Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?

    Scheduled Pinned Locked Moved pfBlockerNG
    4 Posts 3 Posters 645 Views 5 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      fabrizior
      last edited by

      Is it recommended to switch to pfBlockerNG-devel and verify configuration, etc... before the 2.4.5 upgrade, or should I stay on pfBlockerNG 2.1.4_21 until after the 2.4.5 upgrade?

      T 1 Reply Last reply Reply Quote 0
      • T Offline
        t41k2m3 @fabrizior
        last edited by

        @fabrizior said in Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?:

        Is it recommended to switch to pfBlockerNG-devel and verify configuration, etc... before the 2.4.5 upgrade, or should I stay on pfBlockerNG 2.1.4_21 until after the 2.4.5 upgrade?

        Not sure if/how it may make a material difference with respect to core functionality. However, there appear to be some issues with high memory and/or CPU utilization caused by the latest version of pfBlockerNG-devel in 2.4.5.

        GertjanG 1 Reply Last reply Reply Quote 1
        • GertjanG Offline
          Gertjan @t41k2m3
          last edited by

          @t41k2m3 said in Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?:

          there appear to be some issues with high memory and/or CPU utilization caused by the latest version of pfBlockerNG-devel in 2.4.5.

          Using "devel" for a year now.
          I do not need to user the word 'seems'. I need no words.
          I've far better. Some one is taking notes for me, every 5 minutes. For years now.

          I to 2.4.5 upgraded yesterday.

          These stats say to me (see memory stats) : memory used raised somewhat.
          Probably because I added 4 feeds in pfBlockerng-devel that I like to use in holiday periods (the script kids are @home and annoying themself : suspected cyber activity raises.)
          I'm using 6 pfBlock lists now. Lists that analyse outgoing LANs traffic, as WAN is ..... closed for every one.

          The FreeBSD kernel and driver set is somewhat bigger ? Perhaps. Etc.

          If not, all seems fine to me. I did no remove any packages before upgrading.
          I just saved my config one extra time as it is already auto saved every day. Rebooted to have a clean start and a known file system state, checked UPS state and I hit the upgrade button.

          No "help me" PM's please. Use the forum, the community will thank you.
          Edit : and where are the logs ??

          F 1 Reply Last reply Reply Quote 1
          • F Offline
            fabrizior @Gertjan
            last edited by

            @Gertjan @t41k2m3

            Thank you for the details. I’ll make the jump to the -devel package first then.

            Are there any specific posts/blogs you would recommend to get up to speed on any critical changes or potential gotchas that might extend my maintenance window?

            My router is usually hovering around 3% CPU and 19% memory utilization with pfblocker, squid, squidguard, snort, and a few other pkgs running. these stats are with no inbound OpenVPN client tunnels active or outbound IPsec VPN to my Oracle Cloud IaaS tenancy up. Still, plenty of resource capacity.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.