Well it's always good to resolve your own problems. When I installed pfSense, I changed my private IP scheme to 10.10 from 192.168 and one of the files in nextcloud was configured with the old IP. So now it's working. In case anyone is having difficulty with ssl connections on hosts, I put the following info into dns resolver at the bottom for adding a host override. I'm connecting via SSL to unraid.

host - long chain of characters before unraid.net in your address bar
parent domain - unraid.net
IP - unraid IP address

@jegr Thanks, I will try this as soon as possible!

Firewall rules are by interface, not IP address.

@harrybells said in increase socket and solve squid error:

o many open files With uni

Hi Harrybells,
where the parameters /proc/sys/net/ipv4/tcp_fin_timeout are changed?
In my pfsense I don't have the folder /proc/sys

Thanks in advance

afapark.com is registered and public... But even the public facing doesn't do https.. It listens on 443 but all it does it give errors.. Can not even connect via s_client to get any info..

@biggsy said in can't reach my access points on my lan side using openVPN:

It may be because the APs don't want to talk to anything outside their own network - e.g., traffic coming from the VPN tunnel. I've seen this a few times.

This can be tested easily. tested.
Change your WAN2 for a LAN2 interface.
You'll be having a LAN with 192.168.1.1/24 - on this LAN you have your AP (right ?!).
Make LAN2 (OPT1) like 192.168.2.1/24 - put a pass all firewall rule on it, activate a DHCP server on it, connect to it.

Now, can you access your AP on LAN coming from your PC hooked on LAN2 ?
You should be able to do so. (I do soo all the time, accessing devices on other LAN segments).
If not => go check you AP.

@rico

I have tried setting up Open VPN for an Android client but I cannot get to work. The VPN connects OK but no data passes through. I cannot connect to any device via local IP from my Google Pixel. I followed this tutorial:

https://www.youtube.com/watch?v=Q6YbCQEiC3c

Resolved by suggestion in: https://forum.netgate.com/topic/71097/vpn-over-vpn/8

Found the solution my firewall has atom CPU, and after upgrade it turns serial console.
Solution explains in the end of https://www.netgate.com/docs/pfsense/install/upgrade-guide.html#upgrading-from-versions-older-than-pfsense-2-4-4

A temporary solution is here:
https://forum.netgate.com/topic/137237/pfsense-2-4-4-lan-interface-stops-routing-traffic-stops-working-after-some-minutes-sometimes-hours

To remind DHCP that the computer is in LAN subnet, if in the first call of webservices of remote site fails i force the client machine to release and renew IP address by ipconfig / release/renew and this starts tunnel traffic again.

Details are here:
https://forum.netgate.com/topic/137237/pfsense-2-4-4-lan-interface-stops-routing-traffic-stops-working-after-some-minutes-sometimes-hours

Install the Patch package.
Read the Patch package manual (Netgate's pfSense doc).

Or : as you already found out, it concerns only the edit of a file, a couple of lines.
A good text editor like Ultraedit or Notepad++ and a tool like SmartFTP or FileZilla (both can handle SFTP access) and your do it as is done old fashioned way - ans still today : with your fingers. Btw : and keyboard.

@faust said in Netgate forum email notification (message-id):

will do!

done :
https://community.nodebb.org/topic/12994/netgate-forum-email-notification-message-id

Thanks for the reply, would I need to disable the NAT on PFsense 2, since it will be creating the VPN tunnel through PFsense 1 WAN?

I am Getting

Download: 340 MBPS
Upload: 60 MBPS

Hardware Specs are

CPU: 4 Cores
Ram: 8 GB
SSD: 500 GB

My Inernet connection is good and I got more Speed without pfsense openvpn but there is not that much difference.