Rebooting... a good practice?
-
@jimp said in Rebooting... a good practice?:
Uptime should only be at most as long as it has been since the last update + time to schedule a maintenance window to upgrade.
That depends on the OS. With Linux, everything can be updated without rebooting, other than the kernel.
-
Well we're talking specifically about pfSense, not Linux, so that doesn't matter.
-
@SipriusPT said in Rebooting... a good practice?:
Netgate SG-4860: Uptime 130 Days 19 Hours 17 Minutes 59 Seconds
Netgate SG-3100: Uptime 272 Days 01 Hour 31 Minutes 25 SecondsCould you please indicate the addresses of these devices ?
Got some pen tests ready - knowing that you kept them up, I guess, to have them "tested". -
@Gertjan Ofcourse I will
P.S. those are not running any unsupported/old versions =)
-
@SipriusPT said in Rebooting... a good practice?:
@Gertjan Ofcourse I will
P.S. those are not running any unsupported/old versions =)
Well hmmm..
2.4.5-RELEASE-p1 (amd64)
built on Tue Jun 02 17:51:54 EDT 2020 only 15 days old..2.4.5-RELEASE (amd64)
built on Tue Mar 24 15:25:50 EDT 2020 less than 90 days ago..so..
-
@chpalmer said in Rebooting... a good practice?:
@SipriusPT said in Rebooting... a good practice?:
@Gertjan Ofcourse I will
P.S. those are not running any unsupported/old versions =)
Well hmmm..
2.4.5-RELEASE-p1 (amd64)
built on Tue Jun 02 17:51:54 EDT 2020 only 15 days old..2.4.5-RELEASE (amd64)
built on Tue Mar 24 15:25:50 EDT 2020 less than 90 days ago..so..
LMGFY
Current/Upcoming Supported Releases
2.5.0 New Features and Changes
2.4.5-p1 New Features and Changes
2.4.5 New Features and Changes
2.4.4-p3 New Features and Changeshttps://docs.netgate.com/pfsense/en/latest/releases/index.html
-
2.4.4p3 is still supported and came out may 2019, so yeah he could be running that with such long uptimes.
edit: I have some sg3100 still on 2.4.4p3 because they are remote and nobody in the offices - don't want to upgrade them at this time because if something does go wonky, nobody on site to fix it.
-
Well- I have a customer that is guilty.. 2.3.5 still and wont upgrade. But I still consider anything south of the versions I posted as outdated.. But I guess its just personal.
-
No I am with you, to me if your not on 2.4.5p1 your outdated.. Which I am currently guilty of as well - but only reason is covid, or would of been updated already ;)
-
@johnpoz same thing here with covid and other platforms more critical right now for us to be upgraded / migrated.
Covid was a big problem for IT teams to keep network devices updated, mostly while working from home.
-
Update/reboot when there's a remote vuln that can affect my box. All ports blocked by default, so pretty much has to be a FreeBSD kernel issue. Had 400+ days at some point the past year. Been hanging out on 2.4.4-p3 for a bit now.