The router for one of our test networks is a small Protecli FW108120 / pfSense.
The setup and configuration are pretty simple:
- WAN port set to DHCP & connected to ISP's modem
- 1 LAN port connected to a PoE switch
- ~10 devices connected via the PoE switch
- pfSense is the DHCP server
- VPN is setup for remote access / management
- ~10 port forwarding rules for the devices on the network
After adding a port forwarding rule for a new vulnerable camera, we noticed immediate intermittent connectivity issues with the router, then no WAN connectivity at all.
I quickly found that others online reported that the default state table (which records activity of current incoming/outcoming traffic) is too low causing, causing the router to lock up. Changing the max table to 500,000 fixed things, after more than an hour of outage.
Has anyone else seen similar issues with pfSense or other routers using overly conservative values which do more harm than good? Is anyone using pfSense in surveillance and have other issues/pitfalls/tips?