Hello, I've just completed setting up VLANs using a TL-SG105e switch. Despite encountering issues with the switch management software being accessible on every port within each VLAN, I found a solution. I created an additional VLAN called "LINK" with a subnet mask of /30 (in my case, 192.168.10/30) on my Netgate 1100 router. I didn't set up DHCP for this VLAN. The Netgate router was assigned 192.168.10.1, and the switch was given 192.168.10.2. I'm not a network security expert, so I can't vouch for how secure this setup is, but at least it prevents unauthorized access to the switch admin panel. However, a drawback is that if you need to reconfigure something, you must temporarily expand the subnet mask to /29, assign an IP alias, make your changes, and then return to the "secure" settings.

@digitaladdictions Hello, I am facing the same problem. Did putting a switch between the ONT and Pf appliance fix the packet loss problem?

Hmm, not sure where you got that from then but it wasn't our repo: [2.7.0-RELEASE][admin@pfsense.fire.box]/root: pkg search realtek realtek-re-kmod-198.00_1 Kernel driver for Realtek PCIe Ethernet Controllers

@stephenw10 said in Weird issue with thermal sensor: It would be nice to disable just the tz0 object though. Yes it would be nice - the solution I suggested is the kind of "all or nothing" :-(

@stephenw10 Yes, I know that, but I found it is less expensive than a traditional computer o minipc in my country. Thanks. All the best.

Yes, I don't know what the difference is between the revisions but they all look like Portwell boxes. I would expect pfSense to run an any of them really.

So I just seen the sticky that this would probably be better in another sub-forum, please let me know if I need to make another thread elsewhere

Thanks Gents, Having the bios password proved to be a game changer. My previous experience with a firebox M400 required opening the case to add an SSD with a working pfsense installation and flashing a Lanner unlocked bios. By contrast, the M570 install was absolutely painless, and I was successfully able to install pfsense after booting from a USB flash drive. I did have to get into the bios to enable USB booting and modifying the boot drive priority. I was planning to swap out the processor for a low power Xeon but I'll let that project sit on the back burner for now. Many Thanks!

@stephenw10 yep LAN still at 100 no matter which port. Even assigning lan to the on board NIC, it negotiates to 1000, but the connection is crashing and giving me other issues, I’m thinking possibly because it’s a Realtek controller. So that’s not even an option now. Lol yes both interfaces are set to default/auto select. I wish that were the issue at this point!

@stephenw10 Brill ️

@stephenw10 said in Its possible install pfSense on Sbx-166lhge-2?: Ah, looks like it's MIPS so not supported. Also it's from 2004 and has pretty low specs (170MHz CPU with 64MB RAM and 16MB flash) so could never support current pfSense. Steve Thanks a lot. Topic solved. All the best.

The hn(4) altq setting only affects hn NICs so does nothing to igc. You may see some advantage enabling LRO depending on the traffic you are passing.

@macmichael01 said in Is it possible to install pi-hole along side of pfsense on my netgate 1100: I have a netgate 1100 gateway and was wondering if it's at all possible to install pi-hole along side with pfsense. Yepp I just set the pfSense DHCP (DNS Option) to point to my Pihole. Then i can control if i want Pihole used - Per vlan (I only use it on my Phone , Guest & MMedia vlans) You could also let "pfSense Unbound" use it , and make Pihole be used globally.

I imagine the hardware is compatible, would say go ahead and give it a shot and see how it goes.

@stephenw10 You may have caught this thread: https://forum.netgate.com/topic/183123/23-09d-is-qat-broken/42?_=1696239799286 ️

The SG-1000 and SG-2220 are limited by their CPUs not the NIC link speed. You might be able to get slightly more with some tuning but neither will ever come close to an 8200(?). Steve

@Spossis83 @Dobby_ @mcury https://it.aliexpress.com/item/1005003532918695.html?spm=a2g0o.cart.0.0.44e618fcZe2pIE&mp=1&gatewayAdapt=glo2ita [image: 1696167625651-921a72de-2d1a-4764-ad14-15398fcfe897-image.png] https://it.aliexpress.com/item/1005005957369398.html?spm=a2g0o.productlist.main.93.443e66139HNyOa&algo_pvid=444196d0-b302-41ee-a9b4-727a2eea5b9b&algo_exp_id=444196d0-b302-41ee-a9b4-727a2eea5b9b-46&pdp_npi=4%40dis%21EUR%2146.60%2117.71%21%21%2148.14%21%21%4021038edf16961634563005946e68bc%2112000035038287659%21sea%21IT%21744027985%21&curPageLogUid=GTZuUmIxyTL5 [image: 1696167779449-3923efa4-f6ef-4382-a1fa-734c908dc87b-image.png] [image: 1696168078720-773fe09a-b19e-4517-b0d4-c8066ba5643b-image.png] [image: 1696168101203-d901e97b-9381-4978-ba3c-64756eccd434-image.png] [image: 1696168133570-839226b1-deff-4b88-a7aa-205fe1e98997-image.png] [image: 1696168179389-87fc9c3d-85df-4848-b9a5-3a12c838542e-image.png] [image: 1696168206037-761af376-bf86-40f1-b1aa-03109fb273fb-image.png] [image: 1696168543882-ae6cd061-9653-4233-8ba5-45d348cf0a7b-image.png]

Some of those mesh devices can only work in full 'mesh' mode when they are also acting as a router. You don't want that, you want pfSense to be the only router and the APs to be pure layer 2 devices. Other than that any AP should work. Personally I would always choose something that can run OpenWRT if possible. I've been running those for years and am spoiled by the flexibility that offers. But if you have a lot of APs across numerous sites you probably want some commercial offering.

@Phizix Thank you for your kind compliment...with the plastic still on the Dell logo, your kids are right...very noice indeed!