Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Upgrade 24.11 > 25.7 can't access GUI

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    5 Posts 3 Posters 690 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • AMG A35A Offline
      AMG A35
      last edited by

      Hi

      I have just upgraded my Protectli based unit from 24.11 to 25.7, upgrade appeared to go fine.

      After upgrade all routing and firewall functions appear to work fine and I can SSH in. But, I have no GUI access.

      If I try to restart GUI via ssh I see repeated six times:

      Restarting webConfigurator...
      Message from syslogd@router at Aug 10 15:32:51 ...
      nginx: 2025/08/10 15:32:51 [emerg] 78292#100886: bind() to 0.0.0.0:443 failed (48: Address already in use)

      Also strange is if I ssh from an account other than admin I normally go to a command prompt, but now I go to the menu screen.

      Is there a way I can try to fix this?

      Packages are :

      pkg info
      7-zip-24.09 Console version of the 7-Zip file archiver
      abseil-20240722.0 Abseil Common Libraries (C++)
      argp-standalone-1.5.0_1 Standalone version of arguments parsing functions from GLIBC
      arping-2.24_1 ARP level "ping" utility
      avahi-app-0.8_2 Service discovery on a local network
      beep-1.0_2 Beeps a certain duration and pitch out of the PC Speaker
      bind-tools-9.20.6 Command line tools from BIND: delv, dig, host, nslookup...
      boost-libs-1.86.0 Free portable C++ libraries (without Boost.Python)
      brotli-1.1.0,1 Generic-purpose lossless compression algorithm
      bsnmp-regex-0.6_4 bsnmpd module allowing creation of counters from log files
      bsnmp-ucd-0.4.5_1 bsnmpd module that implements parts of UCD-SNMP-MIB
      bwi-firmware-kmod-3.130.20.1500029 Broadcom AirForce IEEE 802.11 Firmware Kernel Module
      ca_root_nss-3.104_1 Root certificate bundle from the Mozilla Project
      ccid-1.6.1 Generic driver for USB CCID and ICCD
      check_reload_status-0.0.16 run various pfSense scripts on event.
      choparp-20150613_1 Simple proxy arp daemon
      cpdup-1.22_1 Comprehensive filesystem mirroring and backup program
      cpu-microcode-1.0_1 Meta-package for CPU microcode updates
      cpu-microcode-amd-20241121 AMD CPU microcode updates
      cpu-microcode-intel-20250211 Intel CPU microcode updates
      cpu-microcode-rc-1.0_2 RC script for CPU microcode updates
      cpustats-0.1_1 cpustats
      curl-8.11.0_1 Command line tool and library for transferring data with URLs
      cyrus-sasl-2.1.28_1 RFC 2222 SASL (Simple Authentication and Security Layer)
      dbus-1.14.10_5,1 Message bus system for inter-application communication
      dbus-glib-0.112_1 GLib bindings for the D-BUS messaging system
      dhcp6-20080615.2_4 KAME DHCP6 client, server, and relay
      dhcpcd-10.2.0 DHCP/IPv4LL/IPv6RS/DHCPv6 client
      dhcpleases-0.5_1 read dhpcd.lease file and add it to hosts file
      dhcpleases6-0.1_3 read dhpcd6.leases file and trigger command on modification
      dmidecode-3.6 Tool for dumping DMI (SMBIOS) contents in human-readable format
      dnsmasq-2.90_4,1 Lightweight DNS forwarder, DHCP, and TFTP server
      dpinger-3.3 IP device monitoring tool
      drm-510-kmod-5.10.163_7 DRM drivers modules
      duktape-lib-2.7.0 Embeddable Javascript engine (shared lib)
      expat-2.7.1 XML 1.0 parser written in C
      expiretable-0.6_3 Utility to remove entries from the pf(4) table based on their age
      filterdns-2.2 filterdns
      filterlog-0.1_10 filterlog
      freeipmi-1.6.14_1 Library and tools to support IPMI-capable hardware
      freetype2-2.13.3 Free and portable TrueType font rendering engine
      fstrm-0.6.1_1 Implementation of the Frame Streams data transport protocol in C
      gdbm-1.24 GNU database manager
      gettext-runtime-0.22.5 GNU gettext runtime libraries and programs
      giflib-5.2.2 Tools and library routines for working with GIF images
      glib-2.80.5_1,2 Some useful routines of C programming (current stable version)
      gmp-6.3.0 Free library for arbitrary precision arithmetic
      gnome_subr-1.0 Common startup and shutdown subroutines used by GNOME scripts
      gnugrep-3.11 GNU version of popular pattern matching utility
      grepcidr-2.0_1 Filter IP addresses matching IPv4 CIDR/network specification
      hostapd-2.11_1 IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
      icu-74.2_1,1 International Components for Unicode (from IBM)
      if_pppoe-kmod-25.07.1500029 PPPoE Kernel Driver
      iftop-1.0.p4_1 Display bandwidth usage on an interface by host
      igmpproxy-0.4_2,1 Multicast forwarding IGMP proxy
      indexinfo-0.3.1 Utility to regenerate the GNU info page index
      iperf3-3.18 Improved tool to measure TCP and UDP bandwidth
      ipmitool-1.8.19_2 CLI to manage IPMI systems
      iprange-1.0.4_2 Manage IP ranges
      isc-dhcp44-client-4.4.3P1_1 The ISC Dynamic Host Configuration Protocol client
      isc-dhcp44-relay-4.4.3P1_4 The ISC Dynamic Host Configuration Protocol relay
      isc-dhcp44-server-4.4.3P1_5 ISC Dynamic Host Configuration Protocol server
      jansson-2.14 C library for encoding, decoding, and manipulating JSON data
      jbigkit-2.1_3 Lossless compression for bi-level images such as scanned pages, faxes
      jpeg-turbo-3.0.4 SIMD-accelerated JPEG codec which replaces libjpeg
      jq-1.7.1 Lightweight and flexible command-line JSON processor
      json-c-0.18 JSON (JavaScript Object Notation) implementation in C
      jsoncpp-1.9.6_1 JSON reader and writer library for C++
      kea-2.6.2 Alternative DHCP implementation by ISC
      ldns-1.8.4 Library for programs conforming to DNS RFCs and drafts
      lerc-4.0.0 C++ library for Limited Error Raster Compression
      libargon2-20190702_1 Memory hard password hashing program and library
      libdaemon-0.14_1 Lightweight C library that eases the writing of UNIX daemons
      libdeflate-1.22 Fast, whole-buffer DEFLATE-based compression library
      libedit-3.1.20240808,1 Command line editor library
      libevent-2.1.12 API for executing callback functions on events or timeouts
      libffi-3.4.6 Foreign Function Interface
      libgcrypt-1.11.0 General purpose cryptographic library based on the code from GnuPG
      libgd-2.3.3_13,1 Graphics library for fast creation of images
      libgpg-error-1.50 Common error values for all GnuPG components
      libiconv-1.17_1 Character set conversion library
      libidn2-2.3.7 Implementation of IDNA2008 internationalized domain names
      libinotify-20240724 Kevent based inotify compatible library
      libltdl-2.4.7 System independent dlopen wrapper
      liblz4-1.10.0,1 LZ4 compression library, lossless and very fast
      libmaxminddb-1.12.2 Library for the MaxMind DB file format used for GeoIP2
      libmcrypt-2.5.8_4 Multi-cipher cryptographic library (used in PHP)
      libmodbus-3.1.7_2 Modbus library
      libnet-1.3,1 C library for creating IP packets
      libnghttp2-1.64.0 HTTP/2.0 C Library
      libpfctl-0.15 Library for interaction with pf(4)
      libpsl-0.21.5_1 C library to handle the Public Suffix List
      libsodium-1.0.19 Library to build higher-level cryptographic tools
      libssh2-1.11.1,3 Library implementing the SSH2 protocol
      libsysinfo-0.0.3_3 GNU libc's sysinfo port for FreeBSD
      libucl-0.9.2_1 Universal configuration library parser
      libunistring-1.2 Unicode string library
      liburcu-0.14.0 Userspace read-copy-update (RCU) data synchronization library
      libuv-1.49.2 Multi-platform support library with a focus on asynchronous I/O
      libxml2-2.11.9 XML parser library for GNOME
      libxslt-1.1.37_1 XML stylesheet transformation library
      lighttpd-1.4.76 Secure, fast, compliant, and flexible Web Server
      links-2.30,1 Lynx-like text WWW browser
      lldpd-1.0.18 Link-Layer Discovery Protocol (LLDP 802.1ab) daemon
      log4cplus-2.1.1 Logging library for C++
      lua-resty-core-0.1.29 New FFI-based Lua API for OpenResty NGINX Lua modules
      lua-resty-lrucache-0.13 Lua-land LRU cache based on the LuaJIT FFI
      lua54-5.4.7 Powerful, efficient, lightweight, embeddable scripting language
      luajit-openresty-2.1.20241104 Just-In-Time Compiler for Lua (OpenResty branch)
      lzo2-2.10_1 Portable speedy, lossless data compression library
      minicron-0.0.2 very small cron
      miniupnpd-2.3.7_1,1 Lightweight UPnP IGD & PCP/NAT-PMP daemon which uses pf
      mobile-broadband-provider-info-20240407 Service mobile broadband provider database
      mpd5-5.9_18 Multi-link PPP daemon based on netgraph(4)
      mpdecimal-4.0.0 C/C++ arbitrary precision decimal floating point libraries
      mtr-nox11-0.95_2 Traceroute and ping in a single network diagnostic tool
      neon-0.32.5_3 HTTP and WebDAV client library for Unix systems
      net-snmp-5.9.4_6,1 Extendable SNMP implementation
      nettle-3.10.1 Low-level cryptographic library
      nginx-1.26.3,3 Robust and small WWW server
      nmap-7.94_3 Port scanning utility for large networks
      nss_ldap-1.265_15 RFC 2307 NSS module
      ntp-4.2.8p18_5 The Network Time Protocol Distribution
      nut-2.8.2 Network UPS Tools
      oniguruma-6.9.9 Regular expressions library compatible with POSIX/GNU/Perl
      openldap26-client-2.6.9 Open source LDAP client implementation
      opensc-0.26.0 Libraries and utilities to access smart cards
      openvpn-2.6.14 Secure IP/Ethernet tunnel daemon
      openvpn-auth-script-1.0.0.3 Generic script-based deferred auth plugin for OpenVPN
      openvpn-client-export-2.6.7 OpenVPN Client Export
      pam_ldap-186_2 PAM module for authenticating with LDAP
      pam_mkhomedir-0.2_1 Create HOME with a PAM module on demand
      pcre2-10.43 Perl Compatible Regular Expressions library, version 2
      pcsc-lite-2.3.0,2 Middleware library to access a smart card using SCard API (PC/SC)
      perl5-5.36.3_2 Practical Extraction and Report Language
      pfSense-25.07 Main pfSense package
      pfSense-Status_Monitoring-php83-1.8_8 pfSense Status Monitoring
      pfSense-base-25.07 pfSense core files
      pfSense-boot-25.07 pfSense boot files
      pfSense-composer-deps-0.3 pfSense deps from composer
      pfSense-default-config-25.07 Default config.xml
      pfSense-gnid-0.20 GNID tool.
      pfSense-kernel-pfSense-25.07 pfSense kernel (pfSense)
      pfSense-pkg-Backup-0.6.3 pfSense package Backup
      pfSense-pkg-Cron-0.3.8_6 pfSense package Cron
      pfSense-pkg-Filer-0.60.6_9 pfSense package Filer
      pfSense-pkg-Nexus-25.07 Netgate Nexus
      pfSense-pkg-Shellcmd-1.0.5_4 pfSense package Shellcmd
      pfSense-pkg-System_Patches-2.2.21_2 pfSense package System_Patches
      pfSense-pkg-WireGuard-0.2.9_5 pfSense package WireGuard
      pfSense-pkg-acme-0.9_1 ACME package for pfSense
      pfSense-pkg-arping-1.2.2_6 pfSense package arping
      pfSense-pkg-iperf-3.0.5 pfSense package iperf
      pfSense-pkg-lldpd-0.9.11_3 802.1ab Link Layer Discovery Protocol (LLDP) daemon
      pfSense-pkg-mailreport-3.6.4_5 pfSense package mailreport
      pfSense-pkg-mtr-nox11-0.85.6_5 pfSense package mtr-nox11
      pfSense-pkg-nmap-1.4.4_8 pfSense package nmap
      pfSense-pkg-nut-2.8.2_5 Network UPS Tools
      pfSense-pkg-openvpn-client-export-1.9.5 pfSense package openvpn-client-export
      pfSense-pkg-sudo-0.3_10 pfSense package sudo
      pfSense-pkg-udpbroadcastrelay-1.2.4 pfSense package UDP Broadcast Relay
      pfSense-repo-25.07 Setup pfSense pkg(8) repositories
      pfSense-repoc-20250520 pfSense dynamic repository client
      pfSense-upgrade-1.3.11 pfSense upgrade script
      pftop-0.13 Utility for real-time display of statistics for pf
      php83-8.3.19 PHP Scripting Language (8.3.X branch)
      php83-bcmath-8.3.19 The bcmath shared extension for php
      php83-bz2-8.3.19 The bz2 shared extension for php
      php83-ctype-8.3.19 The ctype shared extension for php
      php83-curl-8.3.19 The curl shared extension for php
      php83-dom-8.3.19 The dom shared extension for php
      php83-filter-8.3.19 The filter shared extension for php
      php83-ftp-8.3.19 The ftp shared extension for php
      php83-gettext-8.3.19 The gettext shared extension for php
      php83-gmp-8.3.19 The gmp shared extension for php
      php83-intl-8.3.19 The intl shared extension for php
      php83-ldap-8.3.19 The ldap shared extension for php
      php83-libbe-0.2.1 FreeBSD libbe(3) library glue extension for PHP
      php83-mbstring-8.3.19 The mbstring shared extension for php
      php83-opcache-8.3.19 The opcache shared extension for php
      php83-openssl_x509_crl-1.3_3 PHP Class to create openssl Certificate Revocation List (CRL)
      php83-pcntl-8.3.19 The pcntl shared extension for php
      php83-pdo-8.3.19 The pdo shared extension for php
      php83-pdo_sqlite-8.3.19 The pdo_sqlite shared extension for php
      php83-pear-1.10.13 PEAR framework for PHP
      php83-pear-Auth_RADIUS-1.1.0_4 PEAR wrapper classes for the RADIUS PECL
      php83-pear-Cache_Lite-1.8.3,1 Fast and Safe little cache system
      php83-pear-Crypt_CHAP-1.5.0_2 PEAR class for generating CHAP packets
      php83-pear-HTTP_Request2-2.6.0,1 PEAR classes providing an easy way to perform HTTP requests
      php83-pear-Mail-2.0.0,1 PEAR class that provides multiple interfaces for sending emails
      php83-pear-Net_IPv6-1.3.0.b4_2 Check and validate IPv6 addresses
      php83-pear-Net_SMTP-1.12.1 PEAR class that provides an implementation of the SMTP protocol
      php83-pear-Net_Socket-1.2.2 PEAR Network Socket Interface
      php83-pear-Net_URL2-2.2.1 PEAR Class for parsing and handling URL
      php83-pear-XML_RPC2-1.1.5 XML-RPC client/server library
      php83-pecl-mcrypt-1.0.7 PHP extension for mcrypt, removed in PHP 7.2
      php83-pecl-radius-1.4.0b1_3 Radius client library for PHP
      php83-pecl-rrd-2.0.3_1 PHP bindings to rrd tool system
      php83-pecl-ssh2-1.3.1 PECL extension to the libssh2 library
      php83-pfSense-module-0.105 Library for getting useful info
      php83-phpseclib-2.0.17 PHP arbitrary-precision integer arithmetic library
      php83-posix-8.3.19 The posix shared extension for php
      php83-readline-8.3.19 The readline shared extension for php
      php83-session-8.3.19 The session shared extension for php
      php83-shmop-8.3.19 The shmop shared extension for php
      php83-simplexml-8.3.19 The simplexml shared extension for php
      php83-sockets-8.3.19 The sockets shared extension for php
      php83-sqlite3-8.3.19 The sqlite3 shared extension for php
      php83-sysvmsg-8.3.19 The sysvmsg shared extension for php
      php83-sysvsem-8.3.19 The sysvsem shared extension for php
      php83-sysvshm-8.3.19 The sysvshm shared extension for php
      php83-tokenizer-8.3.19 The tokenizer shared extension for php
      php83-xml-8.3.19 The xml shared extension for php
      php83-xmlreader-8.3.19 The xmlreader shared extension for php
      php83-xmlwriter-8.3.19 The xmlwriter shared extension for php
      php83-zlib-8.3.19 The zlib shared extension for php
      pkcs11-helper-1.29.0_3 Helper library for multiple PKCS#11 providers
      pkg-1.21.3_5 Package manager
      png-1.6.44 Library for manipulating PNG images
      polkit-125 Framework for controlling access to system-wide components
      powerman-2.3.20_3 Tool for doing remote power control
      protobuf-28.3,1 Data interchange format library
      protobuf-c-1.4.1_7 Code generator and libraries to use Protocol Buffers from pure C
      py311-libzfs-1.1.2023020700_3 Python libzfs bindings
      py311-maxminddb-2.6.2 Python module for reading MaxMind DB file
      py311-packaging-24.2 Core utilities for Python packages
      py311-setuptools-63.1.0_1 Python packages installer
      py311-sqlite3-3.11.11_8 Standard Python binding to the SQLite3 library (Python 3.11)
      python311-3.11.11 Interpreted object-oriented programming language
      qstats-0.2 read dhpcd.lease file and add it to hosts file
      radvd-2.20 Linux/BSD IPv6 router advertisement daemon
      rate-0.9_4 Traffic analysis command-line utility
      readline-8.2.13_2 Library for editing command lines as they are typed
      rrdtool-1.9.0 Round Robin Database Tools
      rsync-3.4.0 Network file distribution/synchronization utility
      scponly-4.8.20110526_8 Tiny shell that only permits scp and sftp
      smartmontools-7.4_2 S.M.A.R.T. disk monitoring tools
      socat-1.8.0.2 Multipurpose relay and more
      sqlite3-3.46.1,1 SQL database engine in a C library
      ssh_tunnel_shell-0.2_1 SSH tunnel shell
      sshguard-2.4.3_3,1 Protect hosts from brute-force attacks against SSH and other services
      strongswan-5.9.14 Open Source IKEv2 IPsec-based VPN solution
      sudo-1.9.16p2 Allow others to run commands as root
      tiff-4.7.0 Tools and library routines for working with TIFF images
      uclcmd-0.2.20211204 Command line tool for working with UCL config files
      udpbroadcastrelay-1.1 UDP multicast/unicast relayer
      unbound-1.23.0 Validating, recursive, and caching DNS resolver
      voucher-0.1_3 Voucher support
      vstr-1.0.15_2 General purpose string library for C
      webp-1.4.0_1 Google WebP image format conversion tool
      whois-5.5.7_1 Marco d'Itri whois client
      wol-0.7.1_5 Tool to wake up Wake-On-LAN compliant computers
      wpa_supplicant-2.11_2 Supplicant (client) for WPA/802.1x protocols
      wrapalixresetbutton-0.0.13 Utility to detect platform reset button state for use in scripting
      xinetd-2.3.15_3 Replacement for inetd with better control and logging
      xxhash-0.8.2_1 Extremely fast non-cryptographic hash algorithm
      zip-3.0_3 Create/update ZIP files compatible with PKZIP
      zstd-1.5.6 Fast real-time compression algorithm

      AMG A35A 1 Reply Last reply Reply Quote 0
      • AMG A35A Offline
        AMG A35 @AMG A35
        last edited by

        Update >>>>>>

        I had OpenVPN bound to TCP:443 on WAN interface, which was working fine in 24.11.

        To resolve the issue in 25.7, I killed OpenVPN server process via SSH and restarted GUI and all is now working. I have disabled the tunnel in the GUI.

        GertjanG 1 Reply Last reply Reply Quote 1
        • GertjanG Online
          Gertjan @AMG A35
          last edited by

          @AMG-A35 said in Upgrade 24.11 > 25.7 can't access GUI:

          I had OpenVPN bound to TCP:443 on WAN interface, which was working fine in 24.11.

          Port 443 would work fine for OpenVPN, if you were using UDP, As nginx, the web server, uses TCP.

          Having two processes use the same port and protocol, even if it seems to work, is, imho, "not done".
          It's like having two identical sim cards in two phones : who receives the call ?

          No "help me" PM's please. Use the forum, the community will thank you.
          Edit : and where are the logs ??

          1 Reply Last reply Reply Quote 0
          • stephenw10S Offline
            stephenw10 Netgate Administrator
            last edited by

            Hmm, interesting that worked in 24.11. I would have expected you'd need to move the webgui to a different port before OpenVPN worked on 443.

            AMG A35A 1 Reply Last reply Reply Quote 0
            • AMG A35A Offline
              AMG A35 @stephenw10
              last edited by

              @stephenw10 Agreed all my subsequent research indicates this should not have been possible to configure!

              I created the tunnel and got a warning that existing binding would not work, can't rember exact words, I assumed just WAN which was fine for me. Tunnel worked and I still had GUI access to pfSense for several weeks. But, don't think I every restarted pfSense between then and upgrade to 25.07, so might have failed then.

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.