If a burst of bandwidth is a problem, then traffic shaping may be in order. But it would be nice to know what is causing it. Tricom_2 shows a reduced mirror of the incoming bandwidth, indicating something like ACK packets. If this is the case, then it's a TCP stream.

If you try to sniff the packets then all you'll see is encrypted data.  You can look at Squid and SquidGuard logs to try to get any information but I think you'll be sniffing the LAN and WAN ports instead.

Hello Do you have the opportunity to test with a computer on each interface (PC on WAN - pfsense - PC on LAN) and have some iperf or similar tests between the two PCs  (in passthrough and in firewalled configuration) ?

Put some rules on them.. Unlike lan opt interfaces have no rules when created so no access.

It works since it uses the default gateway to exit. The LAN interface ip can go out routed and natted like any other lan host ip. https://forum.pfsense.org/index.php?topic=115870.0

What is the limit of hosts to be connected through pfsense or maximum bandwidth handling …......

@Chrismallia: for UTM maybe checkout untangle ? It has zeblo for web filter  I believe fortinet also uses zeblo Thanks.  We used IPCop long ago, then Untangle, and now pfSense.  I'm trying to get a sense of how it compares to established companies.

Hi. You yourself have answered the question in Excel form. :) Regards

Thanks for pointing that out, I have obviously overinterpreted something I read somewhere.. However, then the question morphs into a different one. The certs are in the 'all' export and possibly in the 'system' part? However a lot of other stuff will get imported with 'all' that I want to alter and also the number of NICs (but not interfaces - a number of VLAN interfaces) are different on the two boxes, need to edit something here then I guess. One piece if info that may be useful is exactly how the xml is imported, are info superimposed or are every section present in file type (all, or parts as chosen) only overwritten? For instance if sections are empty in backup (to be uploaded) will the resultant config then still have what was in that place in the system? I guess it makes most sence that all values are overwritten, so I probably need to edit uploaded file. I'll do some testing myself, I can always reset config at this early stage of the config. Thanx,

@louisg00: Here is the amazon link: Thank you. This is very helpful. I have edited your initial comment to remove the link since what the protectli is doing is against our terms of use. https://doc.pfsense.org/index.php/Can_I_sell_pfSense

What makes you think this is a pfSense problem?

Alright, it is now working 8) Although I'm actually not sure which step fixed it. 1. I read some more about configuring, and watched some really good guides to getting through the install, and getting to the webgui. 2. I reinstalled pfsense, just to be sure i didn't mess something up from first round. 3. After  the installation was complet, I was again greeted by no Wan or Lan address. I had left both lan and wan cable in. 4. Assigned interfaces. Assigned em0 to wan, em1 to lan. Nothing 5. Assigned interfaces again. This time em1 to wan, and em0 to lan. Nothing. 6. Went to our ISP device. Which looks like a router. Cable from the wall, four Ethernet ports, wireless etc. But I don't see how it can be doing router duty now, since my freenas has been assigned a 86.xx.xx.x DHCP4 ip address, and my frinds asus router has a 85.xx.xx.x address Unplugged the cable to my pfsense box, aswell the cable to my friends asus router. Then plugged my pfsense box into the ethernet port the asus had. Nothing. 7. I unplugged both wan and lan cables from my pfsense box, and the assigned interfaces again, this time with auto. It detected uplink on both. But nothing. 8. Went back out and put the asus routers cable back in the ethernet port it had in the beginning. And reconnected my pfsense to another ethernet port. 9. Then when I came back, it had obtained it's (public?) 86.xx.xx.x address, kicked out a lan address. And I was able to go to webgui. Yay :) I'm very happy that it works now. But I would also like to know why it didn't work in the first place. Was unplugging and re plugging the two routers simultaneously the trick? Or that, and a reassignment of interfaces? Also thanks for the help and input :)

If that is the case, why are LRO and TSO even displayed as options that could be flipped? They (the developers) don´t know what hardware will be in the game including the NICs and there fore it might be better to turn it off by default but able to enable it if needed matching to the right hardware, case or situations. Do not uncheck this option unless directed to do so by a support representative That only means that it would help perhaps in some rarely cases and this should be only set or turned around if a supporter is telling a customer to do it. Since I'm on an SG-4860 with its Intel NICs, I assumed I could turn all those "Disable Hardware" options off and did so.  Only now that I'm reading the book do I see I was wrong. Then you should not do anything like this, because this SG units from the pfSense shop came with a pre-tuned pfSense system and they (the developers) know this hardware to 100% and what is going on with its tunings.

@doktornotor: What alert/notification/error? If I'm trying to set that "private key" which I shouldn't be able, I would expect an error/alert message. not only I don't get that a new default webConfigurator certificate is being generated and assigned to be used - why?

Thanks Fabio72…While I get this going I have snort running on my VPN and wan...I want to get to PfBlocker in the long term but today I am still using OpenDNS. While not private I think I am getting some extra security. I need to work out how to get PfBlocker working on my LAN and multiple VLANs. Thanks again for he help...