Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PfSense Version

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    15 Posts 6 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • U
      ubit
      last edited by

      i use pfSense 2.1.4 yesterday i installed the 2.2.4 but has a lot a bugs. so i want to know which works best for you

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Ok.  I'll bite.

        Limiters are broken in 2.2.X. For the applications that don't require limiters, 2.2.X.  For the limiter-specific apps, 2.1.5 hands down.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • R
          robi
          last edited by

          I'm using limiters without any problems on v2.2.2.

          1 Reply Last reply Reply Quote 0
          • P
            phil.davis
            last edited by

            The limiter regression in 2.2.* is https://redmine.pfsense.org/issues/4326 - related to a combination of NAT and limiters.
            I am using ordinary limiters for controlling download speed of groups of clients on LAN and that is working fine.
            2.2.4 has lots of bugs fixed, and lots of the fixes in 2.2.1, 2.2.2, 2.2.3 and 2.2.4 are for things that were problems in 2.1.5 also.

            As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
            If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate
              last edited by

              Limiters on a pfsync HA pair crash the secondary.  Limiters and NAT break.  There is something fundamentally wrong with dummynet on 2.2.  Hope they find it.

              In certain situations where limiters are required, going to 2.2 is not an option.

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • R
                robi
                last edited by

                @phil.davis:

                I am using ordinary limiters for controlling download speed of groups of clients on LAN and that is working fine.

                Yes indeed.

                1 Reply Last reply Reply Quote 0
                • U
                  ubit
                  last edited by

                  @Derelict:

                  Limiters on a pfsync HA pair crash the secondary.  Limiters and NAT break.  There is something fundamentally wrong with dummynet on 2.2.  Hope they find it.

                  In certain situations where limiters are required, going to 2.2 is not an option.

                  Well i've activated the Captive portal on 2.2.4 and works great for Desktop but all moviles can skip it and i don't understand why?
                  plus, i have multiwan working on a 2.1.4 an works great but on 2.2.4 can't make it work. not only the speed is not incrementing it goes down.

                  1 Reply Last reply Reply Quote 0
                  • GertjanG
                    Gertjan
                    last edited by

                    2.2.4 : Portal works for me. No one goes out without authentication.
                    You do not understand why ? If give you a hint: You and I are using the same code, only hardware and the admin (the guy who sets up the box) are different ;)

                    Multi WAN setup : please detail.

                    What do you mean with this:

                    not only the speed is not incrementing it goes down.

                    No "help me" PM's please. Use the forum, the community will thank you.
                    Edit : and where are the logs ??

                    1 Reply Last reply Reply Quote 0
                    • U
                      ubit
                      last edited by

                      @Gertjan:

                      2.2.4 : Portal works for me. No one goes out without authentication.
                      You do not understand why ? If give you a hint: You and I are using the same code, only hardware and the admin (the guy who sets up the box) are different ;)

                      Multi WAN setup : please detail.

                      i added the wan2 interface on installation as OPT1 then rename it to WAN_Aux. i created a "Multiwan" group with both WAN to tied 1. then setup an ip monitor each and DNS then went to firewall Rules and set LAN gateway to Multiwan group. as this didn't work as i spected i've create 2 failover groups: tied 1 and tied 2 to for wan and wan_aux and then tied 2 and tied 1. i've setup again the LAN firewall rules and still didn't work.

                      I've setup 5 production firewalls with pfsense 2.1.4 for different schools and never had a problem they have more tan a year working with none incident, so i tried to give it a chance to pfs 2.2.4 in my office but i've find some bugs like this one in Captive portal and the Multiwan issue.

                      so if anybody can guide me to make my pfs 2.2.4 it would be great.

                      1 Reply Last reply Reply Quote 0
                      • H
                        Harvy66
                        last edited by

                        I have a very simple setup. HFSC and port fowarding are about the only things custom about my setup.

                        1 Reply Last reply Reply Quote 0
                        • GertjanG
                          Gertjan
                          last edited by

                          @Harvy66:

                          I have a very simple setup. HFSC and port fowarding are about the only things custom about my setup.

                          So you're of topic ;)
                          Or do you mean:
                          @Harvy66:

                          I have a very similar setup. HFSC and port fowarding are about the only things custom about my setup.

                          No "help me" PM's please. Use the forum, the community will thank you.
                          Edit : and where are the logs ??

                          1 Reply Last reply Reply Quote 0
                          • P
                            phil.davis
                            last edited by

                            and set LAN gateway to Multiwan group

                            I hope you did not really do that. You should never set a gateway on LAN.
                            The mult-WAN load-balancing and/or failover works fine. I use it and I'm sure many others do also. Start a separate thread with what youwant to achieve and what you have done and we can help you make it work.

                            As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                            If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                            1 Reply Last reply Reply Quote 0
                            • U
                              ubit
                              last edited by

                              @phil.davis:

                              and set LAN gateway to Multiwan group

                              I hope you did not really do that. You should never set a gateway on LAN.
                              The mult-WAN load-balancing and/or failover works fine. I use it and I'm sure many others do also. Start a separate thread with what youwant to achieve and what you have done and we can help you make it work.

                              If i don't set the gateway to the multiwan group, then how the LAN will know that it has to use the Multiwan Group?

                              1 Reply Last reply Reply Quote 0
                              • P
                                phil.davis
                                last edited by

                                You put firewall rule(s) on LAN that match traffic from LAN clients and then choose the wanted gateway group down in the advanced section of the rule(s).

                                As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                                If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                                1 Reply Last reply Reply Quote 0
                                • U
                                  ubit
                                  last edited by

                                  @phil.davis:

                                  You put firewall rule(s) on LAN that match traffic from LAN clients and then choose the wanted gateway group down in the advanced section of the rule(s).

                                  yes, that is how i did it.
                                  went to firewall rules, click on LAN select IPv4 *  then edit it and in advanced features i click the advanced button on gatewary and select my multi wan group. but it slower instead of faster.
                                  each wan has an 10mbps adsl but when i put it together it gives me 6mbps on my speedtest

                                  this is the topic whit this issue https://forum.pfsense.org/index.php?topic=97217.0

                                  1 Reply Last reply Reply Quote 0
                                  • First post
                                    Last post
                                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.