@thewaterbug I have a friend with a bare MBT-2220 running 2.6 on 500Mbit sym fiber and we're not seeing any missing speed -- but we haven't really pressed it too hard.

nevermind...I figured it out.

@hamsterray See here.

@stephenw10 said in Resolving a domain in firewall rule: Every 5mins by default. See: https://docs.netgate.com/pfsense/en/latest/firewall/aliases.html#using-hostnames-in-aliases Steve I am fascinated with pfSense...so much to learn and what it can do.

You should open a ticket with us to work through it. You need to access the serial console to diagnose or repair that. https://www.netgate.com/tac-support-request Steve

@wheelhouse20 yes, I know there is a newer version, haven't updated yet.

You would have to access the subnet behind pfSense using port forwards. Or you could add a static route to the client PC for the 192.168.10.0/24 via 192.168.1.2. Steve

Well I wouldn't buy that particular one since it appears to include some sort of fast charge circuitry. I have no idea how that affect a USB data connection through it.

Yeah, the dependency is two fold. The default config has the WAN set as DHCPv6, the LAN set to track WAN for the IPv6 prefix and a DHCPv6 server enabled on LAN. To disable that first disable the DHCPb6 server on LAN. Then you can set the LAN interface DHCPv6 type to none. Then you can do the same on WAN. Steve

Right. If you were using the Filer package you would need to update it there instead to avoid it being overwritten. Steve

Yes, exactly . The traffic hitting the bogons rule is all going to be that same IGMP I imagine and that's not really at all useful to log. So just stop logging traffic on the bogons rule and you will have far more log space/time. Steve

I don’t know. I don’t have any other vpns setup. Anyway… Thanks for the support. @stephenw10: I owe you a beer!!! :-) Problem is solved. Kind regards

Also remember LAGG of 2x1G interfaces doesn't mean you will get 2G of bandwidth for one single connection. You will at MAX get one single 1G stream and if your application can use multiple streams you could get 2x1G.

@stephenw10 hi, thanks to your post you made me think to check an interface that I use for the Wifi Guests, and in fact I used them the same subnet, changed that one it is solved now everything works perfectly A thousand thanks

@stephenw10 Good call. I may have to upgrade my NICs to get the most out of all of this. I'm not sure they are up to snuff.

Yeah, there is an issue with the RSC feature which is enabled in hn(4) in FreeBSD 12.3 and hence in 2.6. Depending on how you are hitting it you can workaround it by disabling RSC on the vSwitches or in the VM interfaces. The vSwitch change is permanent, the VM interface change is not. Since you are seeing slowness to the WAN you may be able to resolve it using only the switches. Steve

That's expected if it's using a self signed cert. What cert is it presenting that's showing that error? What did you upgrade from? I assume it wasn't showing a cert error before upgrading? Steve

That's not an error if it's actually not ZFS. Just an artifact produced by switching the ramdisks. I would not worry about it unless you're seeing issues with logging. Steve

@steveits Oh Really ?? thanks a lot. I have upgrade the Ram to 8GB so i can go 2 million. Thanks a lot.

SOLUTION @stephenw10 Jepp, changed from chrome to edge, now i see the info. Thanks