Troubleshooting OS Issues with a Debug Kernel¶
Starting with pfSense® Plus software version 23.01 there is a new package containing an operating system kernel and module set built with additional debugging enabled. This is known as a “Debug Kernel”.
In the past, there was a similar package which installed debug symbols but it did not include a full debug kernel or modules.
Installing the Debug Kernel¶
The debug kernel can be installed from the command line:
# pkg update
# pkg install -y pfSense-kernel-debug-pfSense
The debug kernel consumes a significant amount of disk space, ensure there is at least 1GB free.
Once installed, the debug kernel and associated module files are located in
/boot/kernel.debug and debug symbols are under
Booting the Debug Kernel¶
After installing the debug kernel it can be activated in one of several ways:
To reach a loader prompt, select menu option
3 from the loader menu or press
the space bar during the kernel spinner on systems without a loader menu.
At the loader prompt, enter the following at the
This will boot the debug kernel one time and the next boot will revert back to the default kernel.
To persistently boot from the debug kernel, add the following line as a Loader Tunable:
Save and exit, then reboot the firewall as usual from the GUI or console menu.
The next boot and all subsequent boots will use the debug kernel.
Do not leave the debug kernel persistently active when making a firmware upgrade. The upgrade process relies on booting from the default non-debug kernel. The package may remain installed, but it must not be active as a loader tunable during the upgrade process.
To temporarily switch back to the default non-debug kernel, use the loader menu
or loader prompt as described in the previous sections, but boot
To permanently switch back to the non-debug kernel, remove the
from the Loader Tunables.