Installation and Upgrades

• B

  Pkg.pfsense.org appears to be dead
  • basic612  

  15
  0
  Votes
  15
  Posts
  13584
  Views

  P

  bonnie222, I have to agree with johnpoz.  You have something going on with your DNS configuration.  Have you checked your DNS settings to make sure you have a DNS server configured?  Can you successfully look up A records for sites like www.pfsense.org and files00.netgate.com.  If you can't do A record lookups you certainly aren't going to be able to do SRV record lookups. There is an option under 'System -> General Setup -> DNS Server Settings' that allows your ISP DHCP settings to override the local DNS server settings.  If you are using DHCP from your ISP and using their DNS servers make sure this is checked. This should not be unchecked unless you have your own DNS servers, you want to use different DNS servers (like google), or your ISP doesn't provide DNS via DHCP.  If the box is unchecked you have to manually configure DNS servers. If your box has Internet access to google's DNS servers you can test by using 8.8.8.8  as a DNS Server, uncheck 'DNS Server Override" and check the "Disable DNS Forwarder'.  This will skip using the pfSense box for DNS and go directly to Google's DNS server.  If this works then either your ISP isn't providing a DNS server via DHCP and you need to configure a DNS server manually or your own DNS server is filtering what you are allowed to resolve. Hope this helps.
• P

  HOW TO: 2.4.0 ZFS Install, RAM Disk, Hot Spare, Snapshot, Resilver Root Drive
  • pfBasic  

  42
  0
  Votes
  42
  Posts
  26058
  Views

  K

  So is there still no "official" way to have all files in the disk to be included with the 2-copies scheme of set (when "zfs set copies=2 zroot" is set) after installation? I can't find anything in the Internet that answers this.
• 

  2.3.x "Unable to check for updates"/"Unable to retrieve package information"
  • jimp  

  3
  0
  Votes
  3
  Posts
  11260
  Views

  

  Please do not post other update failures to this thread, as they are highly unlikely to be related. Start new threads for different errors.
• C

  Gateway monitoring not working post-2.3 upgrade? Read here
  • cmb  

  20
  0
  Votes
  20
  Posts
  16469
  Views

  

  @dotdash I must admit that you are absolutely right. I am a very impatient person. ;) A couple of minutes ago I finally changed the Payload of the ping (I did it not right at the beginning). Also I inserted a monitoring IP on the interfaces. Now it seems to work but I have absolutely no clue why.
• 

  Issues updating from 2.3-RC (or older 2.3 installs) to 2.3-RELEASE
  • jimp  

  65
  0
  Votes
  65
  Posts
  67683
  Views

  W

  please check your pfsense date and time .
• T

  Squid User Reports Export!!
  • thekpoper  

  2
  0
  Votes
  2
  Posts
  8
  Views

  

  i'm sending all the logs to an external syslog server actually for squid you need to add in the "Custom Option" section something like access_log udp://ipserversyslog:514
• T

  Package manager and support not working
  • tomasz1919  

  5
  0
  Votes
  5
  Posts
  79
  Views

  T

  It took mi some time of trying many things but reason was very simple , I had wrong system time with date 2018. Thank you all for help
• G

  Installing pfSense on Sophos XG 105 rev. 2
  • Garo  

  3
  0
  Votes
  3
  Posts
  1154
  Views

  V

  If anyone is trying this and have the same issue, I followed the post from @CCPFLDN and found that I only needed to do point 2 and then only needed to enter the set kern.vty="sc" command to get the OS to boot and install. After the installation and first boot I edited the /boot/loader.conf file and added kern.vty="sc" at the bottom of the file, saved it and it is booting fine every time.
• I

  China- The first country to scan my IPv6 range.!!
  • iguanagomes  

  2
  0
  Votes
  2
  Posts
  76
  Views

  N

  @iguanagomes said in China- The first country to scan my IPv6 range.!!: hen I see a host in 240e::/18 range scanning one of my /64's. Like, LOTS and LOTS of them. Random IP's being hit in that /64 looking for VNC/Spice (5901). Heads up, China, nothing is open on that /64. I love IPv6, makes it easier to block an entire country or ISP, or end user. All those quintillion+ of IP's are now perpetually blocked. Easy Rule Block to the rescue! Kinda futile to scan a /64, it makes WAY too much noise! Should I be surprised this is actually the first lot of IPv6 I've also blocked in 10 years.... Use pfBlocker and block the whole of China by GeoIP I've had 240e:f7:4f01:c::3 knocking on my /64 door for weeks now.
• T

  Multiple IPs 1-1 Azure
  • twistedstorm  

  1
  0
  Votes
  1
  Posts
  12
  Views

  No one has replied

• C

  pppoe wont store password, how to edit in cli
  • chrcoluk  

  4
  0
  Votes
  4
  Posts
  23
  Views

  V

  @chrcoluk The number of asterisks shown is no indicator for the real number of password characters.
• B

  Snort stops and wont start it service anymore
  • bokikay  

  5
  0
  Votes
  5
  Posts
  38
  Views

  B

  @bmeeks Thank you sir, for the recommendation. :)
• M

  No LAN internet...
  • mebelowsea  

  15
  0
  Votes
  15
  Posts
  82
  Views

  

  Ooops, missed that! Yeah if you disable pf in the advanced settings that disables NAT and you need outbound NAT for any connection to work from the internal private subnet. Steve
• J

  I need a copy of pfSense-netgate-memstick-ADI-2.4.4-RELEASE-p3-amd64.img.gz
  • johnhil31047  

  3
  0
  Votes
  3
  Posts
  64
  Views

  M

  You don't need to have purchased support to open a ticket. I just went thru this myself and they sent me a link for the download in less than 5 min...now if I could just get it working!!!
• P

  New Version 2.4.4 - Interface Error --> aq_add_macvlan err -53, aq_error 14
  • peterfranca  

  32
  0
  Votes
  32
  Posts
  1580
  Views

  X

  Hi, I too have a X710 based system that I'm testing with. I have had some success with the following tweaks to network adapter under pfSense 2.4.3: ifconfig ixl0 -vlanhwfilter -vlanhwtso -tso ifconfig ixl1 -vlanhwfilter -vlanhwtso -tso ifconfig ixl2 -vlanhwfilter -vlanhwtso -tso ifconfig ixl3 -vlanhwfilter -vlanhwtso -tso To re-iterate, the error was still being thrown, but the system continued to process packets.
• T

  Install question
  • Tewodros  

  3
  0
  Votes
  3
  Posts
  68
  Views

  

  I edited your post as it was hard to read. I assume he means just in between two switches. Maybe as a layer 2 firewall? Steve
• 

  Issues with PFSense VMware installation, http connectivity, php error.
  • Yo  

  2
  0
  Votes
  2
  Posts
  33
  Views

  

  probably there is something wrong with your installation, a factory reset will only reset the config.xml to the default value but it will not correct errors on files. you need to reinstall
• B

  Content Encoding error
  • bokikay  

  2
  0
  Votes
  2
  Posts
  29
  Views

  

  there is only one little problem, we can't see the picture
• S

  Pfsense directly connected to fiber dsl (No modem)
  • samyboyz  

  3
  0
  Votes
  3
  Posts
  69
  Views

  A

  I have CenturyLink fiber, from outside it goes to their ONT that's in my office, then ethernet directly to my PC running pFsense. Centurylink uses PPoe, so I have to enter those credentials in pFsense as well as I needed to VLAN tag the WAN with what Centurylink uses (201). After that no problems. I get 940+ up and down on their gig line.
• 

  How Can I Tell if pfSense is "Seeing" XG-7100-1U Optional 4-Port NIC?
  • JSchenk  

  4
  0
  Votes
  4
  Posts
  60
  Views

  

  @stephenw10 Yes, I have them working now. Thanks.
• A

  One interface loses internet access and I could get it back only after reboot the pfsense
  • ady2  

  37
  0
  Votes
  37
  Posts
  566
  Views

  A

  @stephenw10 Thanks a lot Steve for pointing to the right direction. Hope this fix will resolve my issue and will let me enjoy my pfsense firewall.
• B

  Zone: pf states limit reached?
  • bokikay  

  14
  0
  Votes
  14
  Posts
  43
  Views

  

  That is a lot of states. Does it make sense that those all exist in your environment?
• 

  Booting from different hardware: getting flooded of hashes (#)
  • maxxer  

  2
  0
  Votes
  2
  Posts
  37
  Views

  

  Probably a difference in the BIOS and how it expects to boot (MBR vs GPT, or BIOS vs UEFI). In most cases you can move a drive around, but at that point it mostly depends on the BIOS settings vs the disk boot layout/partitions.
• O

  Pfsense on proxmox no lan connection
  • openaspace  

  1
  0
  Votes
  1
  Posts
  21
  Views

  No one has replied

• 

  Package Manager Not Updating [Solved]
  solved update package manager • • pfSenseTest  

  16
  0
  Votes
  16
  Posts
  140
  Views

  

  Cool, thanks for confirming.
• K

  Upgrade from 2.4.4 -> 2.5 no networking
  • kraduk  

  12
  0
  Votes
  12
  Posts
  336
  Views

  C

  Having the same trouble. After upgrading, the second re1 stopped working as soon as bsd loaded. I tried re-installing, but formatting re-installing didn't help because pfsense downloaded the latest version which disabled the second nic, again!. ifup re1 didn't work. I could see that I had a physical link, until bsd loaded and before the firewall software loaded up. The problem appears to be BSD and not pfsense. I can't install packages because 2.4.3 is looking for an upgrade and, frankly, I really don't want suffer the same trouble on a production system. Any help here would be appreciated. Not the way I wanted to spend my saturday afternoon. I ended up installing on a completely different system. Thanks
• B

  Bios update
  • Bulldogg  

  3
  0
  Votes
  3
  Posts
  86
  Views

  

  @Bulldogg said in Bios update: Apr 5 2014 That must be what we were selling as an APU4 right? Which is actually an APU1 with 4GB RAM. You will need to APU1 rom file if so. There is no real reason to update Coreboot on that I'm ware of though. See: https://forum.netgate.com/post/777287 Steve
• T

  Can Pfsense install in raspberry pi 4
  • tmz  

  5
  0
  Votes
  5
  Posts
  224
  Views

  

  there will be it one day? even without aes-ni ? afaik the crypto chip part was ripped off from the raspberry to save money but if someone have the will to make 2.4.4 work on it maybe ...
• C

  Pfsense no internet access on Esxi server
  • craig121  

  27
  0
  Votes
  27
  Posts
  118
  Views

  C

  Hallelujah - its finally working and sorted - follow the OVH links for a server on OVH. I wish i had looked at the articles rather than following a youtube video where i shouldn't have configured pfSense by adding static routes etc. Plus the gateway was set incorrectly. Kom and Awebster - really appreciate your help.
• B

  pfsense restarts always
  • bokikay  

  5
  0
  Votes
  5
  Posts
  53
  Views

  B

  @Gertjan thank you very much sir after I run the fsck -y command the reboot loop stop and it back to its normal operation. I hope i could not see crash report again..
• S

  High CPU usage after update from 2.3.4 to 2.4.0
  • stevebaynet  

  5
  0
  Votes
  5
  Posts
  85
  Views

  

  Probably this: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=215471 Try removing the virtual cd drive. Steve
• C

  Factory reset from Shell (Single User Mode)
  • chrisarm  

  5
  0
  Votes
  5
  Posts
  59
  Views

  

  On install of OS you have options to recover config.xml from previous install before format drive. FYI: now you can auto backup config for free out of box to netgate servers in encrypted way. Or if you have paranoid you can use curl script to download backups on another unix-based machine internally.
• P

  2.3.5 on HP T610 Plus
  • Presbuteros  

  11
  0
  Votes
  11
  Posts
  89
  Views

  P

  I completed the install with pfSense-CE-memstick-2.4.4-RELEASE-p3-amd64.img I put the Allied Telesis 2711FX back in and it goes back into a panic. Seems others have run into no support for this card in freebsd. http://freebsd.1045724.x6.nabble.com/12-STABLE-CURRENT-Dell-PowerEdge-2950-Allied-Telesis-AT-2711FX-SC-100MBit-fibre-NIC-not-recognized-td6328982.html
• O

  random sources feed: rs_read for hardware device 'intel secure' key ring" returned no entropy
  • ozlecz  

  8
  0
  Votes
  8
  Posts
  31
  Views

  N

  @NogBadTheBad said in random sources feed: rs_read for hardware device 'intel secure' key ring" returned no entropy: Anything in the BIOS that can be switched off for the Intel secure key ring / random number generator ? https://software.intel.com/en-us/blogs/2012/05/14/what-is-intelr-secure-key-technology You may be better looking in the FreeBSD forums, I'm not sure if pfSense even uses the Intel RNG maybe @jimp or someone else from @netgate
• K

  odd issue with ram?
  • killmasta93  

  13
  0
  Votes
  13
  Posts
  156
  Views

  

  @biggsy said in odd issue with ram?: @bmeeks Thanks for the link. I think I get what it's all about. Just found it strange that both topics seemed to be about memory shortage under two different hypervisors. I found precious little information about that specific error. In fact, practically nothing. I did see SRAT issues mentioned for ESXi and Hyper-V, though. It might take looking into some hypervisor source code to see what the error really means. Hopefully such code is commented enough that you could discern what might be up.
• E

  Asrock Q1900M install
  • enigmen  

  11
  0
  Votes
  11
  Posts
  100
  Views

  E

  I connected hdd to another motherboard and the system booted. I made the setting and returned hdd to q1900m. Now I go through web interface
• H

  Intel 10G "aq_error 14" did anyone find a fix for 2.4.4.p3?
  • Hass  

  2
  0
  Votes
  2
  Posts
  77
  Views

  H

  Just a heads up we moved the LAGG to an Intel X550-T2 and this appears to have removed (dodged) the issue
• R

  Pfsense Install on Nokia IP390
  • RBT-RS  

  118
  0
  Votes
  118
  Posts
  18968
  Views

  P

  there are 3 LED related functions in the Check Point kernel ... janus_pld_red_led_set (Bit 0x01) janus_pld_yellow_led_set (Bit 0x02) janus_pld_green_led_set (Bit 0x08) they write to port 0x348 ... this seems to be the Altera MAX II chip (PLD) next to the diag display btw: the PLD also monitors powersupply status ... and there are 4 LED related functions for 'Phalanx PLD' ... phalanx_pld_red_led_set phalanx_pld_yellow_led_set phalanx_pld_green_led_set phalanx_pld_disk_led_set ***** this might be the explanation for the 'missing' led on the frontpanel PCB (Bit 0x04 is assume) hope this helps - sorry for the late reply ;) /paketix
• C

  Connecting PON Modem to PFSense has very high latency
  • cinlung  

  2
  0
  Votes
  2
  Posts
  38
  Views

  

  @cinlung said in Connecting PON Modem to PFSense has very high latency: FO PON modem directly conect a pc on port 1 of your pon modem a do a test, more likely is a ISP problem
• B

  pfsense restarts everyday
  • bokikay  

  5
  0
  Votes
  5
  Posts
  104
  Views

  B

  @Renat hello sir thanks for this thread it help me a lot. I have to observed this machine if error still exists. Thumbs up! ;) AMD A6-6400K APU with Radeon(tm) HD Graphics 2 CPUs: 1 package(s) x 2 core(s) AES-NI CPU Crypto: Yes (inactive) I have 1 NIC card attached on my machine. Winyao E350T4 PCI-E X1 Quad Port 10/100/1000Mbps Gigabit Ethernet Network Card Server Adapter LAN I350-T4 NIC This is the specs the NIC card having 4 ports. I hope that the error be fixed. ;)