General Questions / Re: allow user to choose gateway 'on the fly'
« on: January 15, 2018, 06:06:28 am »

Is there any work around to accomplish that?

sure, but it'll involve some messy hacking as there isn't really any sort of API to hook into.
i think you have some options:
- running a script over ssh to enable/disable a certain rule to flip/flop your gateways & then doing a filter reload.
- creating a php webpage on the pfsense host that hooks into the right .inc file to flip/flop a rule without any sort of authentication

General Questions / Re: VLAN_HWTSO?
« on: January 15, 2018, 03:30:53 am »
ifconfig ix0 -vlanhwfilter -vlanhwtso -tso

These commands may be placed into a shellcmd tag to execute at boot time to make the change persistent.


Installation and Upgrades / Re: Problem with Dpinger
« on: January 10, 2018, 04:10:58 am »
If Motorola models go offline (cable dead), it will offer 192.168.100.x ips

Routing and Multi WAN / Re: gateway tier priority backwards?
« on: January 01, 2018, 05:30:47 pm »
your vpn provider probably pushes a default route that overwrites the policy routing.

check 'dont pull routes' & try again

OpenVPN / Re: Multiple OpenVPN tunnels multicore CPU
« on: December 04, 2017, 11:58:03 am »
I don't think you can assign a tunnel to a core.  The operating system balances the load around the cores as needed.  You can even use CPU monitors to see that.

no but ovpn is single threaded. so on a quad-core you can't use more then 1/4 of its potential when using a single ovpn-instance.

more instances can theoretically improve throughput.... but that'll depend much on the protocols that are used. (torrents could possibly benefit, a http-session to a single website won't)

General Questions / Re: not found, unable to update/upgrade
« on: November 26, 2017, 06:06:05 am »
try using pkg-static

updated 5 systems tonight.
all of them had issues with updating: they didn't find 2.4.2-release / they either found 2.4.0 or 2.4.1 or even only 2.3.5
i tried changing firmware branch back & forth (update/settings), but that didn't resolve the issue.

most of it was solved by doing
Code: [Select]
pkg update -f
pkg-static update -f
and then updating from console
1 of the boxes didn't finish the upgrade properly: ssh to box didn't show the /etc/initial menu. after starting it manually & doing another console update it was sorted.

the old (static/full) update system was less dynamic but it sure was more stable for me. am I doing something wrong or are there issues (in some cases) with pkg-ng ?

General Questions / Re: Boot Loop - Seriously?
« on: November 19, 2017, 09:43:34 am »
I'm sorry to hear that. The ufs filesystem has been a headache for numerous users over the years.
(Although Personally never had an issue)

Unfortunately there are no quick fixes if chkfdsk doesn't solve it.

A) reinstall & import config backup.
B) reinstall using ZFS-filesystem & import config backup

Zfs is supposed to be more resilient.

Post a bounty / Re: Slow Web GUI with many VLAN Interfaces - 300$
« on: November 13, 2017, 04:23:44 am »
cleaned up and seems to follow coding guidelines as far as I can see, hopefully final version attached.

I think I managed to work the pull request stuff out, would be nice if someone with the relevant knowledge/access could confirm I've got it right, because as I said, I've never used git before.

it says 2.4 but I can confirm it works on 2.4.1
if you've never used git before, i'd suggest you use the github webgui editor todo the work for you

1)basically you go to the pfsense github page & select the master branch.
2)then you find the file you wish to *edit*. You make your changes & click 'propose change' (fill topic/comments to explain your commit)
3)github will now fork the repo & you will have your own version of the pfsense code.
4)adjust other files in the same way, but this time be sure to edit them in your forked version (for example goto:
5)adjust adjust adjust
6)click the 'new pull request' button & if you are certain, send it
7)you probably need to sign a CLA before they can accept your code (unless that changed recently)

General Questions / Re: Route URL to specific port
« on: November 07, 2017, 04:57:30 pm »
stuff on the same lan doesn't pass your router/firewall ....
if you put your nas on a different interface & run a reverse proxy, you could work around your "issue"

personally i'd just create a bookmark/favorite .... but thats just me

what would be the point of this? you only get 1 gbit from isp ... i see no reason to setup a lag.

also: 1+1 is not 2

