Everything is working fine :D
I only had a problem on the ubiquiti APs: SLAAC assign duplicated IPs on bridge interfaces inside the AP causing ARP loops. Disabling ipv6 support in the AP solves the issue
Any downside in using such configuration ? If we can use PF sense as a PPPoE server also, then it will help us to avoid another thing (Box) as PPPoE server.
than as stated couple of times already put in a host override for the fqdn you want to use to access your server and point it to the private IP of your server.
"Wait five minute or a restart of pfSense may require
You can test in any browser.
All Done !!"
I have over a thousand people connected at the minute. I will reboot at a quieter time and report back.
did some more looking arround.
I've implemented the following.
https://forum.pfsense.org/index.php/topic,17243.0.html
https://forum.pfsense.org/index.php?topic=51786.0
It looks like it will probably resolve the issue.
If you don't do layer3 routing on your cisco just connect a trunk of tagged vlans to pfsense, configure the vlans on the parent physical interface and create one interface for every vlan. Assign ip according to your subnets.
So your saying your not seeing gig? Do you have gig wan? Unless your wan is gig and your only seeing like 800 or something I don't see what your trying to squeeze out here?
you got some sort of asymmetrical issue if your not seeing the full handshake and then traffic would be my guess.
Setting state to sloppy is not something you should have to do.
Can you layout your connectivity - how many vswitches? How many physical interfaces - what is the setting do you have on the vswitch that has tagged vlans?
I tried with Group ACL method but not able to block for single IP or network.
Then you're doing something wrong. It does work. I use it that way myself. Maybe you have a problem with the order the ACLs are listed in?
btw this really should be in the Cache/Proxy forum.
