Wel, i think i found the problem! I have a Cisco client and i made a connection with it first. After that i tried my openvpn connection and it caused the problem mentioned, i was able to connec but not to log on the server and to get VNC connection. Not sure what exactly but i will look in t it and trie to get back Thank's

When you click the advanced button on the firewall-rule-editing page you can set maximum connections per second / states per client. maybe you could play around with that.

Thank you, I will try this.  Now gotta look up what this NAT relection is all about…

Azureus works fine with UPnP. I use that combination all the time. Testing the port shows OK. You should try removing the port mappings and using UPnP. In Azureus check the Plugins menu -> Log Views -> UPnP. If you can't get it to work copy paste that log here, copy/paste the UPnP Status page mappings in pfSense, and provide me with the UPnP settings in pfSense.

ok  ..pretty much figured it out  ..she's up and running

thanks for your answer Vantage yes i would be interested in seeing how you manage pftpx start

Is my config so hideous, you've all turned away?  ;)

I don't know this should works. Pass out port 443 proto tcp. After u have try, please let me know. I also want to know.

To jahonix: I mean is add a rule temporary, i want temporary pass or block some host that not modify configuration file, and discard them at reboot.

@memento: allow from LAN subnet -> wan address (…all traffic ... can access the internet...) Nope, you only allow traffic TO the WAN interface, not beyond it. If you want all traffic but other local subnets then define a subnet alias and make a rule like: Proto        Source        Port        Destination        Port        Gateway        Schedule X        *          LAN1            *          !SubAlias          *              * @memento: also when adding a rule on the LAN1 interface to block any incoming traffic from LAN2, it did nothing. Rules only handle the traffic that enters pfSense on the respective interface. To block traffic from Lan2 to Lan1 you have to do so on the Lan2 tab. @memento: the goal here is to allow each user to setup their own rules on their own subnet without touching another users subnet rules. Is this possible or do i have to act as the router police and handle all rule changes ect. This is not m0n0wall, we don't have different users ATM. If you allow others access to the webGUI they will be able to change any rule they want. This is not practical. Have one person to administer the ruleset in close communication with the other parties. Imagine if admin3 doesn't want the other subnets to lurk in his one then the rules have to be on the other subnet's pages and therefore are not controlled by him. And I wouldn't want him to touch my ruleset to acchieve his goal… BTW: Make sure you have defined different subnet ranges for the LANs and/or OPTs. Routing is not possible otherwise.

Thanks that did it.  I am too used to Linksys etc.  Not seeing a port forward tab kind of threw me.  I have to learn that port forward is under the NAT tab and remember that.  I have found it there before but forgot about that location.

even after looking at the Uverseusers board and asking there I still have not had a definite answer. Let me ask you this then, is there any way to combine these 2 interfaces into one logical interface?

Many thanks.  I've taken a look at the transparent bridge setup and briefly messed around with the configuration while I had the "filtered bridge" option enabled.  I'm sure I'll some follow-up questions later about what rules to apply for inbound traffic, but I appreciate the help.

ssh to pfsense choose option 9 (pftop) Press F1, press shift-r

Hi there, I also in need of help to setup all the static IPs provided by my ISP with pfSense. What I have in mind is to use a different IPs to be assign to respective servers. ie WAN (static IP) –> LAN (192.168.1.100) or like for WEB SERVER -  WAN IP:80 --> LAN IP:80 or like for FTP SERVER - WAN IP:21 --> LAN IP:21 Kindly provide us a HowTo on how to set this up correctly. Thank you so much in advance.

Hi there, Thank you so much for all your replies, Cry Havok. I really found LogMeIn a very easy way to access my PC at work before I setup pfSense but with what you said about organization policy, it really got into me and realized that it would be best not to allow such 3rd party services to let go in and out of my network. So, I decided to do remote desktop or access thru OpenVPN. Again, thank you.

Found the solution!!! After trying the latest version of monowall (i was previously on version 1.1) and it having the same problem I guessed it must be a kernel/driver thing and changed all my network cards from realtek to Intel pro 100/s and it is now working!