Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Random sites timing out after 2.3.4_1 update?

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    5 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rekd0514
      last edited by

      I'm not sure what could be causing this or how to go about troubleshooting this more thoroughly. I stopped snort as a service and this issue continues. If I restart the router the issue is temporarily resolved. If I connect directly to the modem to bypass pfsense the issue is resolved. Any ideas since I don't recall changing anything other than updating.

      I believe my backup has already changed to 2.3.4_1 since it took me awhile to notice this. Can I use my 2.3.4_1 backup to restore 2.3.4?

      1 Reply Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance
        last edited by

        Is this a DNS or traffic issue? (is DNS maybe not running on your router?)

        I've never had an issue restoring backups to different versions or even different hardware.

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
        Upvote 👍 helpful posts!

        1 Reply Last reply Reply Quote 0
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          Generally speaking you should not restore config files into an older pfSense version than the one they were taken from.

          That's because there is code to upgrade older configs to match newer versions but that cannot happen the other way around. However in this case the config file version did not change between 2.3.4 and 2.3.4_1 so it should be safe to do so.
          https://doc.pfsense.org/index.php/Versions_of_pfSense_and_FreeBSD

          Did you clear the Snort block list? Disabling the service will not clear IPs that are already blocked.

          Steve

          1 Reply Last reply Reply Quote 0
          • R
            rekd0514
            last edited by

            Just to update it did end up being Snort blocking. It apparently isn't enough to disable the service. Do most people leave that feature off and still use Snort?

            1 Reply Last reply Reply Quote 0
            • stephenw10S
              stephenw10 Netgate Administrator
              last edited by

              It depends what you're using Snort for. If you use it to collect data on traffic and aggregate that somewhere centrally you might not need to block that.

              Most people would have it in blocking mode though. Once you have the ruleset tuned you should not see many false positives. I usually recommend you run it in non-blocking mode for a week or so and review the logs. Whitelist or disable the rule on anything that shouldn't be alerting. Then go to blocking mode.
              You can also set the block time to something low enough that it will restore in a reasonable time.

              Steve

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.