I'm quite sure that syslog traffic follows the normal routing rules. If you're telling pfSense to log to 192.168.3.3 , and ie. OPT1 has the IP 192.168.3.1/24 , then the syslog packages will be sent out of OPT1. But all traffic to 192.168.3.3 would go out of OPT1 (best route) , not only syslog trafic /Bingo

@gab-rc14 said in Help!! WAN DHCP is not working trough my ISP router as bridge pfsense: and assign it inside the range of my IP Public (73.124.X.X) when I assigned this I tried to do ping or tracertroute to 8.8.8.8 but nothing responded So you just took an IP, belonging to your ISP, that is probably assigned to a fellow-client, and you tried to use that. ( while doing so the connection of this fellow probably also died ). @gab-rc14 said in Help!! WAN DHCP is not working trough my ISP router as bridge pfsense: Hi, I tried to configure the my ISP Netgear router SW as bridge, but when I tried to set up the interface wan by DHCP I didn't get a correct IP. it took 0.0.0.0 and the default gateway in the range of the 192.168.0.X. It could be anything. First, look at the paper from your ISP that explains how to set up a typical router device as a bridge. Does your connection actually accepts bridging devices ? If so, is standard "DHCP" as described in the RFC used ? Or did your ISP use some "home made protocol" by adding DHCP "options" that the client should sent ? Etc. A know issue us : when the WAN NIC, from a pfSense point of view, comes up, the DHCP-client is fired. But to early, the bridge isn't build yet, and you obtain some RFC19819 IP. This : InterfacesWAN (driver) > DHCP Client Configuration > Options = Advanced Configuration can be used to solve timing issues, or to exclude RFC1919 answers, etc.

Pretty convinced our issues are gone with the new card. Hell we even get better speeds in and out. Thank you to all on this board who help us out.

Btw : the image above isn't acutal any more. 'submission' is phasing out. It's all port 465 now, or smtps. The protocol setting for 'smtps' connections can be set to "Auto" as Outlook 365 will figure it out. Omg who is this guy? This is so wrong on so many levels ...

@stephenw10 Sorry I meant pfSense WAN queries not being displayed in OpenDNS Prosumer. I think this version only works with a roaming client installed on the machine and not properly on the network.. [image: 1599207494288-opendns-prosumer.png]

OK I have done it like this and all work fine. Regards and thanks, Ramsés

Looks like there is support for ET1310: https://www.freebsd.org/cgi/man.cgi?query=et [2.4.5-RELEASE][admin@2220.stevew.lan]/root: kldstat -v | grep pci/et 146 pci/et Never used one myself. Steve

Oh, yeah just use express card then. Almost certainly not restricted in the same way.

Does it come and go, or remain constant? I'm having a problem which sounds similar, but it comes and goes. Specifically, while I have user activity on my network everything looks pretty normal, but after user activity stops, the bandwidth usage on my WAN port increases significantly, while my other (interior) ports remain idle. Once user activity resumes, the excess load continues for a little while, then vanishes. Maybe this is unrelated, but I just thought I'd ask. Here is the thread for mine: https://forum.netgate.com/topic/155591/pfsense-using-unreasonable-amount-of-bandwidth-while-idle/66

@kiokoman said in command line to add new host/net in alias: it will not survive a reboot or a reload if you don't put that inside the config.xml Oops forgot about that, there is a bulk import if you need to add a load of entries. Firewall -> Aliases -> Bulk import You might be able to do something a bit funky like pfBlocker does with URLs, not sure how often they fetch the list. [image: 1599140735236-screenshot-2020-09-03-at-14.44.08.png] [image: 1599140960564-screenshot-2020-09-03-at-14.48.44.png]

@DaddyGo Thanks so much will take any help I can get..sent you a DM :)

I used these two references to create no problems for my FreePBX ... https://www.youtube.com/watch?v=QFk5jX-oeSo https://docs.netgate.com/pfsense/en/latest/nat/configuring-nat-for-a-voip-pbx.html The only difference I made from the above is I used a WAN floating rule.

Well, i know my replies have been lacking here and i hate leaving topics unresolved, so some further information that might help others. As it stands, there are two known issues. 1). Not causing my latencies or packet loss, but still needs fixing - my upload channels, i have 2 bonded channels, i should have 4 - the ISP is investigating the cause of this, the problem this causes me is two-fold. First of all i cannot reach my 36Mbps upload speed because i only have half the channels bonded, this in turn cases me an unstable connection during high uploads - I have temporarily fixed this by putting a limiter on my WAN uploads. 2). The ISPs router - the SuperHub 3 has apparently a bug in the FW which causes high latencies and random spikes (seems to have been rolling out since Feb/March), but only when used in Modem only mode and mostly noticeable with PfSense (since this is a common choice for enthusiasts) - I'm linking a topic relating to others and this issue. While this is likely to be a router specific issue, PfSense or BSD doesn't appear to help with this, if you leave the ISP modem in modem only mode and use another firewall, even a consumer grade router the issue doesn't appear to exist or at least not as often, changing the router back to router mode and double-NATting also doesn't show the symptoms, but this is not really a workable solution. So, back to my original question, is there something or somewhere in PF i can log anything else that would be useful to anyone, to see if the OS or firewall itself is adding to this, perhaps a driver issue? (I am guessing, but trying to offer help at the same time). Side note - last night i rebooted my router and i've yet to have the same issues, based on posts in the link below, this can sometimes be true for up to about a week. This suggests the modem is getting full and unable to clear itself, in modem only mode there is limited options, in fact after about an hour, i lose access to it completely on the modem IP. While i am more convinced this is all related to a FW issue in the router after additional findings, is there anything else i can do or capture to see if anything in PF or BSD is related to this? I've read a few articles that say this issue does not seem to be in 2.5, but i'll have to try and relocate those links again. The link to one of many of the ISPs FW bug, for those interested; https://community.virginmedia.com/t5/Networking-and-WiFi/Did-anything-change-with-Superhub-3-0-firmware-recently/td-p/4192831 Post 4 in the above links multiple other articles. For anyone reading in the UK, this seems to affect SH3, with FW 9.1.1811.401 and possibly the SH4 for those on Gig Both the SH3 and SH4 use Intel Puma 6 and 7 chipsets respectively, which have their own known issues, unfortunately in the UK we are restricted by the kit supplied by the ISP and have no options to buy our own modems. If nothing else i wanted to keep people informed of the progress on my issues.

@JKnott I use KVM. vtnet2 is virtual interface that is directly attach to real interface using passthrough mode (KVM). And I also check MAC table on switch. This arp is come from vtnet2, not other port.

Oh I've felt that pain!

Where? You create a connection on pfsense and your other router on some network you come up with as your "transit" 172.16.0/30 as example... What are you not getting about this.. You create your vlan right.. Create another.. Connect 2nd router to this vlan.. How you connect them physically is up to you - be it via interfaces on each device via vlan, etc. doesn't really matter. I drew it up for you - Not getting what is difficult to understand from the drawing? Replace whatever networks you have the samples I put in, add more if you want, etc.. But your drawing your trying to use this 192.168.2 as your transit.. Which you have hosts on - so yeah that not going to work!! If you want to use 192.168.2 like you have drawn.. "EVERY" device on this 192.168.2 vlan would need default route that you want it to use .2 or .1, and then a route to this 10.5.20 network pointing to the pfsense 2.2 IP if you want these devices to talk to back and forth with 10.5 network..