PfSense Version



  • i use pfSense 2.1.4 yesterday i installed the 2.2.4 but has a lot a bugs. so i want to know which works best for you


  • Netgate

    Ok.  I'll bite.

    Limiters are broken in 2.2.X. For the applications that don't require limiters, 2.2.X.  For the limiter-specific apps, 2.1.5 hands down.



  • I'm using limiters without any problems on v2.2.2.



  • The limiter regression in 2.2.* is https://redmine.pfsense.org/issues/4326 - related to a combination of NAT and limiters.
    I am using ordinary limiters for controlling download speed of groups of clients on LAN and that is working fine.
    2.2.4 has lots of bugs fixed, and lots of the fixes in 2.2.1, 2.2.2, 2.2.3 and 2.2.4 are for things that were problems in 2.1.5 also.


  • Netgate

    Limiters on a pfsync HA pair crash the secondary.  Limiters and NAT break.  There is something fundamentally wrong with dummynet on 2.2.  Hope they find it.

    In certain situations where limiters are required, going to 2.2 is not an option.



  • @phil.davis:

    I am using ordinary limiters for controlling download speed of groups of clients on LAN and that is working fine.

    Yes indeed.



  • @Derelict:

    Limiters on a pfsync HA pair crash the secondary.  Limiters and NAT break.  There is something fundamentally wrong with dummynet on 2.2.  Hope they find it.

    In certain situations where limiters are required, going to 2.2 is not an option.

    Well i've activated the Captive portal on 2.2.4 and works great for Desktop but all moviles can skip it and i don't understand why?
    plus, i have multiwan working on a 2.1.4 an works great but on 2.2.4 can't make it work. not only the speed is not incrementing it goes down.



  • 2.2.4 : Portal works for me. No one goes out without authentication.
    You do not understand why ? If give you a hint: You and I are using the same code, only hardware and the admin (the guy who sets up the box) are different ;)

    Multi WAN setup : please detail.

    What do you mean with this:

    not only the speed is not incrementing it goes down.



  • @Gertjan:

    2.2.4 : Portal works for me. No one goes out without authentication.
    You do not understand why ? If give you a hint: You and I are using the same code, only hardware and the admin (the guy who sets up the box) are different ;)

    Multi WAN setup : please detail.

    i added the wan2 interface on installation as OPT1 then rename it to WAN_Aux. i created a "Multiwan" group with both WAN to tied 1. then setup an ip monitor each and DNS then went to firewall Rules and set LAN gateway to Multiwan group. as this didn't work as i spected i've create 2 failover groups: tied 1 and tied 2 to for wan and wan_aux and then tied 2 and tied 1. i've setup again the LAN firewall rules and still didn't work.

    I've setup 5 production firewalls with pfsense 2.1.4 for different schools and never had a problem they have more tan a year working with none incident, so i tried to give it a chance to pfs 2.2.4 in my office but i've find some bugs like this one in Captive portal and the Multiwan issue.

    so if anybody can guide me to make my pfs 2.2.4 it would be great.



  • I have a very simple setup. HFSC and port fowarding are about the only things custom about my setup.



  • @Harvy66:

    I have a very simple setup. HFSC and port fowarding are about the only things custom about my setup.

    So you're of topic ;)
    Or do you mean:
    @Harvy66:

    I have a very similar setup. HFSC and port fowarding are about the only things custom about my setup.



  • and set LAN gateway to Multiwan group

    I hope you did not really do that. You should never set a gateway on LAN.
    The mult-WAN load-balancing and/or failover works fine. I use it and I'm sure many others do also. Start a separate thread with what youwant to achieve and what you have done and we can help you make it work.



  • @phil.davis:

    and set LAN gateway to Multiwan group

    I hope you did not really do that. You should never set a gateway on LAN.
    The mult-WAN load-balancing and/or failover works fine. I use it and I'm sure many others do also. Start a separate thread with what youwant to achieve and what you have done and we can help you make it work.

    If i don't set the gateway to the multiwan group, then how the LAN will know that it has to use the Multiwan Group?



  • You put firewall rule(s) on LAN that match traffic from LAN clients and then choose the wanted gateway group down in the advanced section of the rule(s).



  • @phil.davis:

    You put firewall rule(s) on LAN that match traffic from LAN clients and then choose the wanted gateway group down in the advanced section of the rule(s).

    yes, that is how i did it.
    went to firewall rules, click on LAN select IPv4 *  then edit it and in advanced features i click the advanced button on gatewary and select my multi wan group. but it slower instead of faster.
    each wan has an 10mbps adsl but when i put it together it gives me 6mbps on my speedtest

    this is the topic whit this issue https://forum.pfsense.org/index.php?topic=97217.0