Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - w0w

Pages: [1] 2 3
2.4 Development Snapshots / cron command execution is broken partially
« on: December 21, 2017, 10:50:39 am »
Looks like the input field for the command is not limited to appropriate length and command got truncated when exceeds some limit used by cron. It would be very useful to limit input length according to maximum allowed by cron or at least developers can add note about limited length.
Does anybody knows what maximum command length is acceptable by cron?

I've just noticed message in system log
Code: [Select]
ada0: quirks=0x2<NCQ_TRIM_BROKEN> and this is for SSD, Crucial MX200.

Is it possible that this patch missing from pfSense system ?

2.4.3-DEVELOPMENT (amd64)
built on Sat Dec 16 11:23:26 CST 2017
FreeBSD 11.1-RELEASE-p6

When creating new certificate and using method freedns and entering as a password "O?A OuU$?Uy~oe" I am getting an error
Code: [Select]

    pfSense is restoring the configuration /cf/conf/backup/config-1511681170.xml @ 2017-11-26 09:26:47

The other thing is that password should be hidden and it's not.

2.4.3-DEVELOPMENT (amd64)
built on Sat Nov 25 19:44:06 CST 2017
FreeBSD 11.1-RELEASE-p4

The system is on the latest version.
Version information updated at Sun Nov 26 8:07:02 EET 2017

Traffic Shaping / Floating bandwidth value for shaper (bufferbloat checker)
« on: September 27, 2017, 09:14:28 pm »
If we are using traffic shaper to eliminate bufferbloat, then we need to limit bandwidth as well, 80-95% according to some sources, but here comes another problem, sometimes this limit needs to be adjusted depending on ISP channel load or day of time or anything else or you just do not to waste those bandwidth percents you paid for, so the main idea is to use scripting to change bandwidth value depending on ping value. We know current limit and current load, we can ping ISP gateway every n seconds, so actually we can collect statistics of current link saturation and change bandwidth value according to it, ex. from 50% to 100%.
Is it a good idea? What cons do you see?

I got it today, on the latest snapshot
2.4.0-BETA (amd64)
built on Fri Jun 23 14:39:50 CDT 2017
FreeBSD 11.0-RELEASE-p10
I did not have traps for at least 5 months before that day.

Jun 24 20:45:26    kernel       current process = 1239 (mpd5)
Jun 24 20:45:26    kernel       processor eflags = interrupt enabled, resume, IOPL = 0
Jun 24 20:45:26    kernel       = DPL 0, pres 1, long 1, def32 0, gran 1
Jun 24 20:45:26    kernel       code segment = base 0x0, limit 0xfffff, type 0x1b
Jun 24 20:45:26    kernel       frame pointer = 0x28:0xfffffe046aab68c0
Jun 24 20:45:26    kernel       stack pointer = 0x28:0xfffffe046aab6840
Jun 24 20:45:26    kernel       instruction pointer = 0x20:0xffffffff80c32c2a
Jun 24 20:45:26    kernel       fault code = supervisor read data, page not present
Jun 24 20:45:26    kernel       fault virtual address = 0x7b0
Jun 24 20:45:26    kernel       cpuid = 3; apic id = 06
Jun 24 20:45:26    kernel       Fatal trap 12: page fault while in kernel mode

Unfortunately I don't have swap enabled currently.
Any changes last days that can cause this? Or it's hardware?

2.4 Development Snapshots / Firewall Rules, moving rule order on LAN bug
« on: February 18, 2017, 12:38:17 pm »
When you try change LAN rules order by drag and drop them over in list, after hitting "save" button all WAN rules appearing on LAN tab and WAN tab consists from two standard blocking rules  RFC 1918 networks  and Block private networks.

Packages / Add freeipmi to package reprository?
« on: January 29, 2017, 01:09:07 am »
Is it possible to add freeipmi to pfSense package reprository or there are some compatibility issues?

I just leave it here.
Edited: Wrong link  >:(

Possible pros:
Please add some, if you know any

I understand the risks and do not wait any support  :D
If you run ping command without 'count' option via GUI, GUI will never respond again returning "504 Gateway Time-out", untill you manually kill ping via SSH or restart PHP-FPM via console.
Is it possible to implement some "abort command" button in the GUI instead of indefinitely waiting for an answer?

2.4 Development Snapshots / sysctl boot message: empty numeric value
« on: January 05, 2017, 09:37:05 am »
I think it came after adding some system tunables in the GUI and then removing them after further testing. Now I receive error message during boot, how can i diagnose what is wrong?

2.4 Development Snapshots / "ufs in RAM" on dashboard, when using ZFS
« on: November 10, 2016, 10:29:34 pm »
Is it OK?
Should it be reported as cosmetic bug or it's really UFS? Sorry for stupid question...

2.4 Development Snapshots / UEFI boot problem on real hardware.
« on: October 23, 2016, 02:50:11 am »
The board is J1900D2Y from asrock, crucial MX200 SSD.
CSM settings disable. successfully boots with EFI loader
Installer options
all installs but after reboot automatically goes into UEFI settings, because can not boot from hard drive.
"Launch UEFI shell from device" shows zero compatible devices in list.

Traffic Shaping / Queue length in LAN shaper
« on: September 26, 2016, 12:02:21 pm »
Pfsense 2.3.2
I have qp2p queue on LAN interface with queue limit of 50000 packets, but if I open Queue Status page, then it shows under heavy load that limit is 5000 and drops packets over 5000 limit, if I put 10000 (less then 50000) limit it behaves like it's 100, shows 10000 on Queue Status page and drops everything above 100. What am I doing wrong?

General Questions / PowerD power modes.
« on: September 24, 2016, 05:27:48 am »
The question is how PowerD detects current power mode (AC/BAttery/Unknown)? I ask because it looks like it does not detect for me anything and just stuck at "Unknown", but I'd like to use "AC" and "Battery" modes.

Pages: [1] 2 3