Just realized that the NAT forwarding rules may not make a difference as I have them set to OPT1 and I have ETH8 assigned to OPT3.

Nice to hear, thank you for your reply :)

The point is to delivered the required security level to our cistomers.

1. Turn on SG1000
2. Connect to computer, get DHCP address automatically
3. Open browser, browse to the Gateway/DHCP server address that you're given via DHCP
4. Defaults credentials are … pfsense/pfsense ... I think.

Now you can log in and play. Connect the WAN port to the Internet (aka unsecured upstream network) in whatever way you need (you may need to configure the WAN port for this). Now you should be able to browse the Internet.

Thanks everyone for the replies.

I ended up attempting to connect to the SG-1000 via PuTTY from a Windows VM on my Mac. Worked on the first try! :)

After that I was able to do the reset/restore from the microSD card. Back in action!

(Now I'm really regretting not keeping a backup of my pfSense settings ;) )

The serial number you gave us is not in our database. It's either very old, in which case it will be outside warranty from us or Supermicro, or it didn't come from us.

I couldn't find any orders from the email domain you used to open the ticket but perhaps you used a different email. If you PM me an order number I can look into it.

Steve

Try to re-install. https://www.netgate.com/docs/pfsense/solutions/sg-2220/reinstall-pfsense.html
If you get errors, try swapping the msata (or adding an msata if you were using the onboard flash)

Hi,

There's no need to install Netgate Coreboot Upgrade package on XG-1540 as there are no necessary BIOS updates for it and it doesn't run coreboot. I hope this clears it up. Thank you!

@Grimson:

https://forum.pfsense.org/index.php?action=search

yeah, yeah. RTFM too right? ;)

For the record the answer is: System > Advanced > Firewall/NAT and update "Firewall Maximum Table Entries" value to (something over the default '200000') <- I used "500000" and am not seeing any further mssgs so far.

First off, configuring a switch you are connected to is going to be painful.

Configure OPT1 with another network numbering scheme, firewall rule, and possibly DHCP server and connect to that.

Then you can configure the switch without worrying about getting locked out.

Then see this thread:

https://forum.pfsense.org/index.php?topic=142311.msg776145#msg776145

All 5 of your questions have been answered in the ticket you opened with the sales department.

Thanks.

Done.  Issued a RMA right away.  Ordered a second SG-2440  for a HA firewall setup when replaced SG-2440 is delivered

Okay, in that case please submit a ticket so our support can take a look. Thank you! https://go.netgate.com/support/login

Hardware Checksum Offloading is enabled by default (box unchecked in the GUI)
Hardware TCP Segmentation Offloading is disabled by default (box checked in the GUI)
Hardware Large Receive Offloading is disabled by default (box checked in the GUI)

Those are the settings you want for a firewall. If you read the help text on the page, and at https://doc.pfsense.org/index.php/Advanced_Setup#Networking then you'll see why.

jimp was asking you to access the console on the SG-1000 and then run those commands.  You seem to have opened a console window on your Mac and run the commands there.

It should do great! Thank you and hope you enjoy your new XG-7100 appliance!