Yes that still the same. What's different is if you have a switch with a bunch of VLANs and a single 1G trunk connection back to the router/firewall. If, for example, you have some devices pulling huge files between two VLANs that could saturate the trunk causing problems for hosts on other VLANs that might be trying to access external resources. With separate interfaces in that situation you are only limited by the routing capability of the firewall itself, usually well over 1Gbps. Steve

@airone-0 said in SFP modules not visible: @dobby_ said in SFP modules not visible: If you are using their routers, together with their equipment, all is fine... In Italy, for the normal user, having a Tim Italia router with 1Gb of speed may seem the best. However, it is enough to have a little experience and require a little more stringent use of the internet to see the limits of the router. I was only thinking "where is the difference?" ISP outer in front of the pfSense Media converter in front of the pfSense. Ports that remain closed and cannot be opened, units connected by cable that remain invisible to the router and therefore unmanageable, connection parameters invisible and blocked by the ISP, etc.: being able to remove the ISP router becomes a liberation. For sure I know what you want to say with this! I am using a AVM FB7490 and in the future it will be a FB 7590 AX. I opened one LAN port to the WAN port of the pfSense as an "Exposed host". There are several APPs for iOS and Android you can use for that router and it will be there only connected the; SmartTV (snitch) small NAS (for VPN road warrior connect) @Dobby_ , are you sure there isn't some VLAN port to set on the Netgate as regards Deutsche Telekom? I don't know the connection parameters of DT, but when I tested the Media Converter I lost a lot because at first it didn't connect, until I realized I didn't set the VLan port correctly. After that the connection took place in an instant. In Germany the Deutsche Telekom is using for their Glasfaser (Fiber) network VLAN ID 7 at the WAN port. But many other ISPs do it also. Deutsche Telekom: VLAN 7 Vodafone: VLAN 132 Helinet FTTH: VLAN 414 EWE Tel: VLAN 2011

@gwaitsi said in Yanling J1900 4Port N10 - Shoutout for customer care: FYI - on a separate note, same with qotom, the first thing to do with these boxes is remove the thermal pad between the heatsink and cpu and replace it with a good quality thermal paste. Dropped 10deg on my devices by doing that. This should be done at many of the Chinese mini PCs, 10 degree cooler is really good! Also having hands on the latest BIOS should be nice to have.

How does it appear at boot? Do you see USB com ports created? What com port are you setting to see that error?

@prochid said in Required Hardware Build: ISP is going to give me 2 STM1 connections. So ~300Mbps total? Almost any hardware running pfSense would handle that. You might have a very large number of states with that number of users even if they don;t get much bandwidth so you would want a reasonable amount of ram. Steve

The igb NICs in that hardware have been supported for years. If they weren't they wouldn't attach and you can see all 8 igb interfaces are shown. Is it possible that was regarding igc NICs in a different device?

@jibun-no-kage said in Barracuda 310 NIC Bypass-Override: These small C programs are either gone from their original download sites Here's that source for reference. BCHW.c.txt Steve

@alactus So just a mini write up of the actions of the above for future reference (so its all in one spot) Assumptions pFsense setup with 2 disks in a zfs mirror, ada0 and ada1 (as seen from the WebUI) One of the disk fails in the mirror, you can see this if you have the WebUI widget on to monitor the disks etc You have backed up your config and you have a usb key with the install image on ready to go again in case of issues You have physically removed the failed disk from the system and replaced it with a new disk of the same size or bigger Enable the option to ssh into the firewall via the WebUI, use your favourite client to ssh into the firewall and get to the root shell zpool status This will show you the status of the zpool mirror, in my case it said it was degraded because of one failed disk We create the partition table on the new disk ada1 (change this for the actual disk in the mirror you are replacing) gpart create -s gpt ada1 The sizes in the following commands are all based on my own sizes that got used at the time i installed pFsense on this hardware, if you wish to check the exact size used you can check the install log (bsdinstall_log) that is located in /var/log/ example [23.01-RELEASE][admin@pfSense.localdomain]/var/log: grep "freebsd-boot" bsdinstall_log DEBUG: zfs_create_diskpart: gpart add -a 4k -l gptboot0 -t freebsd-boot -s 512k "ada0" DEBUG: zfs_create_diskpart: gpart add -a 4k -l gptboot1 -t freebsd-boot -s 512k "ada1" [23.01-RELEASE][admin@pfSense.localdomain]/var/log: grep "freebsd-swap" bsdinstall_log DEBUG: zfs_create_diskpart: gpart add -a 1m -l swap0 -t freebsd-swap -s 34359738368b "ada0" DEBUG: zfs_create_diskpart: gpart add -a 1m -l swap1 -t freebsd-swap -s 34359738368b "ada1" [23.01-RELEASE][admin@pfSense.localdomain]/var/log: grep "freebsd-zfs" bsdinstall_log DEBUG: zfs_create_diskpart: gpart add -a 1m -l zfs0 -t freebsd-zfs "ada0" DEBUG: zfs_create_diskpart: gpart add -a 1m -l zfs1 -t freebsd-zfs "ada1" Knowing the size you can continue (and the commands, you can change for the ones found in the log if its a different disk etc) Create boot partition gpart add -a 4k -l gptboot1 -t freebsd-boot -s 512k ada1 Create swap partition gpart add -a 1m -l swap1 -t freebsd-swap -s 34359738368b ada1 Create the partition that will actually be added to the zfs mirror gpart add -a 1m -l zfs1 -t freebsd-zfs ada1 in each case ada1 was the disk that had failed in my system, change for the actual one that had failed in yours We can now add this disk (ada1) to the pool. zpool attach zroot ada0p3 ada1p3 at this point (if everything is ok) all the data will be copied from ada0p3 to ada1p3 through a process called 're silvering' zpool status will show this. Once the re silver process is done, you need to add the boot code to this zfs boot mirror gpart bootcode -b /boot/pmbr -p /boot/gptzfsboot -i 1 ada1 Is the command i had to run for my setup. -i 1 is the partition we are going to add boot code to and ada1 is the disk we are adding it to. To check which is the boot partition (it should be 1 in the case of pfsense but just for your own information) you can run the command gpart show which will list all the disks and the partitions on the disk Once the re-silver is done, the pool might still show a error because of the failed disk still attached, in my case i had to issue the command zpool detach zroot ada1p3 Which seems counter because you had just attached ada1p3, well in this case i suspect it knows the original disk is failed and gone and so once the command is run it removed the failed disk and the pool health returns to normal Is this the best way of doing it? possibly not but it worked for this setup and has returned the pool to normal for me; adjust the above commands to fit your own setup. And if in doubt, if you have a copy of your config on a bootable install stick for pfsense, just install the fw again and recover your config that way

Yup that's in the raid driver. Not seeing anything that looks excatly like that though: https://bugs.freebsd.org/bugzilla/buglist.cgi?quicksearch=mrsas

Yup. Though the usual failure mode there is 'watchdog timeout'. Assuming that's an onboard NIC the only thing you can do it try the alternative driver. Steve

@deltona Did you get this working?

@osalj said in Pfsense and HPE Ethernet 10Gb 2-port 561T: 'm wondering how the CPU E5-2630L v4 would work. 10 Cores / 20 HT - @1.8GHz /Turbo @2.9GHz - 25 MB Cache Might be nice if you not have PPPoE at the WAN, but anyway there should be nothing you could not install or run together with pfSense CE or pfS+ (Plus). It is enough for setting up any packet until you run a whole UTM device together with; Firewall pfBlocker-NG snort or suricata (IDS) Squid & SquidGuard & ClamAV

@provels Actually, they're not counterfeit...the same exact manufacturer that makes Intel ones make those...like all things, some may not come off the floor right or good. I have had two or three "Chinese" make that had been working for over five years or more, now.

@logodude said in Not recognizing x520-da2: Could this have done something to the card? No. Or at least I've never heard of anything like that nor could I imagine any way it could! Have you tried a different card in the new motherboard though? Or booting a different OS on the new board with the X520m card in it? That would tell you if it's a PCI driver issue or something lower level. Do you have the latest BIOS running?

@gertjan Can I get a Usa link of this version are Amazon good place to buy with out getting rip off?

Well like jimp said the description error appears to be purely cosmetic so it the NIC still fails to pass traffic even when assigned correctly that's probably something else.

Thanks all, I will give this a go when I get some quality home lab time, hopefully this weekend.

@stephenw10 Yes, I am booting from the Emmc -- I have not attempted the SSD yet. Being a new board I wanted to get the built in storage stable if possible first before an added SSD.

@pbhl8y12 said in X540-AT2 10G NIC from eBay not working: X540-T2 NIC Is this a original Intel NIC with the original Intel firmware? If not you should try out to get hands on the original Intel Firmware and flash it on an Windows or Linux PC onto the card (NIC) to prevent that art and wise of error.

@knight-of-ni Did I offer how I got there are great knight keeper of ni?