For me the Release 1.2 Version runs with the schedules as it should

For the first, do you have a 1.2 Version? Place a schedule time on a firewall rule and then make a download of your config.xml and check if you have all needed cron items
Further Information: http://forum.pfsense.org/index.php/topic,5838.msg42769.html#msg42769

Regards
Heiko

That was it! Thanks for the newby help… This has been my first setup of a pfsense and its gone rather well. Again I cant thank you enough. Thanks

sorted!

Thank you, thank you, thank you GruensFroeschli!

I figured out what it was…I had the block rules BELOW the allow rules. I moved the blocked rules above the pass rules and it now blocks access from these IPs.

Geez! I'm still learning here...

destination: wan address

destination: *

@GruensFroeschli:

"WAN address" is exactly what it says.
The IP of your WAN.

Set that to any and it should work.
(unless you only want to allow access to your WAN iIP ;D)

Thank you so much. Seems to work now. That makes complete sense now. I figured I needed to specify WAN address, but what I really wanted was ! LAN subnet.

I am such an idiot sometimes. Really appreciate the help. BTW, pfsense is fantastic. Nice job. When I convince my boss to start using it at work, I'll see if we can send a donation.

If you also configured port forwarding, yes (hint, if you haven't delete the rules and then just configure the port forwarding, that will also create the correct, matching, firewall rules).

Also have Netflix and Amazon Unbox. Did not have to do a single rule to allow them to download. Sounds like a DRM problem on your end. I have a few machines Netflix does not work on. But this is a machine problem not network.

Well I found what it is.

The 2nd WAN modem has its own public IP as its the gateway for pfsense, but it seems it also has that IP… Found if I give my PC an IP on that subnet and plug into the modem I can ping it. Cant get any other prot. to talk though... It seems the modem arps from that local subnet as well as its public...

This normally would not be allowed as the WAN has that options to block local networks on the wan port but this is a 2nd WAN and does not have that option..

Wow..thanks guys. I see what you mean about multiple IP's. Try not to laugh to hard, but imagine before this post a newb like me pecking away at work putting 15 Ip's for one site I did :-[

I will try the SquidGaurd and the OpenDNS. Oh man…talk about feeling spanked, but I refuse to quit...Heh. You guys rock.

There are XBox units on the network, but they are not using UPNP.  I disabled UPnP because of the size of the network (~1800 hosts).  The XBox rules are just there because we force the use of a proxy server and typically block port 80 for anything but the proxy.  The XBox units need port 80 for Xbox Marketplace to work, so I enabled it as a "test" for a few users.

Thank you much, works fine  ;D

You can use virtual iPs for the additional IP and 1:1 or portforward/outbound nat it.

Is possible someone's figured out about proxies? Especially, if thier using Firefox w/Foxyproxy.  :-\

Good work. I just got your message, so sorry I couldn't help earlier.. But sounds like you didn't need it after all.

FYI - I think you'll be VERY happy you went with PFSense. I had my little nightmare setting it up due to my FTP problems (which turned out to be completely MY user error on the set-up - LESSON: DON'T CLICK CHECKBOXES YOU DON'T UNDERSTAND  ;D ). Since then, these boxes have run flawlessly with amazing reliability. I'm serving millions of sessions a day with them and they run on a pair of 5-year-old desktops. No problems with FTP whatsoever.

Really amazing stuff here. Can't say enough positive. Put in the time on set-up and see the rewards…