Look for a way to clear your browser HSTS cache

+1 here.

If WAN is public / internet connection it is highly discouraged to open it up for WebGUI access.  Just asking for trouble.  If it is a must have then additional filtering measures are a must.  Even then still very much discouraged. Many people use one of the VPN services to access the LAN.  And there by have access to the WebGUI via the LAN side.  I use OpenVPN service.

The Traffic Totals package doesn't use RRD for data, it uses vnStat.

Thank you, that what I did.

Yup we are on the same page. Too bad clog doesn't have reverse and line by line capability (similar to fgets line by line).  Then the intermediate storage variable could be eliminated I think.  Just need a way to read the log file backwards and line by line and I think the intermediate step could be eliminated.

Oops! I feel like a complete idiot. I didn't realize there was another ticket for this. Thanks for pointing that out.

Sorry to take so long to respond to your ideas, Thanks for your comments. I didn't notice that the browser tab displayed the DNS host name. Of course it would be nice if the logon page showed the host name too ;-) ~Ed

There is not a universal date flag. The traffic graphs are getting redone and use the proper date convention.

I'm a "75 %er" too, it actually looks great like that on a Retina Macbook screen.

What is that 192.168.1.1 IP? Your LAN IP, or?

The squidGuard -> Log -> Filter Log page.  The table is black writing on a dark grey background. That's .table .table { On the Firewall -> Rules pages, if I hover over the links (like the entries in the States table) again it is black writing on a slightly less dark grey background. Popovers.  Those are popovers.

This is so odd. I am not sure if the GUI was updated yesterday, and I didn't check our group privileges before, so I'm not sure if Config: Deny Config Write was present there before. Anyway, it's working now! Thanks a lot for the time. :D

@jimp: @johnpoz: As to putting wifi and lan same layer 2 - lets agree to disagree here.. They really should not be on the same network - for what reason should they be? So your guests and your devices that use wifi all same network. IoT as well? It's terribly convenient in many cases. It makes things like chromecast, printing, and other AV/file sharing much simpler. Sure, most of that can be isolated and done in a separate subnet, but there is a good case for bridging wireless in some cases. Particularly in homes. In businesses, not so much. I'm spoiled having a UAP at home, I have an SSID in my LAN, and a couple other isolated SSIDs for testing and guests that land in other VLANs. Yup the problem I had when I put the WiFi on it's own subnet I broke UPnP/DNLA for the WiFi devices. Managed to remove the bridge by a moving some of the other device to other rooms and connected the LAN port to a LAN port on the Timecapsule.

Thanks azekiel, your script has solved my problem.

HA in uncheck mode all the time.

Update: after obtaining a mini USB console cable I did some digging around and during the boot processes some folders were failing to be symbolically linked. Also noticed some other weird commands failing such as a reboot so thinking there might be some gremlins from the 2.2 to 2.3 upgrade from a while back. I ended up just grabbing the config reloading and restoring.  I have not yet went back to update 5 but all seems to be working well now. Also thanks to Gertjan for the suggestions.  Would have been nice to stick to troubleshooting out this issue but discovered openvpn service wasn't running as well.