How to migrate from pfsense+ to CE
-
@bmeeks said in How to migrate from pfsense+ to CE:
importing the SG-3100 config will require some manual intervention because of the internal SOC and associated Marvell switch contained in the SG-3100 that will not be present in any whitebox hardware).I’m not quite sure what this means. Are you saying I’ll need to edit the backup file?
-
You wouldn't. Netgate appliances always have access to Plus no subscription required.
Steve
-
@wgstarks said in How to migrate from pfsense+ to CE:
Are you saying I’ll need to edit the backup file?
Potentially you might, it depends what your config is. We can migrate your config to the new hardware for you though.
-
@wgstarks said in How to migrate from pfsense+ to CE:
I’m not quite sure what this means. Are you saying I’ll need to edit the backup file?
My point in mentioning a backup from the SG-3100 was because I was not sure of your situation. Your actual post did not mention what type of hardware you have. I only noticed "SG-3100" in your signature and was not sure if that was current or not.
To clarify:
- There is no CE version for the SG-3100 nor any other ARM-based hardware. CE is only produced for Intel/AMD platforms. You will never be able to install CE on the SG-3100 (or an SG-1000 if you had one of those).
- So long as you purchase a Netgate appliance, you will automatically receive a supported version of Plus for that appliance without additional charges (as I understand the terms). The one exception here going forward is the SG-3100 due to its 32-bit CPU and the pulling of support for 32-bit ARM CPUs from upstream FreeBSD. Future support for the SG-3100 is going to be limited, and at some point non-existent.
- The SG-3100 runs a custom Netgate image that includes support for its internal Marvell switch. Several of the ports on the SG-3100 are actually Ethernet switch ports exposed from an internal switch. VLANs are used to create "separate" interfaces. This special switch configuration info is stored in the
config.xml
file (which is the "backup" you are talking about). - So, if you were to attempt to restore a configuration from an SG-3100 to a generic whitebox piece of hardware running pfSense CE, then I believe some hand-editing of the
config.xml
file would be required before import into the new CE box to account for interface name changes and to migrate the Marvell switch VLAN information.
I see that @stephenw10 also responded to your question about migrating your existing config to new hardware. If you were to purchase an SG-2100 as you mentioned, then Netgate would assist you with the migration of your SG-3100 config AND you would continue to have a valid pfSense Plus license that you would not pay extra for (unless you specifically wanted a higher level of paid support).
-
Thanks. The blog post that Netgate released earlier today was rather vague but I’m pretty sure it said that all users of pfsense+ would have to migrate to CE or purchase a support agreement. I probably misinterpreted that.
So, just to be sure, if I proceed with my plan to purchase a 2100 as a replacement for my current 3100 then Netgate support can migrate my configuration?
-
@wgstarks said in How to migrate from pfsense+ to CE:
if I proceed with my plan to purchase a 2100 as a replacement for my current 3100 then Netgate support can migrate my configuration?
Yes.
-
@stephenw10
How would I initiate that migration? -
Just open a ticket with us: https://www.netgate.com/tac-support-request
-
@wgstarks said in How to migrate from pfsense+ to CE:
The blog post that Netgate released earlier today was rather vague but I’m pretty sure it said that all users of pfsense+ would have to migrate to CE or purchase a support agreement.
Specifically what the blog post is referring to are former pfSense CE users who wanted to "upgrade" to pfSense Plus but continue to run it on whitebox or generic hardware. Starting in February of 2022 Netgate offered that upgrade path for free as a Home or Lab license option. That free upgrade to Plus is now no longer available and you must pay to have Plus on generic (meaning non-Netgate) hardware going forward. But when you purchase Netgate hardware, Plus is automatically included as you "paid for it" in your hardware purchase.
The blog post was never meant to apply to users who bought Netgate hardware and have Plus that way. Plus on Netgate hardware is unaffected. The license change from "free" to "paid" only applies to those Plus users that wanted a copy of Plus to run on non-Netgate generic hardware.
-
-