than as stated couple of times already put in a host override for the fqdn you want to use to access your server and point it to the private IP of your server.
"Wait five minute or a restart of pfSense may require
You can test in any browser.
All Done !!"
I have over a thousand people connected at the minute. I will reboot at a quieter time and report back.
did some more looking arround.
I've implemented the following.
https://forum.pfsense.org/index.php/topic,17243.0.html
https://forum.pfsense.org/index.php?topic=51786.0
It looks like it will probably resolve the issue.
If you don't do layer3 routing on your cisco just connect a trunk of tagged vlans to pfsense, configure the vlans on the parent physical interface and create one interface for every vlan. Assign ip according to your subnets.
So your saying your not seeing gig? Do you have gig wan? Unless your wan is gig and your only seeing like 800 or something I don't see what your trying to squeeze out here?
you got some sort of asymmetrical issue if your not seeing the full handshake and then traffic would be my guess.
Setting state to sloppy is not something you should have to do.
Can you layout your connectivity - how many vswitches? How many physical interfaces - what is the setting do you have on the vswitch that has tagged vlans?
I tried with Group ACL method but not able to block for single IP or network.
Then you're doing something wrong. It does work. I use it that way myself. Maybe you have a problem with the order the ACLs are listed in?
btw this really should be in the Cache/Proxy forum.
The SCP permission works just fine with 2.3.3 and later. Of course if you don't have permissions to the directory or files as that user, you won't be able to download files from there.
