@gertjan Thank you for the detail and suggestions. I will cable up the console so I'm ready next time. Understood about politely shutting down the hardware. Yes, I'm running vanilla pfSense, I've run update from the GUI once or twice when there was a new version. I think that "darkstat" is the only extra package I have explicitly installed (and that was just last night). Just looking for something to display bandwidth in use. Yes, the SG-1100 is the low end of the Netgate boxes, but it should be more than adequate for my SOHO network (only 60 Mbps service from ISP).

@clags it's difficult to tell. it could be anything. Try to fresh install pfsense and don't use old config. Take a note when that happens. Let's hope it' not the hardware issue.

Hi Guys, Just to update on this old thread...for those having the same issue. I got an Intel Dual NIC card from ebay and just installed it, so far so good, i guess the realtek card was the culprit after all. Say my amazon photos would start synching or i would update a computer's feature release (large file), internet would go down, i would have to run setup wizard after which it would come back up every time. Thank s for all your help,

Turns out we had a few too many incorrect login attempts (someone forgot a password) and they IP banned us. All is working again. Thanks everyone

Ha!

@johnpoz said in My Security Cams do not working: Sorry if that maybe came off a bit harsh ;) Not at all, everything is cool

@gertjan said in Most secure for WPA enterprise (FreeRadius): ** we're all dummies ..... otherwise we wouldn't be posting here ^^ Haha ;) dude that made me laugh.. Guess I will go away now ;) And you prob have little need to be here as well ;)

@openwifi I had tried that as well, and for me it didn't work. I then tried restarting the ntopng service, and once it restarted I was able to see the host's detail when I clicked on the IP or the three lines/hamburger icon.

@stephenw10 I don't know if this is related to the same issue, but this only happens since the 2.5.1 upgrade. I switched the default route to using Single WAN instead of the GW, but I still have the following issue. Momentarily drops, most visible to the user when youtube videos or streaming are playing. There are periodic moments where it repeats a few second of video.

I found it, its under System -> Advanced -> Firewall & NAT -> Network Address Translation -> TFTP Proxy Now that I found it, I do remember turning this on when I was having issues getting NAT to work properly, but I dont remember why I did it.

@smoothrunnings Try clicking the Reissue/Renew button

@automatican Seems pretty freaky to me. There are some additional ports, which might be usable for outgoing connections on most networks like 25, 80, 110, 143, 465, 587, 993, 995. Anyway, to have the site2site VPN on 443 maks no sense at all. You ISP should not block any outgoing port. Some may block specific P2P ports though.

@viragomann this home dev / concept. Not had a need for a this scheme in production. Shame I cant route in dual wan. Will have to opt for dual server over single WAN for now. Pfsense is a great product and I really cannot expect every angle to be covered. Kudos to the netgate team. P.s But would be great for this to be resolved soon. :)

I went into the files described and increased the memory with an editor, saved the changes and resolved my memory issue. Good Stuff here. Thanks

@akegec I have tried and on the latest 1.6 but having issues with it where it worked perfect before on 1.5.1 dev.

@johnpoz if you understand diplomacy you will also understand that some accidents or events are not for public consumption like USS Scorpion. Some people are already playing the blaming game, the attacks because of Islamic radicals. The same as for Corona virus, China got the blame while in early 2019 (before China) there were a mysterious vaping illness outbreak in the State, Hmm.. where could the origin of Covid19 be.. Fort Detrick, U.S. biological weapon lab? Anyway I think yesterday attacks for some odd reason made my clients server-agents compromised. @Gertjan , Britain : I don't know .... the British didn't want to do the maintenance for the channel-tunnel on their side, so we flooded it. LOL That's a good one.

@tac57 I agree with @JKnott. I don't think a DMZ is what you want for your IOT network. If your IOT devices are truly on a normal DMZ setup, the are exposed to the internet and anyone can find and access those devices. They may be insulated from the rest of your network, but they are susceptible to intrusions from outside your network. I do think setting up some VLANs is the best option. This keeps the IOT device behind your firewall to help protect against intrusions, but also separates them from the rest of your network incase there is an intrusion. Honestly using two IOT VLANs is probably the best option. Use one for devices that need to access the internet to work - such as streaming devices, smart TVs, etc. Use another one for devices that don't need to connect to the internet such as CCTV systems, smart plugs/lights, etc. Of course you can do this with one VLAN and just create an alias and corresponding firewall rules to allow devices to connect to the internet while blocking anything not listed on the alias. But that requires that you manually add a new device to the alias list whenever you want to allow a IOT device to connect to the internet. By using two VLANs, you can simply connect a new device to the corresponding wifi network (the one that has internet access or not) and not have to manually change anything in the firewall. I would assume you can use two of the three guest wifi networks for these two IOT VLANs. This still leaves you with one guest vlan and hopefully your regular wireless LAN network. If for some reason you only have a total of 3 wireless networks available, I would probably set it up like this: regular LAN wifi, no internet IOT wifi, and a combined guest/internet IOT wifi.

Its possible their device the .121 doesn't answer pings.. Do you see its mac in your arp table?