I can't see a problem with this. They mention pfSense on their web page. They seem to be offering an appliance with a fork of pfSense. Of course my Portuguese isn't great!  ::) Steve

I have seen them before. Maybe they did not like your post/ad as there are other items for sale. Here's one: http://forum.pfsense.org/index.php/topic,28893.msg150117/topicseen.html#msg150117

Thank you

If you perform a network capture on the WAN port of pfSense, what is the protocol, source and destination address of the traffic which you are seeing hitting the WAN interface?

I can confirm, that since I'm using built Sat Jun 11 the bug is corrected and there are no more log entries and the history is no longer flooded. There is also no more possibility to adjust the time of storing to database. I assume, it's still done all 5 minutes, but now silencely.

@Cry: It may be a Squid problem - have you checked the Squid logs? Apparently that was it, I switch my host to point to the same gateway, apparently, I was using the wrong one… so now, the host cannot resolve it too, i am digging into pfsense to see what's wrong in there. Thanks.

Are you meaning default vlan, or making that port as access mode?

oh right thanks for clearing that up for me i thought because the router handled the dhcp i thought all the traffic went through that clearly not! learn something new everyday. so my plan is to run pf in vm for a while install an adsl pci card (to do away with the router completely) and have it manage the lot. thanks for all your help. i'll probably be back when i get stuck installing it somehow

Hello jimp, thanks for your answer. yes, that's what I checked first, but all the settings are ok (ip, dns, gw). Even when I config static settings I'm not able to get a connection anymore. It's always after the first reboot. I now tried smoothwall, and there I have no connection issues, but I prefer pfsense ;) Another error I had sometimes is that after disconnecting wan or setting anything up on network interfaces, the web ui had some problems an I had to reboot the web ui. Maybe a driver issue?

If you are using squid this is normal. I have 4GB RAM and when I run squid form some days there are 75% RAM in use ~ 2.2GB only for the squid process: SQUID uses RAM for the index of your "Hard disk cache size".  (I use 10240 ~ 10GB) Its dependent on the "Memory cache size" (I use 1024 ~ 1GB) and it is dependent of the "Maximum object size" (I use 524288 ~ 512MB)

Thank you :) That is what I needed to know. So I will be ordering the 1.2.3 book & will purchase the 2.0 book when it comes out :) Thanks for all your hard work on this stuff! It's much appreciated… My CEO just wanted an automatic WAN failover. When I was able to build one that did that, plus replace our old router/firewall, as well as do load balancing, traffic graphs, and all the other great stuff by using old hardware we already had, and not even having to pay for the software... Needless to say it got me some brownie points with my CEO for adding way more features than the requirements called for as well for doing it at a grand total cost of $0.00. So much appreciation and will try to show some love back by purchasing the official books written by members of the project.

OK, fixed. Thanks Jimp!! I left the firewall rule to handle things other than port 80. For Squid: As Jimp implied, leave "General tab -> Bypass proxy for these source IPs" blank. Place the IP in "Access Control tab -> Banned host addresses" and that should take care of port 80.

ok - tnx :: i did try out that 'reset button' with several limit of time, without                 success - so i made a 'null-modem'

I figured it out just a bit ago. I'm not sure what was going on, and I'll have to investigate because there were NO other computers on, but there was a network device on 192.168.0.11. I'm guessing something was going on with IP conflicts at .10 perhaps. Sorry for the confusion.

@luke240778: Are you saying that it is not a good idea to have upnp enabled? I would say, not if you don't need it. You seem to have a clear need for it though. Just be aware that it effectively allows any client behind your firewall to open ports and setup port forwards. Since you are a WISP this is perhaps more of a risk than for other users who can control what is behind their firewall. Steve

Meant the default timeouts. Such as: set timeout tcp.first 2 set timeout tcp.established 3600 set timeout tcp.closing 2 set timeout tcp.closed 600 set timeout udp.first 2 set timeout udp.multiple 3600 set timeout icmp.first 2 set timeout other.first 2 set timeout other.multiple 3600 set timeout adaptive.start 20000 set timeout adaptive.end 220000 I am playing with 2.0, looks pretty good. Took a patch from FreeBSD mainline to support my 8 port serial card. Had to recompile the kernel with puc enabled for it to work, but it works like a charm. Overloading dumps excess entries into a table, which can be used for later processing. For example, I have different uplinks wrapped in different 802.1Q tags. When something passes reverse path verification (something else I can't yet locate), and exceeds 90 syns/min, it dumps the IP into the synflood table. 5 minutes later, it's removed. I live in the CLI. However, the guy that pays my bills does not, and most of the people on my team are specialized in a specific talent. This means a GUI is needed. pfSense has impressed me, and once I become familiar with its source, I do plan on submitted many a patch.

You'll never get a proper environment for compiling on the firewall, not without a lot of headaches and mess that really aren't worth it. Setup a FreeBSD 8.1 box or VM, compile there, and move things over. Much simpler that way, and it doesn't reduce the security of the firewall (unless you're installing a program that does :-)