Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - deadmalc

Pages: [1] 2 3
Official pfSense Hardware / Re: SG-1000 seems to have suicided on reboot
« on: January 30, 2018, 01:39:54 pm »
I had similar issues, the main thing is you need to fix the problem with the web-ui becoming unresponsive.
To prevent this I went from using the resolver to the dns forwarder.
I think the problem was caused by my netgear wifi "router" (used as an AP) flooding the SG-1000 - but moving to use the resolver fixed the issue.
I also stopped using the netgear as a secondary DNS anywhere, not sure which one fixed it - but it's been rock solid for months now.

Power cycling the sg-1000 (or any device) without a proper shutdown can cause filesystem corruption.
I once had (not a netgate device, or a firewall) the apache config in the hosts file!!!!
You maybe able to fix it by booting into single user mode (via the console) and running fsck (three times apparently).
But definitely speak to support as suggested.
Personally I'd save the config (if you can recover it) and re-flash.

Thanks for that. I have a similar setup.R8000 in AP MODE.
since I've stopped using the resolver and switching to the forwarder I've not had any issues. However I think your diagnosis makes sense.
Once I get the funds a  proper nas and Wi-Fi ap will be on the cards.
Seems really weird tbh. But I'm glad pfsense isn't at fault.

Thanks for the update

Official pfSense Hardware / Re: SG-1000 and suricata
« on: October 16, 2017, 12:41:40 pm »
I have turned it off, as I'm not happy with the load staying that high continually.
The SG-1000 started off as just a fun toy, but it's reliability and performance have made it a permanent home firewall.
But it was interesting that it actually works at all.

The SG-3100 looks more fun too.

Official pfSense Hardware / SG-1000 and suricata
« on: October 14, 2017, 10:05:17 am »
I've just enabled suricata on my SG-1000 at home.
I was expecting to have to factory reset it due to the load, however it performs fine.
I'm really surprised.
I only have a max of 80MBit download and 10Mbit upload, although it does seem to clobber it quite a lot it doesn't affect speedtest.
Also ping times are still 1ms (Fibre)
I have only enabled it at the default set, so no real tweaking done.
I'm not really sure it's of any use at home to be honest, but it's a bit of fun.
Has anyone else given it a go since it turned up for the SG-1000?

Installation and Upgrades / Re: PPPoE routing wrong after upgrade
« on: October 14, 2017, 07:13:55 am »
That's weird!
I'm using pppoe on 2.4 (sg-1000) - so it's not an upgrade from 2.3.x
But it works fine for me.
Have you tried deleting and re-creating the pppoe config?

Installation and Upgrades / Re: 2.4.0 Upgrade Killed my Speeds
« on: October 12, 2017, 03:39:31 pm »
The dns resolver goes crazy when your wan ip changes causing huge load.
On my sg1000 enough so the console can be unresponsive.

Installation and Upgrades / Re: 2.4.0 Upgrade Killed my Speeds
« on: October 12, 2017, 01:56:50 pm »
This may have been fixed now, but I've not heard anything to say it has!
Are you using the "DNS resolver" - if you are try switching to the "DNS Forwarder".

I had awful problems (om my home firewall) when my IP changed, since switching back to the Forwarder I've had no issues at all.

You mention what the load is now, what was it before?
Also what's the load on the box, i.e. if you go to the console and type uptime.

It's worth disabling suricata and see if that makes a difference, to track the issue down.
On my server I've got that on without any issues after a 2.4 upgrade.

Limited info, so blindly suggesting ideas!

Installation and Upgrades / Re: 2.4.0 Release
« on: October 12, 2017, 01:45:46 pm »
I had a strange issue, after I upgraded all my load balancer settings were blank!
I'd taken a copy before, but before I thought I'd try rebooting.
After a reboot, the settings came back and everything is fine now.
A restart of the service may have worked, but I was being lazy.
All seems well so far!

Just wondering if you are using the DNS resolver.
If you are has this been fixed? (I've been seeing the same issues for a long time, it recently got much worse)
Be good to know!

2.4 Development Snapshots / Re: SG-1000 flagging and/or not working Internet
« on: September 19, 2017, 03:03:31 pm »
I would personally recommend not touching unbound, i.e. the "DNS Resolver" at the moment with a barge pole - if you have a dynamic IP address on your WAN.
On my SG-1000 it borked frequently whenever the IP address changed.
High load average and strange behaviour, it looks like it can't handle the WAN IP changing.
I've switched to using the forwarder and it's rock solid - for awhile I thought it was the ISP.
It wasn't in my case

Still having the issue, but this time it killed all internet connectivity as well.
Unfortunately I wasn't at home, so had to power cycle it.
Not sure this is the same issue as it seems different, but without any access to it at the moment it's impossible to say

I'm getting similar issues as well. The only way to recover seems to be power cycle.
I'm also using bandwidthd as well, so I'll remove it and see if that helps.

I've also removed RRD_Summary as well.
So the only packages I have installed are AutoConfigBackup and Service_Watchdog.
Rebooting now and lets see if it's all ok again

Sounds you like to boot into single user mode and run fsck.
If you go into the official support portal there are instructions in there for doing that.

2.4 Development Snapshots / Re: sg-1000 issue
« on: June 24, 2017, 05:57:23 am »
This seems to be my standard response at the moment, but are you using pppoe?
I see the same lines, seems to coincide with dns mess as well as IP change at the ISP end.
Although recently it's been fine

Pages: [1] 2 3