This thread hasn't been updated in a while, but worth a look:http://forum.pfsense.org/index.php/topic,7668.0.html

Have you enabled a firewall rule to allow it to be pinged?

As for access to the 192.168.2/24 network from the 192.168.1/24 network, do you need that?  By default the pfSense host will be NATing all traffic from 192.168.2/24.  If you want to route instead you'll need to disable NAT.

Could it be that your WAN and LAN cards are defined to be on the same subnets what confuses the switches?

@cheesyboofs:

Not strictly true as you can force a client to a specific IP then lock down via firewall rule as to what that IP has access to, But I think the point has been made.

Well, I'm using 1.2 and 1.2.1 and my experience differs!

My laptop's OpenVPN endpoint:

6: tun0: <pointopoint,multicast,noarp,up,lower_up>mtu 1500 qdisc pfifo_fast qlen 100
    link/[65534]
    inet 192.168.102.6 peer 192.168.102.5/32 scope global tun0

My client's LAN firewall rule:

(ie. block, protocols = all, source = my OpenVPN ip etc. )

This should block everything where source is my OpenVPN IP, but I can do whatever I like!

lt-bern ~ # telnet 192.168.100.9 25
Trying 192.168.100.9…
Connected to 192.168.100.9.
Escape character is '^]'.
220 mailserver.xxx.com ESMTP Exim 4.63 Fri, 24 Oct 2008 15:47:03 +0100
^]quit

telnet> quit
Connection closed.
lt-bern ~ # ping 192.168.100.1
PING 192.168.100.1 (192.168.100.1) 56(84) bytes of data.
64 bytes from 192.168.100.1: icmp_seq=1 ttl=127 time=74.3 ms

--- 192.168.100.1 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 74.316/74.316/74.316/0.000 ms

Perhaps there's something I've overlooked?</pointopoint,multicast,noarp,up,lower_up>

hi guys,

I achieve block ultra surf through this rule in my LAN interface: reject all protocols, source LAN Subnet, source ports all, to 127.0.0.1, any destination ports on default gateway. I hope help.

see ya.

No disrespect intended but you have also learned how to post in a way that we can all read as well  ;D

It's very common for dc and xl nic's and i would recommend you to switch nic's to intel.

you can get the ip if some one use P2P. But you need to Enable UPnP Service on Pfsense. Go to Service and then Enable UPnP. And then if you want to check anyone using P2P or not then go to status and click UPnP. You will see details about these " Port  Protocol  Internal IP  Description ". I hope you can catch those people who use P2P.

SOLVED IT!
Note to self– don't let other people login to my pfSense box!!!
This install is in a fraternity house, and following the instructions from XBox support, one idiot unplugged my pfSense box.  After I finished yelling at him for being such an idiot for an hour or so, I logged on and checked things out. Oddly, I noticed the ping had stopped.  I ask the other 2 guys who have login rights about it, and I figured it out.
One of them entered "ping" under the "Command" option in diagnostics instead of using the Ping function.  Since the command didn't return any data on that screen, he simply closed his browser and logged on again. Ergo, the ping command kept running in the background, doing exactly what it was told to do.
Additional note to self -- next time, login via a shell and run top before running to the forums.

Thanks for your feedback.
-E.Drav-

Hi, tried both, bandwidthd shows bandwidth history, liked more diag_new_states visual integration but it only shows data transferred (Packets/Bytes) and not bandwidth usage, is this correct?

Thanks for the reply.  Unfortunately I still have not been able to get this to work.  Let me give a little more detail.

Pfsense - LAN = 172.16.0.1 WAN = unique public IP
Endian proxy - LAN = 172.16.0.2 WAN = unique public IP

The proxy works on port 8080.  I tried passing all port 80 and 443 traffic to the proxy IP with destination port of 8080 (on the LAN subnet).  That did not work.  I even tried adding a third rule after the port 80 and 443 redirect rules giving all other ports access.  All I am trying to do is redirect Web traffic to port 8080 on my proxy machine.  Sounds easy but I am missing something.  Any ideas?  Thanks.

Recheck gateway settings + from a similar problem with subaru.com it was a broken wireless AP.

Syslog uses UDP 514. I've tried it on pfSense 1.2.1 and it has worked fine for me. I thought it was funner to write a basic Syslog server in PHP and make it run as a windows service rather than learning a pre-made syslog server.

I kind of wonder if some of the SysLog servers have a hard time with the messages? Since they don't follow the spec as mentioned here.
http://forum.pfsense.org/index.php/topic,12143.0.html

If any customers on the Centipede site would like to help test the autobackup, open a ticket and I will send you a username and password. It's working nicely now, we're putting the finishing touches on a few areas but it works well.

Experienced same problem today. Hopefully everything is still working.
I kindly request any help from experienced users.