I would make sure you can authenticate from Diag > Auth before attempting to use it for OpenVPN. https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/authenticating-openvpn-users-with-radius-via-active-directory.html You might also check this hangout: https://youtu.be/n2Z3rr4W2xw Steve

There doesn't appear to be anything wrong shown in those logs. If the daemon should not have been restarted at that point I would check the system logs for that point to see what was happening that may have restarted it. Steve

To do a wol from pfsense, just click the little button in the dhcp leases ;) Which will add that mac to your wol table.. [image: 1564931251736-wolbutton.png] Not sure why anyone would want to have their nas in standby in the first place ;) Mine is doing all kinds of stuff in the background during "off" hours.. Creating plex video previews, maint on plex, etc. Never know when someone going to watch a movie at 3 am as well, etc. There is also normal other maint that synology goes through off hours, backups, reports, etc.

If you want to pass the routes via a protocol - go for it.. But sounded like you wanted route the L2 at pfsense as well with multiple wans.. Ie 3 different wan networks on pfsense? Without natting, or host routing that leads to asymmetrical traffic.. If you have a downstream router, you connect the upstream and the downstream via a transit network.. You don't just connect the downstream router to all the upstream networks via different wan interfaces.. That would be just a freaking mess. If you want to use a routing protocol to exchange the routes - sure, but its complication for no reason. Not like the downstream router is going to be adding routes out of the blue and you will want to know they are down there via a route being added via the protocol. And you sure don't seem to have multiple paths to gte to the downstream networks, and you don't seem to have need for a failover via loss of a path, etc. etc. You could get as simple as using some large cidr on your top networks.. Say using a /20 which would give you lots of room for growth of more networks their, and then a /20 for your downstream networks, etc. But sure if you want to run bgp or something to play with - have at it.. Your still going to connect them via a transit network(s)..

Really you would need to be logging the console output when it reboots to see what is happening there. You might be able to enable a serial console, set that as the primary console and log that output. It would no doubt involve some fun and games in HyperV though.... Steve

@5555 Maybe this here VDSL2 - Parameter für 1&1 can help a little bit?

Well at least you have diagnosis and a fix. Not much else you can do there but swap out the card. Steve

@kiokoman Thanks. I didn't think so but they were showing intermingled like that so I wasn't sure.

Those are on the same interface? 100.100.100.0/24 and 192.168.1.0/24? That should work but you will need to add firewall rules to allow that traffic to pass. If that is your LAN for example and your LAN interface is 100.100.100.1 then firewall rules using the default LANnet as source will not catch traffic from the other subnet. Add additional pass rules for 192.168.1.0/24 specifically if required. You may also need additional outbound NAT rules for it to get internet access. Steve

@asphalt3 said in Slow Download Speed virtualbox pfsense: Once I login to the Netgear web gui from the host and look at the IPs in "DHCP clients" section theres 2. 1 for the host and 1 for pfsense (on the VM). Could that be the issue? Probably not. It depends how the hypervisor is configured but if the NIC is bridged to the pfSense VM then both that and the host would pull an IP from the upstream router. Running double NAT to some VM(s) behind pfSense in the virtual environment is not ideal but it should work fine. Steve

But unless he puts 3rd party on it - he is not going to have such control in the soho native firmware. He might have a check box to block or allow wireless access to the gui.

I'd be looking at something else. https://forum.netgate.com/topic/133996/time-to-remove-growl Think it's been removed from 2.5 https://redmine.pfsense.org/issues/8821 ?

@cheapie408 yes, HAPROXY is just a proxy, a super powerful and awesome proxy, but, only a proxy.

I'll have to double check, but I'm usually in a rush to just get things working again. In the mean time I've followed the workaround you linked to. It makes sense and I think that's what is happening in my case too. Thanks so much!

https://docs.netgate.com/pfsense/en/latest/book/nat/troubleshooting.html Post screens of your NAT rule(s) and WAN rules, with any public details (like WAN address) obscured.

I have this problem as well. My Growl server is listening for notifications and other applications work just fine. The bug was not fixed in 2.4 release (validated). I believe more people than you think use Growl. If you have a proposed fix, I am happy to help QA this. This bug is quite old - can we please have some attention on this?

Done.

@johnpoz @JKnott @akuma1x I will try your suggestion, didn't think about doing that that way!

@KOM thank you very much for your response.