What image are you using on the USB stick? Please show all the console output from run usbrecovery to where it stops. Try using the other USB port. Steve

Yes, of course... ram disks are indeed enabled.

@SteveITS Hi and thank you for y our reply ! Ideed i forgot to talk about the interface light, There is no light at all, The cable clip well, work with the other ints but this one show nothing at all. Best regards, Edit : I just send a ticket

You can reinstall from the Marvell prompt: https://docs.netgate.com/pfsense/en/latest/solutions/sg-3100/reinstall-pfsense.html Open a ticket with us to get the recovery image: https://www.netgate.com/tac-support-request

@stephenw10 thanks

@stephenw10 Let me look into this weekend. I won't have access to the server site until Sunday. Thank you for your attention on this; hopefully can help someone with similar issue who needs more from the 6100 in openvpn.

@Uglybrian Thanks. Yeah that list just consolidates other lists without editing, but that's disappointing. There are a few Closed issues on the Github site for specific IPs but "all of Squarespace" is a pretty big target.

@stephenw10 said in SG-2100 Wish list : sim card slot: It's hard for us to carry something like that as there are a lot of variants required for different markets and low demand May be a variant to say this is SG-2100+ with eSim or Sim Card for US market with extra cost? I am sure people like me will be willing to pay the extra money for this functionality

@furom Mine is reporting Life Time Estimation status of 0x0b - the highest. Could explain issues like DHCP stopping, unable to access web portal, etc. Also does not always boot, jut sits thee with 3 flashing lights, So thanks for all this, ordering an M.2 drive and the firmware to attempt the reinstall onto an M.2

No it's a bug in flashrom in 23.09(.1). https://redmine.pfsense.org/issues/11970#note-5 Until that is fixed you would need to temporarily install 23.05.1 to update Coreboot. You probably don't need to update Coreboot though. Steve

Either should work fine. It would really only depend on what's more convenient for physically connecting it. Steve

@aszajlai - I have now been running this for two weeks with zero problems... Below are the stats, etc. Thank you everyone for this thread, now time for upgrading the other one that is no longer supported... MTU:1500 Media: 10Gbase-SR <full-duplex,rxpause,txpause> Plugged: SFP/SFP+/SFP28 10G Base-SR (LC) Vendor:Ubiquiti Inc. PN: OM-MM-10G-D DATE: 2023-07-01 In/out packets: 22331704/27007819 (9.05 GiB/11.63 GiB) In/out packets (pass): 22331704/27007819 (9.05 GiB/11.63 GiB) In/out packets (block): 93141/0 (8.54 MiB/0 B) In/out errors: 0/0 Collisions: 0 Interrupts: 44672451 (42/s)

@Gertjan Yes, the correct img has been supplied by support. My problem trying to assign interfaces from the console was that no matter which option I chose from the menu, it would cycle through the "fatal error" above and return to the menu. I'll try to use the USB boot and report back (I have already downloaded the img and checked the sha256). Edit: Took me a couple of usb resets but issue has been resolved. Thanks.

The fastest way back from there is to reinstall 23.09 clean. Open a ticket to get the recovery image: https://www.netgate.com/tac-support-request Steve

I expect any of those would work but pfSense doesn't need anything like that size and smaller drives have seen more testing.

If you have a backup config I would just re-install to 23.09 clean and restore it. It's failing to find even the FreeBSD loader there which implies some catastrophic filesystem damage. It could be a failed or failing eMMC in a 4860 that will be of some age at this point. Steve

@FreeYourMind said in NetGate 4100 + No IPv6 on WAN :(: @bmeeks thanks you bmeeks, for giving a bit more background information about this. But lets stick with your example for a moment and lets say the VPN is not running behind your pfsense, but instead running on the firewall itself, which is a common configuration, right? So lets assume i wanna connect with my remote laptop to OpenVPN running on pfsense, how would i do that, if we stick with the example you were talking about? I might overlook something but i obviously can't connect to the CGNAT IPv4 from the outside and given the fact that WAN doesn't have its own IPv6 address, i can't do that either. So instead of binding OpenVPN to my WAN address which is usually something you would do with NAT in IPv4, you would now just bind OpenVPN to one of your lan interfaces instead? "Yes" is the short answer as @stephenw10 has already described. Your "destination address" for the outside client attempting to connect back in would be the LAN interface's IPv6 address on your firewall. But you would still need the correct rules on your WAN to allow that traffic to pass through, because it will be coming in from your default gateway's link-local IPv6 address to the link-local IPv6 address on your WAN interface. Your WAN link-local address is just a "transit network" between your delegated /56 prefix and the ISP's network core.

@dennypage Nice speeds. I'm hoping fiber will give me 1GB up and Down

@stephenw10 said in SG3100 keeps locking up after latest update: never been anything logged for devices hitting this That doesn't surprise me, we see it every 3-6 months or so across multiple clients. So even if one person noticed it might happen every 12-36 months and they just assume a power outage and move on. It didn't really dawn on me to connect them all until this thread. And that's assuming they're connected and not power related etc. Partners might notice but I'd think not all partners are MSPs and closely monitor sold devices. This one does not have a RAM disk though and I see nothing about the hardware watchdog logged there. Upon reflection, I am not sure any have occurred during the workday. Possibly just coincidence. Haven't been tracking them. I think I have successfully hijacked the thread, sorry.

It will save the package config but not the packages themselves. When you restore the config into the new version it will try to reinstall and packages and apply the config to them.