@rcoleman-netgate
I guess now I just need to figure out how to get the dyndns package to update the cached IP.

@JonathanLee 😂 😂 😂

@NollipfSense said in pfSense Self Hosting MTA-STS Policy and Certificate?:

is it a British company?

lowendbox has listings of all kinds of low cost vpses - so they could be all over, different companies, etc.

@chpalmer I have been trying to get my wife and kids to go with me for years. Father's day is coming whooohahahah. They will take me.

@rcoleman-netgate said in Advantages to Plus:

As of yet... it has not been approved --

That's unfortunate but there could be business decisions behind it. Netgate does not engage that hard with the European market or make any real effort to market their products here in the UK.

The UK distributers don't exactly push the products either; one of them actively avoids calls when it comes to Netgate hardware, whilst the other openly comments that Netgate prices are just too high when compared to those in the US market.

Still, pfSense and Negate do have an established customer base here so perhaps resources may become available at some point to look at markets dogged by PPPoE vs FreeBSD. Upstream changes are more challenging but I remain convinced that more can be done with tuning behind the scenes, triggered by the end-user when they select the PPPoE option on the GUI.

One thing for certain is that high-bandwidth PPPoE is being deployed rapidly in some countries - the problem is only getting bigger.

☕️

Doesn't look like the driver is loading.
Make sure the two lines are correct in loader.conf.local.
Check the console output from the boot loader. It should show the modules being loaded or some error if it's not.

@michmoor said in How to best secure a guest network:

How exactly do you prevent "illegal stuff" if you can't prevent them from getting to those sites if they are not respecting the provided DHCP DNS server settings?

I do my level best to stop the horrors of child abuse, starting with a filtered DNS provider, down to filtering at the router. I know that the determined criminal could get around these things but at least I can demonstrate that I did all I could to prevent it and that I keep full usage logs so the police could try and find them, should they ever arrive at the door with a warrant.

☕️

@mer Yea this is a arris S33, yeah your 44 seems more like what I have been reading.. But from testing been doing since post I am seeing my full speed upload.. And it seems to back off do to isp shaping.. It starts off say 65ish, and then backs down to 55 what I have been seeing the last 24 hours testing multiple times during the day and during prime time - say 5pm to 10pm for people in using the net..

There is no way isp is going to do anything if I call and say hey I am seeing the speed I should be getting but think my levels are a bit low ;) hehe

I was concerned when it first came back up was seeing low.. But maybe it just took a bit to adjust in, etc.. But have been seeing good since then... And last night I had multiple users streaming off my plex and I was sending 40 up, which is the limit I have set in plex... So even real world testing I seem to be getting what paying for - so false alarm it seems.

Thanks a lot for posting your levels..

So like just now tested, paying for 500/50 and seeing this - so can't complain

speed.jpg

moving to the docsis 3.1 vs old docsis 3 sb6190 modem sure had a nice effect on download.. And tested real world via transfers from one of my servers in NL, and yeah seeing better download for sure..

2.7 devel to realease.jpg

So I think after the 23.05 became a release it should be going
on faster as the past time.

@rgbinfinity said in DNS Resolver with link/url:

In the browser, I will access www.bing.com.br, instead of going to this site, pfSense will redirect to www.google.com

Only a web server can do that sort of redirection. A DNS override will override the IP used but if you want the browser to change to "www.google.com" that cannot be done via DNS.

https://docs.netgate.com/pfsense/en/latest/packages/haproxy.html or similar proxy package might be able to do that, I've never used one as we just set up redirects on our web servers. (found https://stackoverflow.com/questions/28530087/how-to-redirect-url-with-haproxy )