Errors on LAN interface & pfsense stops working

  • Hi,

    On a WAN + LAN + OPT1 (as manager for the GUI & ssh access to the box) setup I've been having random freezes from time to time that rendered NAT inoperative. Also, there were no ping from pfsense to the local network hosts (neither from them to pfsense). ARP tables showed incomplete results between LAN hosts. Disabling/enabling the LAN interface didn't help. There were no relevant information on system logs but:

    LAN interface (bge0)
    Status up
    MAC address 00:18:8b:73:c9:7b
    IP address  
    Subnet mask
    Media 1000baseT <full-duplex>In/out packets 804517597/804524134 (237.32 GB/46.17 GB)
    In/out packets (pass) 804466528/752043338 (237.32 GB/46.17 GB)
    In/out packets (block) 51069/57606 (3.48 MB/2.74 MB)
    In/out errors 648859/0
    Collisions 0

    The state table, memory status etc, showed no problems at all:

    netstat -m

    5124/1671/6795 mbufs in use (current/cache/total)
    5122/1524/6646/25600 mbuf clusters in use (current/cache/total/max)
    5121/767 mbuf+clusters out of packet secondary zone in use (current/cache)
    0/167/167/12800 4k (page size) jumbo clusters in use (current/cache/total/max)
    0/0/0/6400 9k jumbo clusters in use (current/cache/total/max)
    0/0/0/3200 16k jumbo clusters in use (current/cache/total/max)
    11525K/4133K/15658K bytes allocated to network (current/cache/total)
    0/0/0 requests for mbufs denied (mbufs/clusters/mbuf+clusters)
    0/0/0 requests for jumbo clusters denied (4k/9k/16k)
    0/9/6656 sfbufs in use (current/peak/max)
    0 requests for sfbufs denied
    0 requests for sfbufs delayed
    0 requests for I/O initiated by sendfile
    0 calls to protocol drain routines

    Everything else continues woking normally on pfsense. As I said, the only problem is on the LAN side.

    As a desperate measure, I exchanged (because the system is not still physically configured correctly and all the boxes go to the same switch including pfsense so I can bypass it if I need to) LAN and OPT1 interfaces, cleared arp tables on LAN hosts, and everything went back to normal again.

    The old LAN interface (OPT1 currently) continues showing input errors and raising:

    OPT1 interface (bge0)
    Status up
    MAC address 00:18:8b:73:c9:7b
    IP address 91.192.X.X
    Subnet mask
    Gateway SalidaManager 91.192.X.X
    Media 1000baseT <full-duplex>In/out packets 804517597/804524186 (237.32 GB/46.17 GB)
    In/out packets (pass) 804466528/752069701 (237.32 GB/46.17 GB)
    In/out packets (block) 51069/57658 (3.48 MB/2.74 MB)
    In/out errors 812087/0
    Collisions 0

    How can I determine why are thoes errors still occurring and what is causing them? On the lan servers appeared this kind of errors in their interfaces. For example, in 2 of them:

    RX packets:6381634159 errors:7517 dropped:81 overruns:0 frame:7517
             TX packets:6699952906 errors:0 dropped:0 overruns:0 carrier:0

    RX packets:2598990647 errors:0 dropped:4285 overruns:0 frame:0
             TX packets:2721019082 errors:0 dropped:0 overruns:0 carrier:0

    (but 0 collisions in all of them)

    Faulty NIC (on pfsense box)/cable (from pfsense to switch)/switch port (to where the prior cable connects to)? Of course if this starts to happen again with the new LAN interface, the problem won't be in the cable neither on the switch.



  • Same problem, and now, on the other interface. It's not a cable/switch problem. Now the errors grow both on the old lan interface as in the new lan one :(

