mtz_federico

Check what others have said. It might be related to one of Let's encrypt root certificates recently expiring (On September 30). Are you able to access valid-isrgrootx1.letsencrypt.org and expired-r3-test.scotthelme.co.uk? Let's Encrypt is a relatively new Certificate Authority and many devices running old operating systems don't have their new root certificate.

Yes, and then you only need to add rules for what traffic goes where or if it just acts as a backup connection (from a quick look, this is what the video shows). If you can connect to the isp routers while they are also connected to pfsense (before putting them in bridge mode), check if the internet works for both of them when it stops working in pfsense. If you could share your ISPs routers models, I could help you with some research.

I can't think of anything that your PC could be doing. Maybe @Alex Atkin UK@Donut417or @Falcon1986 have an idea of what this could be.

Check if you can put the two ISP routers into bridge mode. That means that whatever you plug into it's ethernet ports get the public ip and the router just acts as a media converter (coaxial, fiber, etc to ethernet). Then in pfsense you should have a public ip from both ISPs, once that is done, you can create rules to send some traffic to each ISP. Since you want to use an app from spectrum to access media, I recommend you figure out which ip's it connects to and create a rule that sends traffic to those ip's via the spectrum line.

Splitting bandwidth is possible but the best way is to use QoS because QoS lets everybody use all the bandwidth but it priorities what you specify. You want to look for a router than can do either one of them. I would use pfsense since it lets you do both and many other things.

I find it weird that your phone only has ipv6 but your desktop is dual stack (has ipv4 and ipv6). You mentioned that the first test that you ran on your PC came back as 9/10 and later came back as 10/10, if you run the test multiple times does it switch between the two often? (like sometimes 9/10 and then 10/10 and then later back to 9/10) You are going to have to see what your ISP does because this seems like an ipv6 related issue (my guess is something related to NAT64/DNS64) and the only things that you could really do is make sure that you have ipv6 and ipv4 on and are using your ISP's DNS (specially for ipv6). NAT64 and DNS64 make your computer think that all domains have an ipv6 address and route those that don't actually have one via the ISP's routers. This is used because we have ran out of ipv4 addresses and most of the internet hasn't transitioned to ipv6.

Have you tried removing any switch all together and connecting the computers directly to each other? I recommend you try booting to linux from a usb and running the tests there to see if it is software or hardware related.

Did you change your DNS server? Does it only happen when you use your router (not the ISP one)? check your score in test-ipv6.com. It could be some ipv6 related problem. Specifically with NAT64/DNS64. You also forgot to attach the result of the ping. And why are you using ping -l 512?

This depends on the subnet mask that you use. For local networks you should only use IPs defined in RFC1918, those are: 192.168.0.0 – 192.168.255.255 172.16.0.0 – 172.31.255.255 10.0.0.0 – 10.255.255.255 Most home networks use 192.169.x.x/24, that gives you 255 ips. I like to create different subnets for different things and use different address spaces. Like: IoT - 192.168.10.x/24 Guest - 192.168.0.x/24 Main/Secure - 192.168.1.x/24

Might be because if ipv6. If you want to make sure that it is ipv6, go to test-ipv6.com.

What are the file sizes, where are you downloading them from, and how? it could be a server side limit

The NAT type is probably strict due to CGNAT because of ipv4 exhaustion. But it sounds like some other problem is happening.Are playing on a console or PC? Are you using ethernet? Which VPNs have you tested? is it free?

I have never used it but, Mac Installers is an option. From what I can see they don't have big sur, but you could download catalina or ask them for big sur

My guess is that your service provider is doing something and that is failing. Maybe CGNAT, NAT64 or some proxy. You could check your result in test-ipv6.com and try using a VPN, but you should contact them.

I am not familiar with your router, but from what I can see in this tutorial. It is as simple as downloading the OVPN config file from PIA and uploading it to the router and typing your PIA username and password. What do you mean here? are your phone's and router's public ip when using the VPN the same or are they both receiving the same internal VPN ip? To do this you need to create a VPN server on your router and setup your laptop/phone as a client. I found this tutorial. I am not sure how accurate it is, but it looks good.

Are you able to ping any of the sites that are not working?

That sounds interesting, do you have a link to that presentation?

I don't know about the Dream Machine Pro but I saw a video by Tech with Shae in which he uses pfsense. He later made a follow up video answering some questions. Maybe this will help. In the video description he said "The SFP module provided by Telus is a G-010S-A P/N 3FE46541AADA"

I would use an ESP and do something like what @Levent did but without Home Assistant. You could have two ESPs talking to each other with web requests. One connected to the doorbell with a relay and the other with a relay connected to a lamp. Or with some service that can send notifications to your phone from the ESP. Doing some quick googleing, I found simplepush.io. I already has an ESP integration and it's free for a limited amount of notifications. But I have never used it EDIT: they have an example article for the ESP8266

I am not familiar with UNIFI. But DHCP should not be an issue since it is pretty much an automatic static ip configurator. Check that DHCP is giving out the correct IPs, check if the ethernet ports are tagged with all vlan traffic or only with one vlan, and that there is no DHCP leaking from one vlan to another. You want to make sure that the ethernet ports going to the devices only have one vlan and that they can route traffic to the other vlan. You could figure out how to set routing rules by watching an iot network segregation video.

I would disable the internet and see what breaks. You could also do some monitoring to see what they are accessing. The easiest way to do it (but not the best) is to use something like pihole and monitor the dns queries.

Besides what others have said. I want to point out Syncthing. It syncs the files in certain folders that you choose between multiple computers (even over the internet). Lawrence Systems made a few videos showing how to set it up. From what I remember, it is peer to peer and uses their public servers to let peers find each other.

You don't really need the pro version. With the free one you can see which channels the wifi networks around you are using. Just make sure that you are using a channel with low interference and if possible, only use 1, 6 and 11 since those are the only non-overlapping channels in 2.4Ghz. For 5Ghz, just make sure that it doesn't have interference, if possible don't use DFS channels. Besides this, I recommend you check for any obstructions in the walls, specially power cables and metal objects and to make sure that the AP (I can't see it/identify it in the photos) is not on the floor and behind something. Also check if your router let's you change the power level. If it does, set it to high.

As others have said make sure you are not behind CG-NAT (CG-NAT can also use ip addresses that start with 100.64-100.127). The other things that come to mind is make sure that the ip that you are forwarding to (your pc's ip) is static and hasn't changed and make sure that the server is not listening on localhost. To test that, make sure that you can access the server from another device in your network. I usually check for CG-NAT by doing a traceroute and checking the hops after your router, if the ip is in a range used by CG-NAT, then you are behind CG-NAT.

The phone is creating noice. You want to make sure the modem is connected to a filter. It looks like a splitter to connect the modem and phone on the same port.