Watchguard XTM 5 Series


  • Netgate Administrator

    Don't drink and firewall! 😉



  • @stephenw10 @t-rexky
    Well I'll be a monkey's uncle. 4 hours, 6 beers later, reinstalled the battery and booted straight into pfSense. Tada!!! Enough screwing with the BIOS! Lets get down to business - yeehaa!

    If you guys want to DM with your Paypal address, I'll split the Bounty.

    Now my next adventure is to scour the forum and figure out how to do a multi-wan, when your ISP delivers both channels using the same Gateway. Any suggestions for good, cheap NAT routers would be good.

    Or, if anyone has experience with the Cisco Catalyst 2960 (24 P0ort POE switch) - is it possible to set up a couple ports as a NAT to send to the pfSense in order to fool it into multi-wan to use these 2 same Gateway's channels.

    Our ISP is part of a duopoly and both are equally as crappy as the other - but what other choice is there...

    Cheers,
    MadDogDean



  • @maddogdean said in Watchguard XTM 5 Series:

    Now my next adventure is to scour the forum and figure out how to do a multi-wan, when your ISP delivers both channels using the same Gateway. Any suggestions for good, cheap NAT routers would be good.

    The others are going to be smarter about this than I am but the first thought I had was if you could route one via IPv6 and one via IPv4? This would allow you to use the load balancing and fail over functions of pfSense.



  • @fffrank Interesting idea, never thought of it. I'll need to see if the ISP uses IPv6 or not (or even knows what it is)

    I am actually staying with friends in the Philippines and things here are almost as backwards as some people think. No offense intended to the Filipinos (in general they are nice people), but when it comes to "Service" this country is on another planet!!!

    Cheers



  • Well, not sure about the IPv6 route. Our internet comes in via Motorola Canopy radio and, after walking through the entire menu, I don't see anything relating to using an IPv6 address. I wonder if the best option is to get a cheap Dlink/Linksys or other wired router and use it as a NAT between the Canopy and the pfSense box.



  • Lots of things (thoughts) going on, but not much accomplished yet.

    So, if we are UNABLE to upgrade our 2.3.5 version of pfSense to 2.4.1 because NanoBSD is no longer supported, how are we supposed to be able to install packages (such as LCDproc)? When I tried tonight I was greeted by the message that a MAJOR upgrade is available thus I am unable to install the pkg. But if you try to install the upgrade you get the "NanoBSD no longer supported". It's a chicken and the egg situation. DId NetGate not think of this when they set it up??!

    Screenshot Dropbox



  • @MadDogDean As far as I am concerned, I would be happy if you donated the Bounty to a good cause ✌


  • Netgate Administrator

    @t-rexky said in Watchguard XTM 5 Series:

    @MadDogDean As far as I am concerned, I would be happy if you donated the Bounty to a good cause ✌

    Same here.

    The xtm5 can run 2.4.4 though. It can even run a full install from CF if needs be.
    You should be able to make it boot from USB to do the install by just disabling the "always boot from CF" option in the BIOS. But if not another option is to put the installer on CF, boot that and install to SATA.

    However you should be able to stay on 2.3.X by going to System > Firmware and selecting 2.3.X security and errata only. You might have to select that a few times until the repo is set to 2.3.X.

    Installing 2.4.4 is way to go though.

    Steve



  • @stephenw10 @t-rexky
    Thanks for your help guys. We are always donating and helping the unfortunates here in the Philippines. I'll load up the car and take a few local kids to town for lunch & ice cream.

    As for aggregating, we have 2 incoming accounts from our local WISP. They use Canopy Radios and have it configures that the same gateway is used on all accounts. Aggregating won;'t work with this. Is there a way around it, or should I just get a simple wired router to act as a NAT?

    Meanwhile, let's dig into 800 posts and get this pfSense going.

    Cheers,
    MadDogDean


  • Netgate Administrator

    Unless you can do some form of link aggregating at the ISP end like an actual LAGG or ML-PPP then NATing one connection is the only real choice there.

    Steve



  • I have an XTM 505.
    I can see the boot on the console.
    I can get into the bios.
    I can start and install PFSense from the CF card.
    However if I Install Freedos on the CF it will show the boot and that's it. Will not display anything else after that. It stays on the screen and after that nothing. I know Freedos has booted, because I can hear 3 beeps after the screen stays on the boot screen. But I cant see any response or anything else.
    Anyone had this problem before? Was anyone able to solve this?
    Thank you!


  • Netgate Administrator

    FreeDOS will display at 9600bps by default.
    But why are you booting FreeDOS? It's not required to run pfSense on there.

    Steve



  • @stephenw10 said in Watchguard XTM 5 Series:

    FreeDOS will display at 9600bps by default.
    But why are you booting FreeDOS? It's not required to run pfSense on there.

    Steve

    I know, but I want to install something else on the box since my cpu will not support the newer versions. I am thinking about running a different fw distro on it with open vpn.
    I need freedos to flash the bios so I can boot of the usb :-)
    Thank you!


  • Netgate Administrator

    You don't, you can flash the BIOS using flashrom directly from pfSense.

    We have committed to supporting the 2.4.X branch for a year after 2.5 is released though. You have long while yet before that becomes an issue.

    Steve



  • @stephenw10
    I have changed to 9600bps and it still wiont show anything. I cant even see the bios or the boot up screen on 9600. Any other idea?
    Thanks


  • Netgate Administrator

    Do you see the BIOS setup at 115200? If not then you have a problem with the console cable or terminal setup. You should see some output there even with no boot media.

    Steve



  • @stephenw10
    Yes, i can see everything on 115200. Bios, Boot, PFSense installer and so on...
    Only if I put a live cd on the cf, or freedos or anything else but pfsense i see no output after the boot screen is completed. My cable is good.



  • Once it has booted up, unplug your console cable and plug it back in. That usually works for me for some reason.



  • @fffrank
    Well That did not work. :) Anything else?


  • Netgate Administrator

    What FreeDOS image are you using exactly?

    Still unclear why it's a problem though.

    @tibby said in Watchguard XTM 5 Series:

    I need freedos to flash the bios so I can boot of the usb :-)

    This is incorrect. So unless you want to actually run FreeDOS then just flash the BIOS from pfSense.

    Steve