• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?

Scheduled Pinned Locked Moved pfBlockerNG
4 Posts 3 Posters 652 Views 5 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • F Offline
    fabrizior
    last edited by Mar 27, 2020, 4:15 PM

    Is it recommended to switch to pfBlockerNG-devel and verify configuration, etc... before the 2.4.5 upgrade, or should I stay on pfBlockerNG 2.1.4_21 until after the 2.4.5 upgrade?

    T 1 Reply Last reply Mar 27, 2020, 9:07 PM Reply Quote 0
    • T Offline
      t41k2m3 @fabrizior
      last edited by Mar 27, 2020, 9:07 PM

      @fabrizior said in Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?:

      Is it recommended to switch to pfBlockerNG-devel and verify configuration, etc... before the 2.4.5 upgrade, or should I stay on pfBlockerNG 2.1.4_21 until after the 2.4.5 upgrade?

      Not sure if/how it may make a material difference with respect to core functionality. However, there appear to be some issues with high memory and/or CPU utilization caused by the latest version of pfBlockerNG-devel in 2.4.5.

      G 1 Reply Last reply Mar 28, 2020, 11:02 AM Reply Quote 1
      • G Offline
        Gertjan @t41k2m3
        last edited by Mar 28, 2020, 11:02 AM

        @t41k2m3 said in Upgrade from pfBlockerNG to -devel before 2.4.5 upgrade?:

        there appear to be some issues with high memory and/or CPU utilization caused by the latest version of pfBlockerNG-devel in 2.4.5.

        Using "devel" for a year now.
        I do not need to user the word 'seems'. I need no words.
        I've far better. Some one is taking notes for me, every 5 minutes. For years now.

        I to 2.4.5 upgraded yesterday.

        These stats say to me (see memory stats) : memory used raised somewhat.
        Probably because I added 4 feeds in pfBlockerng-devel that I like to use in holiday periods (the script kids are @home and annoying themself : suspected cyber activity raises.)
        I'm using 6 pfBlock lists now. Lists that analyse outgoing LANs traffic, as WAN is ..... closed for every one.

        The FreeBSD kernel and driver set is somewhat bigger ? Perhaps. Etc.

        If not, all seems fine to me. I did no remove any packages before upgrading.
        I just saved my config one extra time as it is already auto saved every day. Rebooted to have a clean start and a known file system state, checked UPS state and I hit the upgrade button.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        F 1 Reply Last reply Mar 28, 2020, 1:08 PM Reply Quote 1
        • F Offline
          fabrizior @Gertjan
          last edited by Mar 28, 2020, 1:08 PM

          @Gertjan @t41k2m3

          Thank you for the details. I’ll make the jump to the -devel package first then.

          Are there any specific posts/blogs you would recommend to get up to speed on any critical changes or potential gotchas that might extend my maintenance window?

          My router is usually hovering around 3% CPU and 19% memory utilization with pfblocker, squid, squidguard, snort, and a few other pkgs running. these stats are with no inbound OpenVPN client tunnels active or outbound IPsec VPN to my Oracle Cloud IaaS tenancy up. Still, plenty of resource capacity.

          1 Reply Last reply Reply Quote 0
          4 out of 4
          • First post
            4/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received