Down Firewall Pfsense, rc.gateway_alarm[69144]: >>> Gateway alarm

Paolo Scagnetti

Hi to All,

I have some problem randomicaly with this pfsense, after an upgrade of file system to ZFS to 4 different firewall and upgrading space on the disk i have encountered only a problem with this.
Sporadically the firewall freeze don't respond and the only solution is to reboot in console web interface, refuse any tipe of connection.

This appears every 1 or 2 months.
Ant suggestion?

Aug 20 08:04:37 fw-it kernel: arp: xxxx moved from 00:07:b4:03:34:01 to 00:07:b4:03:34:02 on em0
Aug 20 08:24:33 fw-it kernel: arp: xxxx moved from 00:07:b4:03:34:02 to 00:07:b4:03:34:01 on em0
Aug 20 08:44:29 fw-it kernel: arp: xxxx moved from 00:07:b4:03:34:01 to 00:07:b4:03:34:02 on em0
Aug 20 09:00:00 fw-it php[58620]: [pfBlockerNG] Starting cron process.
Aug 20 09:00:01 fw-it php[58620]: /usr/local/www/pfblockerng/pfblockerng.php: Configuration Change: (system): pfBlockerNG: saving DNSBL changes
Aug 20 09:00:01 fw-it check_reload_status[431]: Syncing firewall
Aug 20 09:00:07 fw-it php[58620]: [pfBlockerNG] No changes to Firewall rules, skipping Filter Reload
Aug 20 09:00:07 fw-it php[58620]:
Aug 20 09:00:31 fw-it rc.gateway_alarm[69144]: >>> Gateway alarm: GW_WAN (Addr:x.x.x.x. Alarm:1 RTT:1.451ms RTTsd:5.936ms Loss:22%)
Aug 20 09:00:31 fw-it check_reload_status[431]: updating dyndns GW_WAN
Aug 20 09:00:31 fw-it check_reload_status[431]: Restarting IPsec tunnels
Aug 20 09:00:31 fw-it check_reload_status[431]: Restarting OpenVPN tunnels/interfaces
Aug 20 09:00:31 fw-it check_reload_status[431]: Reloading filter
Aug 20 09:00:32 fw-it php-fpm[71295]: /rc.openvpn: Gateway, NONE AVAILABLE
Aug 20 09:00:32 fw-it php-fpm[71295]: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed IP addresses. Reloading endpoints that may use GW_WAN.
Aug 20 09:00:47 fw-it php-fpm[60141]: /rc.ipsec: IPSEC: One or more IPsec tunnel gateways have changed. Refreshing.
Aug 20 09:00:48 fw-it check_reload_status[431]: Reloading filter
Aug 20 09:00:48 fw-it check_reload_status[431]: Reloading filter
Aug 20 09:03:51 fw-it login[32750]: login on ttyv0 as root

thanks in advance

stephenw10

So it remains responsive at the console? But you can no longer connect to the webgui or SSH?

The only thing in the logs there seems to be that the WAN goes down, or at least the gateway stops responding.

Paolo Scagnetti

@stephenw10 Thanks for your response.
by direct console works but SSH refuse my connection also the webgui.
i have 2 CPU on this pfsense and randomically the first CPU stop working, infact i have the 51 % of cpu in use because the first is down.

After i restart the appliance for 1 or 2 moths all ok

the GW down i think because the pfsense is stucked, but i see all the logs and i didn't find anything

Paolo Scagnetti

@stephenw10
i put here some screen of the top in the moment of the block.

stephenw10

Try running top with:
top -HaSP

That should show you what's using the CPU.