Remove pfblocker settings without package installed?
-
@Klaus2314 said in Remove pfblocker settings without package installed?:
This is the 24.11 by the way with NO blocker installed and just the most basic setup.
Take a look with top - maybe you can identify wich process is eating CPU ...
-
-
Hmmm ... I cannot see something very unusual ...
Have you installed all system patches (if any)?
-
@fireodo 24.11 has no patches yes
-
-
OK. Maybe we should ask @stephenw10 to jump in because he knows the 24.11 better than I do ... this seams to be something else than pfBlockerNG trouble ...
-
@fireodo Yeah, the forum seems to be full of posts about excessive CPU usage with 24.11. At the moment 24.11 doesn't seem to be able to run pfblocker on an SG1100. I'll try and roll back to 24.3 somehow and re-install the pfb version that worked with it last.
Thanks for chiming in and happy holidays! -
@Klaus2314 said in Remove pfblocker settings without package installed?:
Thanks for chiming in and happy holidays!
Thank you - for you too!
Sorry I could not help more :-( -
@fireodo No worries. It seems to be the widgets. Got CPU down to 30% by removing all widgets from the dashboard and just adding back system info.
-
@Klaus2314 said in Remove pfblocker settings without package installed?:
Got CPU down to 30% by removing all widgets from the dashboard and just adding back system info.
Yeah, I remember to have read something related to widgets and high CPU load in 24.11 ...
-
@Klaus2314 Remove the section(s) for pfB from your config file and restore.
If you install packages ensure you have the correct update branch selected. Installing a package for a later version can break things.
The posts I’ve seen about high CPU usage are re: dashboard widget updating. Quick workaround is not to view the dashboard. There is also a patch to revert the changes there.
-
@SteveITS Your hint about the update path did the trick! I was able to roll back to 24.3 and install the pfb version that used to work. Now all is back to normal.
I guess 24.11 and pfb is currently not a good idea to run on an SG1100.Thank you for helping!
-
@Klaus2314 Sorry, spoke too early. 24.3 with the 24.3 update path shows the pfblocker version that only runs on 24.11. Any idea how to install 3.2.0_8 instead of the newer 3.2.0_10 which does not run?
-
@Klaus2314 Each update branch has "the current" (for that version) package. So there's not a way to get "some older version" that isn't in the online repos. It has only one place to look.
It sounds like you have ZFS on your 1100 so you can just revert to a previous boot environment...?
About the only ways pfBlocker can "not run" are needing more than the 1 GB RAM (i.e. big lists) on the 1100 or using CPU (often, processing/updating big lists) so I would try to figure out why you are seeing high usage, with the dashboard not visible. You could try to track down the changes between those two minor versions but I would not expect to see much significant.
https://github.com/pfsense/FreeBSD-ports/commits/devel/net/pfSense-pkg-pfBlockerNG
https://forum.netgate.com/topic/187767/pfblockerng-3-2-0_09-to-3-2-0_10
https://forum.netgate.com/topic/188162/pfblockerng-v3-2-0_10/6 -
@Klaus2314 I have devel version 3.2.0_20 running great on 24.3 but I am on a 5100 with 32Gb
-
Maybe this?
https://forum.netgate.com/topic/195336/24-03-24-11-concerns/2?_=1734824003103
-
@jrey I've finally managed to roll back to 24.3 after 2 days of messing around and re-install pfb 3.2.0_10 from scratch. Now all is dandy again with much more lists active than under 24.11.
