In reality squid allows you to do that. When using pfSense you may find some options in WebGUI / Services / Proxy server / Access control / Whitelist The domains from the whilelist will be accessable to the users that are allowed to use the proxy.  (though they may still be block by squidGuard). I don't know if it solves your problem. At least it's the anwser for you topic's title. So at any one time, we would potentially need to be able to resolve www.foo.com to any one of 4 different IPs, depending on the client making the request. Doing this on local hosts files is nice and easy; doing it as a DNS forward override is an all-or-nothing approach. I currenlty have no idea for this!

hehe , not that door… the other door  :P

Arpwatch is an option and there is a port for freebsd.  This also used to be a package on pfsense. http://www.freshports.org/net-mgmt/arpwatch Might be fairly easy to recreate this as a package. Will even email you when a dup IP is detected.

Install pfflowd package, Install manageengines netflow analyzer on a server or PC.  Configure pfflowd to point to the ip of the machine with netflow analyzer.  make sure both are set to use port 9996.  Traffic should begin to show up in PC after about 10 minutes.  Make sure to unblock port 9996 on PC if using software firewall ie windows firewall.  Create an IP group for your subnet or you will not see both outbound and inbound throughput.  Set in/out bandwidth for interface and ip group.

Figured it out.  Had to do Capital R (Shift R)

Is this what you ment by your question What is used as the default gateway on the 10.0.0.0/24 network?

Here's mine: [image: jpg_1.jpg] [image: jpg_1.jpg_thumb]

Just to give my piece of mind :). I am supporting not only my own company but also an insurance company.  I (we) use SourceForge projects in several locations pfSense I use for Wan Aggregation (2 instances) Untangle for Spam, Anti virus, Intrusion, Spyware etc. (4 Instances, one is commercial licensed) SquirrelMail (two instances) phpGoogle The "Microsoft" argument goes a long way.  The argument I mostly use is that Commercial Software, you pay for support up front, if you need it or not.  With most Sourceforge products, you can purchase support only when needed. Over the years I have ran the companies Networks and Websites I have probable saved then thousands of $$$  . So, I am now a "crack"-head, possibly yes, but I am proud of that. ~Gerry

I'll check that out, Thanks….......  :D ~Gerry

when i m creating a new client connection for vpn, i have to acces my remote server vpn via http, so cant remote the server via vpn yet. should i make my vpn server's wan as DMZ from my adsl router ? is it a good idea ? i think it's more simple.

When freeBSD supports wi-max pfSense will inherit it from the operating system. Your best hope right now for wi-max would be a external access point or wireless bridge connected to pfSense over Ethernet.

No one has an old CD of PFSense that they could send me an image of?  :(

Thanks. I must have been blind to not see that.  I suppose I was reading what I was looking for instead of what facts were. Sorry. Anil @hoba: Btw, it's 3% disk USAGE not activity which means there is plenty of space left on your hdd  ;)

That was something one of the developers was messing with at one point, 3 does the same thing as 1, it should be set to 1 though to make sure it continues to function as desired in future releases. I just changed it.

Chances are that your ISP has some faulty equipment on your circuit.  We had a client with a similar situation and it wasn't until they installed pfSense and were able to demonstrate using the RRD graphs that the line was becoming completely unusable at times and that the line going down had nothing to do with link saturation, that the ISP finally started taking their issue seriously.

You can look for QuickBridge. It create a unicast tunnel between 2 multicast enable site.