@BlueKobold:

"refurb" is most likely a lie if it is <$100, hell if you paid less than $150 aftermarket and got an honest i350 quad port anytime in the last year I'm impressed.

Quad Port ~$126
Dual Port ~$72

Clones/knockoffs, and damned overpriced ones at that: a knockoff i350-T4 is ~$50 in bulk.

Notice how you can't read the silkscreens on the major components? Granted some of them at least make a half-assed effort to scratch a fake "Delta" etc or paste in a picture of a real one.

Not every real intel card has a yottamark (not all the OEMs bother) but its pretty hard to fake and a reliable indicator of a legit card. Not impossible, but outside the means of most shadow shifts.

Is there the latest firmware image on the modem?
You could try out to connect the modem and your pfSense box to a
small network GB LAN switch to surround or get rid of this issues.

if so will i need to reapply the configuration every upgrade?

This might be able to realize it, but together with the upgrades it will be also able to
get then more failures as normal and yes you must then change this even more and
more again to your custom set up.

Hi

You can find it here:

https://forum.pfsense.org/index.php?topic=20095.msg510551#msg510551

@BlueKobold:

WHAT ?!?!

What you mean with this "What"?

–
I was surprised

Thanks for your update. Netmap looks like a nice feature.

@BillBraskey:

@mer:

One mans bonkers is another mans interesting experiment/mountain to climb :)

FreeBSD has been x86/amd64 as the primary platforms for a long time.  PowerPC has traction in the mailing lists, as do ARM and SPARC (SPARC is up and down).  x86/amd64 are Tier 1 platforms (fully supported), PPC, SPARC64, ARM are Tier 2, so I'm guessing it may be a good bit of effort to get pfSense up and running on your specific hardware.  I'm guessing you'd get very familiar with the pfSense build process.

https://www.freebsd.org/platforms

If you have the time and desire, no reason to not give it a try.

pfSense is my first contact with FreeBSD.  I assumed (wrongly) that it had the biodiversity and broad-mindedness that the Linux community has.  The more I read about it here and on BSD fora, the less I understand its continued existence.

FreeBSD supported platforms include: i386 (Tier 1), amd64 (Tier 1), ARM (Tier 2), MIPS (Tier 3), pc98 (Tier 2), PPC (Tier 2), Sparc64 (Tier 2) and xbox (N/A).  Support has ended for alpha (was tier 4) and ia64 (was tier 2).

pfSense has run on arm, but I'm not ready to release it for arm.

Someone might take the pfSense source code and make it run on a platform such as arm, SPARC or MIPS, but the result will not be "pfSense".

Linux and FreeBSD have different reasons for their existence and relative success.

pfSense has run on

Was the modem properly detected after restart?
Are there any errors in ppp log?

I had numerous issues with the firewall because I mistyped a configuration option upon first setup. This setting is not included in any pfSense backup, and must be performed BEFORE the watchguard firebox fully boots pfsense.  When booting a fresh CF or Microdrive on a WatchGuard box you need to interrupt the boot loader when it starts counting down from 4. You'll see the OK prompt. At the prompt enter:

set hint.ata.0.mode=PIO4 set hw.msk.msi_disable=1 boot

That will allow the card to boot and you can then add the lines to /boot/loader.conf.local
You can create it and put the lines into it by executing this in the Diagnostics > Command Prompt Execute Shell command box:

/etc/rc.conf_mount_rw echo 'hint.ata.0.mode=PIO4' >> /boot/loader.conf.local echo 'hw.msk.msi_disable=1 ' >> /boot/loader.conf.local /etc/rc.conf_mount_ro

The Hitachi 4GB Microdrives are much faster than any CF card that I've used so far, and don't suffer from write limitations of flash memory (I've had to replace CF several times due to logging wearing out the CF card.) Also, they are $4 apiece on eBay - an actual tiny hard drive! When using a Microdrive, one can set NanoBSD to permanent read/write mode which eliminates slowdowns that users experience with the WebGUI.

I am sorry that I wasn't clearer in my description, and since this laptop is so old, it's hard to get a lot of documentation on it, however, I did happen upon one site that said it is a type II PC Card Slot Supporting CardBus only.

That said, I searched though the supported cards on freebsd for cardbus NIC's and came across the one I mentioned.

The website i finally found the info at was here:

http://tech.madcatsden.com/Resources/DCSE/Portables/Inspiron/700m/Basicfeatures.htm

So i have tested both Usb-Sticks the Ralink and TP-wn321g under Freebsd 10.1-p24 and both sticks are working in the Ap-Mode. The Problem is also definitively PFsense, but why cant i understand have you Ideas?

How often you are booting your firewall?

Right On!!!! Should be measured in weeks between releases!!!

And why you think it was locked?

There is no reply button.

What did you install? NanoBSD or a full install on HDD/SSD?

Full install on HDD.

STM150 is not suitable for pfSense.

Thanks for your reply.

Does anyone has an update on this topic? It's been already a long time and this has not been fixed yet. I've searched for good USB/Ethernet adapter on Google, first post on reddit recommended DUB-E100. Ping goes through, but can't reach the webpage. Checked for solution and found this 3 years old thread.

You should put your logs inside # [ code][ /code] (no space " " inside the [])

From this boot it doesn't seems it recognize your NIC, maybe try another PCIe slot, or try just booting the psense LIVECD on you other computer to see if it recognize the NIC on another motherboard.

Also seach the forum with you NIC Model to see if someone else use it on pfsense.

On the Wiki there is a list of supported hardware.

@jjduru:

@JBNixx:

@jjduru:

@JBNixx:

Appreciate the input, but I don't agree for a machine at home.

You should agree with bluepr0. Even if it's a home lab/network router, the requirements for a stable environment are as high as the ones for small business production environment, hence a server class mainboard should be your aim/makes sense.

ECC memory won't break your wallet, even if it's more expensive. Once you figure out what server class mainboard is able to handle ESXi correctly (VT-d capable), 72 heavenly virgins are going to open up in front of you when it comes to the possibilities of what you can do with your new toy. And really the dedicated vs virtualized debate should not exist in 2016.

And that 500W PSU, for a 24/7 server that does only pfsense, it's really the eye opener (read total overkill). With proper hardware you could get by with no issues with just 12V/5A/60W charger adapter.

The problem here is you're all missing the point.

This was built with cheap and parts I already had. Buying ECC memory, Buying a server grade motherboard, buying a Xeon CPU, buying a SFX PSU ect. would push the price up. It also wouldn't give me any more measureable stability or reliability.

As for the 500W PSU, sure it's overkill, but why buy a new smaller unit when i already a PSU on hand? Additionally I’d like to qualify exactly how much the whole unit pulls from the wall:

30W “Idle”
47W under load.

Pump that up to 50W an hour (Full load 24/7). That comes out to $20USD a year, but lets double it to be unfair. $40 bucks a year if the price of electivity doubles - My little PFSense box will be the last of my worries.

Regarding virtualization - I already use KVM on an Intel NUC that runs: Gitlab, Owncloud and Confluence. 2 Boxes that pull minimal electricity and they run the lot.

@BlueKobold:

pfSense is a software firewall and could or should not be compared to any kind of home router equipment
that is doing only SPI & NAT and mostly pushed by an FPGA/ASIC, so that the real work is done in Silicon!
And calling it for a home build is in the most countries something with 50 MBit/s down and 10 MBit/s upl
and NAT together with some firewall rules. This is for me a home set up able to realize with ~$200.

If you have other or more needs and need to install more packets or activating more services, you should not
start then call it home set up, because you are at home using this construct!!! So if this will be ending then
as a half or fully featured UTM device with 500 MBit/s to 1 GBit/s that must be fully routet at the WAN interface
and half of this throughput must be the VPN throughput on top, I think this might be answered by others then me.

Where i live "Homes" have fiber up to 1Gbps. So no, a "Normal" home in my area doesn’t have a 50/10 connection. They have maybe a 100/100 connection. Also i don't live in "Most countries" I live in MY country, so i have to make sure that the Firewall can support a 1Gbps connection.

Additionally I run some services behind this PFSense firewall such as Confluence, Owncloud, GitLab and VPN among other things. Maybe It’s not a "Typical" home firewall, but it's MY home firewall. I'm still a home user even though I have chosen to host my own services at home. A power user if you will.

**With all that being said. And taking given limitations and constraints of the project into account I now have a 5 port PFSense firewall. It's quiet, it's cool, it pulls little electricity and it does exactly what I want it to do for very minimal cost.

And I never ever said it was the best most awesome PFSense box in the entire solar system :)**

Sunshine, if you're dead set on this config, why are you still asking questions here? If you need a debate to clarify your thoughts on the hardware build, this is the place to do it, but this is increasingly not looking like a debate, but more like an one-sided axiom.

YOUR home firewall is wonderful and perfect. Have at it.

I asked if it would do the job. No more.

I already had everything except for motherboard and CPU. I picked up the cheapest board and CPU that would do the job.

That's why it's strange when the "feedback" I get is "omg 500w PSU". " buy server board" ect..

But its fine. I get the point. There are higher quality/better suited components out there. But I already knew that.

The interfaces and the console are the primary concerns, if you fixed those up you're fine.

Technically the serial console can work at any speed on either device, so long as you know what the speed is and the client is set to match. No reason not to use 115200 in this day and age though, even on the ALIX.

We have code to detect the RCC-VE devices and force the console on so it doesn't need to be marked as "enabled" in the config.xml

eMMC is not the problem.  Netgate boxes use eMMC as well. But I wouldn't install it on a single nic. It's simply against the nature of a firewall.  I recommend watching this video, it is very helpful.  https://youtu.be/0spAIaWb7x0

I haven't noticed 2 pcie Slots in the box. That could be a way to expand.

SG-2220, SG-2440, Sg-4860, SG-8860, C2758 1U and XG-1540 are able to buy from the pfSense shop.
And only the C2758 1U and the XG-1540 is sorted with an PCIe expansion slot.

SDSL is 5Mbs = 15Mbs : 8 = ~ 2 MB/s max

Ok.

So 10Gbe is defentively oversized.

At the WAN port for sure and of course, this was for the uplink to the DMZ and LAN Switch.

With you're advices I'll then go to a pair of 4860s which will be enough and cost effective.

But it comes without any expansion slots! But ok it will within shipped 6 Intel based GB LAN Ports if this is
enough go for it. Perhaps it might be also a good idea to go with a pair of SG-8860 units that is stronger.

$20 more than the 120gb, and can be used in the future for something else if need be

Others were reporting here in the forum that the Samsung 850 EVO seems to be not working together
with the TRIM command or support from pfSense. So I personally would be aware of this SSD.

In earlier times that SSD have had also Firmware problems and I really don´t know if this would be
solved 100% out. So an older Samsung840 Pro without this problems is also fast and cheaper to get
as it is older, but without known failures and firmware problems.