Thank you very much Jeff! Stan

Have not been able to replicate the problem, but operation is nominal. Verizon came buy and WAN side is getting an IP and everything looks good so far.

@jfb said in How do i reset the netgate sg-1100 with the factory reset button?: @stephenw10 Do you need to purchase support in order to access the factory installer image? Read again @stephenw10 said in How do i reset the netgate sg-1100 with the factory reset button?: To fully factory restore the SG-1100 reinstall the firmware: https://docs.netgate.com/pfsense/en/latest/solutions/sg-1100/reinstall-pfsense.html Do what the first line says : open a ticket. Edit : @chrismacmahon types faster ....

Can you open a ticket with us? https://go.netgate.com We might be able to assist.

@JohnKaul said in Netgate SG-3100/XG-7100 “future proof” for residential use: I was trying to avoid buying a switch; I think I finally come to the conclusion that is a requirement. How is a "cisco sg250-10p" router? Any good. Anything better (and don't tell me a Ruckus; I don't have $4k to drop on a switch ;] ). I use Ubiquiti at home for my switch: Ubiquiti UniFi Switch 24 Gigabit+ 2 SFP, if you are buying a switch to future proof get one that supports VLANS, you may want to use them in the future for separating network domains.

@jimp That worked! I had to make sure to disable the standard built in SNMP service and then enable NET-SNMP and it worked.

Ah, well the ISP device might be set at a fixed 100Mb instead of auto negotiate in which case negotiation will fail. You can try setting the the switch port to 100Mb full duplex on the SG-1100 to match that. Steve

Would not say its a hot environment. Maybe 70-75F or so. Filing support ticket as requested. Thanks

@JohnKaul said in Comcast Gigabit - SG-3100 (not getting gig speed): So what usually happens when "you" cannot duplicate? Well if can duplicate we need to figure out what is going on - maybe, just maybe some bug that is hitting our common testing.. But if can not duplicate need to figure out what is going on with his setup.. Its just more info to solve the puzzle... Sorry but I have been this for many many years, and while I believe the user has run into something that is causing him grief. I do not believe that the hardware can only do 350 ;) None of the benchmarks show this.. So once I have a box that we can duplicate setups with we can hopefully track down what is the issue. If I can or can not duplicate - either way its info we can give the guys that can do really figure out what is going on..

@JohnKaul No it would take much more than SSH for me to get mad :)

Completely agree - was hoping the OP would share..

I've checked the partner locator already. It only yields the aforementioned voleatech.de store, and a couple of more companies which dont have direct shop access but rather offer consulting and enterprise services. I was able to order it from france at imageinnetwork.fr for a slightly higher shipping fee, however.

With 9 VPN tunnels then, yes, if you need to pass 1Gbps traffic with some reasonable percentage of it encrypted. The SG-3100 is quite fast for IPSec because of it's crypto hardware but it won't pass the remaining traffic unencrypted to 1Gbps. Steve

I fixed it. It seemed to have been related to the SPF ports not being able to talk over the vlan. Thanks again!

I did open a ticket, but I wanted to post this here as well. I think the problem with console is due to the case on the SG-1100 preventing the cable from fully seating in the "micro" USB slot ( I think that is the term for it ). If I apply a bit of pressure on the cable the device stays up and I can get some console commands run. Of course, I am one handed at the time :). I have been able to perform a "clean" OS shutdown, and i will try to see if I can repair things now. I do have a ticket open as I am betting I will need to reload the firmware before this is done.

@chrismacmahon said in Unable to retrieve package information on Netgate SG-1100 with pfsense 2.4.4_2: /usr/bin/openssl ec -in /etc/thoth/key.pem -noout -text thanks I did

Which port on the 3100 is the Cisco switch connected to? If it's the OPT port you can just create VLANs on that interface in pfSense and it will see the tagged traffic coming in on those. You can assign them as new interfaces etc. If it's connected to one of the LAN ports then, yes, you would need to set the internal switch to .1q mode and trunk those incoming VLANs on the external and internal ports. Then you can add vlan interfaces on the internal port. This may help: https://www.youtube.com/watch?v=NgRy14rYhV8 Steve

@willemdh said in New pfSense Appliance no longer booting properly after minor changes: Did not purchase a support subscription, am I supposed to be able to create support tickets without? You can open a ticket for firmware requests. Help document for the XG-7100: https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100-1u/reinstall-pfsense.html Help documents for backups and restore: https://docs.netgate.com/pfsense/en/latest/book/backup/restoring-from-backups.html

Thank Steve.