Maybe a good gimmick for pfsense



  • Hi,

    i think a feature like in some Network devices would be great:

    All changes are only made temporary until  "copy running setup to boot setup"  is pressed.

    If you have a malfunction setup, just reboot and running on the last saved  config.

    Would help to keep me calm on changes :-)

    Regards


  • LAYER 8 Global Moderator

    how does item 15 on the console restore recent configuration not work for you?

    Copy to Mem like in cisco works great until you reboot or have a power loss or something and you forgot to save your configs and system revert some point in the past where you remembered to save..



  • The running vs start-up config works for some network devices because they already started off that way.

    Trying to change the way things works now would not be a good idea - I've seen entire networks go down after a power failure because the vendor didn't hit save config (H3C MSM WLAN controller, H3C L3 switch, & MSR router). And the vendor didn't even know what they actually configured.

    As johnpoz mentioned, the ability to rollback config changes is more than sufficient for now. Most other distributions don't even have this option. In fact, if you've worked with Aruba, you'd know that you can't even port the configuration out as a file over the UI.



  • Yep, third vote for the Allow Reverting changes vs Copy Mem feature.

    pfSense does have an intermediate "Apply Changes?" step for a number of sections (interface changes, etc) as a small safety.
    Like all safety features, they can be a nuisance from time to time but the results are fairly obvious and usually of the face-palming variety ("D-oh I forgot to apply that!")

    The Copy Mem "feature" invariably bites you when you have a problem to fix "NOW" and finally get things working after customers are screaming.
    You go home pour a scotch, relax and then the power goes out just long enough to kill the UPS - power comes back, your changes weren't saved and your phone starts ringing…...

    The worst part of this story is that it can be many weeks (and possibly many Techs) between fixing the initial emergency and the 2nd, avoidable one.

    pfSense has it's own set of peculiarities, but thankfully it doesn't lead you down that particular path.



  • @johnpoz:

    how does item 15 on the console restore recent configuration not work for you?

    Copy to Mem like in cisco works great until you reboot or have a power loss or something and you forgot to save your configs and system revert some point in the past where you remembered to save..

    this is good feature ..
    how many settings can it hold ?
    because i wanted to delete 4 of the interfaces that were used for hostap and suddenly deleted the lan interface and i was locked out of webgui, so had to connnect monitor to it.

    but i wasnt able to get my lan interface back ..

    so i had to redo them ..

    :'(

    at that point i saw the option to delete wan itnerface is greyed out. at least a warning for deleting lan interface from interface list/assign options will do help such a drastic disastour ..

    mine is home network so no worry for this one



  • Hi,

    it,s that if i change somethink and suddently i am not able to access the box from remote because of some mistake i can't revert this steps.
    A reboot from a customer is not a big deal.

    Maybe AutoSave on logout is also an option

    It was just an idea.


Log in to reply