Trouble with WAN not being able to get correct speed
-
-
Aha, so it's 2.5G and specifically not 10G. I think there's a good chance the ONT is 2.5G and that's why you can't link to it at 10G but it negotiates back to 1G.
AFAIK only the Intel X550 based NICs can link at 2.5G and 5G as well as 10G.
You should put those loader values in /boot/loader.conf.local otherwise they will be overwritten. Create that file.
The echo command there is just for running at the CLI to append those lines into the file. You don't need them if you manually edit it.Steve
-
Hey Steve I want to thank you a million mate that was amazing help i got from you.
Do you know if this would work Aquantia Corp. AQC107 NBase-T/IEEE ? I need to install the drivers but technically it can link up 2.5 and 5G
Best Regards
Art -
I believe it can but I don't have one to test. I have tested a Realtek 8125 NIC and a separate Intel i225-V NIC and they worked fine. At least in my limited testing.
I would try to at least that Realtek NIC you already have if you can.
-
Ya i cant seem to make that one work at all through the passthrough from unraid.. im trying to find the bsd pckg file for the aqua to download it and test it but cant find a repo. you dont happen to know where i can get it so i can test it
-
Hmm, that may not be easy because we don't build that pkg and the closest available FreeBSD build isn't a match:
[2.7.2-RELEASE][admin@t70.stevew.lan]/root: pkg add https://pkg.freebsd.org/FreeBSD:14:amd64/release_0/All/aquantia-atlantic-kmod-0.0.5_2.pkg Fetching aquantia-atlantic-kmod-0.0.5_2.pkg: 100% 24 KiB 24.8kB/s 00:01 Installing aquantia-atlantic-kmod-0.0.5_2... Newer FreeBSD version for package aquantia-atlantic-kmod: To ignore this error set IGNORE_OSVERSION=yes - package: 1400097 - running kernel: 1400094 Ignore the mismatch and continue? [y/N]: y -
unfortunately it did not work. I did not see it pop up. I even went a step further to check if the ko would load up and did these steps
ee /boot/loader.conf.local
if_atlantic_load="YES"
rebooted and then to check i did the
kldstat .... I did not see it pop up
and ifconfig and nothing hmmm i am just going to get a nic that works with pfsense -
@kilasin You don't happen to have a switch that will do both 2.5 and 10G? If so, you can use it as a "media converter" between pfsense WAN and EE's router.
-
@Gblenn I do but i dont understand what you mean ... MY switch is this NETGEAR 10-Port Gigabit/10G Ethernet Plus Switch (GS110EMX) which i use the last 2 ports for 10G networkin between my server and my computer but it can do 5G/2.5G as shown above in the picture i posted.. Please explain what you mean
-
@kilasin What I should have said was "you don't happen to have a switch lying around".. as in another extra switch...
If your ISP is doing 2.5G on WAN, you could then connect that switch between your ISP WAN and pfsense. The sole purpose of this switch would be to negotiate 2.5G with ISP and 10G with pfsense...
If you don't have another switch, I suppose it may be cheaper getting a new NIC for pfsense, although 10/2.5G switches are getting cheaper...
-
@Gblenn i still dont get what your trying to say. You want me to connect the switch directly to the isp bypassin the EE modem or connect t he modem to the switch ? ok so here is the deal
I am gettin 2.5 with the router but the port lines in the router are only 1g hence i did the pfsense ... i got a 4 nics that are 10G but aptly none of em can do 2.5 and the only one is aquantia but not supported or flaky at best with pfsense now my switch cant do both however i dont see how a switch can negotiate and act as a router to the 2.5G WAN connection the ISP can provide unless im missin how it would work.
I am guessing is connect the ONT directly to my switch then have the pfSense router connect to the switch via 10G from the switch and negotiate everything from there?
-
@kilasin said in Trouble with WAN not being able to get correct speed:
@Gblenn i still dont get what your trying to say. You want me to connect the switch directly to the isp bypassin the EE modem or connect t he modem to the switch ? ok so here is the deal
I am gettin 2.5 with the router but the port lines in the router are only 1g hence i did the pfsense ...
Understood, and if the router had been capable of 10G on the LAN you could simply have used it in bridge mode if it has that function. In bridge mode it would act pretty much like the switch I'm suggesting now...
i got a 4 nics that are 10G but aptly none of em can do 2.5 and the only one is aquantia but not supported or flaky at best with pfsense now my switch cant do both however i dont see how a switch can negotiate and act as a router to the 2.5G WAN connection the ISP can provide unless im missin how it would work.
A switch can negotiate whatever speeds it's designed to handle, but it will still just be a switch and pfsense will still be the router. However, switches are likely able to negotiate whatever speed being requested (or set via UI), which is not necessarily true with yet another NIC that you put in your server.
BTW, speaking of that, have you tried not passing the NIC to pfsense, to see if you have better support for the aquantia NIC in Unraid?
I am guessing is connect the ONT directly to my switch then have the pfSense router connect to the switch via 10G from the switch and negotiate everything from there?
Exactly, just make sure that the switch you connect between the ONT and pfsense is physically (a different switch) or logically (using VLAN perhaps) separated from your LAN.
So what I'm saying is that you need another switch doing this job. ONT RJ45 > switch 2.5G... switch 10G > pfsense 10G.
On the LAN side you keep things as they are.Another "use case" is having a switch with both RJ45 and SPF+ ports. Then you bypass the ONT as well and plug the fiber module directly into the switch SFP+, and then continue with RJ45 into your pfsense.
-
Gotcha I understand now. Ya problem is i have only 1 switch maybe i can make that into a VLAN just for the inbetween.
On the other note about the aquantia card. Yes, I made a passthrough and it works in OPNSENSE (which is nice) but i just like pfSense much better no idea it will work with one but not the other. Like in pfSense the card will not even show up which is crazy and in OPN not a problem and I am stubborn it makes no sense to me how both bein BSD systems it wont work.
I have another 2.5G which is RLT but that wont passthrough for some reason in unraid no idea why that is and i stopped trying spent too much of this problem this week so I just might make it easier on myself and order a card that is compatible with pfSense that is 2.5G and basically have a 3x 10G ports and 2 2.5G which is not bad and have another switch for the rest.
If only i can make the RTL pass through that would be great
-
@kilasin pfsense and opnsense are both bsd but driver support may differ.
If your switch had been larger, with say at least 4 ports capable of 2.5/20G, then you could have used it for both the WAN side and your current setup for your server. Using VLAN to logically split it up into two switches.
And for the time being, you can absolutely do that right now, if you can live with your server not being able to run 10G on LAN.You don't have to pass thru a NIC for pfsense to be able to work. Some HW functions in the NIC will be lost to pfsense but RTL cards typically need those turned off anyway. And from a performance perspective I'm pretty sure you will still be able to route 2.5G even with a virtualized NIC.
What WILL happen if you don't pass thru is that the Interface name will change and you would have to reassign WAN in pfsense. Not a big deal if it's only WAN. More work if LAN and lot's of VLAN and other stuff.Never seen a card with 5 ports on them, what card is that??
-
BTW, did you see @stephenw10's post about the RTL card and the realtek-kmod driver package?
Here's discussion about that which may help?
https://www.reddit.com/r/PFSENSE/comments/t872mx/fix_issues_with_realtek_nic_on_pfsense_260t
I guess it traces back to this blog post perhaps:
https://www.robpeck.com/2021/04/using-realtek-nics-in-pfsense/One thing to not in the reddit discussion is turning off HW offload...
-
@Gblenn the cards are 2 540 ts and 1 aquantia giving me 5x10gs then i got 2 2.5Gs one is embeded in the mobo which is akiller one if im correct the other the RTL card, which i bought but couldnt manage to get it to work. I do have an extra 2 10G card hpe flex but thats more server type and none of my systems can read it unless i plug it to my original old hp server..
I am new to this networking stuff i do it for fun and see what works for me but i luv pfsense it is AMAZING just trying to make it work with the stuff I have around.
-
i know this would be a great ask and favour but how would if i decide to use my switch in vlan to make it work? im trying to search videos for it but cant seem to find what your talking about. Sorry for the hassle and being a noob but im trying to learn here as well
-
@kilasin said in Trouble with WAN not being able to get correct speed:
@Gblenn the cards are 2 540 ts and 1 aquantia giving me 5x10gs then i got 2 2.5Gs one is embeded in the mobo which is akiller one if im correct the other the RTL card, which i bought but couldnt manage to get it to work. I do have an extra 2 10G card hpe flex but thats more server type and none of my systems can read it unless i plug it to my original old hp server..
Ah, I thought you meant a card with 3 plus 2... my bad..
Anyway, I'd suggest to check out installing the driver package for RTL cards to see if you can get that working with pfsense, like you did with opnsense.
i know this would be a great ask and favour but how would if i decide to use my switch in vlan to make it work? im trying to search videos for it but cant seem to find what your talking about. Sorry for the hassle and being a noob but im trying to learn here as well
No problem... obviously switches are different in the way the user interface is designed, but In the manual you have Port based VLAN as well as 802.1Q VLAN.
I'm thinking that Port based VLAN should do the trick in your case.On page 27 it tells you to select the menu item VLAN and click activate unless you have already done so.
Then for ports 9 and 10, which I understand are the one's capable of 2.5/10G, you enter a VLAN ID number of your choice. So let's say you enter 100 as the ID for those two ports. This should isolate the ports so that it's only those two that are allowed to communicate with each other. The ID you chose is irrelevant and all this will do is break up the switch into two logical parts, ports 1-8 and ports 9-10.You should test this before you connect to the WAN side of course.
-
@Gblenn Here's how to do it if you were to use the 802.1Q VLAN setup instead.
Start by adding the ID (100 in this example) in the field, and then click ADD.
Next you need to make sure that ports 9 and 10 are removed from the list of ports using ID 1, and instead add them to ID 100.
This is done on the VLAN Membership tab.
First, with ID 1 visible, click ports 9 and 10 so that they are empty (no U or T visible).
Then select ID 100 and click ports 9 and 10 so that they read U (Untagged).
Finally go to Port VID and select ports 9 and 10 and enter ID 100 and click Apply.
Now you should be all set...I actually found a video for this where they do exactly this, but for ports 1-5: https://www.youtube.com/watch?v=TIPQhZrwBTo
-
Ok I was able to seperate those ports. Now the WAN side how do i go about doing that ?
