@steveits thank you for the reply, I had thought about setting it up with the double nat, its how my current system is, mostly because i was being lazy. I am getting ready to buy some security cameras and was thinking it would be wise to create an IOT ssid and segregate it off with vlans and I am not sure that would work very well with a double nat type setup.

Excellent!

You can still get in if the console is password protected, it's just trickier. https://docs.netgate.com/pfsense/en/latest/troubleshooting/locked-out.html

@stephenw10 : also, how can I be 100% certain that the plug polarity required is as follows? Barrel / conductor / outside: minus Tip (inside): plus This is the most common plug type but if it’s reversed I may damage the unit. Thanks, Pete [edit: never mind that, it's written on the bottom of the device]

Applying a change by playing back a php shell script is the same as editing it in the GUI. Assuming the script is correct! Both those things apply changes via the etherswitchcfg command. So, yes, I'd expect the behaviour to be the same at the time of the change. Steve

Hmm, not that then. You can remove that cron-job if you don't have Squid installed. Hard to say what that might have been then. You'd have to check the process list while it was stuck, after restring the config. Steve

Indeed, the VLAN group number there is just to define the config entry. You could define those in any order and the resulting switch config would be the same. Steve

@stephenw10 said in Netgate 6100 dropping LAN: Does the Avahi service actually stop? If so a possible workaround would be using the service watchdog package. Steve It doesn’t seem to stop, or if it does, it doesn’t seem to stay stopped as the icon in Status > Services shows a green check when I’ve gone in to restart it.

hello with good software img all is ok now thanks

@ajturner The LAN ports are a switch. You can configure them to be discrete ports.

@stephenw10 Thank You for that information. Is there a possibility to cross-ship. The unit is effectively useless. I cannot use it... resell it or anything else... and shipping and waiting for customs is a huge business impact. We bought this to take advantage of a fibre line using the SFP+ port for a service we planned on launching this weekend. I would appreciate it if Netgate can ship the unit overnight AIR "immediately" and I will definitely get this defective unit in the hands of courier ASAP today after I receive the label. --Nikolaos

@scooterwa Generally the 65 error is if the cable is unplugged, the other end isn't responding, etc. No communication. You might try putting a switch in between the pfSense and the Netgear just to see if that helps? I've seen posts occasionally that it does.

@keyser said in Any real reason to pick 5100 over 6100?: Does that mean a SG-3100 replacement is imminent? Don't know. It seems likely there would be something eventually since there is a bit of a gap from a 2100 to a 6100.

@itmotohunter said in Trying to decide which appliance to get: Hello, As the title suggests, I have narrowed my decision down to two devices to buy new. My question is, when considering inter-vlan routing should I be looking at the appliance's capable L3 forwarding speed or the firewall speed on the spec sheets? This appliance will be routing about 6 different vlans. Some will have firewall rules (Guest, Management). I want to make sure I don't buy the lower end appliance if it's going to bottleneck the routing. Thanks in advance! Considering the box needs to apply both actions when moving packets from one VLAN to another, neither number is really realistic. So expect it to perform well below the lower of those peak numbers.

@stephenw10 Thank you very much!

What is it that you believe is necessary from FreeBSD 13 on that platform? FreeBSD 12.x is still supported and being developed upstream. There are some things on 13.x we're looking forward to having but it's still something we're working toward making happen for pfSense Plus and CE software soon. Not the next version, but soon.

You can insert a usb stick, mount it, and copy the files off. A fat formatted stick works well.

@rdatla said in ERROR: Impossible to mount filesystem, use interactive shell to attempt to recover it.: @bmeeks Thanks for the reply. I tried fsck -fy /, but not worked. Coming to recovery, can we do the installation with the community edition first and then using the earlier backup files like config.xml, shall we change the configuration? Thanks, Ram. No. The SG-3100 uses a 32-bit ARM processor (not Intel). There is no pfSense CE (Community Edition) available for ARM hardware. You will need to contact Netgate and request an image for your appliance. You just need to supply them the serial number or Netgate ID when opening the request. The instructions are in the link I provided earlier. There is no fee required and you don't need paid support to get an install image for your appliance.

How are you testing? What speeds do you actually see when connected directly?