7100 Some ports arent working

nilesferrier · October 29, 2024, 7:26pm

I have a client with 2 Netgate 7100s that are configured via CARP. all of a sudden the port which is designated as Sync has stopped working and shows that nothing is plugged into it even though, both firewalls are connected.

I have tried to disable and re-enable the ports on both devices. That didnt help.

He plugged a new patch cable into port 8 in the switch and the devices still say no carrier.

The other issue he is having is that the firewall rules seem to work sometimes or there is a delay before the rules start working.

Thanks in advance

pavlos · October 29, 2024, 7:40pm

replace cmos battery CR2032

Tom’s video https://www.youtube.com/watch?v=1qLGdVra5yU

nilesferrier · October 29, 2024, 7:43pm

Really? replace the CR2032 battery? Thats all it was?

nilesferrier · November 6, 2024, 1:37pm

Im trying to find what settings may get lost if the battery is swapped…

pavlos · November 6, 2024, 1:49pm

It takes 5 seconds to pop the old battery and put a new one. BIOS may lose its time but I don’t think your settings are affected since they are stored in your ssd.

nilesferrier · November 6, 2024, 1:52pm

I definitely know it would be the time. Im sending a tech there who is just going to replace the batteries and I dont want to have to walk him through a bios ive never seen.

Trying to have all the bases covered - I put a photo of the motherboard in the ticket so that he knows where it is.

I really hope this helps this guys situation .

thanks again!

nilesferrier · November 7, 2024, 6:18pm

Didnt exactly fix the problem.

The problem is that its setup in an HA Pair. we have checked all of the settings, like ntp, carp addresses etc.

But we still show this on the master:

And this on the backup:

the sync ips are 192.168.3.2 for the master and .3 for the backup

the admin password was updated on both sides.

Ive looked at firewall settings:

Not sure what else to include??

pavlos · November 7, 2024, 6:35pm

I dont have HA setup; I suggest take a look at this link

https://docs.netgate.com/pfsense/en/latest/highavailability/settings.html

nilesferrier · November 7, 2024, 6:41pm

thanks ive got links!

I was thinking of factory resetting B and then letting HA re-do itself. I dont know how long the HA pair have been out of sync for.

xMAXIMUSx · November 7, 2024, 11:52pm

Are you sure that you have all of your VLANs defined in your switch and trunk ports?

nilesferrier · November 8, 2024, 3:48pm

Ive checked their switch configs, they have unifi switches and there are no vlans.

xMAXIMUSx · November 8, 2024, 6:20pm

Well that is pretty strange because it looks like they have VLANS defined on the firewall and for the firewalls to communicate the switch needs VLANs defined to pass that traffic.