The "Getting Started" (a.k.a overview) section was more popular so we decided to start highlighting it. You can access the forum directly from the homepage by clicking the grey icon on the right of the blog entry.

Read this: https://forum.pfsense.org/index.php/topic,69860.msg383922.html#msg383922 and https://forum.pfsense.org/index.php?topic=72648.0

So which one you use? You really just confused things instead of clarifying.

I am sorry my bad, the guide works and i finally got it working. seems i was missing the 3 check marks in the authentication container.

here is my network map [image: map.jpg] [image: map.jpg_thumb]

@jimp: There isn't a good way to accomplish that with percentages. You can set a hard upper limit using limiters, but it has to be specified exactly as a rate in Kbit/s or Mbit/s and so on. Thank you for your response. I can see how I might need dedicated internet access for this to work.

Check the MikroTik routerboards or the Ubiquiti EdgeRouter PS.  I'm still prefer pfSense !  ;D

pfSense is a stateful firewall. When a connection is successfully started, a state is created. Any traffic matching that state in BOTH directions is allowed. So when a LAN client connects to google.com a state is created and the reply trafic from google.com is allowed into WAN and router back to the client. It all works out-of-the-box with the default allow any rule on LAN. What else have you done in seting this up? Do NOT put a gateway on LAN. Gateway only goes on WAN.

@phil.davis: @dannieldin: Sorry for double posting. I cant give you guys my settings since I am not in office til monday. But I read some posts here about putting gateway on LAN. And I think that is my mistake. I will try it til then. You neverset a gateway on the Interfaces->LAN page. The gateway there is an Upstream Gateway - somewhere that leads to the internet. The clients on LAN will have the LAN IP as their upstream gateway - but pfSense LAN itself must NOT have gateway set. The text on 2.1.1 has beenenhanced to say "Upstream Gateway" instead of just "Gateway" and more description aded. Hopefully that will help people understand when to use it - only for WAN-type interfaces. Stated much more clearly than I , where i could have said something to the effect of 'your LAN hosts gateway is the static IP set on the LAN interface'

MUst not have been a very busy server. I used to work for a bank, and the busy servers had to be rebooted once a week, cause if not, it would crash after 2 weeks of uptime. Especially the exchange servers. They would blue screen in a 10-12 days. That is definitely an exception.  Although there was one server that was 2000 server and it was just standalone server that no one had the admin password to that stayed up for at least 6 months or longer.  I have noticed that newer server version are better, they just slow over time and not blue screen. Sorry for igniting the flame, but Windows has cause so much frustration for me in general.

Dear All, I have read the documentation at https://doc.pfsense.org/index.php/OpenVPN_Site-to-Site_%28Shared_Key,_2.0%29 for how to configure the OpenVPN. Kindly assist me for the firewall configuration part. Base on the documentations it need to configure in wan interface. What needs to configure? How to configure it? Thank you in advance.

I don't know the plan, but if he new pf filter is included, there will be some new features. More support for wireless and probably quicker all around. But we will wait and see. Thanks to all the developers.

Great. This is definitely a step in the right direction even it could use some further refining later. It isn't going to confuse anyone who already understands the situation and it will probably eliminate most of the incorrect gateway issues for people who don't. Steve

If you think that it might be a signal issue, when your internet starts to act up point your browser to http://192.168.100.1 that should give you a diagnostic page where you can see what's going on with the signal. If you don't know what the numbers mean post them here and I will interpret them. Might be a good idea to record what they look like when things are fine too, that way you have a good baseline.