@patient0
Hi,

Thanks for the your information.

Now we tested with intel NIC. Its working now.

@KenCapital said in Constant WAN Drop:

but was getting packet loss on my router

The very first low bud 25 $ (?) router (ok : give it a name : TP-Link or comparable) you can find in "wallmart" (example of a well know store in the US, others, with other names, exist elsewhere) will handle a gentle 1 Gbit/sec just fine.
Install pfSense on very mediocre hardware, and it won't do any better.

You have a "Starlink" as a possible and only uplink ? Don't stay ignorant, it's s easy to find out. Do a tracert to microsoft.com, note down all the IPs you've linked trough, and then discover who manages these routers. If Starlink used, you'll find them.
Your first mission : determine what can Starlink really offer.
Then : same question again and this time : go Youtube, and look at one or more of these many thousands of hands on honest comparisons video's to discover the hidden advantages and real day to day usage story.

Imho : A Starlink connection , if nothing else is possible, it will do just fine, even with package loss and all that.
It's after all : that - or nothing else.
But sharing a starlink over several (many) homes... serious ?

Yup the 8200 does not have eMMC.

Mmm, almost certainly a link negotiation issue then. On igc NICs the options there are limited because it can only link using auto-negotiation. You can set the available speeds it negotiates at which is what the speed setting in the gui does.

You may need to reboot twice to seen that set since it only gets; applied at boot.

However, yes, there is a bug on some systems where the default values are always used. It only happens on some filesystems where a race condition occurs. It's fixed in 25.03-Beta.

When using RAM Disks I usually start out at double the default values. 1G + 2G is very large. If you have hungry packages though you may need large drives, but not that big!

Yes, you can set it as a gateway. You don't have to route anything to it if there's no subnet behind that peer to route to,.

@Zeldar We believe one of our users is also experiencing the same behavior with their laptop reaching out to the FW and I just verified that the "Killer Performance Driver Suite UWD (3.1222.7103)" and "RivetNetworks.KillerControlCenter (3.1624.1026.0)" applications are installed. In your case, did you keep the driver and remove the intelligence center? or was there only the single app.

@AndyRH said in BGW320-500 set up without passthrough....problems?:

I am looking into a total replacement. If it pans out I will p

thank you @AndyRH this is essentially what I have done, I was just stunned that my BGW210-700 wasn't ALREADY in passthrough. this just seems wrong is all. No issues to report so far but it makes me uneasy not to have the modem as "dumb" as possible

@Laxarus You show an IPv6 address on your WAN. You'd use that for the VPN. Also, it doesn't have to a OpenVPN. I assume Wireguard will work over IPv6. The question is whether VPN.AC supports it at the other end.

L2TP can only use Radius or local auth as far as I know. So you need to use NPS to interface it with AD (LDAP).

Unless you redeployed the VM it should not have changed. Simply changing the upstream device would not affect it.

Nice 👍

Many thanks John. In my situation I have one physical interface and one vpn. What I have found is that after a merge of two pcapngs that the term frame.interface_id is either 0 or 1 depending on whether frame is for physical or vpn respectively.

@stephenw10 Ohhhhh! I did remove one, but not one assigned. Is it possible an unused NIC being removed would cause this?

Is this the same problem with my non-Raid setup also?

Current NDI - as in non-RAID, single Hard drive: [NDI - removed]
I guess I can experiment and reinsert the NIC and try again.

Again, thank you for the information and time you are giving.

ok, further digging, looks like with the Kea DHCP; forwarding of hostnames is ignored: https://www.netgate.com/blog/netgate-adds-kea-dhcp-to-pfsense-plus-software-version-23.09-1

guess all my issues are solved then. thanks!

When the installer fails it should drop to a command prompt. Try running: geom disk list

Since you are booted from USB it should show da0 and da1 where one of those is the eMMC device (which is USB connected internally). If it doesn't you may have a bad eMMC.

Is it still in warranty? Open a ticket: https://www.netgate.com/tac-support-request

If not you can always fit an NVMe drive: https://docs.netgate.com/pfsense/en/latest/solutions/netgate-4200/m-2-nvme-installation.html

@SteveITS said in Can't ping the same IP from multiple devices:

I think you are right

I tried it with both Senses and with FreshTomato, without any special OutboundNAT, the outcome was every time the same.

Yes, I'd like to see that. I'd also particularly like to see the configuration history after it fails. The only thing I can imagine so far is that is fails to detect ena1 and somehow assigns all interfaces to the only remaining NIC.

But if that did happen it should drop to the interfaces assign prompt because the config contains interfaces no longer in the system.

In the config you uploaded though both WAN and LAN are assigned as ena0 and that shouldn't be possible.