How to add swapspace
-
You should either do a config backup and then reinstall the full version of pfSense or reconfigure snort with a less memory-intensive option.
-
So anything configured on pfsense is saved in that one config and it will be configured exactly as it was when I just backup that one?
-
Yes unless you've done any customisation outside the wegui setup.
Steve
-
I was just wondering, if I did. It is running for a while now and I just got to install snort. That's why I am hesitating to touch the running system and just wanted to add a partition to use it with swap.
-
I don't think it's going to be possible to add swap. If you Google for adding swap to NanoBSD there are a lot of people wanting to do it and some who've experimented with it. However anything I read about successfully adding it involved rebuilding the Nano image from patched FreeBSD source. Not adding it to a live system.
Perhaps, if you really don't want to switch to a full install, you could add space in another way. With Squid for example you can add another drive or slice and use that for cache storage instead of the default location. Often the problems with Snort are caused when it tries to update it's definition files and the result is too large. If that could be downloaded to a separate slice it may help. I'm just think aloud here.
If you are running Snort on a box that can take a maximum of 1GB of RAM you probably need to simply tune it more rigorously.
What hardware are you running?Steve
-
Maybe I am thinking too easy from a Linux-point of view where I would just create a partition with fdisk and mount it as swap.
I already have snort on lowmem performance but I still get out of swap space errors. Probably I will try to backup the whole disk into an image and then trying to reinstall with using an hd-install version of pfsense. If reinstalling the config-file would break up my setup, I can still restore with the backup -
That sounds like a good plan.
You can't really compare this to a standard install of Linux or FreeBSD. It's more like OpenWRT, for example. Imagine trying to add an external SWAP drive to a SOHO router. It could be done but it's probably going to involve command line hackery and will be broken by the next update.Steve
-
Step 0: Say goodbye to anything you love on da0 and be ready to redo this when (not if) it dies.
: dd if=/dev/zero of=/dev/da0 bs=512 count=1 : fdisk -I /dev/da0 : tunefs -L myswap /dev/da0s1 : swapon /dev/ufs/myswap : swapinfo -h Device 1K-blocks Used Avail Capacity /dev/ufs/myswap 1951864 0B 1.9G 0%
Add a shellcmd to do the swapon command at boot.
-
That would be to use a USB stick for swap space I take it.
Steve
-
Yep.