@pf2.0nyc: Are you running multiple WAN or any type of load balance? Nope i found solution it has been problem with ADSL line and some https traffic.

Sooo… I guess I got plans for the weekend: Reinstalling pfsense! =P

Was a network card issue as far as I can tell. With new boxes - no loss, however I haven't tried with the onboard broadcom cards (which was what I was partly using before). The reason for the carp is if either of the routers falls over - plus it means we can upgrade one and have the other running happily. We do have a 2nd ISP, but no IP range with them…. it was never setup correctly in the past and I'm doubtful of it happening now - too much chance of knocking everything offline by accident.

@jimp: You'll need to grab the commits here (or make changes manually), seems there is a bit of an issue with how things were laid out. https://github.com/pfsense/pfsense/commit/54d1a165d500225547337ddba7aa10e7e5f79c98 https://github.com/pfsense/pfsense/commit/07c49a3698ab458ea7ad8c0501d394c09e48dc60 Works Perfect ! thanks

The next version of pfSense will be based on FreeBSD 9.X and hence will have those drivers. That's some way down the road however.  ::) Steve

YIPPI! After setting up WAN2 and another reboot, WAN1 works as it should! So this topic can be closed! Thanks!

fetch -o /etc/inc/auth.inc https://raw.github.com/bsdperimeter/pfsense/RELENG_2_0_0/etc/inc/auth.inc (Assuming you're on 2.0-RELEASE)

@hec: Do i need for every service like smtp, imap,… an own ip address? I don't have so much ips to waste them. No. You can have on ip for many services.

It logs some things to the system logs, and things like config changes are tracked in the configs themselves, you can see a list of those under Diagnostics > Backup/Restore, on the Config History tab.

Unless your NAS can act as a syslog server, then no. Periodic copies of logs would not be ideal for many reasons, the main one being that you can't guarantee you'd capture all events between copies because they could scroll out of the clog file.

Check the system log from the console (such as clog /var/log/system.log or dmesg -a) and you'll probably find that your HDD is failing and tossing a bunch of DMA timeouts or g_vfs_* errors.

Thank you very much. I'll do.

You started another thread here: http://forum.pfsense.org/index.php/topic,42575.0.html In the future put your question in the correcht subforum "packages".

Hi, there shouldn't be a problem but why do you want to use an old version 1.2.3 and a RC version ? 2.0 final is out. What do you mean with load balancer? Do you mean Multi-WAN/Failover for outbound connections or du you mean LoadBalancing for incomming connections (LoadBalancing an webserver on you LAN) ? I am using Multi-WAN with pfsense 2.0 and it is working really good. So you should use pfsense 2.0 for this, too.

What you want to do is setup 802.11q vlan trunking between the switch and pfSense and again between your AP and switch. Change switch for GS108T to support management, vlans, etc. Apple AirPort does not support VLAN or multiple BSSID (you only need one AP to run mutiple BSSID unique networks, unique security settings, unique LAN when used with VLAN) but I think all WRT54GL will be new enough to support multiple BSSID. Most likely your choices will be limited to DD-WRT (recommend Broadcom), Cisco/HP/Symbol/etc, ubiquity or other specialty vendors. The only reason I can think to keep Apple Airport is if you want to use the Time Machine backup feature, otherwise it's (IMO) just an overpriced sub-par consumer-grade router, not even a web UI or even CLI, no wall mounting, when all other routers have 5 ports, they have 3. For the bandwidth limit you can do it easy with captive portal, just type in the speed limit.

In pfSense 2.0 some things (certificates, authentication) are moved to global config that way you can e.g setup AD 1 time use it for portal, proxy, etc. Have a look under system settings!

CPU usage is already logged under RRD Graphs > System. Any other info you can get from the system I am sure you can hack RRD or SNMP rather easily to be able to log it. Not sure what system you have that supports logging power usage, but I only see that in high end systems like HP true server grade. When I look on HP support for DL360 G5 & DL360 G7 I don't see BSD listed, so I'm not sure how you would manage to get the needed data without the proper agent. Honestly in that case you might want to run VMWare ESXi if that data is important to you. Now the issue with that is free ESXi won't show more than 1-2 hours of graphs and I don't think it supports SNMP either: so more than likely licensing fees or hacking will be required there. But it sounds like you are in a proper environment, so there are features to gain that should fit in well.