I agree with what everyone is saying but there is a way to assign the same static IP to two different MACs. I do it if I assign a static IP to a device that has multiple interfaces (WDTV, Roku 3, TVs, Work Laptop) This is not supported by pfsense and could break your system if you mess up!!! I hold no responsible if you break your system nor do I offer support. But I am willing to share the knowledge of how it can be done You will have have to manually edit your config.xml… Goto you the <dhcpd>section then look for <staticmap>... You should get the idea of how to do this...Once you save your changes, reboot your box.. <staticmap><mac>00:19:9d:12:9f:4c</mac> <ipaddr>192.168.0.51</ipaddr> <hostname>vizio</hostname> <filename><rootpath></rootpath></filename></staticmap> <staticmap><mac>00:19:9d:08:dc:05</mac> <ipaddr>192.168.0.51</ipaddr> <hostname>vizio</hostname></staticmap> [image: Capture.JPG] [image: Capture.JPG_thumb]</staticmap></dhcpd>

Nevermind…  the dns forwarder wasn't configured. I don't remember having to configure this manually last time - but all is good now. https://<router>/services_dnsmasq.php</router>

sorry for late , but I just remove everything I did and then reboot … works great now I want to to make captive portal to control kids devices good luck

That actually word! Thanks!

Are you using your email or your account username.  The client doesnt work with email as your username. BTW, obscure your IP address in your posts.

If you're using the 2 WAN connections in an active/passive type setup.. If you did dynDNS on a machine behind PFsense, when the WAN failed over the dynDNS would get the other wan's public IP.  Then just sent the web and MX record to point towards the dynDNS address.

You can set any host on your network to use any DNS servers you want.  Just configure them statically. You can also set the computers to DHCP and use a DHCP static mapping to send different settings to different computers.

HAHA.. No, no risk in getting slapped from me at least. :) That was really the route to go. I'm just one of those people that, for various reasons like being laid off can barely afford food at times, let alone more tech. ^^;; I kind of figured that there would be more nerds like me that would need something like this for financial reasons or simply because they are simply curious. You have a good one.

Depending on whether you want to just prank him, or discourage the porn use altogether, either use the above suggestions, or checkout a content filter like squidguard or dansguardian. Even if you aren't trying trying to start a war with him, but just want to help protect your network from pesky trojan horses and spyware, take a look at squidguard and dansguardian. Since you can block URLs by category, you can filter out advertiser's sites, as well as block sites whose only purpose is to distribute malware - something good to have in place anyway. Then, if and when he gets you mad, a quick toggle from allow to deny for the porn category will get you even. Moral of the story: Don't get mad, get even… P.S.: You can set either an internal block page with a custom message, or redirect blocked pages to an external URL. So he would only see the lolcats page when he goes to his porn sites, but everything else would work fine. Oh, and if you are tempted to rub it in further by whitelisting your MAC or IP address, so you can say "I don't know what you are complaining about, it works fine here, see?". For pete's sake, set a password on your computer and a short screensaver timeout. Otherwise, you'll go to use your computer one day, and find your history full of porn, your compy full of spyware, and you'll find yourself wanting to take a clorox wipe to your keyboard...

thanks for trying to help .. I try everything. am confused  !! and there is no simple steps to do that or manual ! before pfsense I use untangle everything works perfect but I like pfsense for fast responce and cache proxy BR

Hi, (Sorry for late answer) In a popcorn without HDD, the interface is very light and not customizable. As my linux server is acting as NAS :  i prefer XBMC on raspberry with a 4gb SD in it, as i can fully customize it. Regarding the freezer : As it is in the cellar , in case of bad closed door, i cannot hear the alarm. (it append one time and i through away 300€ of foods… ) The purpose of the rasp is to call me (via my alarm module) or send SMS (not implemented yes, but i will use a 3G modem stick) For the flowmeter, it is also acting as an alarm system in case of a leakage of my Culligan (It already appened to me. A problem with a ring as generated a high water consumption) I am now detecting the leak when some water, normaly used to clean the tank two time a month, go away continuously to the sewage...)

@Derelict: Is the IPv6 nameserver 2601:7:2000:34:20c:xxxx:xxxx:xxxx any server other than the pfSense DNS forwarder? Nope, it's the pfSense LAN IPv6 address.

That would be it, thank you. I figured it was something simple…......

replying to my own post FIX: In the firewall rules for each of the two OPT nics I had mistakenly used TCP rather than any * for a pass rule Once I corrected this the dns / UDP traffic was able to pass to do a a successful nslookup and web browsing started to function on both of the OPT nics. Sidenote: When troubleshooting this, I had went into the System  >Advanced>Firewall/NAT  and choose the check mark to totally disable firewall. Traffic still did not pass. Possibly had to do a reboot and the OPT nics may have functioned. Not sure Thank You, Barry

So .zombiedomain is not a good choice if you ask me that is single label. So here I have a box called ubuntu, and my domain is local.lan - if I just put ubuntu into my browser you can see it does a full qualified query for ubuntu.local.lan and so dns responds with its IP and the browser goes there.  You can see my windows machine uses local.lan as is search suffix which is why it does that query that way it auto adds the local.lan and works even when I just put hostname in browser. To be honest this is really bad practice.. You should use a fqdn. If you want netbios resolution then your client needs to send those out and your host need to respond to those or you need wins, etc.  Understanding how name resolution works is the challenge here - using http://hostname/ is bad practice use http://hostname.domain.tld is how it should be done.  Just set a bookmark and then your done ;)  And don't have to worry about [image: websitehostname.png] [image: websitehostname.png_thumb]