Thank you for being patient with me! I think the switch is working, but I reconfigerd it anyway, discovered that two of the ports I used was 10/100/1000 and the other two was 10/100. But no difference. So I started to check again which combinations worked. igb0, igb1 => worked igb0, igb2 => Not working igb0, igb3 => worked Any combination with with igb2 did not work. I tried with igb0, igb1, igb3 and it worked! Then I added igb2, and now it is WORKING  :o :o without reboot! And it is working after a reboot!  :) :) All together it is a bit odd. I will, when I get the time, install from scratch and see if it is the same. But in all, in the beginning pfsense was a little bit strange, but playing around with it for some weeks, I do really like it! I really love some features! I don't know why I was stucked for so long with Smootwall… Probably because it just was running and running and running! Have a really nice ester weekend!

That was kind of a "mobile" version you get with a phone or disabled scripts or something like that. Has been there for as long as I can remember.

Somebody have a clue?

"vlan 1 untagged on all ports (hard coded) " What kind of shitty switch is that?  Even the 30$ smart switches allows you to change the pvid of the ports.. Here is a cheap switch I got for I believe like 25$ as you can see I can change the pvid of a port.. So this is the untagged vlan that is on that port.. Which is what you would connect to pfsense port you have your vlans on.  See the ports that are in pvid 20.. That is the native vlan I have on pfsense interface that other vlans run on. What is the make and model of this switch your using?? [image: shittyswitch.png] [image: shittyswitch.png_thumb]

Thanks for your replay, this is all the configuration that we have in our sites [image: pfsense.png] [image: pfsense.png_thumb]

did you make pfsense domain localdomain.com when you set it up and call it pfsense.  That if pointing to pfsense for your dns that is how it would work out of the box.

Anyone?

We have confirmed the issue is the SG-1000 not liking the Cisco's switch being fixed to 10Mbps Full Duplex. The ISP changed their device to autonegotiate and the SG-1000 works as expected. Thank you to everyone for the assistance.

Have you tried? ifconfig eth1 | grep 'inet'

Thanks Derelict, I know other posts have basically said the same thing, but the succinctness of that answer is perfect (and perfectly understood). And I already have those two tabs open elsewhere in other windows. That was probably my biggest error (and I'm guessing traps a few newbies) about the destination IP and Port, and now that I've been using it a few days, it's perfectly understood. Cheers

You must have some upload traffic to be able to reach the speedtest site at all so it can't be blocked entirely. Check the parent interface for errors. Steve

Ahh I see, yeah figured I wouldn't be the first to think of that.  I just installed it.  Suppose the only advantage my script would have might be some additional logging of activity

Your isp "modem" should be put into bridge modem if possible.  ie pfsense should get a public IP on its wan.. This way your not double natting. If you can not do this, then its fine to double nat.. But you have to make sure you forward all traffic you might want to forward on pfsense via your isp "modem/gateway" first or put pfsense into dmz host of your isp device.  This can be done via static on pfsense wan or via dhcp reservation on your isp device.. doesn't really matter. If your going to be using pfsense there really should be nothing else connected to your isp device other ports or wifi..  All devices should be behind pfsense..  But if your going to double nat and want stuff on what amounts to pfsense wan, or internet transit network..  Keep in mind that your going to have to port forward forward if you need to access anything behind pfsense from stuff in front of pfsense on your isp device. It is just simpler, cleaner and overall better idea when moving to pfsense to not double nat with your isp device.  And if you must because the device does not allow anything else.  Then put all your stuff behind pfsense.. Get yourself a new AP, or use some other wifi router as just AP for wifi.. Get yourself a switch - hopefully smart/managed for future use of vlans even if not using them to start with. You need to make sure if going to double nat that your not using the same network on pfsense wan as lan side networks.. ie if wan is 192.168.0.x then make your lan 192.168.1.x or some other network other than 192.168.0

If you don't add firewall rules to allow it it will be blocked. Steve

If this is it then it looks okay I believe. / Unbound Configuration ########################## Server configuration server: chroot: /var/unbound username: "unbound" directory: "/var/unbound" pidfile: "/var/run/unbound.pid" use-syslog: yes port: 53 verbosity: 1 hide-identity: yes hide-version: yes harden-glue: yes do-ip4: yes do-ip6: yes do-udp: yes do-tcp: yes /code Thanks.

That's a whole lot of low priority stuff dragging you down! From searching around it looks like php-cgi comes from lighttpd which is the webserver for the webconfigurator. So if you don't have a need for multiple simultaneous instances: System / Advanced / Admin Access > Max Processes = 2