No access after update to 23.09.1
-
I have updated several devices to 23.09.1 without issue, but today I tried to upgrade a Netgate 7100 from 23.09 and ran into an issue where after the update I can no longer access the web GUI and SSH lets me log in but shows a blank screen. However, the system is up and traffic is flowing as expected, VPN and DNS are working, all is ok otherwise.
During the upgrade process there were no error messages displayed. After the update and reboot completed, it DID take me to the login page ONCE. I put in my credentials and then waited for several minutes with it just sitting there. I closed the browser and tried again but now no logon prompt at all, just sits there like it is waiting for a response. I tried another computer and get the same result.
Normally in a case like this I would SSH in and reboot, but when I try SSH it DOES prompt for user/pass and accepts them, but then the screen is just blank. If I press any keys to get the menu to come up, nothing happens. SSH screen stays blank.
Does anyone know how I can get either the web GUI or SSH to start functioning again without being physically present to reboot the device? Any other ideas?
-
Tried again an hour later and now see this on web GUI but no change to SSH:
-
@aaronssh log on with console run pfctl -d and access GUI check your config.xml file search for separators check to see if they are listed correctly.
I had ghost ones that were deleted years ago and where mixing up the order on my firewall when I updated.
-
I have same issue. I thought that it is because o USB NIC. But maybe I have some issue in config. Is there some way, how to check config file, that do not contain issues?
-
@GeorgeCZ58 you got to do it by hand, I used a diff checker for before and after that helps pinpoint issues
-
The question was: is there a way to do this without physical access. The building is locked and I can't get in.
I can SSH into the system but the menu doesn't display like it usually does. Instead it's just a black screen that lets me type but doesn't seem to respond to anything that I type. Is there some kind of command I can type to get back to the regular menu? I've never seen SSH to pfSense do that before.
-
@aaronssh try pfctl -d to disable the firewall rules temporarily
-
-
@aaronssh that is not good its like its not responding. Can you directly access it?? You need to plug in the console cable at this point
-
If anyone is curious, I got physical access today and the router was having a kernel panic on every boot:
I did a clean install of 23.09.1 and restored from backup and then all was well.
-
@aaronssh great job
-
Hmm, that looks like a drive issue. Check the SMART status. Consider replacing it.
Steve
