Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SG3100 + pfBlockerNG-devel ?

    Scheduled Pinned Locked Moved
    Official Netgate® Hardware
    sg3100 pfblockerng
    5
    9
    1.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • mudmanc4M
      mudmanc4
      last edited by

      There is a ton of info out there concerning ARM / pfBlocker, which has appeared to have gone dark with 21.02.2

      I don't want to update to find out if there has or has not been resolution to this issue, if anyone can tell me where this stands I would appreciate it.

      My 3100's are still on 2.4.5-p1
      They rely on pfBlockerNG-devel

      S 1 Reply Last reply Reply Quote 0
      • bmeeksB
        bmeeks
        last edited by

        No resolution for the issues with PHP on 32-bit ARM hardware. So that means both pfBlockerNG and the Snort and Suricata packages will crash. Also probably some others that use certain PHP features.

        1 Reply Last reply Reply Quote 1
        • N
          NOCling
          last edited by

          I run my SG-3100 with 21.02.2 since release, pfBlockerNG Dev 3.0.0_16 run nice and stable.
           
          But i dont use Snort or Suricata. No PHP crash so far.

          Netgate 6100 & Netgate 2100

          M 1 Reply Last reply Reply Quote 1
          • M
            mcury @NOCling
            last edited by

            @nocling Did you reboot the SG-3100 after installing pfBlockerNG?

            dead on arrival, nowhere to be found.

            1 Reply Last reply Reply Quote 0
            • N
              NOCling
              last edited by

              I upgrade from 2.4.5p1, after the Packages all upgradet unter 21.02.2, i have to reboot to run NUT.

              Netgate 6100 & Netgate 2100

              M 2 Replies Last reply Reply Quote 0
              • M
                mcury @NOCling
                last edited by

                @nocling I'll try to install it right now.. using the wizard and default settings..

                dead on arrival, nowhere to be found.

                1 Reply Last reply Reply Quote 0
                • M
                  mcury @NOCling
                  last edited by mcury

                  @nocling hmmm, it's working for me, I can't believe.. :)
                  Maybe because of the number of feeds that the version 3.0.0_16 is using?
                  It's a considerable lower number of feeds than the previous version.

                  dead on arrival, nowhere to be found.

                  1 Reply Last reply Reply Quote 0
                  • S
                    SteveITS Rebel Alliance @mudmanc4
                    last edited by

                    @mudmanc4 Here is the redmine bug report so you can follow it.

                    re: what triggers it, from the report certain orders of preg_match() calls can. It seems apparent that the pfSense GUI does not as everything I've seen is in regards to packages. Perhaps the feeds used (variable size) make a difference?

                    Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
                    When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
                    Upvote 👍 helpful posts!

                    M 1 Reply Last reply Reply Quote 1
                    • M
                      mcury @SteveITS
                      last edited by

                      @steveits said in SG3100 + pfBlockerNG-devel ?:

                      @mudmanc4 Here is the redmine bug report so you can follow it.

                      re: what triggers it, from the report certain orders of preg_match() calls can. It seems apparent that the pfSense GUI does not as everything I've seen is in regards to packages. Perhaps the feeds used (variable size) make a difference?

                      So far so good.

                      • SG-3100 - 21.02p2 - Clean install

                      Actions taken in pfblockerNG

                      1 - Wizard
                      2 - Maxmind key set
                      3 - MaxMind Localized Language changed to Brazilian portuguese
                      Not using geoIP yet, planning to.

                      4 - Feeds

                      Noticed that only one DNSBL was in use, ADs_Basic, so I added the following:
                      . EasyList
                      . EasyList_Portuguese
                      . EasyPrivacy

                      5 - Changed DNSBL Mode to Unbound python mode
                      6 - Unchecked DNS Reply Logging because I don't need it

                      03b069f3-5e54-4692-9490-7065bac7d249-image.png

                      dead on arrival, nowhere to be found.

                      1 Reply Last reply Reply Quote 1
                      • First post
                        Last post