@stephenw10 My plan is have my 6100 sit in front of my UDM-SE to provide DNS with pfBlocker and Suricata. I have a /29 block from my ISP, so I can just pass of those IPs down to the downstream UniFi network.

Yes, that. Most people who end up using a lot of memory have just enabled all the feeds in pfBlocker or all the signatures in Snort with no thought to what they actually need. I'm running Snort and pfBlocker on a 3100 here and not even using 50% of the 2GB it has but I only selected limited lists. last pid: 63920; load averages: 0.25, 0.43, 0.44 up 5+06:28:22 14:09:29 65 processes: 1 running, 64 sleeping CPU: 2.6% user, 0.2% nice, 7.5% system, 0.2% interrupt, 89.6% idle Mem: 176M Active, 476M Inact, 169M Wired, 84M Buf, 1162M Free PID USERNAME THR PRI NICE SIZE RES STATE C TIME WCPU COMMAND 48523 root 2 41 20 351M 327M bpf 1 53:21 0.36% /usr/local/bin/snort -R _6830 -D -q --suppress-config-log --daq pcap --daq-mode passive --treat-drop-as-alert 82520 root 1 52 0 131M 42M accept 1 1:18 1.18% php-fpm: pool nginx (php-fpm) 28210 root 1 52 0 132M 40M accept 0 0:46 0.00% php-fpm: pool nginx (php-fpm) 59286 root 1 52 0 132M 40M accept 0 0:21 0.00% php-fpm: pool nginx (php-fpm) 42298 root 1 52 0 132M 39M accept 0 0:19 0.00% php-fpm: pool nginx (php-fpm) 67504 root 1 52 0 132M 38M accept 0 0:05 0.00% php-fpm: pool nginx (php-fpm) 2851 root 1 43 0 130M 38M accept 0 0:07 0.05% php-fpm: pool nginx (php-fpm) 44040 unbound 2 20 0 63M 35M kqread 0 18:52 0.00% /usr/local/sbin/unbound -c /var/unbound/unbound.conf 73345 root 1 20 0 49M 34M nanslp 0 0:33 0.05% /usr/local/bin/php -f /usr/local/pkg/pfblockerng/pfblockerng.inc dnsbl 428 root 1 20 0 91M 22M kqread 1 0:15 0.00% php-fpm: master process (/usr/local/lib/php-fpm.conf) (php-fpm) 61524 root 17 52 0 45M 18M sigwai 0 2:04 0.00% /usr/local/libexec/ipsec/charon --use-syslog 84665 root 155 20 0 64M 15M uwait 1 1:00 0.00% /usr/local/sbin/filterdns -p /var/run/filterdns.pid -i 300 -c /var/etc/filterdns.conf -d 1 51479 dhcpd 1 20 0 14M 10M select 1 0:30 0.02% /usr/local/sbin/dhcpd -user dhcpd -group _dhcp -chroot /var/dhcpd -cf /etc/dhcpd.conf -pf /var/run/dhcpd.pid m 33768 root 1 20 0 12M 8160K select 1 0:00 0.01% sshd: admin@pts/0 (sshd) Steve

@gertjan RE: I don't know why, but I use the NUT package, not the apcupsd version. We had been running the NUT package. I think that may only monitor the UPS but doesn't have the capabilities of the apcupsd package. We also installed apcupsd on a Windows NUC that's on our LAN. If the power goes out the NUC will get a signal from the software on our 3100 and it too will shut down.

Well IPSec and OpenVPN with DCO will. So not (yet) Wireguard, PPTP, L2TP, TINC.

@bingo600 will do , have balena etcher on my laptop running manjaro-kde as i had problems with it on this one , manjaro-cinnamon . thank you

@cloudified said in Netgate 6100 / 4100 with 10GB/2,5GB compatible to 1GB?: SW Enterprise 24 or 48 to get back in stock! I did more digging and found a 10G SFP+/10G copper switch below $1k. The Aruba Instant On 1960 12XGT 4SFP+ Switch (JL805A): https://buy.hpe.com/be/en/networking/switches/fixed-port-web-managed-ethernet-switches/aruba-1900-switch-products/aruba-instant-on-1960-12xgt-4sfp-switch/p/jl805a

That's the available space in the pool so I would have to say the capacity that appears to be 'lost' is in the filesystem formatting. I've never really looked into that too deeply though. Steve

@frog You should just be able to restore, and in the process it will ask which interface/port should be LAN.

@flynace said in 6100 Crypto Curiosity: Silicom M20E3ISLB U.2 LBG-x That's in interesting form factor for a crypto device. Obviously that wouldn't fit in a 6100. Theoretically something that was mPCIe based could as long as it was within the power restrictions of the slot. That module almost certainly isn't judging by the size of the heatsink. The 6100 SoC already has QAT hardware on-board though. Anything you added would need to be a significant improvement to make it worthwhile. Steve

Well you'll probably at least see 100Mbps through that. I have seen reports of adapters using the axe driver that got close to 1G with USB3. But far more reports of woefully lower results! Steve

Yup, we only stop building updates when it becomes impractical to do so. So there no 32bit x86 builds any longer for example. Sorry m1n1wall users. We are still producing images and pkgs for the SG-1000 though and that was EoL some time ago: https://www.netgate.com/support/product-lifecycle Steve

@slegsonly 40Mbps per apartment on average... You'd be fine with the 4100, but I would probably go 6100 so you can grow your ISP speeds in the future. We don't charge for performance upgrades after purchase - that's just something the other guys may do. For future-proofing I'd get the 6100. If you're going to do logging get the MAX. You can also email sales@netgate.com and have one of our sales reps work with you.

@blaytrail said in Netgate 6100 Appliance: Also, can you using pfsense+ on a non-Netgate appliance? Yes: https://www.netgate.com/blog/migrate-from-pfsense-ce-software-to-netgate-pfsense-plus-software

@rayyanthameem No, the One you linked to has a LC connector in the end. Mine has a SC connector Edit: just Saw the typo in My original post

Ah, good result!

@loges-candies-0l I merged your tickets together -- there is no download option for pfSense Plus for Netgate-branded devices other than opening a ticket -- documented here: https://docs.netgate.com/pfsense/en/latest/solutions/sg-1100/reinstall-pfsense.html

@stephenw10 Yes, go ahead please and add a - solved at the end (or at the beginning). Regards

Mmm, that is disappointing. Probably nothing we can do though.

@stephenw10 Issue is solved now, ISP tech support came to change modem and that seem to fix my problem but still something does not feel right but at this point I have connectivity through the igc0 port so I am happy. Thank you so much for your responses @stephenw10 and @dennypage.