• Device shutting down every night

    11
    0 Votes
    11 Posts
    336 Views
    stephenw10S

    Check the BIOS/Coreboot version. It's probably waaay out of date and that's about the only thing you can do.

  • 0 Votes
    1 Posts
    123 Views
    No one has replied
  • 0 Votes
    11 Posts
    376 Views
    M

    @stephenw10 the duplicate echo, is with the stable configuration. current. what works. I believe is an ISP issue.

    When i had the wan gateway on the rules. never actually saw duplicate reply, but again things were unstable and just occasionally crashed.

  • Packages not available

    2
    0 Votes
    2 Posts
    102 Views
    D

    This is resolved, had Netgate TAC register the device ID.

  • Log firewall rules but dont store locally

    6
    0 Votes
    6 Posts
    234 Views
    stephenw10S

    I would certainly expect to. I've never had any issues enabling RAM disks. Just make sure the size you set for /var is at least larger than it's currently using.

    There are some packages that won't work with RAM disks or at least not without significant tuning. Snort or Suricata primarily.

  • Migrate from CE to plus

    3
    0 Votes
    3 Posts
    191 Views
    S

    @Sealr0x If you have a complex setup...VLANs, etc., Netgate will convert your configuration to the new model for you (free ticket).

    One note though, when you reassign interfaces, click the bottom Save button before you click the Apply button at the top of the page.
    https://redmine.pfsense.org/issues/14591

  • Centralized management

    3
    0 Votes
    3 Posts
    306 Views
    stephenw10S

    Yet...

  • Rebooting WLAN AP brings back Internet

    14
    0 Votes
    14 Posts
    553 Views
    M

    @stephenw10 gotcha. Thanks for taking the time out to explain. Much appreciated.

  • 0 Votes
    6 Posts
    234 Views
    stephenw10S

    The txt file is copy/pasted from the logs page and it's still set to the default 500 entries which isn't enough. You can set that to display up to 2000 entries. If that's not enough you can see the full log in /var/log.

  • CVE-2024-3596 blast-radius

    2
    0 Votes
    2 Posts
    289 Views
    M

    @henniee

    You don't need to worry if:
    1- you are using EAP authentication (e.g. IPsec, 802.11x) which is not affected.
    2- if the traffic never leaves the firewall (FreeRADIUS server on pfSense software, NAS/Client is on the same device)

    For the time being, you can set this in your radius.conf, but note that this may bring issues depending on your NAS devices freeradius implementation.

    require_message_authenticator = yes limit_proxy_state = yes

    Note current best practices dictate protecting RADIUS traffic by tunneling or limiting network access (e.g. using a private/secure link for RADIUS) which also limits potential exposure.

    You can get more details in the following links:

    https://www.freeradius.org/security/
    https://www.inkbridgenetworks.com/blastradius/faq

    To report vulnerabilities, go to https://www.netgate.com/security

    This is not an official answer from Netgate or from freeradius, I'm just a regular user.

  • This topic is deleted!

    1
    0 Votes
    1 Posts
    10 Views
    No one has replied
  • Two people, rural location, pfSense or NAS?

    7
    0 Votes
    7 Posts
    321 Views
    A

    @Gblenn Thanks a lot for superb help :-)

  • ISP router (Nokia G-140W-F) does not have bridge mode

    3
    0 Votes
    3 Posts
    1k Views
    R

    Re: ISP router (Nokia G-140W-F) does not have bridge mode

    This router actually supports bridge mode. But ISP should make configuration change on own side to make it work.
    Under Network Lan menu you can switch one of four ports to bridge mode and under WAN menu delete Internet related VLAN configuration. After you have to set same Internet vlan on firewall interface.

  • This topic is deleted!

    0
    0 Votes
    0 Posts
    8 Views
    No one has replied
  • How to block delete action for web Gui user?

    3
    0 Votes
    3 Posts
    253 Views
    GertjanG

    @Wkrenski said in How to block delete action for web Gui user?:

    ... but she ended up deleting the area by accident. Would it be possible to disable the delete function in the zone?

    As a system admin, ones in a while you have to take more drastic measures.

    I'm using myself, as I always have some Windows PC up and running : https://github.com/KoenZomers/pfSenseBackup
    and from that day, I have automated a pfSense backup, every day. So, when you, me, or she f#cks up : no issue, the backup is there.
    There is also the Services > Auto Configuration Backup which offers the same functionality.
    For myself, if you've found out that people that just click around and don't know what they are doing, then its up to you to not allows these people access to the pfSense.

    @Wkrenski said in How to block delete action for web Gui user?:

    who inserts MACs into the captive portal

    And why not using the automac insert option ? Upon first login, device of portal client will get auto added. You still have to remove them manually, though, as this list will continue to grow ....

  • Can pfSense Support User Profiles with Daily Time Limits?

    2
    0 Votes
    2 Posts
    232 Views
    stephenw10S

    It's possible to do that using captive portal with radius accounting, yes.

    https://docs.netgate.com/pfsense/en/latest/captiveportal/configuration.html#accounting

  • pfSense plus registration "disappeared"

    3
    0 Votes
    3 Posts
    179 Views
    stephenw10S

    Send me the NDI and order number in chat and I can check it.

    Steve

  • 0 Votes
    20 Posts
    2k Views
    Z

    @Gertjan alright I will find out. Thou thanks for the help u had given me. Have a good day

  • Alexa requests not completing

    21
    0 Votes
    21 Posts
    2k Views
    C

    @guyonabuffalo I had a similar issue night before last. "Alexa, play the bridge on SiriusXM".
    She said "Ok, playing..." and then silence. What? Is the station off the air?? Tried another station but no luck.

    This morning I was working in my office and I heard about 10-15 seconds of music from the echo there where I had tried playing before.
    While I was investigating I heard about 5-10 seconds of it a couple of times.
    I restarted my firewall but still silence.
    I created a rule to permit RTP (TCP/UDP) on WAN from any to any but still silence on my living room echo,
    I reset the SiriusXM skill but still silence after asking again.
    Then I tried asking on my office echo and it worked.
    Tried again in living room but silence so I restarted the echo and then it worked.

    In the end I wonder if just restarting the living room echo would have fixed it.
    I'll may never know but if it happens again, I'll start with restarting the device, then try other devices, then reset the skill, finally the firewall...

  • Intermittent IPsec tunnel interruption between 2 Pfsense

    7
    0 Votes
    7 Posts
    455 Views
    K

    Hello stephenw10 ,

    I wanted to wait to be sure but I no longer have any disconnection from this IPsec bridge.
    When I reduced the delay to 1 hour, I no longer had this problem, but therefore no more logs :)
    So I postponed the 8 hour delay to have this cut again, but it no longer cuts!

    So too bad for the explanation, I'll look at the logs if it comes back.

    A big thank you to you for your answers <3

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.