@gertjan this worked perfectly, thanks

Upgraded earlier to Beta release 22.05.b.20220531.0600 and now to RC release 22.05.r.20220604.1403. Problem still persists on both versions. EDIT: Seems that the problem appears if you have 2 (or more) System Information widgets with different contents on the Dashboard. EDIT 2: Looks like it's specifically caused by the "CPU Type", "Uptime" and "Current Date/Time" fields, as log as all of them are visible in all System Information widgets, everything is ok. If one or all of those fields are hidden in one of the System Information widget, then they start to act up.

So, after a few days I (in desperation!) reached out to the great people at Protectli who sold me the router hardware in the first place. Their support was awesome. Thanks protectli! Someone there set up a working example and then exported the xml description (diagnostics > backup & restore) so that I had something to compare against, line-by-line. After an hour or so combing through mine and theirs, I discovered I had wrongly configured a static route early in my experimenting with pfsense, which was disrupting access on the WAN interface to the gui. Once removed (and after a reboot) access via WAN was restored. "Problem" resolved. Many thanks @Bob-Dig and @johnpoz for helping me through the initial stages patiently; much appreciated.

@larrym04 To avoid all of this, IMO the best (and most secure) option is to download the Acme package and get yourself a free LetsEncrypt cert so you can have that tasty green padlock. It's not too difficult, and you won't need to keep hitting that Advanced button.

@gianpaoloracca UPDATE: you can scroll dragging the column header. So it's clunky but it works.

I know this topic is old but I experienced the same behavior... Like you I'm also forced to use double nat as my primary WAN come from an openMPTCProuter which aggregates my WANs in front of pfSense and I also have failover to the same WANs (but in load balancing) in case of MPTCP failure so I'm also dependent on the checkIP service to update my DNS when the MPTCP gateway is the active one. I update 4 DDNS with the same IP for this gateway and the 4 cached IPs continuously turn Red for some second, sometimes one at a time, sometimes 2 of them at the same time. After found your post I changed the checkIP service from the default "http://checkip.dyndns.org" to the other one "https://ipinfo.io/ip" and the problem is gone. So it's definitely a dyndns service problem, maybe that the frequency of the requests from the same IP to update 4 DNS causes the dyndns service to refuse to respond to each one. Thanks for sharing your solution.

@bingo600 still not working. I even forwarded port 80 and 443 on OPT1 interface but still not working

Same issue here. WAN is on em1 - no other VLANs on that interface. The dashboard traffic widget: [image: 1652118759930-screen-shot-2022-05-09-at-11.51.21.png] [image: 1652118769875-screen-shot-2022-05-09-at-11.51.26.png] Half the actual throughput. Settings same as yours. The Traffic Graph graph shows this (/status_graph.php): [image: 1652118847149-screen-shot-2022-05-09-at-11.51.44.png] which is correct (I have a symmetrical line - upload was 897Mbps during this test)

@rcoleman-netgate Thanks for your quick response! Indeed it works now! Thanks!

@jimp Thanks. I will dig deeper into Brave.

@nogbadthebad thanks for your reply. (I work with @emasi on the project.) We are aware that the scenario is not ideal and we have already taken the necessary precautions (change management) so we don't trigger the issue anymore. The fact remains that this issue is easily triggered. We have tested many scenarios. The conflict handling when creating rules alone is pretty neat really. But as soon as we add separators to the scenarios not only the new changes are conflicting - but the actions delete existing firewall rules. And that's dangerous, worth to mention and worth to fix. (At least we think it is.) So we are following the pfSense bug report guide and are documenting our observations here to discuss first. Maybe you folks can confirm this is an issue so we can report it to pfSense Redmine. (We have never done that, so sorry if our procedure seems a bit wonky:)

@worlddrknss Sounds like you can reproduce it so I suggest opening a report at http://redmine.pfsense.org/

Has no one successfully done this yet?

I'd like to tag the thread as [SOLVED], but I can't edit my initial post any more. What should I do?

Same problem here. We have about 100 users deployed across 10 openVPN server instances on our core pfsense VM using tap/bridge mode. There are a number of reasons we prefer this arrangement over a routed tunnel when VPNing into a cooperate windows domain network. I'm tempted to roll back to 2.5.2 because we can't see connected users on either the openVPN status page or the dashboard widget. Are there any plans to make these interfaces display connected users again with a future update (soon?)