Long boots after 22.01 update on SG-3100 with pfBlockerng

lohphat

The 3.1.0_2 update did not fix the long boot delay.

The Ctrl-T process output at the hang point is similar.

lohphat

Note: there seems to be a v3.1.0_3 on its way...

lohphat

Just updated to 3.1.0_4 and the delay at boot is still happening if the ramdisk for /etc and /var are enabled.

cantor

@lohphat

For me 3.1.0_4 works. With ramdisk enabled rebooting of the system (22.01) takes about. 80 s.

lohphat

@cantor

To be clear, the WebConfigurator UI comes up fine but the boot isn't complete.

Here's more interesting data (BTW, using unbound in python mode and pfBlocker python extensions enabled):

1. Long boot even if 3.1.0_4 is installed but disabled.

2. Short boot when I remove the package entirely.

3. I noticed that when I reinstalled 3.1.0_4 (retaining old configs) that during the reinstall the message:
   "Executing custom_php_resync_config_command()..."
   was taking about the SAME TIME time as the boot delay.

So this time I removed the package and DID NOT save my prior config and reinstalled so I'd have a blank config.

The boot time was short.

AHA!

So it seems my old config was the culprit.

I am now rebuilding my config (I have a dual WAN and multiple internal network segments, e.g. IoT corralled on own SSID) so it will take some time.

I will report back if the long delay returns again.

lohphat

The issue of long boot seems to be related to Maxmind. Once I enter my license key and reload then any subsequent reboot is long.

lohphat

@lohphat

It's still happening even after the recommended 22.05 patch for unbound.

It happens only if:

• maxmind key entered in MaxMind GeoIP configuration section AND
• RAMdisk is enabled for /tmp and /var

As of 23aug2022:

Boot console output:

Starting CRON... done.
 Starting package ntopng...done.
 Starting package Avahi...done.
 Starting package OpenVPN Client Export Utility...done.
 Starting package System Patches...done.

(representative samples from System Activity since Webconfigurator has already started)
  PID USERNAME    PRI NICE   SIZE    RES STATE    C   TIME    WCPU COMMAND
18489 root        101    0    54M    37M CPU1     1   0:26  99.76% /usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc{php}
18489 root         96    0    54M    37M CPU1     1   0:49  81.69% /usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc{php}
18489 root        102    0    54M    37M CPU1     1   1:09 100.00% /usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc{php}
18489 root        102    0    54M    37M CPU1     1   1:17 100.00% /usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc{php}
18489 root        103    0    54M    37M CPU1     1   1:22 100.00% /usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc{php}

1:50 delay at this point, otherwise it would only normally pause 3-5 seconds between "System Patches...done." and "...pfBLockerNG-devel...done."

 Starting package pfBlockerNG-devel...done.
 Starting package suricata...done.
 Starting /usr/local/etc/rc.d/pfb_dnsbl.sh...done.
 Starting /usr/local/etc/rc.d/pfb_filter.sh...done.
Netgate pfSense Plus 22.05-RELEASE arm Wed Jun 22 18:56:40 UTC 2022
Bootup complete

FreeBSD/arm (pfSense.localdomain) (ttyu0)