The 10G NICs, ix0 and ix1, on the 7100 are not part of the on-board switch so you would not configure them there at all. You would add the VLANs under Interfaces > VLANs on ix0 directly and assign them as new interfaces. Steve

@stephenw10 I have 3 x Netgate 3100 appliances. 2 live and one spare. One of the live ones is located in a distant datacenter so upgrading it remotely is too risky. Typically I upgrade all 3 firewalls only about once per year when I have other reasons to travel to the dc. I import config to the spare one and just physically swap them around followed by some testing. If anything goes wrong then I just swap them back. Unless the issue comes back I'll wait for the next major release with the first follow up update.

@Tenorbro Let me give you the advice to go for the 6100 if you have PPPoE connection and/or want to use suricata/snort.

@afcarvalho Many thanks to @jarhead and @stephenw10 for their infinite patience with me. A

@jrey said in Missing something: looking into installing a "speedtest" on the netgate. At the command line: [22.05-RELEASE][admin@cedev-3.stevew.lan]/root: pkg search speedtest py38-speedtest-cli-2.1.3 Command line interface for testing internet bandwidth [22.05-RELEASE][admin@cedev-3.stevew.lan]/root: pkg install py38-speedtest-cli Updating pfSense-core repository catalogue... pfSense-core repository is up to date. Updating pfSense repository catalogue... pfSense repository is up to date. All repositories are up to date. The following 1 package(s) will be affected (of 0 checked): New packages to be INSTALLED: py38-speedtest-cli: 2.1.3 [pfSense] Number of packages to be installed: 1 38 KiB to be downloaded. Proceed with this action? [y/N]: y [1/1] Fetching py38-speedtest-cli-2.1.3.pkg: 100% 38 KiB 39.0kB/s 00:01 Checking integrity... done (0 conflicting) [1/1] Installing py38-speedtest-cli-2.1.3... [1/1] Extracting py38-speedtest-cli-2.1.3: 100% [22.05-RELEASE][admin@cedev-3.stevew.lan]/root: rehash [22.05-RELEASE][admin@cedev-3.stevew.lan]/root: speedtest-cli --secure Retrieving speedtest.net configuration... Testing from Plusnet (x.x.x.x)... Retrieving speedtest.net server list... Selecting best server based on ping... Hosted by 1Ago (Sint-Niklaas) [303.34 km]: 17.173 ms Testing download speed................................................................................ Download: 61.46 Mbit/s Testing upload speed...................................................................................................... Upload: 18.56 Mbit/s Questions about apcupds should be in the Packages sub-forum. Steve

That's commonly required for PPPoE. Especially at high bandwidths like that. I would guess that when you first tested it the one CPU core that can receive traffic on PPPoE happened to not be in use by any other process. Steve

@rcoleman-netgate said in 7100 1u vlan addition question: @hescominsoon You're welcome. That one took me a bit to grasp when I first bought a device with a Marvell switch. yeah..i won't be doing that again..i know its a cost point thing and it's valid..i just do not like the gymnastics you ahve to do..<G>

@stephenw10 if there were major issues i would have been informed / yelled at ;) have only briefly tested it myself around 200-400 "simultaneous" portal logins - but idle timeout is set at 8 hours or something. only student phones or other personal devices use the portal. around 80-160GB of data per day go through the CP-vlan staff/school-owned devices are on different vlans/ssid's

So this started happening after upgrading to 23.01? And is repeatable every time? For the last few months it worked as expected was that all in 22.05? Steve

See also: https://redmine.pfsense.org/issues/10345

@rcoleman-netgate I had also tried to rm -rf /, and it did report itself as a read-only file system. I've created the ticket and sent the requested log. Thanks.

I haven't read through all of the replies, but you cannot eliminate the AT&T gateway. First off, the newer models like the one shown have the ONT built-in. Secondly, the fiber service requires certificate-based authentication, so even if you clone the AT&T gateway's MAC address on your pfSense it will not work. The previous workarounds also do not work like they did with previous AT&T gateways and separate ONT module. If you want any fiber plan over 1 gig, then you will be issued the same gateway as in the original post. Also note the LAN ports are all 1 gig with the exception of first port which is blue and will support 5 gig, 2.5 gig, or 1 gig.

Excellent, good to hear!

@A Former User said in Netgate 4100 802.1q tagging: Done all that and still not working Please provide screenshots of your VLANs tab.

@rcoleman-netgate said in sg-2100 & adding/assigning vpn interfaces: @bxueye4 said in sg-2100 & adding/assigning vpn interfaces: i'm fairly certain the sg2100 has this capability. i'm scratching my head as to what to do to get that to display. Also recommend reading up on the switch: https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/switch-overview.html good reminder. lol thanks

Nice. Though I can't imagine what you're using 32GB for.

Samsung 32GB ECC 2666mhz DDR4 CL19 M474A4G43MB1-CTDQ working here with 1.3TB raidz

@ppmax For 1 gig go for the 4100 at least. I'm at a 6100 with multi WAN 1 gig and while using Suricata that unit hits 100% CPU.

"Although not specifically designed for it, it fits and works great." I used the dimensions of the device to locate something that worked.