Yep the draft V2 book is well worth a read if you have the gold subscription. With a 5Mbps connection shared between 60 clients you may need to get some relatively complex shaping to keep things moving. Is the connection symmetric, 5Mbps up also? For example rather than specifying a bandwidth limit per user you can instead reserve some bandwidth for important tasks/users leaving the rest to be used by anyone. Again it depends what your users need. I have no idea what sort of business you're involved with but maybe most of those 60 clients only occasionally send emails. Steve

Chrome browser has Flash built-in. Maybe that will work for you to access the ESXI Web UI.

Thanks mhab12 I will read the similar posts, and try the restart of service.  I think already test it that but to be sure it doing again. I hope we have some fix soon. Thanks!

You need to send Accounting data to the radius server, and you need to "Reauthenticate users every 1 minute". You'll find it's likely easier moving your radius server to a different machine with apache/mysql where you can use one of the web frontends to manage the users, and get group support within radius. If you haven't configured a radius server from scratch, look into the book 'Freeradius beginner's guide'.

Have you looked at the developer shell? https://doc.pfsense.org/index.php/Using_the_PHP_pfSense_Shell Steve

Poster en anglais ici: https://forum.pfsense.org/index.php?board=44.0 or https://forum.pfsense.org/index.php?board=3.0 Poster en francais ici: https://forum.pfsense.org/index.php?board=7.0

The system log is distinct from the firewall log, they are on separate tabs in the webgui logs page. If your traffic is not getting through it's not arriving at the firewall, it's being blocked by the firewall or it's not being routed out of the firewall. Steve

A map might be fun … so long as results in export-controlled countries are filtered out so as not to raise any suspicions. :-)

i haven't had issues with the zyxel 1910 series. They offer a lot of value for money imho. 1910-24 without POE costs around €130. I don't have prices for the POE version at hand, but i do know the 24-port POE is kind of noisy (fan noise). In other words, you wouldn't want them in your livingroom or near your desk

for gigabit i would go for a dell power edge with xeon or an old HP server I only have a 100M fiber, averaging out on 80-89M, this is sufficient foe me.

Thanks Benny and Jimp, i am gonna see if Jimp's idea is workable.. i am looking for a quick solution for the issue. changing settings in 4 diff pfboxes will be a titanic task. rgds

So if I understand you correctly you need the wan connection to be also available on another nic? If power is no issue, use a switch. That is really the easiest way. Otherwise, I think that a bridge is what you are looking for. (bridging 2 nics…. Think of it as bridging lan&wlan, but then for wan and (e.g.) opt1) Lots of material to find in the forum here, search for; bridge, bridging, transparent firewall, transparent bridge, ....

@jflsakfja: How many companies have spent millions so far on solutions that stop working when the next OS version comes out? Either that or they get stuck on outdated and unpatched systems, which lead to their compromise. How many of those companies would be in the same position if they used open source software as a foundation of their systems? Let's take ACME bank for example. ACME bank needs to make sure that their systems are secure, since they are after all a bank. They hire a programmer to write their custom bank software, and when he is finished, they hire someone to audit it. 5 years down the line, when the original software author gets run over by a black van with tinted windows, the bank is left at the mercy of the people doing the audit. Rewind back the clock now. ACME bank searches for an open source software that does the job they need. Let's assume for now that they do find such a project. They get in touch with the developers to add a couple of things they need, the developers make the changes, and the software is rushed into production. The bank then audits the software through third parties and finds a bug. The developers fix that bug in a timely manner. 5 years down the line ABC bank comes into play. They search for an open source project, and they find the one that ACME bank uses. They also get interested and start using the software. 5 years down the line they in turn discover a bug that ACME's auditors missed all those years. End result? Both banks benefit, since the bugs are fixed in the common code by its developers. Instead of investing millions, they invested a couple thousand into their software (excluding audits, since that's mandatory) which in turn fed the developers and supported the software's community. Good example, thanks for it. Unfortunately this can only happen in a dream world. Here's the reason why: Bank ACME and bank ABC are competitors on their market. It's against their interest to show the ways/workflows they use to make business. That's why they rather pay trillions more money to keep the source closed and their own property. They will never agree to share internal workflows and business secrets with each other… and computer software is more and more the base for business workflows everywhere. They will also never agree to share these things to public because then newer and newer competitors could come and decrease profits. It's all about money and time, unfortunately. How fast can Cisco firewall be deployed within a big company? How many people can stand behind it? Are there any guarantees? Oh sure, many contracts can be signed and promises and lies, nobody cares really. Can't be the same with pfSense... this is the reality nowdays, and I can't really see how can it be changes. Businessmen and politicians don't care about the community and honesty and trust. This whole NSA is nothing more than another method to try to get more money by gaining newer and newer business positions over the world. America doesn't want to allow to be overridden by China... Every time I realise this I get more and more angry and start fearing about what a rude world we're living in. And I have two children I have to rise, what should I teach them...?