Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SG-1100 Storage Health Questions

    Official Netgate® Hardware
    5
    10
    295
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      BGSmith
      last edited by

      I came across an advisory on reddit to check storage health on pfsense appliances if eMMC storage is used.

      I have an SG-1100. Following netgate instructions I have:

      eMMC Firmware Version: 73103517
      eMMC Life Time Estimation A [EXT_CSD_DEVICE_LIFE_TIME_EST_TYP_A]: 0x03
      eMMC Life Time Estimation B [EXT_CSD_DEVICE_LIFE_TIME_EST_TYP_B]: 0x08
      eMMC Pre EOL information [EXT_CSD_PRE_EOL_INFO]: 0x01

      Two questions please.

      Is this something I need to worry about in the immediate future? I really like the appliance but replacing it with another one that will have the same issue in 2 years.

      I assume storage cannot be replaced or upgraded on this device?

      thank you

      M S A J 4 Replies Last reply Reply Quote 0
      • M
        michmoor LAYER 8 Rebel Alliance @BGSmith
        last edited by

        @BGSmith Your eMMC drive doesnt look good. Although those are estimates i would go with caution and figure out a replacement strategy.

        To avoid this in the future especially on another SG1100, you should really tune down the logging particular from packages like pfblocker if used. Firewall rules should not have logging enabled. After 6 months of service my 1100 drive is still in healthy condition following my advice. MMV

        Firewall: NetGate,Palo Alto-VM,Juniper SRX
        Routing: Juniper, Arista, Cisco
        Switching: Juniper, Arista, Cisco
        Wireless: Unifi, Aruba IAP
        JNCIP,CCNP Enterprise

        B 1 Reply Last reply Reply Quote 0
        • B
          BGSmith @michmoor
          last edited by

          @michmoor - thanks. Much appreciated. I will start to evaluate options. The SG-1100 pretty much does firewall only work, although I recently enable DNS-over-TLS which the pihole on the lan uses as an upstream dns source.

          I will double check logging on the firewall rules.

          best regards

          M 1 Reply Last reply Reply Quote 0
          • M
            michmoor LAYER 8 Rebel Alliance @BGSmith
            last edited by

            @BGSmith Let me revise what i stated above.

            https://docs.netgate.com/pfsense/en/latest/troubleshooting/disk-lifetime.html

            Using the documentation as a guide, your disk life isnt terrible actually. I would still highly suggest you tune the logging on your device.

            Firewall: NetGate,Palo Alto-VM,Juniper SRX
            Routing: Juniper, Arista, Cisco
            Switching: Juniper, Arista, Cisco
            Wireless: Unifi, Aruba IAP
            JNCIP,CCNP Enterprise

            1 Reply Last reply Reply Quote 1
            • S
              SteveITS Rebel Alliance @BGSmith
              last edited by

              @BGSmith this list may help: https://forum.netgate.com/topic/195879/netgate-2100-life-expectancy/8

              Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
              When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
              Upvote 👍 helpful posts!

              B 1 Reply Last reply Reply Quote 0
              • B
                BGSmith @SteveITS
                last edited by

                @SteveITS - thank you

                1 Reply Last reply Reply Quote 1
                • A andrew_cb referenced this topic
                • A
                  andrew_cb @BGSmith
                  last edited by

                  @BGSmith I wrote the advisory, and I am glad it helped you identify that your storage device is at risk before your 1100 just suddenly died.

                  Uninstalling packages and disabling as much logging as possible (including all the logging that is enabled by DEFAULT), and using ramdisks should help conserve the remaining storage life.

                  B 1 Reply Last reply Reply Quote 0
                  • B
                    BGSmith @andrew_cb
                    last edited by

                    @andrew_cb - thank you

                    1 Reply Last reply Reply Quote 0
                    • J
                      jared.silva @BGSmith
                      last edited by

                      @BGSmith I suggest you migrate from eMMC to USB flash storage. I did, and it was easy. https://forum.netgate.com/topic/196372/migrating-netgate-1100-from-emmc-to-usb-flash-storage-to-keep-it-fit

                      B 1 Reply Last reply Reply Quote 1
                      • B
                        BGSmith @jared.silva
                        last edited by

                        @jared-silva : Appreciate the link and tip. I was wondering whether this was feasible.

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.