I've been running this card for a while: ix0@pci0:2:0:0: class=0x020000 card=0x17d3103c chip=0x10fb8086 rev=0x01 hdr=0x00 vendor = 'Intel Corporation' device = '82599ES 10-Gigabit SFI/SFP+ Network Connection' class = network subclass = ethernet It causes reboot problems but that's almost certainly a BIOS issue in that particular box. It's an HP-560SFP+ card. x520 in general should definitely be supported, it's been in the ixgbe driver for years. Steve

As in the previous posts before me, a suspiciously cheap card is sure to cause trouble, there are plenty of fake Chinese clones out there :-). It can be said that there is a good support for Intel cards under FreeBSD, but not all chipsets are suitable. It's a question of what you want to use it for in the pfSense? I350-based cards are perfect, with a smaller compromise I210 and possibly I211-based. (igb4) - https://www.freebsd.org/cgi/man.cgi?igb(4) As Steve recommended, search for possibly used brand (HP, Dell, etc.) cards based on Intel Ethernet controller. I would also take into account the recommendation of "bmeeks" (Bill Meeks) for your future use of NGFW: " Snort Package 4.0 Inline IPS Mode Configuration IMPORTANT HARDWARE LIMITATION The new Inline IPS Mode of Snort will only work on interfaces running on a supported network interface card (NIC). Only the following NIC families currently have netmap support in FreeBSD and hence pfSense: em, igb, ixgb, ixl, lem, re or cxgbe. If your NIC driver is not from one of these families, netmap and Inline IPS Mode is not going to work properly, if it works at all." The question of dual / quad is the extent of usage and the question of segmentation, how big is your network?

No it just means the button itself is registered not that it was pressed. It's a message that appears at boot in almost every x86 device. For example: isab0: <PCI-ISA bridge> at device 17.0 on pci0 isa0: <ISA bus> on isab0 pcib5: <ACPI PCI-PCI bridge> at device 19.0 on pci0 pci4: <ACPI PCI bus> on pcib5 acpi_button0: <Sleep Button> on acpi0 acpi_button1: <Power Button> on acpi0 acpi_tz0: <Thermal Zone> on acpi0 acpi_tz1: <Thermal Zone> on acpi0 acpi_acad0: <AC Adapter> on acpi0 You need to check the system logs for whatever the last thing shown was before it shutdown. Steve

@provels, Im not sure if top will show you what you need, but the command "procstat -ta" will list all processes running including all processes that start with zio. I also ran a zfs scrub and zpool status command, the array appears normal without any issues reported: pool: pfsense state: ONLINE scan: scrub repaired 0 in 0 days 00:00:02 with 0 errors on Tue May 5 11:09:44 2020 config: NAME STATE READ WRITE CKSUM pfsense ONLINE 0 0 0 mirror-0 ONLINE 0 0 0 ada0p3 ONLINE 0 0 0 ada1p3 ONLINE 0 0 0 errors: No known data errors

FreeBSD 13 is the bleeding edge development branch. It won't make it into pfSense anytime soon. An additional 1G NIC should not be a big deal. You may be able to use VLANs instead if you have the switches. Steve

no, no difference

Now in this case it is not the "size" that matters :-) The size of the PCB depends on the component density of the cards and the ideas of the engineers designing the circuit. The front of the cards is most often interchangeable with a full-size and half-size adapter plate. Hmmm, if I remember correctly we have already talked about the right source of purchase above. Amazon is not a typical quality hardware retailer site. I'm glad you resolved the issue without community help.

It doesn't show at all in pciconf or it just shows up as a 'none' entry? If it doesn't show at all then a newer driver will not help. Steve

What? (smells like spam) Edit: Yup!

You only need to add the line to /boot/loader.conf.local. The standard file, /boot/loader.conf, may get overwritten. Steve

Ok, so basically still DHCP for what counts for throughput. So what does top -aSH show when you are testing? I imagine it will show at least 1 CPU core at 100% but it will also show what processes are using the CPU cycles. Steve

Or you can find a J3160 cpu barebone on aliexpress.com which usually costs around $200(with the shipping fee to US. Just an example) with 4 intel LAN and slightly better Passmark score. Or AMD RX-427BB 2nd hand on ebay.com like HP T730 or DFI DT122 with higher power consumption and more powerful cpu.

Well assuming those cards did not fail, as we have seen some fake Intel cards do, then there should not be a problem. You might want to look for OEM NICs from Dell, HP, IBM etc which use Intel chipsets and are much more likely to be genuine. Of course if getting hardware is difficult that just use whatever you have, it can probably be made to work. Steve

Yes, unfortunately it's almost impossible to get data from the eMMC if the board has failed completely. The one thing you might try is resetting the NVRAM. That presents in the same way, Coreboot fails to POST, the status LED remains red. To reset the NVRAM on the SG-series desktop model follow these steps: Remove power from the system. Remove the case and orient the system with the Ethernet ports facing you. Locate the NVRAM reset jumper located just the left of the CPU heatsink. On early models it is labelled J8, on later models it is labelled J10. Only one of the two will have pins and the jumper present. Move the jumper from pins 1 & 2 to pins 2 & 3. Power the system on. The STATUS and SATA LEDs will light briefly then go out. Remove power, move the jumper back to it's original position and reattach the case. That was a more common issue when those boards were introduced but subsequent Coreboot updates pretty much eliminated it. You have nothing to lose by trying it though. Steve

If it's the 1100 that looks like it's an ARM device so you won't get pfSense on there without significant development work. Steve

Yeah, that hardware will barely notice 50Mbps. You could easily put all of it in a VPN. And run packages. The only downside is they are power hungry and hence often loud. It will be quite old as well so reliability could be a factor. Steve

Yes, I only have a firebox X750e, so I only make this widget for my usage :) But don't hesitate to make a pull request if you want add more compatibility

No. You need to complete the install as normal and then setup enough so you can access the webgui. Then import the old config from Diag > Backup/Restore. It is possible to import a confug during the install but you need to have it on a USB drive passed through VBox as you suggested: https://docs.netgate.com/pfsense/en/latest/backup/automatically-restore-during-install.html#configuration-from-usb-during-install The recover config option you are using there in the installer is for recovering a config from the drive you are installing to. If you needed to re-install an existing firewall for example. Steve