Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Upgraded hardware with Config Backup/Restore, Can't Access via IP

    Scheduled Pinned Locked Moved Problems Installing or Upgrading pfSense Software
    6 Posts 3 Posters 607 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      afc_it
      last edited by

      Hello! We just upgraded our PFsense hardware from a Netgate SG-2240 (version 2.3) to Netgate SG-3100 (version2.4.4). I took a config backup and restored it to the new hardware, updated the interfaces and all appeared to be working. When I took out the old hardware and plugged in the new, I could not access the device in my browser via the IP unless I plugged directly into a LAN port and put my computer on the same subnet. The interfaces are showing that they are connected, and lights on the ports are green. Netgate is plugged into a cisco switch, port lights are also green here. I cleared the arp cache on the cisco and can ping the IP of the netgate from that switch, but not from anywhere else. I cannot ping the switch from the Netgate even though it's directly plugged in. I'm curious if anyone has experience with this and might know what the issue could be. It seems routing related, but I'm stuck at the moment. Thanks in advance.

      provelsP 1 Reply Last reply Reply Quote 0
      • provelsP
        provels @afc_it
        last edited by

        @afc_it Old ARP cached in a connected switch?

        Peder

        MAIN - pfSense+ 24.11-RELEASE - Adlink MXE-5401, i7, 16 GB RAM, 64 GB SSD. 500 GB HDD for SyslogNG
        BACKUP - pfSense+ 23.01-RELEASE - Hyper-V Virtual Machine, Gen 1, 2 v-CPUs, 3 GB RAM, 8GB VHDX (Dynamic)

        1 Reply Last reply Reply Quote 0
        • A
          afc_it
          last edited by

          That was my initial thought, but clearing ARP cache on the connected switches hasn't solved it. 'show mac address-table' on the connected interfaces shows the correct mac addresses. I am noticing that on the SG-3100 it has a Switching and VLAN section that is new to me. Do I need to configure VLANs for it to work?

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by stephenw10

            You would not normally. The default VLAN settings for the 3100 switch is ports based VLAN and that will usually carry tagged traffic to all the LAN ports.
            Do you have VLANs on LAN?

            You may need to set it to dot1q mode and configure the switch to trunk whatever VLANs you require.
            Though if it was something like that I would not expect you to be able to ping it from anywhere, including the switch.

            Steve

            1 Reply Last reply Reply Quote 0
            • A
              afc_it
              last edited by

              Yes, we do have quite a few internal VLANs. I will try configuring that and see if it makes a difference.

              1 Reply Last reply Reply Quote 0
              • A
                afc_it
                last edited by

                I just wanted to post my resolution to the issue I was having here. It turns out the Quagga_OSPF package was missing and that was causing the routing problems. I was finally able to figure this out due to another firewall failing and having to replace it. Going through that troubleshooting led me to realize the missing package was the root of all the problems. Hopefully this helps someone else who may have a similar issue.

                1 Reply Last reply Reply Quote 1
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.