Yeah, I did some further research on the topic, and found out the same. I am trying to find a good walk through on installing snort inline. The ones I found are older, and not at all straight forward. I found a network design I was going to implement to test with which included the use of two honeywall boxes, a router and a firewall distro. I couldn't get it to work. So basically I am trying to see what I can do in the time I had, and I was hoping that pfsense might work. Thanks Eckman

Hrm, now the problem gets really interesting. I just dumped the card into a Window machine and everything is running fine. It is now appearing more like there is some other issue so I'm going to try recompiling the kernel using the latest rl(4) driver from the FreeBSD 7 RELENG_7 branch as there was a bug involving bus_dma(9) and rl(4) that was recently fixed that caused (as you guessed it) slow upload speeds (limited to around 1Mbps!). It's entirely possible I have been affected by this bug since my initial install but, since my upstream speed was limited to around 400Kbps, I just didn't notice it.

never mind, got it already

Thanks so much.  I found those backups,  looked up the unix commands, took a deep breath, and replaced the bad file with my fingers crossed and eyes closed. Nice to know being brave every once in a while pays off.  :) All is well now…with that part anway; getting the cable company to set up their end correctly is a post for another board. And you are right, I probably was impatient while on that console set up (and by using it at all instead of waiting for the wiring in the office to be done). Hard enough to figure all this out as I go along without the whole staff breathing down your neck because they haven't had email for 12 hours--I should have slowed down. I have learned my lesson! My staff and the wild critters we work so hard to protect thank you too. Barbara Conservation Northwest www.conservationnw.org Keeping the Northest wild!

Thanks for the feedback. Unfortunately we can't put them in a separate DMZ because these DB servers are also sharing hardware with the Apache servers. What I can do is hookup eth1 and assign those IPs to the MySQL slaves and put them on a different VLAN and see if the LAN port will talk to both subnets. Peter

uuaahhh, that was quick, and helped me at all!!! Thanks!!!! Problem solved!

Drop to a shell and run pftop. If running a full install darkstat and bandwidthd can help.

I was able to access the web (port 80) gui of my server by binding all request to that server to the same wan as the server.

@thekurgan: I may be wrong, but with DSL/cable, aren't the upload speeds much lower than the download speeds?  Just something to consider if you're pushing as much data as you're pulling. That is usually the case, but in some areas the upload speeds of DSL/Cable exceed that of a T1. It doesn't do that around where I am (yet?) but it really depends on your available providers and the products they offer in the area.

Does the VPN client provide any logging?  Once the IPsec tunnel is up between the client and the remote server, there's nothing that pfSense can do to restrict traffic.  That means that the problem is most likely to be with the VPN client.

That page wasn't updated at the 1.2.1 release, it was an oversight. I just updated it. Updating that page has been added to our release procedures, thanks for the heads up.

never mind fixed  :)

to everybody who helped me (responded to my querry..), thank you so much! it was such a big help to me. i am now on my way in finding out the pppoe profile of my wireless connection. i will certainly tell the news later on to you guys. again, thank you so  much.