Ok, so my fix for this problem was as follows:

1: restrict PASV ports in IIS to 5500-5700
2: ENABLE the FTP Helper app on pfSense for the WAN connection used
3: Create a Rule on the LAN to allow 5500-5700 though, as well as 20 & 21
4: Create a NAT rule to forward requests through 21 and 20 to the FTP server

**Passing port 20 though will allow client machines to use Active Mode on their FTP clients, which seems to still be needed for some specific FTP Clients.  For the most part, PASV mode will work with this setup.

For me, I am only using WAN1 for FTP, not WAN2.  If you are also using WAN2, you should be able to duplicate the rules just created for that interface.

Sorry i need to read better !!
Thanks for the info.

You need to enable RIP (Services –> RIP), select the right RIP version (2 in your case) and set a RIPv2 password.

You need to have it enabled at least on 2 interfaces (selectable with CTRL in the list above). I'm not sure if this is right but i think RIP only propagates subnets on the enabled interfaces. --> Enable it on all interfaces if you want all subnets attached to your pfSense propagated.

even though your speed tests are consistent doesn't mean much. they are highly highly inaccurate.

it is basically a guesstimate of your bandwidth. Adding another hop will change it's guesstimate.

As was said, try a torrent or something else. I was using a p3 500mhz and i've maxed out a 100megabit wan connection. The webconfig was basically unresponsive but the connection worked.
you should have no problems with actual throughput and latency

Got it working with a Load Balancing Pool. Just setup both Cable modems to run DHCP and host on their own subnet. Works like a charm.

Thanks for all the feedback.

My understanding is that each connection is treated as equal, and are load balanced in a round robin fashion.  I've seen this repeated a few times in different places and my (little) experience seems to suggest that it is true.

That being said, if there is a way to set priorities of different connections, that would be very useful

Similar issue here, hope we can get some attention

Thank you very much!  I missed that section in the docs!

Have you confirmed that traffic graph is correct?    Assuming that there's not much UDP traffic on your network then graph should rise up slowly after firewall interface was down/blocking.  Since your graphs does not do so it could be a performance monitoring service that stops working and your firewall is just fine.

what if you use the public OpenDns
208.67.222.222
208.67.220.220

those are free.

Not to Hijack but i have the same excat issue.
Where you have to restart the ping or web browser when there is a hot plug event or outage on either line.
so if there is a solution i will be implementing also.
i am running version  1.2-RC2 built on Fri Aug 17 17:46:06 EDT 2007

also in my pools i have the static ip's monitoring ip's 2 hops down stream.

Chase

normal multiwan howto: http://doc.pfsense.org/index.php/Multi_WAN_/_Load_Balancing
roubleshoot: http://doc.pfsense.org/index.php/HOWTO_troubleshoot_loadbalancing_issues

The source would be the port from which the connection is initiated.
"Normally" this is a random port above 1024.
So if you'd have as source a limitation to certain ports almost all clients wont be able to connect.

If you need more information search the net for the basics on how x/IP connections work.

This is normal.
Play around with other routes and you will notice that the routing table will display zeroes at the end in an abbreviated form (like the screenshot you posted)

My guess was just that it is a dns problem, so if you set your gateway to wan2 can you then access a web page by it's ip.

@VanVan:

1. I have two ISPs here - with different real IP addresses that I want to combine to achieve DUAL WAN functionality.

http://doc.pfsense.org/index.php/MultiWanVersion1.2

FTP only works on the primary WAN interface.  There is no work around at the moment, but it's something we will implement in the future.

@stoneguy:

Why use the cisco?  cant u just put the Pf sense as the only device?

It has my 2 T1 cards in it… I have no choice in that matter... :)