Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    New 502 Bad Gateway

    Scheduled Pinned Locked Moved 2.4 Development Snapshots
    281 Posts 67 Posters 263.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      fortrash
      last edited by

      Hello,

      since yesterday I haven't had any problem.  No hickups or any breakdown.

      The script:

      truss -Haedf -s 100 -o /root/truss_pfblocker_test.log /root/testpfb.sh 1

      -> does not hang

      Question:

      What have I to apply to fix the issue? The patch that was made available via git or the fixes below:

      https://forum.pfsense.org/index.php?topic=110515.60

      Have you already commited the changes?

      Thanks,

      1 Reply Last reply Reply Quote 0
      • C Offline
        chrcoluk
        last edited by

        the git patch commit by Martin is the the same as my patch, he just made it an easier process and we can wait for the pfsense staff to approve the commit so it makes it into a future version, but for now either apply my patch in its raw format or the use the git id Martin provided.

        As long as your unit has at least a gig of ram it should solve the problem.

        Note the patch was created on a 2.4.x unit, I am not sure how clean it will apply on 2.3.x devices, thats untested.

        pfSense CE 2.8.1

        1 Reply Last reply Reply Quote 0
        • BBcan177B Offline
          BBcan177 Moderator
          last edited by

          Thanks @chrcoluk and @marjohn56,

          Hopefully this fixes this issue once and for all…. Looking forward to users feedback!

          "Experience is something you don't get until just after you need it."

          Website: http://pfBlockerNG.com
          Twitter: @BBcan177  #pfBlockerNG
          Reddit: https://www.reddit.com/r/pfBlockerNG/new/

          1 Reply Last reply Reply Quote 0
          • D Offline
            dstroot
            last edited by

            @dstroot:

            I think the "Can NOT be reverted cleanly" through me off.  I just checked and mine and got the results you show so I applied the patch and it applied successfully.  I will report if the 502s go away.  Cheers!

            Reporting back - have not had any issues since the patch was applied.  Cheers!!!

            1 Reply Last reply Reply Quote 0
            • F Offline
              fortrash
              last edited by

              I had a issue this morning. The only difference was that the update for pfblocker has been enabled again.
              Webgui and internal network was reachable.

              Do you run pfblocker with enabled update? How often do you update?

              Thanks,

              @dstroot:

              @dstroot:

              I think the "Can NOT be reverted cleanly" through me off.  I just checked and mine and got the results you show so I applied the patch and it applied successfully.  I will report if the 502s go away.  Cheers!

              Reporting back - have not had any issues since the patch was applied.  Cheers!!!

              1 Reply Last reply Reply Quote 0
              • BBcan177B Offline
                BBcan177 Moderator
                last edited by

                … and not a creature was stirring, not even a mouse...

                Any additional feedback on the PHP patch posted above would be appreciated! Thanks.

                "Experience is something you don't get until just after you need it."

                Website: http://pfBlockerNG.com
                Twitter: @BBcan177  #pfBlockerNG
                Reddit: https://www.reddit.com/r/pfBlockerNG/new/

                1 Reply Last reply Reply Quote 0
                • ? This user is from outside of this forum
                  Guest
                  last edited by

                  @BBcan177:

                  … and not a creature was stirring, not even a mouse...

                  Any additional feedback on the PHP patch posted above would be appreciated! Thanks.

                  … The stockings were hung by the chimney with care

                  You only hear when it doesn't work, not when it does.. ;)

                  1 Reply Last reply Reply Quote 0
                  • M Offline
                    minterwoot
                    last edited by

                    Hey everyone,
                    For what it's worth, I found this thread a couple weeks ago, shortly after I installed pfblockerng and configured DNSBL. I had been running my pfsense box for about a year without a single issue, but after setting up pfblockerng and DNSBL, I'd lose GUI and console mgmt access within 24 hours, the only fix being a hard reboot.
                    I installed PiBa's patch (https://github.com/PiBa-NL/FreeBSD-ports/commit/1766713b26c8f388ad6e7909b2e971f7d74cdfea.patch), and my pfsense box has been running for over 10 days now without a single hiccup. Immediately after installing the patch I noticed that my memory usage dropped from about 50% of my 1GB of RAM to about 30%, and it's remained there ever since.
                    I did not install chrcoluk's patch, since I didn't want to muddy the waters during my testing. It seems it wasn't needed, at least not in my case. Big thank you to PiBa and all the other folks who helped get this fixed, you guys are awesome!

                    1 Reply Last reply Reply Quote 0
                    • C Offline
                      Comodo
                      last edited by

                      @minterwoot:

                      Hey everyone,
                      For what it's worth, I found this thread a couple weeks ago, shortly after I installed pfblockerng and configured DNSBL. I had been running my pfsense box for about a year without a single issue, but after setting up pfblockerng and DNSBL, I'd lose GUI and console mgmt access within 24 hours, the only fix being a hard reboot.
                      I installed PiBa's patch (https://github.com/PiBa-NL/FreeBSD-ports/commit/1766713b26c8f388ad6e7909b2e971f7d74cdfea.patch), and my pfsense box has been running for over 10 days now without a single hiccup. Immediately after installing the patch I noticed that my memory usage dropped from about 50% of my 1GB of RAM to about 30%, and it's remained there ever since.
                      I did not install chrcoluk's patch, since I didn't want to muddy the waters during my testing. It seems it wasn't needed, at least not in my case. Big thank you to PiBa and all the other folks who helped get this fixed, you guys are awesome!

                      I can confirm. 12 days without any problems so far!

                      1 Reply Last reply Reply Quote 0
                      • P Offline
                        PiBa
                        last edited by

                        Thanks for the feedback, fyi: pfBlocker 2.1.2_2 includes my patch.

                        @minterwoot
                        The reduced memory usage i cant really explain with the changes from my patch.. Maybe it got a bit more efficient but wouldn't expect that to be noticeable by memory usage..

                        1 Reply Last reply Reply Quote 0
                        • J Offline
                          JeffV
                          last edited by

                          I haven't had any issues on any of my boxes for quite a while now on pfsense 2.4.2 and the latest pfblockerng.  I was waiting long enough to say with some level of confidence that this issue appears to be resolved but I think it may finally be safe enough to actually say it.  Hopefully, that doesn't jinx me!

                          Much thanks to BBCan117 and everyone else that had a hand in troubleshooting and resolving this.  pfblockng is a wonderful tool and I'm happy to be able to use it again without concern.

                          1 Reply Last reply Reply Quote 0
                          • S Offline
                            seanr22a
                            last edited by

                            @PiBa:

                            Thanks for the feedback, fyi: pfBlocker 2.1.2_2 includes my patch.

                            PackageManager shows 2.1.2_1 as the latest available. When will  2.1.2_2 be available ?

                            I've been running with the quick and dirty fix mentioned earlier in this thread for several weeks now without any 502 happenings . I don't want to go through all the trouble we had at three sites one more time because of the 502 problem .. I must know for sure.

                            1 Reply Last reply Reply Quote 0
                            • ? This user is from outside of this forum
                              Guest
                              last edited by

                              For those running 2.4.3, seems it's already running 2.1.2_2

                              Nice one!

                              1 Reply Last reply Reply Quote 0
                              • P Offline
                                PiBa
                                last edited by

                                Its available on 2.3.5:
                                https://files00.netgate.com/pfSense_v2_3_5_i386-pfSense_v2_3_5/All/pfSense-pkg-pfBlockerNG-2.1.2_2.txz
                                https://files00.netgate.com/pfSense_v2_3_5_amd64-pfSense_v2_3_5/All/pfSense-pkg-pfBlockerNG-2.1.2_2.txz
                                And on 2.4.2:
                                https://files00.netgate.com/pfSense_v2_4_2_amd64-pfSense_v2_4_2/All/pfSense-pkg-pfBlockerNG-2.1.2_2.txz

                                1 Reply Last reply Reply Quote 0
                                • mtarboxM Offline
                                  mtarbox
                                  last edited by

                                  I was running 2.4.2 on UFS, and decided to upgrade to ZFS with the config.xml pull.
                                  Prior to the upgrade, I was using maybe 40% memory, and now I am up to 70%.
                                  Still does what pfsense is designed to do.
                                  How can I help out?

                                  ![Screenshot from 2017-12-22 17-08-58.png](/public/imported_attachments/1/Screenshot from 2017-12-22 17-08-58.png)
                                  ![Screenshot from 2017-12-22 17-08-58.png_thumb](/public/imported_attachments/1/Screenshot from 2017-12-22 17-08-58.png_thumb)
                                  ![Screenshot from 2017-12-22 17-05-14.png](/public/imported_attachments/1/Screenshot from 2017-12-22 17-05-14.png)
                                  ![Screenshot from 2017-12-22 17-05-14.png_thumb](/public/imported_attachments/1/Screenshot from 2017-12-22 17-05-14.png_thumb)

                                  Si vis pacem, para pactum.

                                  1 Reply Last reply Reply Quote 0
                                  • B Offline
                                    bishoptf
                                    last edited by

                                    Not sure if I should open a new thread but my firewall went sideways about an hour ago, running latest released along with PFblocker, ntopng, autoconfigbackup and openvpn.  Kids texted me that the internet was down and got home and when I tried to connect received the 502 bad gateway. I am running latest packages for those that are listed.

                                    I haven't pulled the logs completely yet but see this over and over  - Could not connect to /var/run/php-fpm.socket.

                                    1 Reply Last reply Reply Quote 0
                                    • B Offline
                                      bishoptf
                                      last edited by

                                      I'm still getting 502 bad gateway error's, they are not often but had my second instance in a month.  Attached file contains the debugging steps that has been requested. Restarting PHP-FPM did not resolve the issue, I had to reboot in order to correct my issues.  Would like to get this corrected since I've never had the issue in the past.

                                      Let me know if you have any questions.

                                      trouble.txt

                                      1 Reply Last reply Reply Quote 0
                                      • B Offline
                                        beatstick
                                        last edited by

                                        I also still get the Bad Gateway error once a day or so. I will attach the log the next time it occurs.

                                        1 Reply Last reply Reply Quote 0
                                        • C Offline
                                          chrcoluk
                                          last edited by

                                          next time it occurs, login to the shell and get a list of the processes running, ideally in verbose format.

                                          pfSense CE 2.8.1

                                          1 Reply Last reply Reply Quote 0
                                          • G Offline
                                            gsmornot
                                            last edited by

                                            I am, for the first time, seeing 502 Bad Gateway. Upgraded today to the latest snapshot on my SG-3100.
                                            I do still have internet service so I will wait a bit until someone says they have an idea.

                                            Restarted via console, loaded very latest snapshot and now waiting to see if the issue pops up again.

                                            As of 8PM, its an issue again. I guess I need to revert to a previous release and wait a bit for the snapshots.

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.