Netgate SG-1000 microFirewall

Author Topic: System crash on gateway alarm?  (Read 140 times)

0 Members and 1 Guest are viewing this topic.

Offline mwp821

  • Jr. Member
  • **
  • Posts: 52
  • Karma: +7/-0
    • View Profile
System crash on gateway alarm?
« on: January 19, 2018, 12:28:25 am »
Hi folks,

My pfSense system (RCC-VE 2440) has gone offline three times in as many days. It's unpingable on the LAN interface, no services are reachable, and the serial console is blank and unresponsive. I have to power-cycle it to get it back online and everything is fine after that (until the next crash). Here are the last few lines in the system log before the reboot:

Jan 18 23:58:43 cerberus rc.gateway_alarm[71831]: >>> Gateway alarm: WAN_DHCP6 (
Addr:REDACTED Alarm:1 RTT:12894ms RTTsd:3415ms Loss:21%)
Jan 18 23:58:43 cerberus check_reload_status: updating dyndns WAN_DHCP6
Jan 18 23:58:43 cerberus check_reload_status: Restarting ipsec tunnels
Jan 18 23:58:43 cerberus check_reload_status: Restarting OpenVPN tunnels/interfa
ces
Jan 18 23:58:43 cerberus check_reload_status: Reloading filter
Jan 18 23:58:44 cerberus rc.gateway_alarm[72628]: >>> Gateway alarm: WAN_DHCP (A
ddr:REDACTED Alarm:1 RTT:10710ms RTTsd:3043ms Loss:22%)
Jan 18 23:58:44 cerberus check_reload_status: updating dyndns WAN_DHCP
Jan 18 23:58:44 cerberus check_reload_status: Restarting ipsec tunnels
Jan 18 23:58:44 cerberus check_reload_status: Restarting OpenVPN tunnels/interfa
ces
Jan 18 23:58:44 cerberus check_reload_status: Reloading filter


I expect the WAN interface to go offline if there's a connectivity issue, but certainly not the whole system. And the internet connection seems to be fine after a power-cycle, so I'm not convinced there isn't something else going on here.

igb0 is connected to a SB6120 (Comcast). igb1 and igb2 are LAGGed (LACP) to a UniFi managed switch. 2.4.2-RELEASE-p1. Any suggestions?

EDIT: I may need to undo what I did here, or perhaps I need to set the net.inet.tcp.tso tunable to 0. I'll try those one at a time to see if one or the other prevents a fourth or fifth crash.
« Last Edit: January 19, 2018, 12:57:10 am by mwp821 »

Offline mwp821

  • Jr. Member
  • **
  • Posts: 52
  • Karma: +7/-0
    • View Profile
Re: System crash on gateway alarm?
« Reply #1 on: January 24, 2018, 01:00:38 pm »
Welp, this is still happening about once a day, and the two things I thought might be responsible turned out to be non-factors (the tso tunable is set to zero and vlanhwtso is left alone and it's still happening). I also no longer believe it has anything to do with the gateway alarm.

I'm looking for any clues as to why this might be happening. I'm going to try to capture the console messages at the time of the crash using ttylog, but I'm not hopeful.