Depends on what it was.  Looks like a DDoS.  There might have been a bunch of firewall logs at the time.  Not that they would do you much good.

@jimp: Clear your browser cache. :-) Worked for me.

Frankly, I don't see what's your trouble with the DynDNS stuff. This is much more annoying Jan 26 09:17:46 check_reload_status: Restarting ipsec tunnels Jan 26 09:17:46 check_reload_status: Restarting OpenVPN tunnels/interfaces Not only that it's totally and completely useless when nothing changes, worse it disrupts traffic triggers the darned /etc/rc.newwanip{,v6} scripts that cause a whole lot more of useless activity causes a lot of CPU activity on slower boxes To get somewhere, go to System - Routing - Gateways, edit the WAN GW, click Advanced and make latency/packet loss/internal/down/etc settings a whole LOT more relaxed (defaults noted there).

See - Having your DNS hijacked isn't all bad (-:

So I'm tasked with setting up a VLAN to separate our wireless guest network from our actual network, Please bare with me as I am completely new to this. I am really confused by these sorts of questions.. If you don't have clue one about vlans - why in the world would you be given the task??  Are you an intern or something, and the network guys gave you the task and told you to figure it out? Not sure I would allow person that doesn't know anything about vlans touch a production switch?? Confused and Curious..

Why should the thread be deleted, it gives example troubleshooting the problem.. Your sniffing and not seeing response, etc.  And then things to look at - like why was DF set, and final solution static arp. What is odd, is did you enable static arp after the upgrade?  And just forgot?  Or removed the freenas mac for some other reason??  Was it enabled before the upgrade and didn't work??

can you ping the sites in question that don't load? If they're ones that reply to pings at least. What does a traceroute look like to one of the affected sites?

Not with the PERC RAID, no, not unless the system has something else on it that can (DRAC monitoring perhaps?) On 2.2, if you use a gmirror software RAID setup, pfSense will monitor it and send an e-mail if the array breaks.

Block 80 and 443 on LAN.  Make sure you place the rules above the Default allow LAN to any rule rule.

You also need a rule on wan to allow udp port 1900 (also with IP options?) for the ssdp part of the discovery. I'm not totally sure on this but I beleive it should go something like this: Client sends out a multicast igmp packet, 'who is out there?'. Server responds. Client then talks SSDP to find out the name of the server and what services it offers. Client then talks to the media server to request files/streams on the appropriate port. Steve

Agree. When you have firewall rules on there that serve no purpose and you didn't put in you aren't in control. Who knows what else might be going on. Start from a known good config. Steve

1. <intel 100="" pro="" 946gz="" (ich7)="" network="" connection="">2. <realtek 8111="" 8168="" b="" c="" cp="" d="" dp="" e="" f="" pcie="" gigabit="" ethernet="">Both have the same issue.</realtek></intel>

This problem is still present on 2.2-RELEASE.

True. On HiAdaptive, the speed stays on max. On Adaptive it seems to step down.

Thanks, your comment about multicast put me on the right track. We run pfsense on KVM and used the passthrough NIC setting on the guest rather than just using a bridged set up. For reasons beyond me, this does not allow multicast traffic to pass to the network. Changing to a bridged network config for the pfsense VMs solved the issue. omping for the win. My other issues are best placed in another topic, so marking this solved. Thanks!

Use your first wan as your primary, failing over only in case of failure to your second. Open the ports you want open per wan interface. If you want traffic from your second wan then point your external traffic at it, it'll still come through if the rules are set, at least to my knowledge

No problem. That's useful info, bound to be a few others caught by that.  :) Steve

It should be no update without a reason. You should have something similar in the log: php: rc.dyndns.update: phpDynDNS (MyHostName.privatedns.org): No change in my IP address and/or 25 days has not passed. Not updating dynamic DNS entry.