• Help me understand traffic graphs

    3
    0 Votes
    3 Posts
    385 Views
    K
    Well when you put it like that, it's so obvious. Thank you!
  • 0 Votes
    6 Posts
    597 Views
    E
    Just tried restoring part of the config (vlans and interfaces) and went to check the switch ports config and they are NOT restored. This may be an overlook on netgates part, but I think a backup config should contain the port vid and lagg state of integrated switches in their product line. If it is an overlook, well I am very frustrated and disappointed. Now I am going to have to redo the lagg setup by hand....
  • Web gui, ssl/https connectivity, squid, and wpad

    wpad squid httpsssl
    6
    0 Votes
    6 Posts
    2k Views
    DaddyGoD
    @High_Voltage said in Web gui, ssl/https connectivity, squid, and wpad: just took me a bit to realize I was having a moment of brain dead, THANK YOU ALL! - THX BTW: if you want to perform a serious Squid + Squid Guard installation. I have an acquaintance here on the forum and I can bring you together with him...
  • 0 Votes
    4 Posts
    562 Views
    D
    @bmeeks said in rclone sync command crashes WAN interface with “No buffer space available” errors (endto error: 55): It's possible that under heavy loading your gateway stops responding to the pings from dpinger. In that case dpinger will think the gateway is down and start taking action. You could try either turning off gateway monitoring temporarily, or greatly increasing the "setpoints" for packet loss before dpinger assumes a gateway is down. My suggestion would be to turn off gateway monitoring completely as a test. That solved it. I ticked "Disable Gateway Monitoring Action" and while the errors still show up, the interface keeps up. It also looks like that even though I limit the upload to 20Mbytes, it still hits near 100Mbytes per second on the interface.
  • How am I supposed to access IOT devices on a separate network or VLAN?

    4
    0 Votes
    4 Posts
    5k Views
    JKnottJ
    @greymouser With the IP cameras I've worked with, they connected to a recorder. The recorder had 2 ports, one for the cameras and one for connecting to the main network. You'd connect to the recorder to see the cameras.
  • Feature Suggestion - Search

    2
    0 Votes
    2 Posts
    376 Views
    stephenw10S
    Better to add any specific suggestions here: https://redmine.pfsense.org/issues/9717 Steve
  • Block pornographic and adult websites!

    5
    0 Votes
    5 Posts
    2k Views
    U
    @viktor_g perfect ... thank you!
  • WiFi AP Showing ARP 'moved from' Daily

    4
    0 Votes
    4 Posts
    736 Views
    stephenw10S
    Not really. It pretty much has to be coming from that access point, you'd have to ask Netgear why it's doing that. It would not normally cause a problem if it was an expected load-balancing strategy or lagg interface. Steve
  • Boot delay XG-7100

    2
    0 Votes
    2 Posts
    425 Views
    J
    Just wanted to update the post with what I figured out on this. OpenVPN was prompting for a password on boot. Turned out I had client settings with a null password, so it prompted me for it on boot. Not using this now, so once I deleted the client, no more stall on boot.
  • PPPoE on SG-1100 ping works no other traffic

    2
    0 Votes
    2 Posts
    295 Views
    I
    I ended up grabbing a new SG-1100, went through the setup wizard - DSL connection fully working. Then selectively copied over config sections and recreated the rest by hand, did not restore system or interfaces. All is working now. Probably for the best, I think this router config is on its 4th device and needed to get reset. Alix, APU, 3100, 1100
  • Do I have a routing problem or something else?

    2
    0 Votes
    2 Posts
    205 Views
    No one has replied
  • pfSense stops routing traffic after a week

    6
    0 Votes
    6 Posts
    582 Views
    DaddyGoD
    @x-ae-sr71 said in pfSense stops routing traffic after a week: @viktor_g 2.4.5-RELEASE-p1 (amd64) - many thanks! as if I had seen these questions somewhere
  • LAN gateway request timed out

    3
    0 Votes
    3 Posts
    370 Views
    S
    @DaddyGo Thanks for your prompt response. Yes I do use pfblocker-ng and resolver so should I enable that option ? I do add mac/ip manually and then dhcp assign that IP to client. My network block is large /20 . IP-range set to 192.168.1.253-192.168.2.254 in this way dhpc does not assign IPs until I add them and then it will be assigned to client . Regards
  • IPsec Lan-to-Lan VPN: duplicate or not connected sa child

    1
    0 Votes
    1 Posts
    268 Views
    No one has replied
  • Big POST request to kubernetes cluster fails

    1
    0 Votes
    1 Posts
    209 Views
    No one has replied
  • Sending Netflow data over IPsec tunnel?

    2
    0 Votes
    2 Posts
    381 Views
    stephenw10S
    You could probably also use this workaround if you don't want or can't use VTI: https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/accessing-firewall-services-over-ipsec-vpns.html Steve
  • Auto boot

    30
    0 Votes
    30 Posts
    2k Views
    DaddyGoD
    @keesdek you welcome it was instructive, and you're done
  • Newbie to pfSense, question about network configuration

    10
    0 Votes
    10 Posts
    1k Views
    NogBadTheBadN
    @Raffi_ said in Newbie to pfSense, question about network configuration: @testcb00 I think 0.2b looks better. The only thing is that you don't need the WAN port on the wifi router. The WAN port is only need if you are doing firewalling/routing with that device. You are doing neither with the wifi in your setup. Change that word on the wifi router from 1Gbe RJ45 (WAN) to 1Gbe RJ45 (LAN). You plug the Wifi router LAN port into pfsense OPT1. The wifi router will then be an access point to your network. Rules can be created as need to prevent wifi devices from accessing the LAN on pfsense. ^^ This and switch off DHCP on the WiFi router.
  • Maximum Log Size

    6
    0 Votes
    6 Posts
    837 Views
    M
    @mattlach said in Maximum Log Size: @bmeeks said in Maximum Log Size: @mattlach said in Maximum Log Size: @bmeeks said in Maximum Log Size: pfSense currently uses a special logging utility called clog for its system logging. This utility produces a binary circular log file that is first-in first-out. It is not like a normal syslog file on say Linux. Circular logging was implemented when pfSense was first created because many of the installs were on small memory footprint systems with flash memory (remember NanoBSD). The size limit you are hitting is imposed, I believe, by the clog utility. Most folks who want to maintain tons of log data use the syslog export feature to send the logs to an external syslog or rsyslog host. Thank you for that. I will google to see if I can find any guides regarding syslog export. There are some configuration parameters on the Settings tab of the SYSTEM LOG screen for setting up log export to a remote syslog host. You will find it easiest to create a Linux machine (a VM is perfect on a hypervisor) to be the syslog receiver. There are also packages such as ELK that a lot of folks use. Google the term "ELK" for more info. It is an acronymn for Elastisearch Logstash Kibana if I am remembering correctly. This is a suite of software tools you install on a Linux host. Thanks again. I just created an Ubuntu server 18.04 container on my mmain server, and configured rsyslog per this guide. Next I went into the GUI configuration on pfSense and enabled remote logging and added in the IP of the ubuntu machine, as described here. It doesn't appear to have received any logs yet. Maybe it needs UDP? I only enabled TCP. Or maybe I have a permissions problem on the folder I asked it to store the logs in. I'm troubleshooting. netstat shows no connections on port 514 though, so the issue seems to not be permissions, but rather be that the connection isn't established. Do I need to do anything to pfsense to make it start sending logs, or is checking the box, configuring and hitting apply enough? Turns out it was indeed a filesystem permissions error. I had pointed the logs in a nonstandard location (/mnt/rsyslogd, a mounted drive) Once I changed the owners to the same as in /var/log (root:syslog for the folder, and syslog:adm for the log files) and then matched the read and write permissions to /var/log as well, things seemed to work as expected. Thanks for all the help! --Matt
  • Simple Windows Domain DNS Server question for the experts out there

    2
    0 Votes
    2 Posts
    155 Views
    J
    @JLundberg Moving this to OpenVPN section
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.