Afternoon all. I manage roughly 60+ pfSense and Unifi setups of various sizes and complexities. Some sites are years old, some sparkling fresh. All now exhibit the same behaviors.
By now all of them are fully up to date with pfSense+ or 2.7.2 with the Unifi Equipment linked up and managed with a hosted 8.6.9 Controller.
The weirdness: As I’ve updated the unifi controller the pfsense devices at all of the sites no longer appear in the client list of devices, their macs report as offline, they do not appear on the port list on port management for their respective rj-45 plugs, nor does DHCP Guarding work. Clients are not issued ips.
If I try to hunt for the firewall by mac it does show up as offline. Meaning the controller used to see it.
As mentioned above everything “appears” to be setup correctly, the networks all still route. VLANS are VLANing. I do have all the VLANS assigned to the default LAN device. igb1, em1, ix1 so the vlan would be igb1.14 or ign1.2000
etc etc depending on the age of the firewall device. Older sites where I had the VLANS on OPT2 or OPT3 might not have exhibited this issue, I’ll have to lab this up and see if that’s still the case.
With DHCP guarding enabled, Unifi APs would get an ip, but some client devices do not. Especially on none default vlans.
I haven’t found anything enlightening in the firewalls, or capturing traffic. The DHCP request would come in, go out, and not get to the client.
As far as the pfsense firewall disappearing from Unifi’s list of devices, baffled by that. I do see several arp requests come in now and then asking who has the gateway ip.
At this point I’m starting to run out of ideas.
Thoughts?