• IPSECD VPN Phase-2 configuration disappearing

    Moved
    39
    0 Votes
    39 Posts
    3k Views
    T

    @stephenw10 Correct. Way longer than the tunnel rekey times, so something must prompt a configuration reload outside of that.
    Or maybe the tunnel went down at some point and the config was reloaded when a reconnect was attempted.

  • 0 Votes
    3 Posts
    66 Views
    R

    @patient0 OK, that helped. I'm fairly certain I had tried clicking Add time before and it hadn't worked - with the error I previously reported. In any case, it worked for me now. Thank you!

  • Odd sudden kernel panic

    5
    0 Votes
    5 Posts
    282 Views
    A

    @stephenw10 I believe that is mpt attempting to talk to the RAID card as if it was in IT mode, trying to count the individual drives ("REPORT LUNS"), and the card replying "No, this is RAID, you can't talk to the drives directly" ("ILLEGAL REQUEST").

    I'll run a fs check next time it's convenient to take down the entire network. Probably this evening.

  • Kea client logs

    9
    0 Votes
    9 Posts
    658 Views
    GertjanG

    @ameinild said in Kea client logs:

    I get no logging from the kea-dhcp4 service for client DCHP logs, only from the dhclient for the WAN interface.

    Well ... this is FreeBSD/( and Linux) classic log behavior : no news is good news.

  • 25.03 BETA - PPPoE WAN Reconnection

    2
    0 Votes
    2 Posts
    73 Views
    stephenw10S

    Does it reconnect as expected using the old mpd5/netgraph?

    Is it failing at both IPv4 and IPv6?

    If you disable IPv6 does it then reconnect correctly?

    We have seen one other report from an A&A user but that failed to connect after reboot.
    https://forum.netgate.com/topic/198027/if_pppoe-problems-with-php-fpm-causing-loops-resolved

  • 0 Votes
    3 Posts
    116 Views
    A

    @stephenw10

    Thanks for the response.

    In reviewing your response and looking through my configurations, this one firewall did NOT have a valid Client name set and was missed from my template configuration when the firewall went into service.

    I apologize for taking up yours and anyone else's time. I feel like a Newby today.

  • Steady increase in Memory Usage (pfsense in proxmox vm)

    2
    0 Votes
    2 Posts
    73 Views
    stephenw10S

    Does it report the memory usage in both Proxmox and pfSense?

    Can you see what's using it in the output of top or ps?

  • Update of pfSense Plus Software

    3
    0 Votes
    3 Posts
    111 Views
    S

    @stephenw10

    Thank you, that was what I was not doing and really appreciate the guidance and support here. Thanks

  • Setting for console access via web browser

    5
    0 Votes
    5 Posts
    131 Views
    W

    @stephenw10 Eventually I was able to read the a cloned disk from a side FreeBSD I setup, then I edited the config.xml to include the correct source IP, replaced the original disk with the cloned-now-edited disk and that how I got my access back and then I enabled the console. Thank you.

  • pimd

    6
    0 Votes
    6 Posts
    235 Views
    L

    @dennypage, @maximushugus, @louis2, @jeffscott

    Good news!

    I have the PIMD version I did compile yesterday working !!
    Including the related pfSense gui.

    Not I think I can make it running the way it should in the coming week(??).

    Note that at this moment I still have the following issues:

    The warnings at compile time. Surely NOT OK!
    => I do not have the knowledge to fix this. but it does not be blocking. The man directory issue.
    => I have no idea how to solve that. My actual work around is removing the manual files from package definitions (NOT OK) Pimd does not run using the GUI.
    => At this moment I have to start pimd from the command line in debug mode and restart pimd after each config change. However pimd is running and I can access my media server.
    pimd -n -f /var/etc/pimd/pimd.conf --disable-vifs -l debug=all the firewall rules are not yet as they should be, for the test I just opened too much.

    So I have to sort out things in the coming week/weeks. But I have good hope that I can solve points 3 and 4.

    If someone can solve points 1 and 2, it would be highly appreciated!!

  • IPv6 firewall rules with logging disabled still generating logs

    12
    0 Votes
    12 Posts
    293 Views
    stephenw10S

    Yup, what I missed here is that whilst it's not hitting the default block rule it's in fact also not hitting your custom rules. It's actually the hidden block all v6 rules that are added when you unset 'allow IPv6'.

  • [SOLVED] Serial GPS NTP Displays Incorrect Source on Dashboard

    19
    0 Votes
    19 Posts
    1k Views
    E

    @dennypage Hasn't been a problem.

    loopstats.jpg

  • PIMD loosing multicast sources

    34
    1 Votes
    34 Posts
    2k Views
    L

    @maximushugus

    I tried to compile pimd for actual FreeBSD15 current, however I am facing issues which I can, given my limited knowledge of c, git and pimd internals, not solve.

    At least I did not manage that up to now despite significant effort.

    starting a tool like ^script^ and then compiling the source etc, you can see the warnings and some errors in the script generated file. In the file warnings and an error

    related to e.g. not longer supported macro's and and a fatal error related to ^man^ which should be an absolute path
    I tried to fix the ^man^ error using ^ConfigureOptions="--mandir=/usr/local/share/man",

    That does remove the error but not in such a way that there are man8 packages in the stage directory / distribution file or package.

    For that reason I did build a package without man files, and installed that pimd package on actual pfSense plus version.
    It does not work. Main problem it can not find the interfaces see pfsense systemlog

    I would have prefered to test on a fresh pfSense system, however netgate does not make an iso available :( I do not like that, however I do understand netgate!

    Troglobit has a significant newer pimd version ^pimd-dense^ which can perhaps been an pimd alternative.
    I do not know the difference in functionality!

    So ^we have a problem^ !!

    Some options:

    support from someone with higher c and git knowledge able to solve the actual warnings and man issue in the code try to compile pimdd which because more recent probably has less compile issues and perhaps even has a freebsd ports creating a couple of VM's with the media player. One for each VLAN which needs media files
  • if_pppoe problems with php-fpm causing loops. (resolved)

    41
    0 Votes
    41 Posts
    1k Views
    stephenw10S

    Hmm, interesting. I can't say I've noticed that. But also I wasn't looking for it specifically. 🤔

  • Proxmox + pfSense: Enable Internet for Internal VMs

    4
    0 Votes
    4 Posts
    263 Views
    NollipfSenseN

    @zikou Please follow this: https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-proxmox-ve.html

  • 24.11 on SG-2100 first impression (and issues)

    22
    0 Votes
    22 Posts
    2k Views
    S

    @Cabledude FWIW leaving the dashboard open is also going to log every HTTP request for updating said dashboards. (disk writes)

    Watch your CPU usage without the dashboard open, and while you make the DHCP changes (e.g. "top" command line).

  • New hardware - not working with config from old hardware

    10
    0 Votes
    10 Posts
    438 Views
    U

    Hi all,

    I realized that I did never get back here and tell you how it went.

    I did run on the old hardware for a while until it got unbearable. I than thought to go back to test different things suggested here, but when I started the new firewall again, everything just worked. All interfaces was there etc. I have now run it for several months with no issue. And the problem with the VPN that went down on the old firewall, is also solved, so it must have been too slow hardware. My thought is that it did need one more reboot(?) Maybe an update to get all drivers working or something?

    @Gblenn said in New hardware - not working with config from old hardware:

    I have been thinking about Sophos HW to use for my firwall and as far as I understand there isn't anything "special" about them. Except the SSD that might be locked from installing anything else on it (but thats apparently simple to get around?)

    Yes, I actually did not even test to install PF Sense on the current SSD. I just installed a new SSD. And yes, it seems to be just an ordinary computer with many NICs.

  • 0 Votes
    7 Posts
    594 Views
    C

    Thanks for the useful info.

    Mine was expired 150 days ago, but according to the info above, i've just renew-ed.

  • Crash dump help needed on 2.8. Multiple random occurrences

    3
    0 Votes
    3 Posts
    104 Views
    C

    @stephenw10 unfortunately I had not saved those off but to me as I recall they were same.

    In the mean time I built a new instance with 2.8 instead of upgrading old and built it on the OMV UEFI instead of bios. Fingers crossed.

    If it dumps again I will use both logs next post.

    Thanks.

  • How do I enable IPv6 traffic on VLAN for IoT Matter traffic?

    22
    0 Votes
    22 Posts
    612 Views
    dennypageD

    @Seeking-Sense said in How do I enable IPv6 traffic on VLAN for IoT Matter traffic?:

    @dennypage

    Do you have any experience with the Tapo switches?

    I don’t have direct experience with Tapo. However I do have experience with Kasa, and I can attest that TP-Link goes out of its way to push / force you onto cloud services.

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.