@anttechs said in I got Hacked By Unlock through my Borrower: I did try squidguard but I couldn't get it to stay running so I'm guessing it was because I didn't install squid? Yes, squidguard relies on squid to be installed first.

@chrispeddler said in Combine Internet Speed with Pfsense!: Then you can combine them by grouping together. Still it is NOT 3x10=30Mbps or 2x10+1x20Mbps = 40Mbps. People have to understand that outbound WAN loadbalancing will not double/triple/x-tuple their speed depending on their bandwith but will balance multiple clients or client connections over those links to better saturate every one of them. But you can still end up using a line that is saturated ATM as there is not deeper intelligence in outbound routing that detects e.g. link 1 is used 100% so take link 2 or 3. Also connections that only does single connections will not gain much speed (if at all) and if your application/client is sensitive to IP address changes that can be a PITA, too.

@manjotsc said in NetData web gui not accessible: didn't knew it was public ip. What did you think they were?

We don't really know what the goals of the project are / were so it's hard to advise usefully but... If you just needs to access EC2 instances from a laptop you could install pfSense in AWS and then use OpenVPN to connect to it from almost anything. Steve

Check out https://www.netgate.com/resources/videos/multi-wan-on-pfsense-23.html -Rico

Hi @chrispeddler! Your topic is the same solution of bouke, here works well. You need create aliases and create a firewall rule with the alias to block or allow HTTPS sites. Here I use squid guard to block HTTP.

Wow! Really thanks! My pfSense is fine now.

https://docs.netgate.com/pfsense/en/latest/nat/accessing-port-forwards-from-local-networks.html -Rico

@johnpoz Understood. But I am very new to pfSense, so as you would understand in the early stages of troubleshooting an issue, it would not be clear where the root cause of the problem would lie. It was the very first time I was configuring vlans in pfSense so I thought I had them wrong or was forgetting something. Also too, I decided to just give a summary of how I resolved the issue for the benefit of any future person who run into a similar issue as I did. Anyhow, thanks for your assistance. I appreciate it.

Not sure what shenanigans they could be up too.. Could be something to do with a ipv6 to ipv4 gateway, they could be running you through some sort of tcp proxy, etc. But tell you for sure testing such stuff over cell can be misleading info.. Could be a form of optimization.. where their handing you back a syn,ack before any sort of connection is actually made, etc. etc..

@stephenw10 Thanks Steve! I've been reading more and more and I really want to grow PFSense. Maybe use it as a backup for the Fortinet Firewalls in the corporate environment I work on.

Bump

@blank said in Multipurpose server, is this enough?: d-1521 Probably. There are a lot of variables in there though. Suricata has a lot of tuning options. Steve

Thanks Steve, I tried @TheNarc link and that seems to work (locked myself out the WAN at first ) I'll also turn on skip rules as you mention.

Thank Gertjan again. vlans: Remove member 8 from vlan 4091. create a vlan 10 and assign members 8,9t,10t. Ports: change port 8's Port VID as 10. Interface Assign vlan 10 on lagg0. assign interface OPT1 as VLAN 10 on logg0. firewall Create a NAT outbound rule for WAN. Create a NAT port forward rule for OPT1 Rule in WAN is automatically created. Done.