On which pages specifically? And did it work in 2.2.x?
The entire UI was rewritten between 2.2 and 2.3, some pages may have just been missed when sorting was added back in. Others may not sort for a reason.
Usually configuration pages won't sort because the order is meaningful, but status pages will sort.
Thank you very much. It showed that the mongod was hanging. It’s part of the UniFi controller running on my pfSense as well. Until now there was no problem with that.
Now ipsec is running but no IPv6 traffic. Any further advice?
This issue has been resolved. So it looks like the upgrade of pfsense from 2.2 series to 2.3 series changes how they handle group permissions. One of the things that happens is that the Router Admins group that is used for active directory integration sets a “permission” of “User - Config: Deny Config Write” which says in the description, “If present, ignores requests from this user to write config.xml.”
You can fix this by logging in as admin and removing that permission setting from the router admins group.
You're using limiters, not actual interface shaping. I have no experience with limiters, but a common issue is the IP mask used. You may be creating a limiter PER CONNECTION. If you want to shape the entire interface, use shaping, not limiters.
I haven't seen that one before, but it would appear at a glance to be crashing in handling of SCTP on IPv6. Are you actually using anything like that or allowing it through the firewall?
Controlling outgoing traffic with just firewall rules is really hard because of the multitude of TCP/UDP ports used for different applications and many of them are not officially allocated. The worst are filesharing applications such as BitTorrent that can use almost any port imaginable. You're much better off using a proxy with whitelist/blacklist techniques if you want to control outbound.
@heper:
You can set a timeout for a single firewall rule (advanced section when editing)
Thnx i found it, dint know that option was there, the limit is 3600 seconds.
hey thank you for your reply, very interesting, I am now consistently seeing my line speed again 900mbps with a clean signal graph on the speedtest, I have attatched the top output now when at around 870mbps let me know if you think there is something that looks wrong still thank you so much for assisting me XD
[image: topoutput.jpg]
[image: topoutput.jpg_thumb]
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
