[SOLVED] Firewall hanging every day -- turnstile_broadcast() crash

Started by Taomyn, February 02, 2017, 07:26:16 PM

Previous topic - Next topic
Print
Go Down Pages1 2
User actions
February 02, 2017, 07:26:16 PM Last Edit: March 14, 2017, 02:17:52 PM by franco
Everything was more or less fine after upgrading from 16.7.14 to 17.1 until today when during the day I was unable to access my systems externally. On returning home I discovered the firewall had completely locked up, no ping or GUI. When I looked at the console directly via VGA, I saw this instead of any kind of login prompt:

Code Select
I'll put a screen shot here, or I would if I could figure this forum, nothing works for me :-(

I connected a keyboard and nothing worked so I had to press and hold the power button, then restart it. I checked my Console Options and they appear fine:

Code Select
I'll put a screen shot here, or I would if I could figure this forum, nothing works for me :-(

Any ideas?

I also submitted an error report through the firewall in case that helps.
February 02, 2017, 09:30:04 PM #1
Try setting the "vt" driver and primary console to "efi". FreeBSD flipped their the default on 11.0, and the old defaults that worked for EFI are not working so well anymore (we kept our settings to minimise impact, ironic).


Cheers,
Franco
February 02, 2017, 10:08:30 PM #2
Quote from: franco on February 02, 2017, 09:30:04 PM
Try setting the "vt" driver and primary console to "efi". FreeBSD flipped their the default on 11.0, and the old defaults that worked for EFI are not working so well anymore (we kept our settings to minimise impact, ironic).


Cheers,
Franco

Thanks, that did the trick after I rebooted - if it hangs again, hopefully I can gather more info.
February 03, 2017, 06:23:35 PM #3
I'm afraid it hung again today, exactly the same way although this time I could see some information - see screen shot, but connecting a keyboard still made no difference and I was forced to kill the power. I also submitted another report through the GUI once the firewall restarted, and I then disabled a few plugins I don't currently use (I was going to play with them later), and see how it goes. All though IPS/IDS is still broken for me, I left that on and will disable it should the problem repeat.
February 05, 2017, 10:14:31 AM #4
It's happened again - have disabled Intrusion Detection this time, though not really working anyway.


Report submitted via GUI also.
February 06, 2017, 07:11:21 PM #5
Happened again today, changed the thread title to highlight this as the main issue.

Is there some way to schedule just a firewall reboot? I'm thinking of doing this to at least give me back some kind of stability.
February 07, 2017, 09:15:42 AM #6
We're having the same issue multiple times: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=213903

I'm going to ask FreeBSD for help on this report. Can you post your hardware specs? This is surely something related to a distinct set of conditions.


Cheers,
Franco
February 07, 2017, 01:41:46 PM #7
Is there a good way to get the hardware specs as the firewall sees it, either in the GUI or via the command-line.


It's a while since I built the box and I don't recall every specification of it - but I will get what I can when I get home.
February 07, 2017, 04:31:27 PM #8
You can generate a crash report under and drop me a note in the description. But hardware eval on problematic system has show hardware as new as 2013, so no sure anymore. :/
February 07, 2017, 05:20:39 PM #9
Well my box is only about two years old, so fairly new.


I did submit 3 reports so far, if you can search for any with the email address starting "ferd352" and ending "@gmail.com" (I use plus-addressing) they will be mine.
February 09, 2017, 11:32:12 AM #10
I just upgraded to 17.1.1 and wanted to know if there is any chance my problem is likely fixed by the updates? I ask because then I will disable my daily reboot of the firewall and see how it goes.
February 09, 2017, 11:35:26 AM #11
No particular change for this. Still need to discuss with FreeBSD. Sorry. ;(
February 09, 2017, 11:38:52 AM #12
No worries, thought I would ask, so I'll leave my reboot in place for tomorrow morning then disable it and see what happens at the weekend, at least then I'll be close by to reboot it manually.
February 09, 2017, 09:02:34 PM #13
Just to let you know that I'm experiencing the same hangs where the firewall doesn't reply to any request, neither ping nor https.
Pressing the power button of my mini itx case does reboot it though.
February 10, 2017, 08:46:22 AM #14
Quote from: abraxxa on February 09, 2017, 09:02:34 PM
Just to let you know that I'm experiencing the same hangs where the firewall doesn't reply to any request, neither ping nor https.
Pressing the power button of my mini itx case does reboot it though.

And the same error on the console as I reported above?

Have you submitted a report through the firewall as well? It would be good to get more data points sent in.Go to System, Firmware, Reporter.
Print
Go Up Pages1 2
User actions