no problem, best of luck in your adventures.

I followed this youtube tutorial https://www.youtube.com/watch?v=ZwQpB5hlvD4P and this reddit thread https://www.reddit.com/r/technology/comments/3rt1v5/loading_pfsense_on_watchguard_xtm_5_series_model/

Hmm, interesting. Also apologies I totally missed this was 11 days old! Steve

@stephenw10 said in Do not upgrade to Pfsense 2.4.4_1 Firewall rules with aliases are not processed: Hmm, interesting. What's special about that then. Some odd character in there maybe that would be disallowed now but passed input validation years ago when it was added? If you want to open a ticket and send us a status_output file I can look through it. https://go.netgate.com Steve done

How did you apply the patch? It should not be possible to apply it to 2.4.4p3 as it's already present. If you were able to then your install is in some odd state. Steve

@jimp said in Upgrading from 2.4.3 to 2.4.4 new error in logs: What packages do you have running? Are there a lot of clients hitting services on the firewall itself? That is probably referring to a UNIX socket, not a TCP socket, so the tunable probably won't help. I did a grep against netstat and I could not find the pcb. The pcb is consistent upon each boot up: Jul 9 23:54:45 kernel sonewconn: pcb 0xfffff8003f322570: Listen queue overflow: 8 already in queue awaiting acceptance (1 occurrences) Jul 9 23:52:45 kernel sonewconn: pcb 0xfffff8003f322570: Listen queue overflow: 8 already in queue awaiting acceptance (1 occurrences) Jul 9 23:48:15 kernel sonewconn: pcb 0xfffff8003f322570: Listen queue overflow: 8 already in queue awaiting acceptance (4 occurrences) Jul 9 23:47:15 kernel sonewconn: pcb 0xfffff8003f322570: Listen queue overflow: 8 already in queue awaiting acceptance (2 occurrences) I have the following packages: acme Avahi bandwidthd iftop nut Open-VM-Tools openvpn-client-export RRS_Summary siproxd

@stephenw10 said in Installing pfSense on Google Cloud Platform: I have a 2GB drive on the VM I use there. There is still some tiny storage charge. Steve Thanks Steve for chiming in...I have been reading up...seems that the 100GB for $20/year appear to be a good deal. It would be extremely cool for pfSense to demo this in a hangout session.

Thanks for the link.

Sorry about not point out an error. For starters. Heres my error for just running pkg update [2.4.4-RELEASE][root@firewall.example.com]/root: pkg update Updating pfSense-core repository catalogue... pkg: Repository pfSense-core load error: access repo file(/var/db/pkg/repo-pfSense-core.sqlite) failed: No such file or directory pkg: https://pkg.pfsense.org/pfSense_v2_4_4_amd64-core/meta.txz: Network is unreachable repository pfSense-core has no meta file, using default settings pkg: https://pkg.pfsense.org/pfSense_v2_4_4_amd64-core/packagesite.txz: Network is unreachable Unable to update repository pfSense-core Updating pfSense repository catalogue... pkg: Repository pfSense load error: access repo file(/var/db/pkg/repo-pfSense.sqlite) failed: No such file or directory pkg: https://pkg.pfsense.org/pfSense_v2_4_4_amd64-pfSense_v2_4_4/meta.txz: Network is unreachable repository pfSense has no meta file, using default settings pkg: https://pkg.pfsense.org/pfSense_v2_4_4_amd64-pfSense_v2_4_4/packagesite.txz: Network is unreachable Unable to update repository pfSense Error updating repositories!

@KOM I'm inclined to accept, that he is talking about a cluster setup maybe and the device does not have direct internet but only via its cluster member/master or some other router so that it doesn't has active internet when not on duty?

Static IPs are very rare for PPPoE. Even more rare are links with no gateway specified. If you need to use a custom mpd config though a conf file in /conf will be used in preference the generated one in /var/etc as you found. Steve

as i said i don't use haproxy so you need to test this out create backend : Address: you put the webseerverip you have [image: 1562494203016-backend1.jpg] create one for every webserver you have [image: 1562494223973-backend2.jpg] : then you go to frontend and create acl and action: [image: 1562494806968-frontend1.jpg] pls do not pm me i'm not helping for money donate it to netgate forum / buy a service or an appliance when you can afford it, from them / buy a new car for johnpoz / donate it to some charity have a nice day

@bmeeks Made contact and opened a ticket. Thanks to the forum. In the end went nuclear and re-imaged device. Looked like the file system was off some how during reboot. All done. Will watch for hardware issue. But think this may be an isolated case. Cheers.

Thank you

@CompProbSolv said in Can't change WAN Config Type (invalid IP.. PPPoE Password...): As it sits, it's still on DHCP and "admin" appears in the "reject leases from" field. I've looked at the config.xml file and find the line: <dhcprejectfrom></dhcprejectfrom> I expected to find "admin" in the middle of that. We had sth. quite like that on another topic. Problem was the users browser and saved credentials that somehow always got auto-inserted when he visited the WAN interface. Seems like a Chrome (not Chromium/Firefox/Opera/etc.) specific problem with its password manager running haywire on fields that have nothing to do with passwords.

That did it. Up and running with ZFS. That installer is really confusing. Many thanks.

Now that a few months have passed I'm wondering how ZFS is working out on low powered hardware like the type listed above (Celeron(R) CPU J1900 @ 1.99GHz/4GB Ram/Single mSATA SSD)? TLDR; Current system resource usage is very light My current memory utilization is about 25%, Disk utilization is about 8%. I don't know how to measure maximum CPU Usage, but I suspect it is pretty light as well since the network just a small home network (most I've ever been able to observe is something in 25-30% range). Any issues with excessive resource usage? What about with a single SSD with no redundancy? Anything else to watch out for? I'm using ZFS on FreeNAS, and even on Linux, but that is with much more powerful machines with 32GB of RAM and redundant storage. ZFS has been great-especially snapshots with the ability to "rollback"-that ability would make upgrades much less stressful if an upgrade could be reverted with a single rollback command. Any comments much appreciated.