• Change network interface name

    4
    0 Votes
    4 Posts
    2k Views
    DerelictD

    No. They are enumerated by the operating system. Why do you care what the physical name is?

    If you have, for example, LAN on re0 and want it on re2, you can make that change in Interfaces > Assignments as long as re2 is not assigned to anything else.

  • Router-Router users not allowed through

    6
    0 Votes
    6 Posts
    651 Views
    D

    Figured it out!

    Under DHCP, I had ARP Table Static Entry ticket when assigning a static IP. I disabled that and now it works.

    Thanks for the help

  • pfSense router won't link after power off

    13
    0 Votes
    13 Posts
    1k Views
    stephenw10S

    Well we need to see what it's actually failing to do. The output you posted above looks like there is no problem.

    Steve

  • Connection Resets - Restarting packages

    2
    0 Votes
    2 Posts
    332 Views
    stephenw10S

    What sort of connection is it?

    Restarting packages is expected is the WAN goes down. You can limit some unnecessary actions if you only have one WAN by setting Disable Gateway Monitoring Action on the WAN gateway in System > Routing > Gateways, edit the WAN gateway.

    Steve

  • can't access to internet from LAN side

    10
    0 Votes
    10 Posts
    759 Views
    stephenw10S

    If you have removed the gateway from the LAN you should switch outbound NAT rules back to automatic.
    The rule you have there currently has source 'any' which is almost always wrong. It will NAT even traffic from the firewall itself which can cause all sorts of odd issues.

    Steve

  • Unable to get internet access on my LAN

    2
    0 Votes
    2 Posts
    396 Views
    stephenw10S

    What WAN IP is pfSense getting (if it is getting one)?

    It must be in a different subnet to the LAN or routing will break.

    If it does have an IP and it's in a different subnet try to ping out from the pfSense console. Try to ping an IP like 8.8.8.8. Try to ping an named host like google.com. What errors do you see if those fail?

    Steve

  • Checking for an Open Port

    11
    0 Votes
    11 Posts
    2k Views
    T

    Stealth means the packet is being dropped and their crap scan isn’t getting a rejected packet notifying them that it’s blocked.

    Steal or blocked, it’s working properly.

  • ICMP Flooding - Need Advice

    9
    0 Votes
    9 Posts
    2k Views
    johnpozJ

    I log the interesting traffic... So for starters I want to know what my IOT stuff is doing.. So I log their vlans for outbound traffic.

    On the wan - yeah it can be noisy.. But I do like to see directed unsolicited traffic, so I log just that SYN's to my wan IP.. Its more just curiosity sort of thing... Like for example when all those routers got taken offline like a million of them in DE alone shitton of noise being seen on 7547.. Yeah I was seeing that as well ;)

    Your typical noise ports are the common 22, 23, 3389, 1433, etc.. All well known script/bot traffic looking for shit to exploit.. Its noise - but it is interesting to see how much of it gets dropped..

  • 0 Votes
    14 Posts
    1k Views
    S

    yeah were are using the little ones with no fans that work really actually well.(j1900) started out with some pc that had pfsense on them but they just offered more for less for as having a appliance firewall, i cant have any complaint they have been great and have worked for years without problems. I am guessing i now have to learn kubernetes. It seems like a solution to the problem.

  • Traffic Graph Filter Remote

    2
    0 Votes
    2 Posts
    184 Views
    jimpJ

    Local is the host (source or destination) in the same subnet as the firewall on that interface. Remote is the host that it is talking to. If you access a web site, the IP address of that web site would show when in that mode.

  • user removed from wheel group after reboot

    6
    0 Votes
    6 Posts
    1k Views
    T

    See this recent thread for additional detail.

    https://forum.netgate.com/topic/137939/bypass-su-sorry-on-pfsense

  • Slow network speeds since not using external switch

    4
    0 Votes
    4 Posts
    727 Views
    M

    Thank you for your input Grimson and mhertzfeld.
    The reason for removing the switch was twofold.
    I am trying to minimise energy consumption and I was curious to see what could be achieved using just the pfSense box without a switch. I tend to always try to find ways of improving things, sometimes more successfully than others.
    I might just use the switch again.
    I actually didn't want to implement vlans at all, but the switch is a layer 3 3com/HP switch and perfectly capable of doing that.

    Kind regards

  • Bell Fiber 1gb/1gb - Slow speeds with XEON processor

    8
    0 Votes
    8 Posts
    738 Views
    J

    Thx! Yea, did what you suggested and you're exactly right. It's the card.

  • Cannot get NAT to work

    2
    0 Votes
    2 Posts
    379 Views
    M

    Never mind. Found the problem.

    I'm trying to NAT to a host that's also used in HAProxy. Under HAProxy/Backend/advanced setting, I have turned on Transparent Proxy (So that my logs shows the correct incoming IP).

    This messed up NAT. Turn Transparent Client IP off and NAT works again.

  • Vtech voip phone doesn't work with pfsense

    33
    0 Votes
    33 Posts
    3k Views
    C

    @stephenw10 says I can't start a chat with you unless you initiate it.

  • 0 Votes
    6 Posts
    655 Views
    T

    OpenNMS is easy to install and set up on a CentOS image. I use it all the time. If you set up SNMP on all of your devices, you'll get a lot of good data from it.

    Any open source NMS package will do this, a few have been mentioned already on this thread. OpenNMS will also pull some fantastic metrics from pfSense once you set up SNMP on it.

  • libpkg.so.4 error

    8
    0 Votes
    8 Posts
    1k Views
    S

    Thanks guys for your valuable input.

    Regards
    Scorpoin

  • Realtek Driver Slow speed LAN ports after Realtek driver

    19
    0 Votes
    19 Posts
    2k Views
    stephenw10S

    So you stopped using the driver from Realtek you linked in your first post?

    If so you're hitting the watchdog error that is known to help with.

    Steve

  • Bypass "su: Sorry" on pfSense?

    10
    0 Votes
    10 Posts
    8k Views
    jimpJ

    I replied to the same issue on Reddit, so I'll copy my reply here, too:

    On FreeBSD, su requires that the user be a member of the wheel group. But there isn't a way to put a GUI user into the wheel group, so you have to use sudo instead.

    You could work around that by manually editing the groups file in the OS or hacking on /etc/pam.d/su to use the admins group instead, but why bother? The changes would be wiped out on the next update. Use sudo instead.

    Using su also requires you share the credentials of the root/admin account which goes against best security practices.

    Using sudo is best in the context of a firewall. Everyone uses their own account, their own password, and can have customized permissions per user.

  • Cron job: /etc/rc.filter_configure_sync

    4
    0 Votes
    4 Posts
    984 Views
    T

    @jimp Thanks.

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.