What are you running pfsense on? When you say you replaced the modem, it really was a modem.. Or a gateway (modem/router combo) What is the model number? What upload speed to you have? Your pfsense wan is pubic IP or rfc1918? I run uploads all the time, plex server serving up to friends and family.. I just uploaded over 45GB of stuff for just the other day for my friend.. Looks like I do over 400GB a month [image: 1601774020482-400g.png] Never seen an issue.. The other day when I was uploading, pretty much pegging my upload pipe for hours.. No traffic shaping, no need to really do anything at all.. So to try and figure out your issue going to need some more info. You say you start seeing packet loss, well yeah if that happens at some point pfsense is going to kill the connection on its own once it thinks its gateway is offline.. Can we see your quality graph when this happens... For example you can see here while my response time did go up while uploading that large 45GB of data.. There was no packet loss. [image: 1601774354437-upload.png]

Well while your connected it would be only you, but would assume this would rotate like every 24 hours or something. And either way the IP space would be the vpn space, and as they clearly state on their website they don't log or work with any government agencies... And do not profit in any way with the GBs of traffic their users use.. That $29 for life gives them plenty of profit ;) why would they have any need to monetize whatever your doing via their vpn? ;) Most likely even that single IPv6 they give you is only being used by you.. So unless they handing out ULA address space and natting it?? Even that single IPv6 give you is not "shared" like your typical IPv4 vpn..

Thanks for the info folks. The reference to the above video about running 'fsck' in single user mode helped. That solved the problem! Now the data streams nicely to the syslog server. Didn't see much error correcting but apparently it was enough. @jimp Normal shutdown... yes. The question was why though and why no logs were flowing.

@AKEGEC I asked them that and they said the modem had been up for 20+ days. That matched up with the uptime in the GUI. As for weather, at that time it was really calm and moderate. No storms in the area. (That said I will never count out squirrels as a culprit. :)

I suggest that you only visit Netgate official website. docs.netgate.com forum.netgate.com

@Draghmar said in Changing favicon: because I was rather asking about built-in solution Noop. "If it isn't in the manual (there is one) - it isn't possible" ^^ If was talking about branding uniquely to mention a possible reason why you shouldn't change the fav. Anyway, you have some options at your disposal now.

N280 actually, yes 32-bit. I will look into getting new hardware once I finish the latest network project. I don't want to add new hardware as another variable for troubleshooting. Oddly enough, the "updating status" has always been successful and it has not changed with the addition of these DNS servers. 2.3.4 seems to be the latest unless I allow for non-stable updates. " 2.3.4-RELEASE-p1 (i386) built on Fri Jul 14 14:53:03 CDT 2017 FreeBSD 10.3-RELEASE-p19 The system is on the latest version"

@Cool_Corona I already tried this option creating the file, but the problem was the same, now I used the system -> Advanced option. I will see if will work. When finish the tests I will give a feedback for you. Best Regards

@GregTheHun said in Unable to enable DHCP server for OPT1 interface: my interfaces to have Static IPv4 addresses You can even disable / remove the IPv4 address on your interface. For "DHCPv6 Server & RA" to work, you should have a valid IPv6 set up. If your question was remotely related to the subject of this thread, you have set a /128. Which leave zero space for a pool, so DHCP (V6) isn't possible. You didn't do that ?? Did you ? @GregTheHun said in Unable to enable DHCP server for OPT1 interface: I know for a fact that my OPT interfaces have DHCPv6 as the address method Show the details ?! : [image: 1601538848108-7d5ef558-6e83-4f06-be78-dfc2277f7545-image.png]

Hi Checked the IP list, there are some duplicated IP addresses in AWS IP list. Pfsense do not import the duplicated IP addresses. Thanks!

In 2.4.5p1 you can leave the max tables value at the default, which is now 400000. 120seconds with no traffic is something significant. I would expect to see something logged. Or at least something in the monitoring graphs, maybe for CPU usage. Try a packet capture on WAN when that's happening. Is anything leaving? Anything coming back? Steve

Yeah I think if you're really seeing 600Mbps download there with peaks at 800 that loss is just the hardware limits. Steve

@Gertjan I already have everything in place Intel(R) Atom(TM) CPU E3845 @ 1.91GHz 8GB RAM and 4 Intel NICS [image: 1601488204900-rack.jpg] I know how to set this box up, done that quite a few times to get the desired results; I then followed the guide I posted because of "Things as "security" are as good as the knowledge of the admin", and my knowledge in Network is limited, so I thought to follow a top-post I found on Reddit. As I can't troubleshoot due to limited knowledge, I'll follow your guide and learn along the way. After installing 1400m of CAT6a, 5 new PoE APs, IoT, security and several servers I badly want this network to behave the way I want. Let's see where this journey is leading cheers

@nash27 said in Health Checks for PfSense: route53 healthchecks Don't those check from multiple locations? If your blocking access to where those checks are coming from - then yes they would fail. I would assume that if your opening 443 on pfsense to the internet for managment, you would have that locked down to specific IPs - atleast that is what any sane person would do ;)

I'd have to guess it's because you are locking the account rather than disabling or removing it. AD it probably returning that in some additional string that only applies to Windows and not general LDAP auth. Try running a pcap and see what it's sending if you can. If any of it in unencrypted. I doubt you are the first to hit this. Steve