No. But you could configure some packages manually to store their logs on external devices. Best solution is to not write the logs at all and just send them to a logging server.

@stephenw10: Yeah pretty sure those are just re-badged Supermicro boxes. As such they are usually waaaaaay overpriced secondhand. Especially if you aren't even going to to use the software that is really what you're paying for. IMO  ;) Steve These XCS 370 and XCS 570 are not always to find on Ebay, but the past year they  popup on regulary time and have fair prices. But indeed, it's a Supermicro in Red  :P Grtz DeLorean

@kejianshi: My experience with design temperatures…. CPUs with design temperatures of 100c start throttling at 70c. People can say they do not, but I've never had a chip with a t-junction of 100c make it beyond 80c before my computer turned into a snail. well, since I haven't seen an APU2 get that hot I'm not sure it's relevant. they tend to run hotter than a regular desktop at idle, but they don't get all that much hotter under load. (assuming the heatsink isn't installed wrong.)

SuperMicro A1SRI-2358F + Chassis CSE-101i isn't really "made" for 2x HDs, but the HD bay does easily fit 2 SSD atop each other. But, since I'm using external pwr supply, the mobo only has 1 male molex connector for HD pwr. So, I had to order female molex to 2x SATA power for the SSDs. Wasn't easy to find female molex to SATA power, but finally got 1 in today. Got everything up and running with Auto Install (ZFS), very easy. Thanks for recommendations everyone. pool: pfSenseZFSpool state: ONLINE   scan: scrub repaired 0 in 0h0m with 0 errors on Thu Dec  7 07:01:02 2017 config: NAME        STATE    READ WRITE CKSUM pfSenseZFSpool  ONLINE      0    0    0   mirror-0  ONLINE      0    0    0     ada0p3  ONLINE      0    0    0     ada1p3  ONLINE      0    0    0 errors: No known data errors

Indeed, not much room for 'other stuff', you'll need more CPU power for that.

@Ehryk: AHA!!! Yep, ran into that too, it was the next thing I would have recommended to check against, however, this applies only to internal headers, external D-SUB connectors are everywhere the same. If you say you had partial success with USB, then after the ACPI trick you should have noticed success on the rear D-SUB too. And only after that, try the internal header…  8) This is not SuperMicro-specific, this dates from the 1990's, there were always two flavours of interal header pinout: IBM/DTK WIRING SCHEME and EVEREX/ASUS WIRING SCHEME. It's only a question of which manufacturer adopts which standard, nothing more.                 SERIAL MOTHERBOARD CABLE 10 PIN DIL TO DB-9                         (IBM/DTK WIRING SCHEME)                   This is the ribbon cable from the MB serial                     connector to the DB-9/DB-25 COM connector                   DIL              DB-9            DB-25                   1 -------------- 1  DCD __________ 8                   6 -------------- 2  RX ___________ 3                   2 -------------- 3  TX ___________ 2                   7 -------------- 4  DTR __________ 20                   3 -------------- 5  GND __________ 7                   8 -------------- 6  DSR __________ 6                   4 -------------- 7  RTS __________ 4                   9 -------------- 8  CTS __________ 5                   5 -------------- 9  RI ___________ 22                   10 ------------- 10  N/C OR KEY                 SERIAL MOTHERBOARD CABLE 10 PIN DIL TO DB-9                         (EVEREX/ASUS WIRING SCHEME)                   This is the ribbon cable from the MB serial                     connector to the DB-9/DB-25 COM connector                   DIL              DB-9            DB-25                   1 -------------- 1  DCD __________ 8                   2 -------------- 2  RX  __________ 3                   3 -------------- 3  TX  __________ 2                   4 -------------- 4  DTR __________ 20                   5 -------------- 5  GND __________ 7                   6 -------------- 6  DSR __________ 6                   7 -------------- 7  RTS __________ 4                   8 -------------- 8  CTS __________ 5                   9 -------------- 9  RI  __________ 22                   10 ------------- 10  N/C OR KEY

@wallacebw: <snip>Assuming I want to be able to run at / near line-rate, is the Xeon-D (1541) enough?  I am specifically looking at to leverage existing SFP+ ports and migrate to a LACP dot1q trunk of the above 3 'lans' onto the 'core' switch , which leads me to the server listed earlier (adding a SFP+ card) or looking at the over the top (1018D-FRN8T) https://www.supermicro.com/products/system/1U/1018/SYS-1018D-FRN8T.cfm The 1018D is getting into the cost territory of a HPE DL360 class server (replace with your preferred flavor), but cooling and noise in the 'LAN closet' (which is close to accurate) is also a consideration, which leads to the Xeon-D options.  I 'could' build my own M-ATX/ITX solution, but a commercial solution and rack mount form-factor is preferred Thoughts?</snip> Your requirements mirror what I have in production right now.  A few months ago I went with the Supermicro 5018D-FN8T and it's definitely more than able to handle that kind of load you mentioned. It can also easily saturate my 250 Mbps upload using IPSec (haven't tried OpenVPN yet…) with plenty of CPU power to spare. We had a thread going on there: https://forum.pfsense.org/index.php?topic=128646.15

Thanks guys.  I now see the distinction between Port Trunking and Ethernet Trunking.  In a sense one is the inverse of the other? And Derelict, I will give your test suggestion a work out as soon as I can.

@marjohn56: It's not a 'must', but anything that reduces risk is worth doing. We have just carried this out on the Qotom G355G4, see the Qotom thread. Yes. Greatly appreciate this message: "anything that reduces risk is worth doing". I have a Qotom G355G4 too, and a Atom D525 box will be changed to C3xxx or 7th or 8th generation i3/i5 when pfsense 2.5 is available.

I've opened a case and I hope Netgate support can provide some advice. I agree it looks like it's power-related, but I wonder if it's just a failing power brick (which I can replace), or a more serious issue with the 4860 board as has been implied earlier in the thread.

The cable just arrived and it worked like a charm. I had to restart pfSense though. Thank you!

Looks like you missed part of the difference between those lines. It should be: sysctl dev.cpu.0.freq_levels The output from the other sysctl looks good though. It lists valid Wattage numbers next to each step at least. The driver is ceratinly loading and attaching correctly. Steve

@arrdoggsxne: I had looked at using a USB flash drive to boot from and then use a RAM disk but am not opposed to a cheap SSD. Thanks If you're gonna boot from USB flash drive, might as well use 2 and take advantage of ZFS mirroring of the root pool.  If you're like me you probably already have a couple that will work lying around anyway.  Also it's dirt simple to move pfSense to different storage thanks to the monolithic config file if you decide to go SSD in the future.

Please Check the Docs –> https://doc.pfsense.org/index.php/Tuning_and_Troubleshooting_Network_Cards#MSI.2FMSIX

Yup that's one of the more wonderful things about pfSense, recovering from a failure is trivial as long as you have your config backed up.

You can leave the entry in /boot/loader.conf.local, the update/upgrade procedure won't touch the file in any way.

I ordered a bunch of Intel NICs (actually Desktop PCI adapters) a while back, some had the mark, some didn't, yet they all were identical (except production date). It seems some older cards were produced around the time the YottaMark was introduced and that's why some simply don't have that sticker.