@ViciousXUSMC

Thank you for your post.
Yes, please do share. I really look forward to reading it, if you do decide to post a new thread.

@Fry-kun said in Queues show NaN values, why?:

] || 0);

Thanks for this! Setting up HFSC is not quick and easy on 7 WAN connections.

Working fine!

@RN222 Okay, I know the SANS guide says to make these rules "quick" but as far as I know, they actually do not work when they're quick. I'm not sure if that was considered a bug, and/or if it still applies, but it was definitely true at one point. And My floating rules that assign traffic to limiter queues are just normal floating rules (i.e. not quick). Mine are also match rules, not pass, which I also believed was necessary at least at one point.

So I would advise that you first make all four of these rules "normal" (i.e. non-quick) floating rules. And if that still does not work, try making them all match rules as well.

Using just the conservative setting for the firewall and giving the ip phone static ports, has always worked for me. You should not have to change TCP/UDP settings specifcally. Just the firewall optimaztion. see the pic for the detales of the differances.

Screenshot from 2025-01-07 07-22-08.png

@Mission-Ghost never mind...I just found:

https://forum.netgate.com/topic/195386/after-update-4200-to-24-11-queues-status-page-no-longer-works/7

Apparently it's a bug that turned up in beta and has a redmine ticket. From the topic cited, there's a method to check that it's working. I'll do that.

@bipton said in The traffic download limit only applies half of what I give it. why?:

rules used default gateway

There is this, scheduled for 2.8...?

https://redmine.pfsense.org/issues/14854
"...if the gateway is left to default the limiter works as expected but if a specific gateway or a gateway group is specified the limiter [drops by half]."

Same Report...
I am sure it would be a bug.
The only temporary fix I did is to Increase twice the value and add +2 to be sure...

@jimbrown-dm said in Doc VPN:

@jimbrown-dm
You can use free xnxubd vpn browser vpn app to browser internet freely.

https://www.tomsguide.com/computing/vpns/dont-download-xnxubd-vpn-browser-its-dangerous

Turns out the bufferbloat limiters do not limit ACKs. How can I make it also limit ACKs?

@Gertjan thank you for your help. Of course I will upgrade... But I have to wait for the end of the season as I cannot shutdown the system even for 10 minutes with 2500 customers on it.

Have a nice time :)