i thought squid was a downloadable module for pfSense.... so like if i put a fat (say 2TB+) SSD in the XG-7100-1U, configured it to cache "everything" through port 80 ( like steam and other launchers use to download) would it run nice? Trying to find the most efficient way to save downloading the same steam (and other) game updates 45 times.

https://forum.netgate.com/topic/135395/where-to-download-old-versions don't be lazy and search yourself the next time.

Hi, Could you explain indetail .I did not understand your answer. BR, Kalyani.k

@mtarbox DERP! Pri4V4. ISC_Miner_v4 Thank you for not beating me over the head with my own rulesets. All set now.

@derelict said in pfSense with AT&T fiber-- WAN keeps dropping offline: Your modem rebooting constantly is something pfSense should fix? No. As I posted, I don’t believe pfsense had anything to do with it.

3 vpn users and 150/150 - yeah your fine ;) heheheh Openvpn is easy peasy lemon squezzy to setup.. Just run through the wizard - check out the openvpn section in the pfsense book. If you have questions - just ask in the openvpn section.

Thank you, this helped tremendously!

@jimp said in Scheduled port forwarding, possible with pfSense?: Add a port forward as usual, and then apply a schedule to the firewall rule that allows traffic through the port forward. Then it will be off when you want it off, on when you want it on. It doesn't matter that the port forward itself is always active if no traffic is passed through it. cheers for the reply!, i have bookmarked this thread and will give it a whirl once i get my box, really glad pfsense allows you to do this as i think restricting port forwarding adds (albeit a small amount) additional security. Thanks again!.

Thank you all for the clarifications.

This thread is 2 years old, and the OP never came back... If you have questions on how to best leverage pfsense in your environment I suggest you start your own thread detailing your network and any questions you have on how to best do some specific sort of thing your wanting to accomplish. To your question of squid, squid is a proxy package that can be used to filter access based upon a url that someone might access.. Like blocking access to www.facebook.com or only allowing access to say www.kidsafedomain.tld But to be honest, some of these sorts of features are more advanced than many users (without networking experience) understand and would come with a steep learning curve if not already up to speed. Asking what squid is - points to not having the basic skilsets that would make deployment of such features an easy solution.. You might be better suited with a more home "user" sort of device - there are many "home" friendly devices with interfaces designed for point and click control of what kids can access.. Maybe something of such a list of devices will be of help https://www.fatherly.com/gear/best-parental-control-devices-routers/

Thanks! I wouldn't mind your feedback on findings of the watchdog/bypass configuration. One simply doesn't know, when he meets the 1% he needs it for :)

pfSense, or actually whatever OS you put on your device, can't stop the BIOS from booting. The BIOS will even work with no disks or drives in your system. The BIOS not running means hardware issues or .... true : no power.

You can block Windows Update with squid