[SOLVED] Firewall hanging every day -- turnstile_broadcast() crash

[Taomyn]

Everything was more or less fine after upgrading from 16.7.14 to 17.1 until today when during the day I was unable to access my systems externally. On returning home I discovered the firewall had completely locked up, no ping or GUI. When I looked at the console directly via VGA, I saw this instead of any kind of login prompt:

Code: [Select]

I'll put a screen shot here, or I would if I could figure this forum, nothing works for me :-(
I connected a keyboard and nothing worked so I had to press and hold the power button, then restart it. I checked my Console Options and they appear fine:

Code: [Select]

I'll put a screen shot here, or I would if I could figure this forum, nothing works for me :-(
Any ideas?

I also submitted an error report through the firewall in case that helps.

[franco]

Try setting the "vt" driver and primary console to "efi". FreeBSD flipped their the default on 11.0, and the old defaults that worked for EFI are not working so well anymore (we kept our settings to minimise impact, ironic).


Cheers,
Franco

[Taomyn]

Try setting the "vt" driver and primary console to "efi". FreeBSD flipped their the default on 11.0, and the old defaults that worked for EFI are not working so well anymore (we kept our settings to minimise impact, ironic).


Cheers,
Franco

Thanks, that did the trick after I rebooted - if it hangs again, hopefully I can gather more info.

[Taomyn]

I'm afraid it hung again today, exactly the same way although this time I could see some information - see screen shot, but connecting a keyboard still made no difference and I was forced to kill the power. I also submitted another report through the GUI once the firewall restarted, and I then disabled a few plugins I don't currently use (I was going to play with them later), and see how it goes. All though IPS/IDS is still broken for me, I left that on and will disable it should the problem repeat.

[Taomyn]

It's happened again - have disabled Intrusion Detection this time, though not really working anyway.


Report submitted via GUI also.

[Taomyn]

Happened again today, changed the thread title to highlight this as the main issue.

Is there some way to schedule just a firewall reboot? I'm thinking of doing this to at least give me back some kind of stability.

[franco]

We're having the same issue multiple times: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=213903

I'm going to ask FreeBSD for help on this report. Can you post your hardware specs? This is surely something related to a distinct set of conditions.


Cheers,
Franco

[Taomyn]

Is there a good way to get the hardware specs as the firewall sees it, either in the GUI or via the command-line.


It's a while since I built the box and I don't recall every specification of it - but I will get what I can when I get home.

[franco]

You can generate a crash report under and drop me a note in the description. But hardware eval on problematic system has show hardware as new as 2013, so no sure anymore. :/

[Taomyn]

Well my box is only about two years old, so fairly new.


I did submit 3 reports so far, if you can search for any with the email address starting "ferd352" and ending "@gmail.com" (I use plus-addressing) they will be mine.

[Taomyn]

I just upgraded to 17.1.1 and wanted to know if there is any chance my problem is likely fixed by the updates? I ask because then I will disable my daily reboot of the firewall and see how it goes.

[franco]

No particular change for this. Still need to discuss with FreeBSD. Sorry. ;(

[Taomyn]

No worries, thought I would ask, so I'll leave my reboot in place for tomorrow morning then disable it and see what happens at the weekend, at least then I'll be close by to reboot it manually.

[abraxxa]

Just to let you know that I'm experiencing the same hangs where the firewall doesn't reply to any request, neither ping nor https.
Pressing the power button of my mini itx case does reboot it though.

[Taomyn]

Just to let you know that I'm experiencing the same hangs where the firewall doesn't reply to any request, neither ping nor https.
Pressing the power button of my mini itx case does reboot it though.

And the same error on the console as I reported above?

Have you submitted a report through the firewall as well? It would be good to get more data points sent in.Go to System, Firmware, Reporter.