2.8 KiB
| title | aliases | summary | date | categories | tags | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| pfSense: restore broken config |
|
Restoring a configuration file for pfSense when it actually stays in a boot-loop | 2022-07-04T18:14:13+02:00 |
|
|
My pfSense firewall at home got a pretty heavy misconfiguration by myself and that resulted in an annoying boot-loop. This took me quite a while to research, but I finally got it working again. Thank god pfSense makes backups of its configuration so this recovery process works quite well.
Follow these steps
-
Boot into single user mode
Connect to your firewall (with a serial console) and choose option
5) Reboot systemand confirm with the letterS(capital s). -
ZFS version only
-
Remount root slice as read-write:
$ /sbin/mount -u / -
Mount all ZFS filesystems, datasets etc.
$ /sbin/zfs mount -a -
Working within the mounted filesystems
-
Enter /cf/conf
$ cd /cf/conf -
Copy the newest backup file back
$ cp backup/config-1648889613.xml config.xml -
Clear the config cache
$ rm /tmp/config.cache -
Reload system and it's services
$ /etc/rc.reload_all startThis may take a while. At this point we are done, we can now remove the single user mode boot configuration and reboot the firewall.
-
-
Clear the single user mode boot configuration
$ /sbin/nextboot -DZFS does not clear the single user mode boot configuration by itself, that's why we have to delete it after we are done with our work.
-
Reboot the system
$ /sbin/rebootYou could also use exit, but that would only continue booting into multi user mode without rebooting the system first. I personally think that we would benefit from a full reboot.
-
Okay, that's it all for now. Please note that I do not use the UFS filesystem any more, so I won't add this to my little instruction set.
{{< alert circle-info >}} This post was actually older, I've saved the instructions in a textfile until I found the time to format it and publish it on my website. {{< /alert >}}