Watchguard XTM 5 Series
-
First of all let me say that you do not need to flash the BIOS on the XTM5 in order to run pfSense. Flashing the BIOS involves some risk so unless you want the additional features you probably shouldn't.
You're right flashrom isn't included. You can add it easily enough though. First re-mount the CF card as RW:
/etc/rc.conf_mount_rw
then add flashrom:
pkg_add -r flashrom
Several packages will be added. Then:
rehash
Now you can run flashrom as above.
Steve
-
Thanks worked like a charm
-
Just had an XTM510 donated to the cause.
Spent some time with an incorrect console cable but the Cisco one I had in my kit worked. :)
Running-
2.1.2-RELEASE (amd64)
built on Thu Apr 10 05:42:17 EDT 2014
FreeBSD 8.3-RELEASE-p15
Had the same as you Steve- Armed light stayed green (but would flash on boot with the WG software). Once I flashed to bios the red light is now on. Play some more this weekend when I get some time. -
Great, glad neither of had trouble. :)
Steve
-
Checking for package installation…
Downloading https://files.pfsense.org/packages/amd64/8/All/lcdproc-0.5.6-amd64.pbi … (extracting)Just installed the LCDProc package +dev tonight with success.
64 bit seems to be a good fit on these so far.
edit- however-
[2.1.2-RELEASE][admin@pfsense.localdomain]/root(12): /conf/WGXepc -l green /conf/WGXepc: Exec format error. Binary file not executable.
-
Ah, I never considered 64bit. ::)
The code is sufficiently basic that it runs across multiple things. Code compiled in 8.1 still runs in 10 for example.
Are you running Nano? I take it the required 32bit compat libs and flags are not included.I don't have a 64bit FreeBSD machine running right now but feel free to compile te code yourself if you do:
https://sites.google.com/site/pfsensefirebox/home/WGXepc.cI'll have to do it myself eventually though.
Steve
-
I don't have a 64bit FreeBSD machine running right now but feel free to compile te code yourself if you do:
https://sites.google.com/site/pfsensefirebox/home/WGXepc.cSteve
Ah- I figured that might be the reason. Compiling is still above my paygrade a little. I may have to use the balance of the weekend and learn however… ;D
Im using this as my test box right now until the donator decides the 550e I built him isn't good enough... :(
-
Hi,
Thanks all of you guys, lot of information… I'm not bsd user but sometimes it saves my life.I just want to say, I installed Debian Wheezy and it works like a charm. But my eth1 ports is death.
If got something else usefull I'll share it in here.
Again thanks for everything...
-
I've recently aquired a XTM 510 which I'm installing PFsense on, I'd like to be able to boot off a hard drive in order to utilize caching, could someone point me in the write direction if that is even possible? Without a video output it seems the standard builds wont' work and the nano builds would only give 4gb of space?
Thanks
-
Ok. I've not tried this so it's based mostly on experience from other boxes….
The XTM5 has SATA connectors and a SATA power connector on the PSU so you can hook up a standard SATA drive. However you may have to construct some mounting hardware.
You may be able to boot the box from a USB stick with the memstick-serial image on it and then install directly to the SATA drive. Select the embedded kernel during the install to get a serial console. You probably need to have the unlocked BIOS to boot from USB though.
Alternatively you can install to the drive in a different box. Configure at least one interface so you can access the webgui and go in and select the serial console. Now transfer the drive back the XTM5 and boot. It will probably fail at the first boot because the sata connection number will be different. If it does then point it to the correct location at the mountroot> prompt and then edit the fstab once booted.Steve
-
http://www.cavium.com/acceleration_boards_FIPS.htm
Cavium provides a comprehensive Software Development Kit that includes C-source code for Linux and FreeBSD drivers. The SDK also includes APIs for OpenSSL, OpenSSH and PKCS#11, key management utilities, test utilities and reference code for easy portability. The Crypto-API’s are common between Cavium’s FIPS and the non-FIPS product providing customers with tremendous R&D leverage and re-use.
-
You are pointing out that they advertise FreeBSD as supported? That's true except there aren't actually any drivers instead there's an SDK to develop your own drivers and to get access to it you need sign an NDA etc. They are never going to end up in FreeBSD. I guess you may be able to poach them from some FreeBSD based commercial firewall, JunOS perhaps?
I tried to compile WGXepc by booting a 64bit live GhostBSD DVD but it was a no go. There are some references to i386 functions which wouldn't compile and their amd64 equivalents wouldn't either. I borrowed that code from LCDproc though and that seems to compile for 64bit so there must be a solution.
Steve
Edit: typo
-
You are pointing out that they advertise FreeBSD as supported? That's true except there aren't actually any drivers instead there's an SDK to develop your own drivers and to get access to it you need sign an NDA etc. They are never going to end up in FreeBSD. I guess you may be able to poach them from some FreeBSD based commercial firewall, JunOS perhaps?
I tried to compile WGXepc by booting a 64bit live GhostBSD DVD but it was a no go. There are some references to i386 functions which wouldn't compile and there amd64 equivalents wouldn't either. I borrowed that code from LCDproc though and that seems to compile for 64bit so there must be a solution.
Steve
I should have been to sleep by then when I posted that and didn't really finish what I meant to post. :o But you answered my question. Whether or not the drivers might be out there…
As always- thanks for the effort!
-
I've recently aquired a XTM 510 which I'm installing PFsense on, I'd like to be able to boot off a hard drive in order to utilize caching, could someone point me in the write direction if that is even possible? Without a video output it seems the standard builds wont' work and the nano builds would only give 4gb of space?
Thanks
Hi there. I run 2.1.2 on xtm 510 with 120GB SATA SSD drive. It works perfectly fine. Cache read speed for Squid is around 35MBps.
Edit:
-
Nice. :)
No gotchas in installing or mounting the drive?Steve
-
No problems at all. I have used a laptop to install pfsense on the HDD and then plugged it into Watchguard and that's it.
And stephenw10 I use your Bios on it. I also have x750e I use your bios on, version 8 - it allows booting from HDD (IDE) without any tweaks or any CF cards installed - nice. Thanks for this!
Edit:
WGXepc - I'm not knowledgeable enough to compile it to run on X64 so I stick to X86 on my xtm 510 until that's done by someone who knows what to do - stephenw10 - please let us know if you manage to get it compiled successfully.
-
No problem. Thanks for the feedback. :)
Steve
-
Forgot to mention that my xtm 510 runs with single 4GB DDR2-800 RAM stick. I did not boot with 8GB (2x 4GB) but it might do with say 6GB when running X64 would be useful.
-
Finally got the console to work, had to put together my own cable by splicing a standard serial cable into a different configuration, as mentioned it seems to be cisco standard but since I couldn't easily find pinouts here they are:
RJ45 - DB9
1 - 8
2 - 6 + 1
3 - 2
4+5 - 5
6 - 3
7 - 4
8-7Flashed the bios, some more options seem available but a lot of them seem to be view mode only though, I'll work on the HDD install after I get more familiar with PFSense and back into FreeBSD.
Edit: once the bios is flashed the battery has to be pulled to reset to default, that unlocked all the options in the bios and allowed it to boot normally again
Thanks for the help
-
Hey stephenw10,
i want to step deeper in what you have done.
Can you help me with opening the bios file in amibcp?
I tryed with your .rom file from page 3 and amibcp v4.53 but i always get the error: "Couldn't open the file."
What did you do to open the bios file in amibcp?
Thanks in advance.