Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    openBGPD and FFR - Migrating 2.3.x to Latest 2.5.x

    Scheduled Pinned Locked Moved General pfSense Questions
    7 Posts 3 Posters 951 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W Offline
      work_purposes_only
      last edited by

      Hey Everyone,

      Our pfSense installation has gotten severely out of date. I've recently been tasked with leading a migration to new hardware as well as the latest version of pfSense.

      Last weekend my boss and I attempted to restore the current firewall config to the new hardware. We were able to restore the config successfully, communicating to local devices. However, we were unable to get a connection to the internet. We can still ping our ISPs router so this makes me believe it's a BGP issue. What reinforces that thought is that openBGPD is no longer available after 2.4.x.

      On both routers, everything except for the BGP is the same. Same switchport config, same public IP, VLANs, settings, etc...

      I guess what I'm really looking for here is validation in my thinking that no BGP router is our problem.

      NollipfSenseN 1 Reply Last reply Reply Quote 0
      • stephenw10S Offline
        stephenw10 Netgate Administrator
        last edited by

        You are probably hitting the changed FRR requirement to have a route-map in place:
        https://docs.netgate.com/pfsense/en/latest/packages/frr/bgp/example.html#route-map-for-peer-filtering

        Without that you will see not routes exchanges in the current version.

        Need more info to speculate further.

        Steve

        W 1 Reply Last reply Reply Quote 0
        • W Offline
          work_purposes_only @stephenw10
          last edited by

          @stephenw10 Thanks for the response! I think I may have figured it out. Our uplink is configured so we need to use a BGP router. Otherwise, we'll need to phone the isp to enable static BGP routing for us. I think my boss now understands we need to use bgp

          1 Reply Last reply Reply Quote 0
          • NollipfSenseN Offline
            NollipfSense @work_purposes_only
            last edited by

            @work_purposes_only said in openBGPD and FFR - Migrating 2.3.x to Latest 2.5.x:

            Our pfSense installation has gotten severely out of date.

            At least, you admitted...but man, if your setup is for a business, it makes one shaking, scratching one's head for not taking the business network seriously.

            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

            W 1 Reply Last reply Reply Quote 0
            • stephenw10S Offline
              stephenw10 Netgate Administrator
              last edited by

              Yeah if the upstream router requires you announce your subnet you won't get much without BGP!

              1 Reply Last reply Reply Quote 0
              • W Offline
                work_purposes_only @NollipfSense
                last edited by

                @nollipfsense I've just inherited this network. So, I'll be taking this next year to tidy it up before going back to uni for my degree

                NollipfSenseN 1 Reply Last reply Reply Quote 0
                • NollipfSenseN Offline
                  NollipfSense @work_purposes_only
                  last edited by

                  @work_purposes_only said in openBGPD and FFR - Migrating 2.3.x to Latest 2.5.x:

                  @nollipfsense I've just inherited this network. So, I'll be taking this next year to tidy it up before going back to uni for my degree

                  Okay...fine inheritance...hope it came loaded (your forum name implied business).

                  pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
                  pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.