@landman16 said in Issue with a block of 16 IPv4 addresses: ISP is asking if this is the upstream gateway of Zen or some IP within my public subnet. Sounds like your ISP needs some tech support that's not clueless. When configuring a router, it's the ISP's gateway. With computers, it's your own, in this case pfSense.

This is solution https://forum.netgate.com/topic/40344/how-to-bring-interface-up-from-pfsense-commandline/5

On the General Settings tab of the ACME package, check the Write Certificates box, which drops the cert files in /conf/acme/ and from there you can have scripts pick them up and deliver them where you want.

No real way to do this at the firewall usefully I would say. Might try just allowing only MACs you've added. Or maybe 802.1x at your access points. Maybe if you have signatures and those phones in questions are calling home you can detect and block them in Snort. Steve

Hmm, unusual failure in those cards. Assuming it's a genuine one. Nice catch though. Steve

This seems connected to this issue https://forum.netgate.com/topic/114786/pppoe-disconnects-requiring-reboot/2

It is working better than every after MoCA filter and swapping to Technicolor XB6. Not sure which one fixed because did both at same time but I am not concerned anymore.

Oh, I never that. I thought it will update itself. BUT THANK YOU!

@bryan-paradis This is Funny and I know this is an old topic, but sometime ago I added a 5th Nic to my PFsense, it never worked. Added VMX that did not work either, today I tried again multiple times to no avail and stared over like 3 times. Then I decided to enable track interface and I got ipv6 and it worked I could ping tracert every thing for the first time my 5th Network card was operational, just not on ipv4. I am trying to setup a vlan for wifi in another location in the building. Well I followed your suggestion above even though the path was a little wrong but I fixed the Rule that was not auto created for some reason. Now I have the extra Vlan and the 5th network card working in a virtualized pfsense.

@nogbadthebad So, in case I will re-open the next year Thanks

@bobkoure Thanks for the suggestions....the problem is always have the best at the cheaper price. I will for sure take a look at Amazon glacier!

Yes, probably. It's possible to setup Limiters for dynamic bandwidth sharing. Steve

That seems like you're trying to export the pfSense logs..... which is completely different to the issue here. Please start a new thread. Steve

I've never tested one but I'd expect it to be fine. Certainly at 330 or 500Mbps for Firewall+NAT. Steve

@stephenw10 said in pfSense stops responding after login on Netgate MBT-2220: How are you logging in that seems to trigger this? At the webgui? Can you login via SSH or use the physical console? If you have a physical console connected when this happens it may show what is happening or at least allow you investigate or reboot cleanly. Or if it stops responding there it's also a indication. Steve Thanks for replying, Steve. The problems occur when I log in through the web GUI. When I've tried to log in using SSH or the console after a GUI login and the system has stopped responding, those attempts failed. No login prompt appeared. pfSense had simply stopped responding. To be honest, I haven't tried to log in using SSH or a physical console prior to logging in through the web GUI. But I'll give it a try this weekend and report back.

Yeah, that looks like no default route. So make sure you have a default gateway set then check Diagnostics > Routes and make sure a default route is shown. Steve

@stephenw10 Perfect! Thank you.

Mmm, probably going to need a script to do it. You might be able to define a custom Snort rule to detect that which would be nice. But it will only throw an alert when it sees it. No way I'm aware if to send a notification based on that alert. Maybe if you were exporting the Snort logs you could have something else setup to do parse them and do that. Neither of those things are anything I've ever tried. Steve

@stephenw10 I was fully stopped, not a timing issue. I figured it out much later because the usage of haproxy/squid is optional. I do not use clamav or other filters, the proxy being 100% for caching. Unrelated to the original question one hour ago I found an issue specific to squid: it breaks use of wss:// (web sockets) and so far I was not able to find info about how to avoid it (if is even possible). Clearly this has nothign to do which pfsense.