Changing physical ports in config
-
Hi, I have a running router with 6 ethernet ports but for installation issues I should move the three ports used by pfSense (WAN1, WAN2 and LAN) in a different order.
LAN port is trunked because it has many VLANs.
My idea is:- make a backup
- edit the internal config replacing all references of ports (em0, em1, ...) with internal editor of pfSense
- reboot
Should it work?
My doubt if openvn clients and wireguard servers save the physical interface into their encrypted configurations
-
@valepe69
I have done that (renaming) on my backup firewall.Prod has IGB interfaces , backup has EM interfaces.
No issues , well i had one (a mistyping in the editor ... my fault)
Ohh... I didn't do it on the pfSense box.
I downloaded a backup of the config file , made a copy.
And changed the interface names in the copy, then just restored that new config file./Bingo
-
@bingo600 My doubt using the GUI restore backup is if it reloads all (packages and so on) or if it updates network changes only.
-
@valepe69
I would expect that a restore would load the packages again.
But what would be the issue doing that ?I have not experienced much issues with package reloads.
Just a quirk with the latest Zabbix package, that had to "be installed" manually once more, after the package reload. And i even think that the latest Zabbix (I use Zabbix 5.0) package didn't have that issue.IMHO
You shouldn't be afraid of a "config restore", else you would have no "disk error" recovery path.
And the new 2.6.0 ought to be installed from scratch using the ZFS filesystem, not upgraded from a previous version, as it has some filesystem layout changes./Bingo
-
@valepe69 said in Changing physical ports in config:
@bingo600 My doubt using the GUI restore backup is if it reloads all (packages and so on) or if it updates network changes only.
As long as you have the WAN connected it will reload all.
-
Indeed, when you restore a config it will reinstall any packages referenced in it. But that shouldn't be a problem as long as you have a valid WAN connection.
Steve