@michaelcropper You do realize that what you do has no effiect on your performance, so long as your network is capable of handling what you get from the Internet. For example, my home network is capable of 1 Gb, but I only get 500 Mb from my ISP.

@stephenw10 thanks for your help.

@morbo Haha, smile, i had the same idea a few minutes ago and it works with our Office365 mailer! Thanks for your answer and have a nice day! Regards, Norbert

I've never generated data like that but I pretty always see 140Mbps when I run a test against, for example, fast.com. I've never seen it below 130Mbps. Steve

@it_ib You need the private CA key to sign the CSR see https://docs.netgate.com/pfsense/en/latest/certificates/certificate.html#sign-a-certificate-signing-request: Sign a Certificate Signing Request Signing a certificate signing request (CSR) is a special process which uses an internal CA on the firewall to sign a CSR and turn it into a full-fledged certificate. The following options are available when signing a CSR: CA to sign with The CA on the firewall which will sign this CSR. This must be an internal CA (private key present).

I was able figure the issue. I didnt realized that I set dns manually and point to my pihole docker when using my one of wireless.

Thanks. Not sure when I'm going to be able to get back to actively troubleshooting this. I'll stick with the DMZ setup for now and continue to research. Once I have some answers, or more likely new questions, I will start a new thread.

Yeah, you shouldn't have to do anything at all. If the modem goes down pfSense will see the WAN interface lose link and triggers a bunch of scripts. When it comes back up it triggers a different bunch of scripts which should pull a new dhcp lease and get a WAN IP. If you have a switch in between that can be an issue as the pfSense interface then never loses link. The gateway would still go down though. Steve

Do you mean users or clients? Or you mean you are actually trying to issue two IP addresses to a user who is logging into both networks via radius? I don't believe that is possible via the pfSense package at least. What error do you see when you try this? Steve

Most logs are sync'd to permenant storage at shutdown and restored at boot. Everything you can see in the gui at least. You only lose anything there if it powers off unexpectedly. If you have your local logs set large enough to store 90 days or filter logs you would need a huge /var ramdisk. Probably impractically huge. Yes, exporting the logs via syslog is the correct way to do this. Steve

Hmm, weird. Without seeing the crash report or at least the backtrace and panic it's hard to say what might be happening there. You might try installing ZFS if you're not already. Steve

@stephenw10 said in How do I drop black listed incoming traffic without rebooting the entire unit?: pfBlocker just adds firewall rules and aliases. If a firewall state already exists it won't remove it. So you can search the state table for the open states and remove them or clear the state table entirely. Both are better than rebooting. Steve Alright, that must be it then, once it hooks up I've seen that ip on the open state of the firewall but forgot how to get there, will have a look and try dropping it manually next time another offending address jumps in. thank you

@jpns : Throw this one ine Google : LCP: rec'd Terminate Request The first one says : https://forum.netgate.com/topic/30028/pppoe-connection-terminated-every-10-minutes

Got my hands on these dashboards and thought I would share them for anyone else that wanted to play with them. I tried to fix everything that looked broken but there may be more stuff broken, I'm no expert with Sumo Logic. pfSense Sumo Logic.zip

sudo is not installed by default. But, yes, it will be the patched version in 2.5: [2.5.0-DEVELOPMENT][admin@25dev.stevew.lan]/root: pkg search sudo pfSense-pkg-sudo-0.3_6 pfSense package sudo sudo-1.9.5p2 Allow others to run commands as root Steve

Yes, you can so that if the switch supports it. Better to use LACP if you can though. Steve

Good day ando1, Much appreciated. Can it apply to pfsense version 2.4.5?

A Meraki switch is cloud managed and needs to be able to see the internet for it to work. Here is what the lights mean: https://documentation.meraki.com/Go/Meraki_Go_-_Decoding_the_LED_Light I would reset the Meraki switch to default and then connect to pfsense box. See restore button: https://documentation.meraki.com/MS/MS_Installation_Guides/MS_End_of_Sale/MS220-24%2F%2F48_Series_(EOS)_Installation_Guide I have number Meraki switches and if they cannot see the internet they do not boot.