed

Which of these is related to the QoS graphs? It does not seem to be "interface"... /var/log/rrd/collectd/localhost /var/log/rrd/collectd/localhost/iptables-filter-POLICYIN /var/log/rrd/collectd/localhost/iptables-filter-POLICYOUT /var/log/rrd/collectd/localhost/iptables-filter-POLICYFWD /var/log/rrd...
by dnl
July 5th, 2019, 10:02 am
Forum: IPFire in General
Topic: IPFire status graph not displayed
Replies: 17
Views: 5337

Re: [SOLVED] IPFire status graph not displayed

Problem description: none of the IPFire graphs were displayed after a reboot & changing the RED connection (from PPoE to DHCP). I have had the same problem with my QoS Uplink graph (only) since changing from PPPoE to DHCP. However I have not had any of the symptoms which you had. My internet speed ...
by dnl
July 2nd, 2019, 9:09 pm
Forum: IPFire in General
Topic: IPoE
Replies: 3
Views: 188

Re: IPoE

The VDSL Option is PPPoE over VLAN not IPoE. IPoE (IPoverEthernet) is the normal Protokol also in the LAN's. Most IPoE providers use DHCP to configure the clients. Thank you very much!! When I have a chance, I'll put the term "ipoe" in the appropriate wiki page with a brief explanation so others do...
by dnl
July 2nd, 2019, 10:57 am
Forum: IPFire in General
Topic: IPoE
Replies: 3
Views: 188

Re: IPoE

It sounds like IPFire calls "IPoE" "VDSL". However it talks about using PPPoE when my reading of the detail is that IPoE doesn't have the PPPoE overhead - just authentication on a specific VLAN. (Eg https://networkengineering.stackexchange.com/questions/39567/what-exactly-is-ipoe) Is anyone able to ...
by dnl
July 2nd, 2019, 10:48 am
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 49
Views: 3810

Re: Intrusion Prevention System - core 131

Not at all. The traffic toward internal network is close to zero: besides VPN there is no other ports allowed toward Ipfire or any other machine in LAN. The 3 countries allowed are those where I live or travel frecquently so I need to be able to reach my home network while traveling. There really n...
by dnl
July 2nd, 2019, 7:27 am
Forum: IPFire in General
Topic: Not resolving domains
Replies: 13
Views: 363

Re: Not resolving domains

i stopped using my ipfire firewall for DNS many years ago after they made a change that broke my host file I was using to block ADs, malware, etc... my ipfire points to "the google" DNS servers. my ipfire's DHCP gives out one internal DNS server address which is an internal (green side) rpi running...
by dnl
June 30th, 2019, 11:51 am
Forum: IPFire in General
Topic: IPoE
Replies: 3
Views: 188

IPoE

Hi all, My ISP suggests using IPoE with no VLAN ID. (I assume this means the default VLAN ID is needed?) I must use their modem, which supports bridging, so how do I configure IPFire? (The "VDSL" setting doesn't quite seem right) I've found a few different references to IPoE in these forums but didn...
by dnl
June 30th, 2019, 10:03 am
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 49
Views: 3810

Re: Intrusion Prevention System - core 131

Last thing: I have a big GeoIP filtering in place - less than 3 countries allowed in. So IPS gets little number of packets, vast majority are blocked by GeoIP chain. This chain stops all netscan attempts from so many entities that does that regularly... Wow, I block a lot of countries and have seen...
by dnl
June 30th, 2019, 10:01 am
Forum: IPFire in General
Topic: IPS: Who chooses the default enabled rules in a ruleset?
Replies: 6
Views: 624

Re: IPS: Who chooses the default enabled rules in a ruleset?

It comes from the provider. The defaults are already enabled in the rule files and the others are included as comments. Thanks Arne! I've been able to confirm that. I checked the ruleset provider's rule changes. They had added a new rule to a category in which I had previously disabled a rule. The ...