https://docs.netgate.com/pfsense/en/latest/book/monitoring/system-logs.html https://redmine.pfsense.org/issues/8350

There is manual how to do backups remotely https://docs.netgate.com/pfsense/en/latest/backup/remote-config-backup.html This can be used as first step to do automated login, but all other steps must be scripted by you.

@hrohibil said in Which firewall to pick: -Ubiquiti USG -Ubiquiti Edgerouter 4 -Netgate Pfsense SG-3100 Show down : https://www.youtube.com/watch?v=bK2_ROQrMcM ( just an example - way more videos exist )

Thanks @stephenw10 we'll keep looking and post post back if we find a good method of of doing this in conjunction with pfSense Hass

yes this what i was hoping to be able too do is too have one captive portal at the server end and have all the internet traffic go back to the remote modem. what i have running now is that the captive portal has an ad server on the server end were clients would click on an ad or info and get internet access were the ad would full in the login info in the captive portal would that still work at the remote location as all of the traffic would be coming to the server end? also at the server i've got the captive portal doing a redir to a webpage were the client would have to click on tab to get the captive portal page to come up then they could click on an ad to get internet access. would this work if i set the remote as a stand alone

@KOM I have a Qotom Q355G4 which has 4 x Intel I211-AT- 10/100/1000 Controller. Tried both 2.4.4_3 and 2.5 (which is running now) for PFSense. As for other equipment in the network I have a Unifi 8 port PoE switch and a Unifi AP AC Pro running off of the switch, @stephenw10 said in pfsense dropping LAN clients whenever WAN is saturated or PFSense settings are changed: What does the system log show when you make a change that drops everything? Steve The only thing of interest I can find is it seems DHCP service is completely restarting everytime I modify settings related to ports, interfaces, client leases, or FW. There's nothing in the System tab being logged when this happens. Whenever I saturate my WAN, nothing appears to be logged on the PFSense instance. I should note that if I wait a little bit (have not measured exactly how long) it appears the connection comes back on its own, but this can be accelerated by dropping and rejoining the network. Interal pings to my VLAN gateway take up to 100ms but everything is still reachable under load. Nothing gets logged when connections are dropped due to load. @marvosa said in pfsense dropping LAN clients whenever WAN is saturated or PFSense settings are changed: @holojack said in pfsense dropping LAN clients whenever WAN is saturated or PFSense settings are changed: Oddly this seems to also happen whenever I saturate the download of my WAN (100/100 symmetric fiber). During load like downloading a game, I will see ~20ms pings to my internal GW and ~50ms pings to google with about 10 percent packet loss. After a long enough sustained download I will lose connectivity on all machines on the LAN and have to reset all of them. During both of the above I cannot ping internal or external machines nor reach the WebGUI. I have looked over the logs in the WebGUI and nothing stands out to me. Here is what I have tried to fix this: The issue of your machines getting kicked off line upon simple configuration changes sounds strange. Is it possible you've found a bug, sure, however, I can tell you I've been using PFsense since 2009 and every issue I've ever had with it has been hardware related. We have no details about your network, but having increased pings to an external host with a saturated WAN link is normal. However, the only way you should see increased pings to PFsense while saturating a 100 Mbit WAN is if you're using 100 Mbit NICs and a 100 Mbit switch on your LAN. As far as the issue of not being able to ping internal hosts when you're downloading at max speed, traffic between internal hosts on the same subnet do not traverse the firewall, so your issue lies somewhere else. My suggestion, make no assumptions about anything. Assess both your PFsense hardware and your switch, assess all NICs, assess cabling... those are all in the data path and all points of failure. Unifi controller and PFSense are both reporting 1000/1000 full duplex on all ports. Also I may have misspoke, but I can only noy ping internal hosts when my connections are dropped.

@stephenw10 Don't get me started. I'll just leave instructions to hit everything with a hammer. Let me tell you about My Everex Cube, circa 1992, Full-house, 64MB RAM, 2! 2GB SCSI drives and SCSI CD, 486DX2-66 upgrade!, $10,000 new... Hey, where ya going...? LOL

Check the ifconfig output for the bxe NICs for things like VLAN_HWTAGGING,VLAN_HWCSUM,VLAN_HWFILTER. There's no GUI knob for that but you can disable it if required. I'm not aware of any issue with it but no-one use VLAN1 so... Steve

https://forums.freebsd.org/threads/execute-rc-d-script-at-shutdown.53304/ https://www.freebsd.org/doc/en_US.ISO8859-1/articles/rc-scripting/rcng-hookup.html You put startup scripts and kill scripts in /etc/rc.d.

No, no reboot required.

@Stewart said in Corrupt Configs: I've also found an oddity in /var/squid/logs: /var/squid/logs: ls -lah | grep access -rw-r----- 1 squid proxy 0B Aug 13 00:00 access.log -rw-r----- 1 squid proxy 6.1G Jun 8 05:14 access.log.0 -rw-r----- 1 squid proxy 52M May 5 00:00 access.log.1 -rw-r----- 1 squid proxy 0B Apr 25 00:00 access.log.10 -rw-r----- 1 squid proxy 0B Apr 24 00:00 access.log.11 -rw-r----- 1 squid proxy 0B Apr 23 00:00 access.log.12 -rw-r----- 1 squid proxy 0B Apr 22 00:00 access.log.13 -rw-r----- 1 squid proxy 0B Apr 21 00:00 access.log.14 -rw-r----- 1 squid proxy 0B Apr 20 00:00 access.log.15 -rw-r----- 1 squid proxy 0B Apr 19 00:00 access.log.16 -rw-r----- 1 squid proxy 0B Apr 18 00:00 access.log.17 -rw-r----- 1 squid proxy 0B Apr 17 00:00 access.log.18 -rw-r----- 1 squid proxy 0B Apr 16 00:00 access.log.19 -rw-r----- 1 squid proxy 56M May 4 00:00 access.log.2 -rw-r----- 1 squid proxy 0B Apr 15 00:00 access.log.20 -rw-r----- 1 squid proxy 0B Apr 14 00:00 access.log.21 -rw-r----- 1 squid proxy 0B Apr 13 00:00 access.log.22 -rw-r----- 1 squid proxy 0B Apr 12 00:00 access.log.23 -rw-r----- 1 squid proxy 0B Apr 11 00:00 access.log.24 -rw-r----- 1 squid proxy 0B Apr 10 00:00 access.log.25 -rw-r----- 1 squid proxy 0B Apr 9 00:00 access.log.26 -rw-r----- 1 squid proxy 0B Apr 8 00:00 access.log.27 -rw-r----- 1 squid proxy 0B Apr 7 00:00 access.log.28 -rw-r----- 1 squid proxy 0B Apr 6 00:00 access.log.29 -rw-r----- 1 squid proxy 35M May 3 00:00 access.log.3 -rw-r----- 1 squid proxy 9.6M May 2 00:00 access.log.4 -rw-r----- 1 squid proxy 1.9M May 1 00:00 access.log.5 -rw-r----- 1 squid proxy 0B Apr 29 00:00 access.log.6 -rw-r----- 1 squid proxy 0B Apr 28 00:00 access.log.7 -rw-r----- 1 squid proxy 0B Apr 27 00:00 access.log.8 -rw-r----- 1 squid proxy 0B Apr 26 00:00 access.log.9 with access.log.0 being 6.1GB in size, would that indicate that it isn't rotating? It would look that way to me at first glance.

So he wanted pfsense to just be his bsd box? Yeah not going to be good for that ;)

Exactly, it's this: https://redmine.pfsense.org/issues/9541 You can apply the change linked there as a patch with the system patched package. Steve

We would need to see some examples of the logged traffic to comment further. I would expect incoming TCP SYN packet to port 443 to be passed and redirected to Squid as you say. Steve

It will log ssh and webgui attempts.

@gordon Well done

I agree it seems like odd behaviour. It would be interesting to test with the bridge unassigned if you're able. That could be inconvenient to setup though. Steve

@stephenw10 True dat. Thanks!

Thanks @stephenw10, Typically it hasn't broken on me today but I'll check. My suspicion is that it will show as being up. I think if it was on the hypervisor side the disable / enable would not work which is why I think it's in pfSense. Next time it dies I'll check and report back.