@stephenw10 Thank you!!! Problem resolved!!!!!

I have the drive we fitted to various devices which unhelpfully shown as 'NT-32'.

There are a few threads here with other users reporting the drives they used in 5100s. I don't really have anything I can recommend personally.

You should be able to do it either way but I would also do the firmware update first. If only because the vast majority of updates will have been done (successfully) in 22.05.

Steve

@rloeb I started this thread and suggest closing it :-)

Tech support was very prompt in providing me with a USB firmware recovery image for the 5100, which installed easily and then upgraded the installed packages. Been working very well since then. Upgraded last night to the new Snort and pfblockerng packages and everything is copacetic. Rare to find a tech support team that responsive!

Re-reading this if it actually says that on the System > Update page rather than the System > Register page you should open a support ticket:
https://www.netgate.com/tac-support-request

All Netgate hardware should be automatically enabled for updates. Some older devices might require intervention though as they predate the introduction of the NDI.

Steve

@bmeeks True! This happens when one is "new" to pfsense.

c914ae12-8147-489f-a96b-31228e8fe89c-image.png

a77d129a-e93b-4848-a5c8-a3f3476a192d-image.png

Quick update. Replacement one arrived and I am done with the basic config. It appears to be quicker responding when applying configs. etc. On the other one it could take 3 - 5 seconds to apply a config change (or cause the webadmin to crash).

Will see if I have the DNS Resolver crash on me again.

@testcb00 the 6100 has a Max version with an SSD: https://shop.netgate.com/collections/desktop-appliances/products/6100-max-pfsense

Required/recommended for some packages with lots of logging: https://www.netgate.com/supported-pfsense-plus-packages

@luckman212 Yeah I got it too but was expecting it. Early models had a small EFI partition apparently (run “gpart show” and it’ll be either 800K or 200M…the latter I think is all ZFS installs). But that ends at a Marvell> console prompt so not quite as described.

If it was that, or an interrupted install, firmware reinstall is the solution.

Netgate has paused online upgrades to the 1100/2100 models. Per other posts this weekend they haven’t been able to duplicate it themselves.

For reference, the pfBlockerNG issue is fixed - currently waiting on the new version to be available. The DHCP GUI issue will also be fixed - track the issue here.

@m7infratec I actually just went through it so I know it's frustrating. But per other posts Netgate can't seem to replicate it, and obviously no one encountering it had installed the beta/RC. At least recovery isn't too bad, just need the image file and a 5GB+ USB stick.

@mael Thank you for responding. I see this has the i225 chipset, but is only a single port. Now that I know SFP+ on a PCIe card will support copper, I would likely go with that nic.

But then I really need to have my head examined for even considering paying an extra 50 bucks a month or $600 per year above 1 gig for a synchronous 2 gig connection when I rarely come close to saturating the 1 gig I am blessed to have. It would be wasted cash much better spent on a backup modest speed cable wan.

@aram535 said in Moving from SG-1100 to SG-3100:

I'm not planning on using the switch port of the 3100 so that shouldn't be a problem

Just WAN and OPT? Hmm, interesting. That should work, but the switch config might still import. There is however a "Preserve Switch Configuration" checkbox to keep the 3100 switch config. The goal would be to remove the VLANs on the 1100's ports though, not really sure if that would but I'd expect Netgate would convert it for you. I suppose another option would be to restore sections of the configuration one at a time.

@octothorpandrew This is the exact configuration I want to run, did you ever resolve the issue of not obtaining an IP?

If availability is more important to you than throughput you might consider having something like a pair of always up OpenVPN tunnels with one server on each WAN.
Depending on how the connections are used you could failover/loadbalance the gateways or use some dynamic routing across them.

You could do the same with Route base IPSec (VTI). Or Wireguard for that matter.

@stephenw10 Ah mine was on a 3100, good to know. I just restored so no big deal.

Connect to the console to see what's happening:
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/connect-to-console.html

Open a support ticket if you need to recover the install:
https://www.netgate.com/tac-support-request

Steve

@stephenw10 Not really. It's only 1,5GB out of 93GB used. I think doing a clean install of 23.01 is the best way to go.

@drolin said in Recommend Appliance:

So I could get a switch with a 5Gbps copper port, and an SFP+ cage. That would end up taking one of my public IPs (not a big deal) as I don't know of any switches with that capability that aren't managed.

Don't assign a public IP to your switch, VLAN that to your management VLAN and just pass the traffic.