@steveits Worked! Nice and clean VPN menu. Helps with my OCD. Thank you!

@jimp - thank you, that fixed it.

@steveits Pfsense firewall configured in transparent mode. Created a bridge interface and management IP address is given to this interface by rule with allowing port 443 (HTTPS). Firewall doesn't go accessible over the management IP address if there is a shutdown/restart to the VM even though the said rule is present. Is there any configuration to retain the web interface accessible over the management IP address if the VM goes for a restart or shutdown?

@gertjan thank you for the link, unfortunately it is exact the same as mine

@michmoor NP - wasn't sure how familiar you were with creating redmines, if you have an account even.. figured just do it..

@keyser Thank you very much for your answer! This is that, I am currently installing. I am very glad, that my choice coincided with your advice! You have strengthened my confidence in the choice)).

@rcoleman-netgate it's on the latest version (22.05-RELEASE) using chrome browser

@robinh but that is not your webgui port, so that you ha proxy... Restart your web gui, most likely it didn't restart..

@jimp There’s the button!! I knew there had to be a button/box for this, just couldn’t find it… Thanks so much!

@noisyjohn *** I found a linux machine in the outer side of the word, and I did a port scan at my public IP (using linux nmap utility). the same problem with a bare, clean linux machine.... end of story

@jimp thank you. Your explanation of 'anti-brute force protection' explains it perfectly. The RMM tool used an agent on my desktop PC, which explains why I could not log in to the webGUI from my desktop PC but I could login from the serial console. I will look in the pfsense docs for more information on 'anti-brute force' and see what I can do to allow legit network discovery, but not trigger my pfsense firewall alerting.

@jaskaranc You can roll back your configuration from the console using menu option #15 to restore a previous config. The last 30 changes are backed up on your firewall by default. If you cannot figure out which one to use you can disable the firewall part altogether by going to menu option #8 (Shell) and running the command pfctl -d and that will disable the ENTIRE firewall. You can re-enable it by either applying filters (Status->Filters) or using the command pfctl -e

I just resolved this. My provider provides a static IP address but said we can leave our router at DHCP assignment and it will pull that static. Well apparently if it is DHCP assigned it was blocking traffic. I changed it to static on the netgate and now it is passing the traffic.

I wanted to close this topic off as to what caused this issue to be present. In case others find themselves in the same predicament. The software appears to have an issue where if you intend to assign a Static IP address and DO NOT assign one. Meaning if all you did was add in a friendly name (Host Name) and Description but leave out a IP address. Doing so breaks the ability to sort the network appliances by IP addressing which scale from small to large numeric values. I'm really unsure why that would cause the entire sorting feature to break, but it does. Regardless, if someone finds their system unable to sort correctly using the IP Address column. The root cause is there isn't a static address assigned to something in the pfSense system. Apologies on the late reply as put this on the back burner while others tasks bubbled up. Happy New Years to all!

@rcoleman-netgate Ok, thank you.

@caymann Are you trying to reach it from an outside source or from your LAN? You probably need NAT reflection turned on if from your LAN..

@thomass-0 Not much help ... But last week i installed squid on my "Test fw": A - pfS 2.6.0 on a Core i3 w. 8GB Ram / 64GB disk. It installed without a hitch. /Bingo

@Jarhead The info helped, try this. Login to the pfSense GUI via any other route that the LAN interface. If you do not have another method, set one up (OpenVPN, LAN2) Unplug the LAN ethernet (might not be needed but you need to do it any way) Interfaces --> LAN --> Edit --> Disable Save and apply changes Interfaces --> Assignments --> LAN --> Change the Network port Save changes Interfaces --> LAN --> Edit --> Enable Save and apply changes Plug the ethernet cable into the new socket should be working now, but a reboot for me did not harm And obviously reconnect via the LAN to test

Hi. i have the same problem in google chrome. often have to delete cookies. there is no solution? noticed that it occurs only when I enter the domain name. if I go to the internal ip, everything is always fine.