I havent had that problem so to avoid resource burn, I'll let someone else step in if google doesnt throw up anything.

Has anyone taken fail2ban and pushed the jailed ips to pfsense.  It does a pretty good job of detecting hacks on the system.  Only problem is I want to move the ip filtering off of my server and on to a pfSense appliance.

@Derelict: This sounds to me like Skype might be checking to see if the private addresses can communicate locally. Only one way to find out and thats to test the scenario, maybe even testing on different subnets behind the same gateway might be interesting.

I would need some wifi devices to have access to the wired file server but I suppose I could set the wired and wireless on different subnet and set specific rules for what can cross over? Tag two SSIDs to the AP.  Put an internal SSID on your internal VLAN and the guest SSID on the guest VLAN. No need for any rules.  Internal wifi clients will be on the same broadcast domain as your LAN.

@jimp: You can set timeouts for TCP on individual rules, just keep in mind you must set the timeout on an interface rule and again on a floating rule (quick, outbound, on the WAN for example) but that gets tricky since by the time the WAN floating rules outbound get parsed NAT has applied, so you may not be able to distinguish based on source address unless you NAT each interface out a different IP address… or if you can match based on destination that would work for certain. Or you can mark the traffic on the LAN in rule and match the mark on the floating out rule.

@dennypage: In my case, it's appears to be the result of the /var/log/dmesg.boot snapshot being created too early in the boot process. Ah, thanks! At least I can work around it with the shellcmd package. Or of course a shell script, but I'm a lazy sod.

Would it work correctly ? Probably.  Try it and see how it goes. Diagnostics - Backup/Restore. What about the packages ? If you backed up your config with packages then they will be reinstalled as part of the restore. Do I need to back up them too ? Obviously.  Otherwise, how would pfSense know to install them?

Might I suggest a sticky at the top of this forum for the majority of people who never read this link https://forum.pfsense.org/index.php?topic=70.0 Example sticky for this forum. –------------------------------------------------------------------------------------ Title:Need help? 20 seconds reading this post to save time. Content: Before posting: 1. Use the FAQ at this link. https://www.pfsense.org/get-support/support-faq.html 2. Use the WIKI at this link for step by step guides & other info. https://doc.pfsense.org/index.php/Main_Page 3. Always search the forum using link top right of this webpage, to limit search to a subform, use the search from within the subforum. keywords work best. 4. Investigate the pfsense bugtracker here https://redmine.pfsense.org/projects/pfsense/issues?set_filter=1 and the pfsense packages bugtracker here https://redmine.pfsense.org/projects/pfsense-packages/issues?set_filter=1 If you dont know the terminology, investigate links like http://www.linktionary.com/f/firewall_term.html & http://www.techrepublic.com/article/jargon-explained-learn-the-terms-used-with-firewall-technologies/ Before posting. If you still havent found the knowledge you are looking for, when describing your problem, question or observation, include the following information. 1. What version of pfsense and the hardware including model of network cards, you are currently or planning to use. 2. Use Gliffy (its free and webbased) to draw your network layout. https://www.gliffy.com/uses/network-diagram-software/ 3. Ensure your post title is descriptive to attract the relevant knowledgable users. Lan problem, wan problem is not descriptive. 4. Describe your problem, question or observation in as much detail as possible to avoid unnecessary questions being posted asking for more information, dragging out the total time it takes for you to resolve your post. Whilst life is hard enough, doing simple things like including the links to places for people to investigate can help which might be noted by seeing an increase in web traffic elsewhere on the site, and a slightly more structured format and increase of relevent information when posting in the forums, hence the suggestion and format for above.

@heper: @coder1: Is that correct? Since wireless isn't enabled until you login to the pfsense computer and configure it. yes sweet! Thanks for the confirmation. Just want to make sure I have everything conceptualized in my head correctly when my switch comes in the mail.

almost every software vendor/developer on the planet uses 'AMD64' to point out that its designed for a modern 64-bit cpu. (also known as x64, x86_64 ) https://en.wikipedia.org/wiki/X86-64#Industry_naming_conventions

@Derelict: Is there a hardware difference? Yeah like purpose-built ASICs in even the cheapest switches.  They switch in hardware, not software.  Even "real" switch performance starts to suffer when you do things with them that have to happen in the CPU. Ok, that makes sense. Thanks for you help!

does it happen when you try and run any other tools like netstat or ping, etc. Did you do a simple SFC ?  So is this on windows 8.1 or 2k12? So I take it your running gpupdate this is a work setup, just re image.. what 10 minutes.

@NickM: Hi Guys, I have installed latest pfsense and this is the scenario: em0 - wan (DHCP) em1 - lan (192.168.0.1/24) WAN interface gets ip and gw from dhcp server, but for some reason it has no internet connection. While i try to ping my DHCP GW i get reply, as well as while pinging DNS servers (i have 3 on my network). Checked routes table and they are the default ones generated by pfsense. I have tested that network cable on another Vbox pfsense test machine and it worked like a charm. Can anyone think why internet is not working? Check you LAN interface setting. Make sure that LAN IPv4 is set to static and tracked is set in the next drop down menu. Other wise, rules to allow traffic of port 80 and 443 will not be automatically defined. If you add a 3rd interface, such as I did for use with a WiFi access point, that you do not have this interface set as tracked and you copy the NAT rules from the LAN interface to the additional interface. I struggled hard initially with this issue.

Just checked mine and is is running gigabit. ASG120 REV4. [image: Screenshot.png_thumb] [image: Screenshot.png]

Googled and found this freebsd thread: https://forums.freebsd.org/threads/camcontrol-error-sending-command.35548/ It turns out to just be an error from attempting to disable APM on the card (which is denoted by the first line before and after the error). My first thought was that the card didn't support APM, but I ssh'd in and used camcontrol identify on ada0 and the card does indeed support APM: [2.2.4-RELEASE][admin@fw.localdomain]/root: camcontrol identify ada0 pass0: <sandisk sdcfhsnjc-008g="" hdx="" 7.08="">CFA-0 device pass0: 100.000MB/s transfers (UDMA5, PIO 512bytes) protocol              ATA/ATAPI-0 device model          SanDisk SDCFHSNJC-008G firmware revision    HDX 7.08 serial number        BKZ062415183916 cylinders            15501 heads                16 sectors/track        63 sector size          logical 512, physical 512, offset 0 CFA supported LBA supported        15625216 sectors LBA48 supported      15625216 sectors PIO supported        PIO4 w/o IORDY DMA supported        WDMA2 UDMA5 Feature                      Support  Enabled  Value          Vendor read ahead                    no no write cache                    yes yes flush cache                    yes no overlap                        no Tagged Command Queuing (TCQ)  no no Native Command Queuing (NCQ)  no NCQ Queue Management          no NCQ Streaming                  no Receive & Send FPDMA Queued    no SMART                          no no microcode download            no no security                      no no power management              no no advanced power management      yes no 0/0x00 automatic acoustic management  no no media status notification      no no power-up in Standby            no no write-read-verify              no no unload                        no no general purpose logging        yes no free-fall                      no no Data Set Management (DSM/TRIM) yes DSM - max 512byte blocks      yes              1 DSM - deterministic read      yes              zeroed Host Protected Area (HPA)      no [2.2.4-RELEASE][admin@fw.localdomain]/root:</sandisk> Perhaps because APM is already disabled? In any case, it's a red herring and not related to my hourly crashes at all.

Thanks cmb and doktornotor appreciate the help something new I learned.