No I didn't know that.  Thanks for telling me, thats pretty important.

http://forum.pfsense.org/index.php/board,43.0.html

@rafaelsantos:

sounds great tacfit… but can i obtain good pfsense performance using a box with VIA Eden 1GHz processor, PC133 512MB SoDIMM and 1gb Compact Flash???
think in a situation with throughput of a 200 hosts in lan, incoming external connection and 2 vpn´s tunneling with about 30 hosts in each one...
thanks

As cmd says, more details needed. First off, I don't know how the Eden compares with a Pentium III based Xeon, but if they're comparable, and those users are doing "typical" surfing, e-mail, downloading general stuff, I would say your performance will be fine.

BUT… again, this is a total guess on my part. I would say the first bottleneck you're going to run into is memory... and depending on the encryption used for your VPNs, CPU speed. Also, if you've got users download lots of torrents and other stuff like that, that'll throw things off. If this was for an office where you would restrict the types of traffic allowed, I think you wouldn't be far off the mark.

I've been VERY impressed with pfSense's performance, but bare in mind I'm running it on a full sized server. It sounds like you're using a smaller device, which may be just fine... but I can only speak from my own experience :)

On something like that you're probably restricted to DD-WRT, OpenWRT etc.

For a list of hardware pfSense supports, see the hardware page.

Forum search yields http://forum.pfsense.org/index.php/topic,1141.0.html

I hear clonezilla may have one up on g4u now, but I haven't been able to try it out yet.  I've been told you can do a raw copy but not have to copy the unused space.

http://sourceforge.net/projects/clonezilla/

The same after a reboot?

Your post inspired:
http://blog.pfsense.org/?p=114

Making this sticky. If you don't already have our blog in your RSS reader, you need to add it! I try to post something worthwhile at least once a week. If you have ideas for blog topics, email me (cbuechler@gmail.com).

New to firewalling in general? http://en.wikipedia.org/wiki/Firewall
If you know basic firewall concepts, it's not too hard to pick up. The docs are a bit rough, but look here:
http://www.pfsense.com/index.php?id=17

The default page does not do php.  You need to use a html meta redirect or javascript to redirect to a custom uploaded page that has been added from the file manager.

Did you google it??  http://www.thekelleys.org.uk/dnsmasq/doc.html

Yes I know "dnsmasq" is a DNS server, but I ask if pfsense use it.

If config file not exist, which is the best way to edit the DNS Server configuration in pfsense ?

cheers  :D

hello, my English is not very good, I have a pfsense, and have formed logs External syslog server, but the events of firewall are not regitrados in the server logs, the messages of authentication and messages of the system if, but what me intereza is really the messages of discarded or blocked packages, the server logs in freeBSD 6,1 Release, and syslog-ng 1.6,
some suggestion?

@sdale:

We are running 2.6.1.3

I look forward to playing with it  ;D

CVS Trac is the only option but there are some bugs that have been corrected without opening tickets for them. So only looking at the tickets won't help you unless you read the commit logs as well.

hey guys,
you are comparing a small linux box (200 MHz, 16 Mb RAM) to a computer with 256 or 512 Mb of RAM and a big processor.
so it is normal to have unstability problem with the small router when it handels a lot of connections, bittorent and P2P…. but DD-WRT have a X86 version that runs on PCs and it is really stable and faster than Pfsense.
I am using now many dd-wrt boxes as access points, and pfsense is doing the rest (DHCP, authentication...) pfsense never crash but it have a lot of bugs and missing futures.
it would be appreciated if pfsense have some of DD-WRT futures like

additionnal DHCP options / DNSmasq as DHCP server, windows networking is not working well in pfsense (from LAN to WAN, LAN clients cannot see PC connected on WAN domain for exemple in latest pfsense release). i think that this problem is related to a DNS / firewall bugs ? I prefer SPI firewall than pfsense, but it is a personal choice Access restrictions per IP or MAC address is also missed in actual Pfsense release. blocking P2P and other applications or website is easy with dd-wrt QoS, priority per IP, MAC, subnet or application... in VLANs also the hotspot options : DD-WRT can use chillispot, nocat, spuntik for authentications... it would be nice if chillispot can be add to pfsense via a package (it needs a package for chillispot, radius, webserver... MySQL is also preferable). a monitoring package like Rflow is also missed in pfsense, it is not perfect in dd-wrt but the best is to have a package or a small software that list all connected users (users, mac, ip, time and trafic) with the possibility to disconnect users
-finally a nice future that could be easy implemented in pfsense I thnik, is the possibility to define a user groups and to add (in captive portal) its static DHCP mapping

anyway pfsense is a very good firewall and the support on the forum is very fast and appreciable.

Chady