@markdudov It allows a remote client/peer that has connected into the wireguard "network" to also use that network's internet connection.

This could be for a variety of reasons. Most common is that if the WG tunnel is configured to force all traffic through it then without this rule, you will not be able to access anything on the public internet. The remote peer will then appear to be on that same WG network even though it is connecting into it from somewhere entirely different.

@belrpr said in NTP server stopped working:

Hi I use a tool called NTP Tool

Hummmm.
That does ring a bell.
Stop using that tool.

Use another 'tool'.
Like this one :

3eac78e8-b452-4fb8-a02e-91021a01f687-image.png

( my French GUI Micorsoft Windows classic Time settings - but you have the same, as the info is valid since windows 95.)

I just synced with pfSense = 192.168.1.1 :

0e87b656-b9e9-413e-a1b9-aa318e431579-image.png

so my tool works.

Yup, if you log into the webgui as soon as it's available but before it's finished booting you might see that message temporarily.

Yes it will need a route via the management interface so add a gateway if one doesn't exist and set it default.

@stephenw10 awesome, will do! Thank you kindly!

@stephenw10 Hey ya I did not test it long as my old home pfsense router failed I brought this one online quickly and did consecutive updates to the latest at 23 though I did look at the screen and all seemed normal at 24 all seems normal at boot normal menus but after some hours this showed up. Again all seems normal network side and you confirmed this just has to do with the monitor/hdmi hot swap so not too worried now.

Looks like you also have LLDP and ntopng. Are those enabled?

If it's exactly every hour I'd look at the crontab and see what's being triggered. Or just at the system logs which should show cronjobs being fired.

@stephenw10 Thank you for your help. The Quality graph is exactly what I was looking for!

@stephenw10 @Gertjan thanks, I found that the problem is an hardware problem. I will open a new case about backup and restore.

see you later :)
Mauro

@stephenw10 thanks for the support!

@JonathanLee said in Netgate 2100 inexplicable slow internet problem:

What’s your MTU set to?

default 1500.. I also tried to lower it but without success

Not easily. Not as far as I know at least.

Ah so in Status > Interfaces?

Not show the link speed/duplex is quite common for N-base speeds. Is i actually linked at 2.5G? What do the linl LEDs at either end show?

What pfSense version are you running? What firmware version is on the NIC?

As far as I know the X550-T is one of the few NICs that has been shown to link at 2.5/5G so I'd expect it to work.

We use UDP Broadcast Relay for SSDP control which in our experience, the other packages had difficulty handling.

@stephenw10 Ok, thanks

Yup, you don't need support to get the firmware images. 👍

https://forum.netgate.com/topic/186556/how-to-run-pkg-upgrade-from-diagnostics-command-prompt/20

echo /etc/rc.initial >> ~/.tcshrc.local

Strange, it was doing it middle of the night, no one was using internet or was logged in to the firewall....

No errors sice then, all seems to be good

@dotgate
I'll add a little on my own
c) there is no problem activating these options (if the device allows it)

https://docs.netgate.com/pfsense/en/latest/hardware/cryptographic-accelerators.html
https://man.freebsd.org/cgi/man.cgi?qat

however, version 2.7.2 does not include the core modules of the QAT driver
(Intel QuickAssist Technology (QAT) [Plus only])

But, if you build your Freebsd 14.0 kernel on any test device, you can download this driver manually into the PF kernel (by copying several files)

1928c0d4-207f-4416-b8ac-1854b2e61e0c-image.png