Official Realtek Driver Binary 1.95 For 2.4.4 Release
-
@fromage9747
Thanks for the followup. Nice to know this is likely dealt with.. A few hours now and problem free. -
Just for confirmations is anybody upgraded to 2.4.5 with FreeBSD 11.3?
Any issues or should it be good to go?
-
@Napsterbater Did you take the leap and try 2.4.5 with this driver?
-
Full disclosure: I have not yet tested this and do not know if it is necessary, but I did recompile the v1.95 Realtek driver under FreeBSD 11.3. I'm planning to test it on my pfSense machines within the next day or two and will report back.
if_re_ko_v195_FREEBSD-11.3_64bit.zip -
Installed the driver I attached to my previous post w. 2.4.5 and all is well so far . . . will report back if anything goes sideways.
-
@TheNarc said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
Full disclosure: I have not yet tested this and do not know if it is necessary, but I did recompile the v1.95 Realtek driver under FreeBSD 11.3. I'm planning to test it on my pfSense machines within the next day or two and will report back.
if_re_ko_v195_FREEBSD-11.3_64bit.zipInstall this updated driver on one box and then updated to 2.4.5, its booted and running. So far so good.
-
@Derelict said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
/boot/loader.conf.local
Also note after upgrade run "kldstat" to confirm if_re.ko loaded.
If not make sure you have
if_re_load="YES"
in /boot/loader.conf.local NOT /boot/loader.conf as /boot/loader.conf is overwritten on upgrade.
-
Has anyone had trouble with RTL810xE chipsets? Would this driver cover those?
-
@coreybrett from what I can tell. This driver should work with it.
But worst case be ready to edit the loader.conf.local from the console and remove the reference to it just in case..
-
Yes, there's only one driver, re(4), for all the Realtek Gigabit NICs. It should work for that.
Are you actually seeing issues though? I would only use the alternative driver if you are.
Steve
-
@stephenw10 to be clear that model is a fast ethernet not a gigabit. If that makes a difference.
-
Ah, been a while since I saw one of those. It's listed as supported by re(4) though so it's probably good.
Though I would recommend not using it at all if there is any other option. The Realtek 100M NICs were terrible.
I hope it's better than the rtl8139: https://github.com/freebsd/freebsd/blob/master/sys/dev/rl/if_rl.c#L48Steve
-
Compiled on FreeBSD 11.3-STABLE (last):
-
I have a bunch of HP motherboards that have them:
re0@pci0:3:0:0: class=0x020000 card=0x2b05103c chip=0x813610ec rev=0x07 hdr=0x00 vendor = 'Realtek Semiconductor Co., Ltd.' device = 'RTL810xE PCI Express Fast Ethernet controller' class = network subclass = ethernet
I don't currently use this interface with my pfSense box but I did for a while and it was fine with the driver that ships with pfSense. By "fine" I mean it wasn't obviously broken in any way.
-
I just updated it and it really increases the software performance very well. Thank you very much for this contribution, it is very appreciated.
-
@pereirara24 do you still have to check the box ofr the three options below in system advanced networking:
Disable hardware chekcsum offload
Disable hardware tcp segmentation offload
Disable hardware large received offloadI am running stock now and my box hangs when i do large transfer over the network sometimes
Thank you.
-
@steeletanner I would say yes.
-
Yes, I would disable all hardware offloading if you're seeing an issue.
Do you see anything logged when this happens? Any sort of crash report when you reboot?
Steve
-
Using this driver for months on 2.4.4 without problems. Now, after upgrade to 2.4.5 I'm getting lots of errors with driver loaded. Without driver loaded, the troughput TO firewall is only around 580mbit but no errors. Traffic FROM firewall is round about 970 mbit. Generating traffic with iperf Server on pfSense. Using the compiled driver version for FreeBSD 11.3 as postet above.
I'm using VLAN on LAN. WAN interface is free of errors.
Any ideas? Disabled hardware checksum offloading without effect.
-
@TheNarc Thank you so much. I was about to replace my Qotom N3150 based firewall as, much like others, on recent releases of pfsense the nics would just stop responding under high load. Fingers crossed this fixes it.
-
@Griffo said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
I was about to replace my Qotom N3150 based firewall
I have one of these Qotom N3150 and I have never had any issues since updating the drivers over 12 months ago. It just keeps 'trucking' along and only gets rebooted for an update.
-
Driver if_re.ko no longer ,loaded on pfSense 2.4.5-p1, worked fine on versions before.
Error in dmesg on kldload -nv /boot/kernel/if_re.ko
KLD if_re.ko: depends on kernel - not available or version mismatch
linker_load_file: Unsupported file type -
@wkn said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
Driver if_re.ko no longer ,loaded on pfSense 2.4.5-p1,
Just checked my dmesg and did not find any errors related to if_re.ko in 2.4.5-p1.
-
Is the driver loaded for you, shown in kldstat?
For me it is not loaded on boot with no error shown in dmesg either. The error is only after manual try with kldload.
[Solved]
Recompiled driver for me on latest 11.3-RELEASE. Now works again. -
@wkn Do you mind uploading the compiled ko driver for 2.4.5.p1 ?
Thanks -
-
@whosmatt I thought I was fine as well. I took a closer look for errors and they were there. I replaced the driver and they were gone.
-
@tpf said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
Using this driver for months on 2.4.4 without problems. Now, after upgrade to 2.4.5 I'm getting lots of errors with driver loaded. Without driver loaded, the troughput TO firewall is only around 580mbit but no errors. Traffic FROM firewall is round about 970 mbit. Generating traffic with iperf Server on pfSense. Using the compiled driver version for FreeBSD 11.3 as postet above.
I'm using VLAN on LAN. WAN interface is free of errors.
Any ideas? Disabled hardware checksum offloading without effect.
my problems still persists. only around 700mbit/sec with iperf (client<->firewall on the same interface) and massiv errors on all vlan interfaces. Even with 2.4.5-p1 :-(
Board: Gigabyte J3455N-D3H
Edit: testing around with same board but with and without vlan.
VLAN
iperf: pfS sending: 700 mbit
iperf: pfS receivig: 980 mbit
errors: massivwithout VLAN:
iperf: pfS sending: 680 mbit
iperf: pfS receiving: 970 mbit
errors: NONEseems like an issue with vlans.
-
@tpf check your cpu / ram usage just
In case -
@tpf said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
VLAN
iperf: pfS sending: 700 mbit
iperf: pfS receivig: 980 mbit
errors: massiv
without VLAN:
iperf: pfS sending: 680 mbit
iperf: pfS receiving: 970 mbit
errors: NONEThis is very strange and it seems that the errors are cosmetic.
There is no degradation in speed/througput
If errors are massive, performance would suffer dearly. -
Thank you!
@steeletanner said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
@tpf check your cpu / ram usage just
In casecpu und ram are inconspicuous.
@netblues said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
@tpf said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
VLAN
iperf: pfS sending: 700 mbit
iperf: pfS receivig: 980 mbit
errors: massiv
without VLAN:
iperf: pfS sending: 680 mbit
iperf: pfS receiving: 970 mbit
errors: NONEThis is very strange and it seems that the errors are cosmetic.
There is no degradation in speed/througput
If errors are massive, performance would suffer dearly.Hmmm. There are some retries in iperf. I have to benchmark with some parameters changed. Errors are only OUT errors. IN direction is OK.
-
@tpf Indeed. I also see that.
It seems to be vlan and realtek related. I see that my realtek ( RTL8111/8168/8411) has support for hardware vlan tagging.
Running iperf3 outbound on a realtec usb interface without vlans doesn't have retries... -
Hi.
I am new in pfsense. Got trouble with realtek down interface on PC. I install custom driver for 2.4.5 p1. kldstat show it. Will test system now. I also have a question about security of this custom driver and some possible backdoors in it. Can it be used to go arround firewall rules?And second question is about folder /boot/kernel - in 2.4.5 p1 it looks like that folder not exist. By test i found that system has folder bootpool/kernel - i did use it and it works fine - kldstat show my driver. Did i use correct folder for driver?
And again i am new in freebsd and pfsense maybe i don't know some stuff. Thanks you. -
if you download the source and build it yourself, than it's safe, if you download the one provided by wkn, that depend if you trust him or not
it could be if you are using zfs filesystem ? idk never saw that folder
-
I believe I've seen bootpool on zfs too.
As for security of the driver... well, if someone has the guts to pull that hack, then he could also fix the long trailing bugs in the first place :)
-
The NIC driver sees everything and, yeah, you have no idea what it's doing. So whilst it seems highly unlikely anyone would bother creating a driver with rogue code in it they certainly could and you should be aware of that.
A botnet of Realtek drivers couldn't generate much traffic anyway...
Steve
-
Thank you for answers.
Where could i load the source for driver? and should that be some special source code (not original from pfsense - that one not working properly)? Is there any tutorial how to compile that driver? And who actualy wrote that source code?
I am using custom Realtek driver for Lan not for WAN. Is it still danger?
Yes i am using zfs system. I wonder is that correct spot /bootpool/ to put that driver.
-
@Nazar If it loads, it ok.. From where isn't important.
If its rogue and it runs, anything goes. -
@netblues said in Official Realtek Driver Binary 1.95 For 2.4.4 Release:
@Nazar If it loads, it ok.. From where isn't important.
If its rogue and it runs, anything goes.Well the question is about security. If custom driver has some backdoor and it is set as LAN interface .. is it still danger? (is it more dangere to set it as WAN)? Can LAN custom driver breck Firewall rules and give backdoor to Network? I am very new in pfsense .. my questions may be silly
Thank you for answers -
@Nazar Well, this isn't really a pfsense question. pfsense is based on freebsd and pf. So any drivers are talking to the os kernel, and this is definetely os specific.
I doubt if it makes any difference if its on lan or wan.
Its very difficult for such a backdoor to go undetected in any case.
In doubt, you should compile it yourself (and then you also need to trust the compilation environment too.)
Since realtek ethernet chipsets seem to have issues with freebsd, any important installation is using intel cards anyways.