Its nice to know these things but how to know if somebody is trying to access my box? jigp 1.2.2

Did you ever try to restart the pf? jigp 1.2.x

Hi good afternoon! Are you trying to block something? or what?

Hi good afternoon. Go to General settings and check "Allow users on interface" and "Transparent proxy" Proxy port: 3128. Save and you are off to go. jigp 1.2.x

If it works your next options would be to do networks dumps and analyze them (or show them to us so we could analyze them).

I don't understand your problem with uPnP, sorry can't say anything. Port forwarding is NAT. Firewalling is Rules. You can set up them independently (if this is your question).

if you tell us what you are trying to achieve then we will probably be able to help you. Why do you specify source port range? Does it work without alias?

Do you know who sells them? How much?

Hi, I've found a solution from this topic http://forum.pfsense.org/index.php/topic,9016.msg51238.html#msg51238. After changing line 1017 in /etc/inc/filter.inc from: $after_filter_configure_run[] = "/usr/local/sbin/pftpx {$shaper_queue}-f {$target} -b {$external_address} -c 21 -g 21"; to: $after_filter_configure_run[] = "/usr/local/sbin/pftpx {$shaper_queue}-f {$target} -b {$external_address} -c 21 -g 21 -r"; it works as expected.

Homework for MrVining: what is the subnet if you are given IP 10.0.0.147/26 ?

Donate your son's computer and find a girl-friend for him ;)

To block nmap from being used behind the router, simply disconnect the network cable to the pfSense host ;)

To harden your setup more: Set the WebGUI to https. Set the WebGUI to a different port than 443 (i usually use 444 :D ). Disable the anti-lockout rule (under system–>advanced) and allow access only from a source you control. Or even better: dont allow access to the webGUI at all besides via a VPN (OpenVPN comes to mind). Run as few packages/services as possible. But these are just generic "security measures". pfSense is with the default settings already pretty safe.

Update happens once per month. What makes you think it does not?

Take a look in the Multi-WAN forum

@blak111: I'm not sure if the factory restore clears this directory, but check /conf/backup. Looks like it does. All my config.xml files are current rule sets. Thank you anyways, Ive pretty much been piecing it back together for the past few hours watching what is blocked and tracing it to the source and determining what the traffic is. I know that I will be backing up my config this time. Thanks again for the help!

Quote so when i added my vlans, LAN1 could talk to LAN2. these were all various nanobsd installs. Did you make sure that you didnt mix tagged and untagged traffic on the same NIC? probably, 1 of the physical nics is untagged and the 2nd nic has 4 x tagged vlans on it. i haven't tried crossing from 1 vlan to another vlan. i would assume that this wouldn't work. i'll dig a little deeper tonight i think.

After some investigation I came to the conclusion my Wan an Lan were switched. That was the reason the ports were open. Thx for the response. this can be closed.

Take a look there: http://doc.pfsense.org/index.php/FTP_Troubleshooting