@stephenw10 Thanks. I use WireGuard extensively so I will turn those on.

@capras12 yup, read through the instructions but there’s not much besides creating the usb stick.

@the-other
hey all,
wrote to netgate's service (and got an answer in like no time at all, great! > thanx @matthew at service)...
Everything is as it should be, with TAC lite it just shows...well...Community support.
Question answered, "problem" solved.
:)

@cshinn try using a different usb stick. Yes I know it doesn’t make sense.

See this thread I unintentionally hijacked:
https://forum.netgate.com/topic/180432/certificate-verification-failed/13

To be clear you mean the screws that hold the top on?

Yes, you can set the system tunable: hw.acpi.power_button_state=NONE
That will disable the ACPI shutdown. It will still reset if you hold it down long enough.

@tgl said in Announcing the Netgate 4200 with pfSense Plus Software:

so you'd need a 2U shelf, or at least 2U worth of space

I am NOT the poster but I did see this post that claims "perfectly aligned mounting holes" and thought of this thread:
https://www.reddit.com/r/PFSENSE/comments/1bvq79u/rack_mounting_the_netgate_4200/

YMMV. :)

For the record, changing branches and then doing updates got me closer, but still not all the way there.

@stephenw10 said in SG-4860 updates are broken after factory reset:

Just open a ticket. You don't need active support to get the support image: https://www.netgate.com/tac-support-request

Thanks for pointing this out. To contribute to this for others to reference, in the FAQ's (https://www.netgate.com/support/frequently-asked-questions) there's a "What is TAC Lite?" section, which includes "Customers who purchase a Netgate appliance do not have to purchase a subscription and have TAC Lite free of charge for the life of the appliance."

I submitted a request, selecting "TAC Lite" for the Support Level, and they did indeed respond with temporary links to download an install image.

Yup, that looks like it pulled instructions from several places, probably some other device using the name '4200'.

pfSense does not, and has never, included network file sharing like that.

In a pinch you could ssh to the firewall and mount the drive. Then have scp access to that mount from something else to access files on it. But there are security implications in doing so.

@dkledgerwood

:(

@EngineerSB Well that may be true, but the firewall I am using now does not seem to have the problem.

The answer to the question pure sine wave or modified is more technical and outside the scope of these forums.

The advise to use APC is a good one, they are a good solid brand, many rebadge APC but the design is sound have used them for decades.

To get more technical, if the load is transformer inductive then sine wave is very important becuase of how the energy tranfers from one winding to the other to step up or down the voltage.

For example your fridge , AC or simular.

However switch mode powersupplies firstly rectify the incoming voltage into DC, in the UK we're nomally 220-252vAC that becomes 310-355vDC (being the RMS of the peak usable voltage figures are all 'ish' becuase the vary)

That is then fed into a transisitor and turned on/off at high frequency, the switch mode part and the resultant output then smoothed and fed to the device. This is the basics of how a SMPSU works.

The bottom line is, whilst pure sine wave is desirable, most well designed SMPSU's inside quality electronics will quite easly cope with a modified sine wave.

In fact if you look at the incoming AC on an scope, its pretty awful, full of noise and spikes and varies over time. So even a modified sine wave is an improvement.

Last comment on AC. We're seeing more and more failures of PSU's , we've identified that becuase the UK mains voltage has begun to creap up and holds nearer to the top limit of 253 rather then the lower limit of 215 its placing more strain on the PSU's and often the smoothing caps are out of spec. for the hgher voltage. Here is our incoming voltage over the last 12 hours.

chart.png

@rikazkhan not sure if you realized it, but the last reply to this thread (before yours) was well over a year ago. :)

@stephenw10

FYI update: I was able to solve my issue of an unrecognizable filesystem error/partition. I put the drive in an enclosure and connected it to Windows, then used diskpart to "clean" the drive, which removed all partitions. Then, I was able to reinstall pfSense using recovery. now, I can see my disk from the GUI, and it seems to be running well.

I hope this helps someone else.
Image 3-30-24 at 1.38 PM.jpg

Yes any of those should work. Additionally you may be able to to use a DAC cable dircetly between the switch and the 2100 combo port. You would need to configure one of the 2100 LAN ports as a separate WAN though.

@stephenw10
Thank you so much for helping with this. While the network is designed to have the ability to switch traffic within the bridge, there is actually very little of that in practice. Most of the devices are just wifi clients heading to the internet. That said, I know there is broadcast traffic and other multicast and discovery traffic that would flow automatically within the bridge but other than that there is just limited use of intra-bridge traffic for things like IoT controller-devices communications.

The network is in production and I would prefer not to have to remove the bridge unless it's my last option.

Thanks again for helping.

There's no offiicial procedure for that and I could imagine the CPU cooling being worse with the fans pushing air toward it. The shroud becomes much more important. Additionally there is no easy way to change the flow from the PSU fan.

@stephenw10 Thank you for your reply, I'll think about it for a moment and see if get one and try it out.

Hmm, you were on 23.09.1 and it doesn't show 23.09.1 as an available branch? I don't think I've seen that happen before.