Watchhguard x1000 Boot Error
-
Seeing a 1.8GB partition would be righf if you had written it with a 4GB image previously.
Physdisk shouldn't have a problem wrting to it even if whatever formatting is on it is completely screwed.
It could be that it won't see your 8GB card correctly. CF cards that big didn't exist when that box was designed.Steve
-
Steve,
Is there a way I can access the bios through PCI video card and keyboard. I googled and found a picture of a watchguard x500 with a video card and keyboard. Want to give this a try.
-
Yep, pretty much just as shown in the picture. You need PCI graphics card, which are not common these days, and a PS2 keyboard header (and keyboard).
Steve
-
Would this be the pins to connect to? If so, what are the specs for these pins for keyboard?
-
Yes that's it. The pinout is given somewhere here on the forum, in the X700 thread I think. It's a standard pinout though if you already have a ps2 header cable. Of course they were found on PCs that came with an AT keyboard as standard but those are rare now. ;)
Steve
https://forum.pfsense.org/index.php?topic=20242.0
-
Steve,
Very cool. Going to look for a cheap PCI card on eBay and try this. Thanks for the help.
-
Okay… got some progress here. Bought a PCI card and did the keyboard setup and was able to get into the bios. I was able to fix the boot error but now I'm getting this issue while trying to install pfsense "ad1: TIMEOUT/FAILURE-READ DMA". Do you have any ideas of a fix.
-
Ok, so the CF slot on the Watchguard box doesn't have the IDE DMA lines connected. That's common to many CF slots. If your card is new and fast enough it will support DMA and will be reporting to the OS and BIOS that it's DMA capable. pfSense tries to use DMA and you get errors as you're seeing.
For this reason DMA is disabled in the NanoBSD snapshots. However it isn't disabled on the Nano+VGA snapshots because those were originally built for a box that required DMA to boot. I assume you're booting the Nano+vga image because you're running the PCI card? You need to disable DMA by doing this:
https://doc.pfsense.org/index.php/Boot_Troubleshooting#Disable_DMA_for_IDE_drivesSteve
-
Okay got it…. disabled DMA... still stuck..trying to add line to boot loader. Keep on getting a /boot/loader.conf.local: not found. Where do I enter this text?
Stuck at this point.
After the installation, add the following line to /boot/loader.conf.local:
To disable DMA for hard drive(s):
hw.ata.ata_dma=0To disable DMA for optical drives:
hw.ata.atapi_dma=0 -
It's not a file that's included by default you have create it. You can do this at the console (or probably via the Command screen in Diagnostics):
echo 'hw.ata.ata_dma=0' >> /boot/loader.conf.local
No need to worry about optical drives.
Steve
Edit: Yes you can do that in Diagnostics: Command Prompt:
-
Got it finally…pfsense is booting perfectly..thank you for the help Steve... Do you have a guide on lcdproc setup..downloaded the packages and nothing on LCD.... thanks again. :P
-
It's a bit of a fiddle to setup because the lcdproc package doesn't play nicely with the sdeclcd driver that's required. There's a link in the wiki page but this is where you want to look:
https://forum.pfsense.org/index.php/topic,7920.msg344513.html#msg344513Steve
-
Thanks Steve..It worked!!!
-
Steve,
Do you have a how to guide for WGXepc setup? Sorry to keep bugging ;D.Thanks
-
Also on the wiki page. :D
https://doc.pfsense.org/index.php/PfSense_on_Watchguard_Firebox#Controlling_hardware_with_WGXepc
You can use Shellcmd to run it at boot.Actually reading back through that section it could use an update. Still valid for your box though.
Steve
-
Thanks for the help..got pfsense running but the internet is really slow. Web pages do not load or load very slowly to the point where its not usable. Strange thing YouTube loads well but other sites do not. Theres many threads here but do not know where to start. What would cause a slow internet connection?..one thing that has been bugging me is the amber light on the modem link light. It only turns amber when connected to the watchguard/pfsense. Modem is an Arris model# CM820A. My set up is ..modem to watchguard @192.168.0.1…watchguard to Cisco 3550 catalyst switch@192.168.0.24...Access Point dlink DGL 4500(DHCP disabled) @192.168.0.5...and a Linksys router as a repeater bridge flashed with ddwrt@192.168.0.2. The only rules I set were for Xbox live for the Xbox one, which actually set my Nat to open.
Thanks -
Unusual link light on the modem sounds like it could be connected at 10Mbps or maybe half duplex. Either would indicate a failure in the speed/duplex negotiation which could definitely cause slow and erratic throughput. Check the Status: Interfaces: page for errors or collisions and the link state. The Realtek NICs in the X-Core are known to be pretty poor unfortunately, I would normally suggest trying to set a fixed speed and duplex but that may not work for you. Worth trying though.
One thing to try is putting a switch in between your modem and the X1000 if you can.
Try to confirm the throttling is at the WAN interface by downloading something on the firebox itself. At the command line:
[2.1.5-RELEASE][root@pfsense.fire.box]/root(1): fetch -o /dev/null http://109.123.87.183/speedtest.256mb /dev/null 100% of 256 MB 8307 kBps 00m00s
The file is from the London test site at http://www.cloudtestfiles.net. You should choose a server local to yourself.
Steve
-
okay changed to 100base full duplex. I also changed DNS to 8.8.8.8 …8.8.4.4. on PC ...now I'm getting improved web access..speedtest.net speeds are 34.71 download and 4.95 upload. not my usual 50 down and 5 up but an improvement. Looks like a DNS issue. Also, can't get wireless connected.
-
You tried the download test at the machine and you are seeing the low throughput there?
No errors or collisions?Did you set it to 100Mb-FD at both ends?
Hard to say about the wireless. What's not working? DHCP? DNS? general connectivity? Do you see firewall hits in the logs?
Steve
-
Steve thanks again for your help…I went ahead and set pfsense back to default and tried fresh setup..I was able to get it working right w/wireless. I just added googles DNS 8.8.8.8 at set up and everything started playing nice..