@stephenw10 I ordered one yesterday. Should be in tomorrow. Looks like a weekend project for me. Thanks again.

@cheapie408 said in HyperV passing wireless adapter for WiFi WAN:

@NollipfSense I actually have one sitting here but the reception is horrible, perhaps I need to get me a better one. That might be easiest.

Maybe keep an eye out for a throwaway satellite dish on trash day.

@stephenw10 Thank you 😁

bookie56

RC 24.03.r.20240416.0005

Here too, on x86_64 rig

@stephenw10

Thanks Stephen. The eeros are hard wired and so we should be ok.

@yaegermeister163 said in New Unifi modem and no internet on LAN:

I confirmed with the ISP that it does not lock the modem to a specific MAC address for the router.

Yes but the modem will limit the number of MACs it will communicate with per power cycle based on the config file that the ISP sends to it. Most residential accounts limit to only one... Some commercial accounts will allow from 2 to 5 from my experience.

You can try cloning the MAC of a device that worked on your pfSense WAN page or simply reboot the modem every time you try a new interface.

Re-linking the WAN triggers a bunch of scripts. Among others it would restart the dhcp client and will start by sending a broadcast to any server not just that gateway.

I would start by running the pcap without any filter on WAN. If you see anything coming back in at all that gives us a clue.

Looks like VPP might happen on FreeBSD though, which is really interesting: https://ipng.ch/s/articles/2024/02/10/vpp-freebsd-1.html

OK so you're using Unbound in forwarding mode so it will use the configured DNS servers there. However you have 'DNS server override' set so anything sent by your ISP may be used.

Try testing a host in Diag > DNS Lookup. That will show you all the DNS servers configured on the system and if they're responding.

@vmsadmin said in WAN offline after reboot from local power outage:

However, from the pfsense VM, the private IP addresses on our LAN can be pinged including its own static address at xx.xxx.xxx.118

You mean xx.xxx.xxx.118 as the source? Since your LAN side seems to be using 10.1.X.X?

This looks like some low level disconnection. If you try to ping xx.xxx.xxx.118 from the other router and run a pcap on the pfSense WAN do you see anything ariving at all?

@cheezycat said in 2.7.2 hacked? Chinese characters/code in TONS of files. Persists even after fresh installs.:

These files are not normal, right?

If further doubt : Throw "what is entropy ?" into Google and take the first page proposed : It was https://en.wikipedia.org/wiki/Entropy for me.

[ joke ahead ]

Knowing this, it's time for drastic measures :

@cheezycat said in 2.7.2 hacked? Chinese characters/code in TONS of files. Persists even after fresh installs.:

What are some immediate steps I can take to secure my network?

because you have probably several zip files on your PC or phone : take it down, and reformat it straight away, as you will find the same hieroglyphs in there everywhere. Even worse, all these files like DDL, EXE etc etc are all very suspect !

[ end joke ]

Keep this one on a post-it nearby : the only imminent danger is close : it's the admin himself ^^

Still, I'm curious. For all the files you can 'see', why did you chose entropy ? Or .rnd ? What / who told you to do so ? With what goal ?

Well there have been several fixes for similar crashes that have gone in since 2.6.

If you get another crash check it has the same backtrace. If it's completely different it could be a hardware issue.

@stephenw10 Ok, no idea what is going on but it is all working now. It could have been the DNS Propagation even though I changed everything over on Thursday night! Thank you once again for your help.

Yup, that. But also I'd consider ssh with key only more secure if you're going to open anything.

I've never used that 3rd party API so can't offer anything there.

Yup you will see it everytime any log rotates. So you can mitigate it by increasing the log file sizes or reducing what is logged in whichever log is rotating.

@stephenw10
Thank you for the clear response.
It's a shame it's not a priority, given the criticality of its use.
I see messages requesting it from over 10 years ago. It's no longer a matter of priority; it's a choice :)

@stephenw10 Thank you kindly for the prompt response!

Ehh it didn't bug me too, too much. I looked at my backup xml I downloaded and saw that it wasn't listed in gateways:

902d73f9-e005-40e7-9300-f286dbde4773-image.png

I thought it was my fault because I DID create a couple of gateway but I deleted and created new ones. My OCD was not liking how I named the deleted gateways!! ;)

Thank you again! Have an awesome weekend!

Have you just applied an update? To what?

When it stops you actually lose link? No LEDs on LAN1 on the 4100?

Can it be restored simply by unplugging and reconnecting the link cable without clearing the DHCP leases?
The DHCP server shouldn't make any difference to a NIC link like that.

What do you see logged when you get back in?

What link speed does it usually connect at? Is the link to the switch via a long cable?

I would guess this is a link negotiation issue with the switch in some way.

Steve