SG-2100 HANGING UNIT
-
I agree with @fsc830
If it was a "wrong settings" settings issue, I would start by not retrieving or using the exiting configuration.
@kevs said in SG-2100 HANGING UNIT:
it was now booting I pressed any key to stop the auto boot then I type the "run usbrecovery" in the command line. I am expecting the prompt to let me choose
When the installer form the USB installer auto-start, you should not interrupt it.
If there was something to recover, there will be an option in the installer menus to indciate that you can recover it. -
@kevs said in SG-2100 HANGING UNIT:
This is the image name that I downloaded over the internet and write on the bootable USB.
pfSense-plus-Netgate-2100-22.05-RELEASE-aarch64.imgThat's the wrong image. It needs to be the recovery image:
pfSense-plus-Netgate-2100-recovery-22.05-RELEASE-aarch64.img.gzThat is the live boot image which is why it simply reverted to the previous install when you removed it.
Where did you get that image? It's only made available in special circumstances. Do you have the ticket number?
Either way I would open a new ticket and request the recovery image.
Steve
-
Hi @stephenw10
I already requested the right recovery image and already installed the new version of pfsense, so I assume that the main problem with my firewall which is the LAN link connection will solve but still down after a couple of minutes.
Perhaps, you have other solutions that you might recommend to solve our problem. Can you help us, please?
-
These are the things you can do :
Swap cables.
'Force' an fixed speed,, like 100Mbits/sec, do not use "auto select".I doubt if there is anything else you can do.
-
@gertjan said in SG-2100 HANGING UNIT:
'Force' an fixed speed,, like 100Mbits/sec, do not use "auto select".
We already did, changing the cables but still, nothing happens.
How will we fix the speed? We cannot link the connection, as in access.
For the first time plugging in the firewall after a couple of hours, the Lan will link up and the indicators will light but after a couple of minutes, it will take down again, with no connection and no lights on all the available NIC unless we will unplug the firewall for a couple of hours then plugged it back but still it will go on that routine. -
If this is a hardware issue you cant fix it - except swapping the device.
Regards
-
I still don't see anywhere that you tried running
etherswitchcfgat the command line which was the first thing I asked you about.
You should see something like this:[22.05-RELEASE][admin@2100-3.stevew.lan]/root: etherswitchcfg etherswitch0: VLAN mode: DOT1Q port1: pvid: 41 state=8<FORWARDING> flags=0<> media: Ethernet autoselect (none) status: no carrier port2: pvid: 42 state=8<FORWARDING> flags=0<> media: Ethernet autoselect (none) status: no carrier port3: pvid: 43 state=8<FORWARDING> flags=0<> media: Ethernet autoselect (none) status: no carrier port4: pvid: 44 state=8<FORWARDING> flags=0<> media: Ethernet autoselect (none) status: no carrier port5: pvid: 1 state=8<FORWARDING> flags=1<CPUPORT> media: Ethernet 2500Base-KX <full-duplex> status: active vlangroup0: vlan: 1 members 5 vlangroup1: vlan: 41 members 1,5t vlangroup2: vlan: 42 members 2,5t vlangroup3: vlan: 43 members 3,5t vlangroup4: vlan: 44 members 4,5tExcept yours won't be running in DOT1Q mode with the same VLANs I have configured.
Can we assume all 4 LAN ports behave the same?
Steve
-
Hi @stephenw10
Please see attached screenshot below for your reference in running the etherswitchcfg command.
-
Mmm, that looks broken.
hw-loopbackis not valid there.Try to power cycle the unit completely. Shut it down then remove the power for 10s.
After it reboots run etherswitchcfg again and see if that shows differently and if the LAN ports now function as expected.
If that's just happening spontaneously during normal running that points towards a hardware issue.
The only time I've ever seen that was in a unit that had a cell modem fitted which is why I asked you about that earlier.
Steve
-
Hi Sir @stephenw10,
Sorry for reviving this thread since this is still the same hardware issue from another device.
The SG-2100 unit is slowly flashing blue led lights and the LAN ports are linking up when plugging the LAN cable, however, I can not connect to the web-GUI when I am trying to access it. No LAN IP address, No WAN IP address from ISP. I am trying to figure out what happened to this unit but so far I don't have any idea yet, can you help me to figure out what happened to this unit and what should I do to fix it? Do I need to reset, restore, or reinstall the image?
-
Can you connect to the serial console? What does it show from
ifconfigoretherswitchcfg? -
@kevs As @stephenw10 mentioned the first thing you need to do for anything is check the console to find out why. if it is boot looping (my suspicion) this will be of great help: https://docs.netgate.com/pfsense/en/latest/troubleshooting/filesystem-check.html
-
Hi Sir @stephenw10
Yes, I accessed the console but it shows like this:
I tried to reset to factory defaults but it shows like this:
I also do your recommendation and it shows like this:
-
-
Hi @gertjan
How will I fix this? Actually, this is a new device and it was set up last 3 days ago then after a while, I cannot access the webGui, No LAN IP even the WAN.
-
@kevs
Have Netgate support looking into it.Is the device in the close to original state or did you add pfSense packages that eat disk space ?
-
@gertjan it was just a basic setup wizard, no config or packages installed. I do not know what happen to this firewall after a couple of days.
-
Instead of investigating, go for the fast solution :
Get a copy of the firmware https://www.netgate.com/tac-support-request, and re install from scratch. -
Yes, I would open a ticket with us for that.
As @Gertjan said the most common cause of that is a misconfigured package that has filled the drive. However without any additional packages that's very unlikely. You can see errors like that if the OS is unable to write to the drive for some other reason.
Steve
-
Hi @stephenw10
Please see the output I got when I run the shell and enter this command (du -a /var | sort -n -r | head -n 10) from netgate support to know if there is no package installed in the firewall based on the report of the end user. It seems that they had installed the Suricata package if I am not mistaken that's why the drive has been full, does it mean that the SG-2100 BASE or MAX model is not suitable for the Snort and Suricata packages, am I right?
