Yup. Upgrade. 😉

You will see that port 8080 traffic blocked in the firewall log though as I suggested some time ago. That will confirm the issue. Or just add the rule and restest.

Steve

Yeah its quite possible he asked the local IT support at his office.. And he brushed him off by dropping a name... Guess he is lucky he didn't drop say palo alto or the like as the name - or maybe this guy would be down 20k+ vs the 300 and in the same boat ;)

Not sure where these users get the idea that security is easy, and or push a button.

There is no device you drop into or in front of your network be it 300 or 10k in cost that makes your network secure - NONE... No matter what firewall you buy, no matter what software you run.. All just tools, how you use the tools requires atleast understanding the basic concepts of what the tool does and how to use it..

And you need to know which tool you need as well, or your going to be pounding on that screw with your 300$ hammer screaming this hammer freaking sucks!!

Ohh now i already solve it( Common i untick do not allow ip..) and it work.

@turnbulld said in Status and checks...:

That's for sure the SNMP info.

Noop.
But the same source.
It's Munin digging into the system using whatever is needed to present stats.
The plugins are written in ... perl, C, bash, etc.

@turnbulld said in Status and checks...:

As with what you linked, there is nothing specific to the load balancer which I find a little odd.

Probably because I do not have multiple WAN's, so I didn't activate 'load balance' related Munin plugins.

@turnbulld said in Status and checks...:

list of commands that are the source of the data on the dashboard.

The code is the source - it reads like a manual.!!
The widgets on the dashboard are just PHP files. Everything is in there - here /usr/local/www/widgets/widgets/....

i will try also to clone the MAC address from the providers router to pfsense pppoe interface

Yes you can. Be sure to snapshot it if you need to go back though, you cannot downgrade in the same way.

Steve

Hmm, only time I've seen odd behaviour a little like that was when the firewall could not open a state because all the IPs and ports matched. So as though it tries to open several SSH connections to the same internal IP using the same source and destination ports. Which would never normally happen with SSH. The client would normally use a random source port for each connection and the remote side NAT device would usually randomise it anyway.
It would be worth running a packet capture at the remote side to see what actually happens though.

Steve

I've seen that before. I usually open them up, grab my multimeter and test each cell under load and replace the bad one(s). Sometimes they can hold a full charge but die as soon as they're under load.

That file could only be stuck if somehow the notifyqueue_running lock is stale or not being released. Maybe something in your notification settings is broken and it can't get messages out.

i found in the end it was just too confusing for me......

Ha. Classic!

@stephenw10 said in pfSense 2.4 wont reboot after interface removal - route cannot be added, network unreachable:

Do those tunnels come up correctly after bootup is complete? If so that might just have to be considered log spam if those fqdns actually need to be resolved.
Otherwise you could just use IPs there or maybe add static entries for them.

The endpoints are on dynamic IPs, hence the need for hostnames. They resolve to dynamic ones.
The tunnels come up, I would consider it log spam.

well i can't set MTU to 9000. raspberry does not support MTU greater than 1500, and i have one with kodi that i use with my NAS and one configured as ntp server

@stephenw10 Managed to solve it myself. I don't know how I missed this before when I created the VLAN's I created them on igb2 rather than igb1 which is where my LAN network resides. I changed that and now everything is working fine as it was before I started a fresh configuration. Thank you for the suggestions anyway!

@zyntec724 said in Can't connect to steam network through steam client:

pf box

Could be simply because your Download server is set to a different location and basically it's proving so hard for steam to pull out the files from the remote server. Go to the setting and change the Download Location or Server to your nearest location. I hope this helps. To resolve this you must check this https://validedge.com/could-not-connect-steam-network/ and if you got the solution.

192.168.xxx.0/24

xxx took some research to find one that was not on Google as a default that some company uses or has ever used.

Ah I see what you mean now. That's obviously fine. ☺

It's very hard to judge peoples level of experience based only on a few forum posts. Which can easily lead to either coming across incredibly patronising or totally incomprehensible. I've done both!
I had visions that you might be just using some random public subnet based on a Google search. Glad to see you're not. 😉

Steve

@stephenw10

315aa528-656f-4437-8b6e-ba71867c2784-image.png

Disable any hardware off loading you might have.

Check for other errors on that interface. Maybe a bad cable or failing NIC etc.

Steve

Even on an older version it should not just restart for no reason. If there is nothing logged there to indicate a reason you should open a ticket with us here:
https://go.netgate.com

Steve

@Gertjan said in Sending logs over Telegram:

When you SSH into pfSense you are root (admin).

Funnily enough, I actually have a regular user account I use for creating my own hodge-podge VPN, which is restricted to port forwarding only. (I use sshuttle, which requires Python, and since pfSense doesn't have Python, I port forward to my NAS and then use sshuttle against the NAS)

As for the removal of clog, thanks for the heads up.