It could be likely that your work laptop creates a VPN to your business network and thus would be invisible to other devices on your home network.. That is true of mine. That could be why other devices cannot ping it..

@dbmandrake thanks for the information on the auto update.

@dbmandrake It did not work for me unless I included the ip address of the firewall and the loopbacks in an alias, the other way it would just fail for me.

@michmoor exactly... To be honest, that is DO - in what scenario would they ever need to be inbound to you? Block all of their ASNs NetRange: 165.22.0.0 - 165.22.255.255 CIDR: 165.22.0.0/16 NetName: DIGITALOCEAN-165-22-0-0 pfblocker makes it easy to look up ASNs and put them into a alias and then block that completely from your services you don't want them to be able to talk to.. DO while is a big cloud provider - why would you have need of inbound traffic from them? They are not known for being to particular on how they allow their services to be used.

Thank you for this! Got my application to work. Much appreciated.

Ok, I figure it out. someone can please, close this topic?

Hola andres, Tengo configurado pfsense 2.6 con squid y squidguard. presento el mismo problema para acceder a la pagina web del cne: http://www.cne.gob.ve/web/index.php Aplique varias configuraciones en el squid : X-Forwarded Header Mode : probe la opcion de truncate, borrar. Deshabliite este parametro: Disable VIA Header If not set, Squid will include a Via header in requests and replies as required by RFC2616. Verifique la resolución de los dns Agregue la url completa en el squidguard, Agregue la url dentro del whitelist del squid y aun persiste la falla. Queria saber si habias encontrado una solución. Gracias

@karimhaydar31 You can't access TLS resources by IP address if the IP address is not in the certificate they present. This is TLS doing what TLS is supposed to do. Not sure what you are trying to accomplish and why.

@ageekhere Thanks for the reply, I wanted to also show that if really needed you could access and load shalla's old blacklist in an emergency if you needed one.

@gtrovato I just noticed the correct location to adjust them is different. If you are using squidguard is Package/Proxy filter SquidGuard: General settings/General settings under service options. [image: 1673503338648-screenshot-2023-01-11-at-9.58.52-pm-resized.png] (Image: Rewrite Process Children) If you try to set this with just Squid advanced options it gets rewritten each time Squidguard is reconfigured or with every reboot. Just configure this advanced setting inside of squidguard and the advanced settings in Squid Proxy will reflect the change better this way. After the new configurations holds [image: 1673503509452-screenshot-2023-01-11-at-10.04.49-pm-resized.png]

Resolved, there was an issue in connection limit