You should be able to remove those log files from the console there and that will free enough space to allow it to boot normally. Yes, if you install Suricata you must enable log rotation and I always set small logs sizes and set a total log folder size. Both the 2100 MAX and BASE will run Suricata though I would be very careful about running on a BASE model because the logging increases drive writes to the eMMC significantly. Steve

@benhurharrison Open a ticket at https://go.netgate.com/ and request a fresh install image for your 1100. Reimage the device, then restore your config and you should be good to go.

No. The rules reference the internal names in the config (wan, lan, opt1, opt2 etc) so if you reassign opt2 from igb0 to ix1 the rules will follow it. Steve

@stephenw10 Perfect, thanks for all the info, helps a ton. We aren't really having issues with performance per-se, just was seeing if I could find anything that would speed it up, but sounds like a CPIC card probably wouldn't make a huge difference since we aren't even close to saturating the full 2 gigabits in the first place. Thanks again!

One thing to be aware of here is that the mvneta NICs in the 3100 are single queue. That means if you're testing between two VLANs on the same NIC you can only use a single transmit and receive queue. You may see significantly worse performance than you would between the WAN and OTP ports, for example, where two NICs are in use. That's the primary difference between the 2100 and 1100 and we see ~50% better throughput there. Steve

In Sys > Adv > Misc I would enable QAT and Intel Core for crypto and thermal hardware. Those are the defaults but may not be set after importing a config. Steve

@stephenw10 Understood, thank you for the explanation.

@rcoleman-netgate Thanks, Ryan. I will open the ticket now.

@sater1957 said in SG-1100 rebooting, maybe known issue: is the system shipped with ZFS enabled? Yes. Is this problem fixed in current SG-1100's? It is not a symptom on the hardware we are selling today. That is worth that's what I'd do. FWIW the ZFS step in the reinstall is just pressing enter one more time -- but replacing the hardware is a better choice. Set the 1100 with the reboot issue aside for a temporary replacement in the future.

@rustydusty1717 Yes, restore images are specific to the model.

21.05.2 is old. You should upgrade. However I'm not aware of anything that would specifically affect OpenVPN speed in that version. In 22.05 you can use QAT and DCO which can be significantly faster. However 25Mbps is far below what the 5100 is capable of in any config. What sort of latency is there across the tunnel from the laptop? High latency and SMB, especially if it's V2, is notoriously terrible. Try testing with something else to be sure it's not just the link, like iperf or example. Steve

@martinaz Both :)

It's scheduled for Jan 2023. Exact timing is subject to testing etc. You might try grabbing a pcap of the dhcp lease process on that WAN just to confirm that's what the issue is. It seems likely though. Steve

Yes, by default clients behind pfSense will use pfSense for DNS and pfSense will resolve IP addresses directly using Unbound (the DNS Resolver). So it shouldn't matter what AT&T is doing if that's still the configuration. Go to Diag > DNS Lookup in the pfSense gui and try to resolve some something. That will show you all the configured DNS services, including Unbound at 127.0.0.1, and whether they are responding. Steve

If it spontaneously shuts off during use (nothing in the system log) it's almost certainly a hardware failure. In that case it's likely nothing would be logged anywhere. The only place anything might appear would be at the console. If it's a serial console device you can connect a client to it and log that output somewhere. Which device is this? Steve

@dennypage said in Netgate 5100 : Power on after power loss: IIRC, there is a setting in the BIOS for always powering on when power is applied. I thought it was set by default on the 5100, but I'm not 100% sure. To see the setting, tou need to attach a console cable and reboot. During boot there is a prompt that says what key to press to enter setup. Thanks this worked.

I would start out by restoring this config: 7100-8-port-config.xml That has all the switch/vlan/lagg config for discrete ports already included. So after doing that you can re-run the setup wizard to add the basic system settings then assign the ports however you need them. Steve

@stephenw10 It is a defect. https://forum.netgate.com/topic/141691/defect-etc-rc-d-hostid-file-for-zfs-not-generated-from-uuid/4?_=1669295521699

@musicwizard @maglub do you have a sg6100 you can test the speed on please so i know what to buy?

@kkris That was so simple - I have spend all day trying to figure it out - then did what you suggested and bang ... fixed. Cheers