1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    I
    @andrew_cb said in haproxy 0.63_2 weird behavior, edits not working: @iSagen @TheCyborgWeasel The issue is likely the same as in https://forum.netgate.com/topic/178348/haproxy-backend-port-changes-are-not-applied/ Try adding load-server-state-from-file none to the Advanced Settings > Backend pass thru section of each backend. Great! I will do this.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    bmeeksB
    @NRgia said in Suricata on Pfsense: @bmeeks Thank you for what you did for Snort or Suricata. I'm not sure what you want me to do on Redmine, due to is a bug tracker. My question is for Product Management, which I will ask it here to be public: What is the plan for these 2 packages, Suricata and Snort? Thank you Yes, Redmine is for both bug reports and feature requests. Asking for the Suricata binary to be updated to the latest 7.0.11 version from upstream is a legitimate Redmine request. I would suggest simply asking for the binary version update instead of asking about future Netgate strategy (such as the support plans for the packages). Strategy discussions typically don't get very far because they deal with proprietary information or plans that a company may not want to publicly discuss. Redmine is where the Netgate developer team tracks all the code changes they make for pfSense. They will see Redmine reports much quicker than a forum post.

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    571 Topics
    3k Posts
    dennypageD
    @Leon-Straathof Data retention settings are handled inside of ntopng. Documentation here. Pay attention to the RRD note. Also, if you've turned on some of the slice and dice time series information (is off by default), I'd suggest turning them back off. These balloon the storage requirements and are of little actual use.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    GertjanG
    @jeremyc311 said in pfBlockerNG-devel 3.2.8 service pfb_dnsbl don't start: I’m surprised to see in my logs only one blocked IP, which is related to my TrueNAS I'll decode this one : @jeremyc311 said in pfBlockerNG-devel 3.2.8 service pfb_dnsbl don't start: Aug 5 09:01:14,1770008712,bxe1,LAN,block,4,17,UDP,192.168.2.13,116.147.64.181,51765,51413,out,Unk,pfB_PRI1_v4,116.146.0.0/15,ET_Block_v4,Unknown,truenasr740,null,+ Traffic, coming into LAN, from a LAN device (192.168.2.13 = your TrueNAS) going to a Chinise ( 116.147.64.181 ) Brazilian ( 177.72.195.114 - = next line ) was blocked by the "pfB_PRI1_v4" list. That's probably good thing ? ( ! ). Up to you to discover why your NAS should initiate connections to these countries. A NAS can go outside for maintenance purposes, for example to look for updates of it's system. These could be located anywhere of course. The GeoIP IP created a rule for you. How and where do you use that this rule ?

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    101 Topics
    2k Posts
    dennypageD
    @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: Interesting. I would have thought the initial reboot, which occurred as part of the upgrade, would have done the trick, but it took a second reboot, just now, to get things working. Glad you have it sorted. There was no difference in the output of usbconfig show_ifdrv at any point -- before or after unplugging/replugging the USB cable, nor after rebooting. ... Question: What would tell me whether or not a driver was loaded? If there were an attached driver, it should have shown up with the show_ifdrv command. If you use the command and look at the other usb devices, I think they will show attached drivers. I don't expect to see a driver attached to the ups, because there is a quirk that tells the OS to ignore that device (and not attach a driver). Look for idVendor and idProduct in the above output. The Vendor ID for your device is 0764, which corresponds to Cyber Power Systems, and the Product ID for your device is 0601, which is registered as "PR1500LCDRT2U UPS" (don't sweat an exact match for the name). You can see the quirk with the following command: [25.07-RC][root@fw]/root: usbconfig dump_device_quirks | grep 0764 VID=0x0764 PID=0x0005 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0501 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0601 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE [25.07-RC][root@fw]/root: Your device is third on the list. The HID_IGNORE quirk says to ignore the device and not attach a driver. @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: You might consider adding this resolution to the release notes for 2.8. LOL... sorry, I don't have input to the release notes (I don't work here). While I wrote and maintain various packages, including NUT, I'm still just a volunteer. Most packages are actually written by volunteers.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    495 Topics
    3k Posts
    J
    @MarvinFS said in updating to acme 1.0 breaks system beyond repair: need to restore from backup: it was cleanly installed not long ago after release of 2.8.0. installed or upgraded? @MarvinFS said in updating to acme 1.0 breaks system beyond repair: need to restore from backup: can't use netinstall as new installer doesn't want to connect to my pppoe during setup for unknown reason - so I can't use it, but it works just perfectly fine in GUI) more details here would be good. @MarvinFS said in updating to acme 1.0 breaks system beyond repair: need to restore from backup: I've had zenarmor manually installed and crowdsec. hope your foot is OK

  • Discussions about the FRR Dynamic Routing package on pfSense

    294 Topics
    1k Posts
    yon 0Y
    said in Please update frr on Pfsense+ to FRR 10.3: https://redmine.pfsense.org/issues/15785 now frr 10.4.1

  • Discussions about the Tailscale package

    90 Topics
    595 Posts
    E
    Updated CE 2.7.2 to 1.86.2_1 Changelog pkg add -f https://pkg.freebsd.org/FreeBSD:14:amd64/latest/All/tailscale-1.86.2_1.pkg Freshports

  • Discussions about WireGuard

    693 Topics
    4k Posts
    lvrmscL
    Since my upgrade to 25.07-RELEASE (amd64) built on Tue Jul 22 22:24:00 CEST 2025 FreeBSD 15.0-CURRENT, on one end of my most important tunnel, the tunnel still works fine, but the pfSense GUI keeps reporting the service as stopped. I had to remove its monitoring from the Service Watchdog which was also trying to start it, without success. Yet the trafic flows correctly. I'm holding off upgrading my other boxes. Is there something I could do to help diagnose?
Log in to post
Load new posts
  • N

    Snort crashes after upgrade to 2.0.3

    Locked
    7
    0 Votes
    7 Posts
    2k Views
    C
    There are 0 changes in the package system between 2.0.2 and 2.0.3, any problems you have with packages on 2.0.3 are the same on 2.0.2. The Snort update bmeeks made was merged a few days ago, which I believe was the resolution of the issues here.
  • S

    Snort alert widget - Auto refresh??

    Locked
    1
    0 Votes
    1 Posts
    901 Views
    No one has replied
  • J

    WPAD, HTTPs and an odd bug!

    Locked
    16
    0 Votes
    16 Posts
    8k Views
    T
    Check the wpad web server logs. Beware that IE caches the wpad config and might not request a changed wpad.dat file again for some time. Check the proxy logs, eg, SSL sites are appearing with CONNECT:www.site.kom:443 Firefox has an addon called 'Foxy Proxy', it has an option to auto detect and tells you whether the config was downloaded & parsed correctly.
  • L

    Obfsproxy and SS5 packages

    Locked
    7
    0 Votes
    7 Posts
    5k Views
    L
    Any help on this?  Can anyone give any instruction on whether im on the right track with those files?
  • A

    Can't find where Dansguardian is blocking wanted content

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    A
    Looks to be all good once I added those mime types to the DG –> Extension Lists --> Exception files (within the UI)
  • D

    Unbound update/reinstall issue

    Locked
    9
    0 Votes
    9 Posts
    4k Views
    L
    Updated one of my 2.0.3 x86 machines to Unbound 1.4.20_4 today and Unbound isn't shutting down any more. I can make changes to Services -> DNS Forwarder and logs show Unbound restarting correctly. As usual, you guys are THE BEST. edit: orig put ver 1.4.20_3 by mistake
  • H

    Snort keeps stopping

    Locked
    8
    0 Votes
    8 Posts
    4k Views
    bmeeksB
    @Honeybadger: Ya, I understand that. Can't add ram so I am pruning rules. If you are using the Snort VRT rules with an Oinkcode, then try enabling just the IPS Policy - Connect in the drop down on the Rules tab.  That is a good basic set of rules.  Do not add any others (that is, leave all the Emerging Threats and the Snort GPLv2 rules unchecked).  See if Snort will start then. Bill
  • L

    CRON - Excute a php script

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    L
    Ah, Ok. I think I had the command wrong.  It works if i use this:  /usr/local/bin/php /usr/local/pkg/kickallusers.php 0 I was originally just calling /usr/local/pkg/kickallusers.php (similar to what squid does in one it's cron jobs). This now works fine. For interest, kickallusers.php contains this: All the echoed HTML could be lost, as there is no need.  I wanted to do this to force all clients to disconnect at the same time, and not after xx amount of hours. echo "Opening Captive Portal Database...................."; require("/etc/inc/captiveportal.inc"); if (file_exists("/var/db/captiveportal.db")) {  $captiveportallck = lock('captiveportaldb');  $cpcontents = file("/var/db/captiveportal.db", FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES);  unlock($captiveportallck); } echo "DONE."; echo " "; $cnt = 0; foreach ($cpcontents as $cpcontent) {  $cpent = explode(",", $cpcontent);  $oursid = $cpent[5];  echo "";  captiveportal_disconnect_client($oursid);  echo "";  $cnt++; } $fh = fopen("/usr/local/pkg/kickallusers.log", 'w'); if(flock($fh, LOCK_EX)){  fwrite ($fh, date('l jS \of F Y h:i:s A'));  flock($fh, LOCK_UN);  } fclose($fh); if($cnt != 0){  echo " | Disconnecting [ MAC: $cpent[3] ]   |   [ IP: $cpent[2] ]   |   [ ID: $cpent[5] ]..................... | DONE. | Completed successfully, $cnt clients disconnected."; }else{  echo " There where no clients to disconnect!"; } exit; ?> I know the echo's will all buffer out together in this script, they were more just to see the finished output, not a 'rolling report'. My Captive Portal page has some PHP in it which does a time check, preventing the client from passing through the captive portal between midnight and 7am, the captive portal page that appears says the "Internet Access is currently turned off'.  Outside these times, the normal captive portal page appears. The reason for this kicking script is to kick all clients just after midnight, forcing them to re-visit the captive portal page, which would then show the "Internet Access is currently turned off" page.
  • G

    Squid 2.7.9 install hangs at Perl?

    Locked
    13
    0 Votes
    13 Posts
    7k Views
    G
    Ok, so it turns out that /var was out of space! I tried running: /etc/rc.conf_mount_rw pkg_add http://files.pfsense.org/packages/8/All/perl-5.14.2_2.tbz … and it gives me: Fetching http://files.pfsense.org/packages/8/All/perl-5.14.2_2.tbz... /var: write failed, filesystem is full lib/perl5/5.14.2/unicore/lib/NChar/N.pl: Write failed lib/perl5/5.14.2/unicore/lib/NChar/Y.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFCQC/Y.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFDQC/N.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFDQC/Y.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFKCQC/M.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFKCQC/N.pl: Seek failed lib/perl5/5.14.2/unicore/lib/NFKCQC/Y.pl: Seek failed ... lib/perl5/5.14.2/warnings.pm: Seek failed lib/perl5/5.14.2/warnings/register.pm: Seek failed tar: (Empty error message) tar: Error exit delayed from previous errors. Done. pkg_add: package 'perl-5.14.2_2' or its older version already installed var doesn't "seem" to be full, but pkg_add must be needing to write something larger than the available capacity…  ??? df -h Filesystem          Size    Used  Avail Capacity  Mounted on /dev/ufs/pfsense0    443M    232M    175M    57%    / devfs                1.0K    1.0K      0B  100%    /dev /dev/md0              38M    274K    35M    1%    /tmp /dev/md1              58M    14M    40M    26%    /var /dev/ufs/cf          49M    166K    45M    0%    /cf devfs                1.0K    1.0K      0B  100%    /var/dhcpd/dev I then found this other thread, where someone was having the same problem (var being full) when installing Python: http://forum.pfsense.org/index.php/topic,44953.msg234429.html So I tried their solution: [2.0.3-RELEASE][root@bonfire.localdomain]/var/log(17): setenv PKG_TMPDIR /root/ [2.0.3-RELEASE][root@bonfire.localdomain]/var/log(18): pkg_add http://files.pfsense.org/packages/8/All/perl-5.14.2_2.tbz Fetching http://files.pfsense.org/packages/8/All/perl-5.14.2_2.tbz... Done. pkg_add: package 'perl-5.14.2_2' or its older version already installed Perl is already installed, eh?  ??? Let's try Squid… [2.0.3-RELEASE][root@bonfire.localdomain]/var/log(25): pkg_add http://files.pfsense.org/packages/8/All/squid-2.7.9_3.tbz Fetching http://files.pfsense.org/packages/8/All/squid-2.7.9_3.tbz... Done. pkg_add: package 'squid-2.7.9_3' or its older version already installed Hmm!  Both already installed! So then I went back to the web interface, and selected "reinstall GUI components" (or something to that effect) for Squid… Removing squid components... Tabs items... done. Menu items... done. Services... done. Loading package instructions... Include file squid.inc could not be found for inclusion. Deinstall commands... Not executing custom deinstall hook because an include is missing. Removing package instructions...done. Auxiliary files... done. Package XML... done. Configuration... done. Beginning package installation for squid... Downloading package configuration file... done. Saving updated package information... done. Downloading squid and its dependencies... Checking for package installation... Downloading http://files.pfsense.org/packages/8/All/libwww-5.4.0_4.tbz ...  (extracting) Loading package configuration... done. Configuring package components... Additional files... done. Loading package instructions... Custom commands... Executing custom_php_install_command()...done. Executing custom_php_resync_config_command()...done. Custom commands... Executing custom_php_install_command()...done. Executing custom_php_resync_config_command()...done. Menu items... done. Integrated Tab items... done. Services... done. Writing configuration... done. Package reinstalled. … and the next time I refreshed the web interface, it now shows "Proxy Server" under services!!!  Hooray!  :D The system log seems to confirm this too: Apr 27 22:45:24 php: /pkg_mgr_install.php: Beginning package installation for squid. Apr 27 22:47:43 check_reload_status: Syncing firewall Apr 27 22:47:43 php: /pkg_mgr_install.php: Stopping any running proxy monitors Apr 27 22:47:45 php: /pkg_mgr_install.php: Starting Squid Apr 27 22:47:45 php: /pkg_mgr_install.php: Starting a proxy monitor script Apr 27 22:47:45 squid[54449]: Bungled (null) line 182: http_reply_access allow all Apr 27 22:47:45 check_reload_status: Reloading filter Apr 27 22:47:47 php: /pkg_mgr_install.php: Starting Squid Apr 27 22:47:47 squid[57532]: Squid Parent: child process 57856 started Apr 27 22:47:48 php: /pkg_mgr_install.php: Reloading Squid for configuration sync I'm still not sure where this leaves things in terms of the problem.  I even tried 2.0.3 in a VirtualBox VM and got the same problem - I just couldn't install Squid on the nanobsd version of pfSense.    It seems to be related to the size of /var…  is this something that is "fixable", or should the potential problem (or the resulting failure) be detectable by the package installer?  Should I file a bug report for it? Thanks again to everyone for the help!  8)
  • F

    Fatal error: Call to undefined function: get_interface_ip() in /usr/local/pkg/sn

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    bmeeksB
    @feikel: ls, Pleas advise! Installed snort and want it to get working on LAN port, as inside the LAn there are some infected pc;s (at a camping/resortt with 75 villas) Getting error when trying to add LAN interface to be snorted and save: Fatal error: Call to undefined function: get_interface_ip() in /usr/local/pkg/snort/snort.inc on line 178 Get it from page : https://93.154.3.105/snort/snort_interfaces_edit.php?id=0 Versions pfsense 1.2.3 snort 2.8.6.1 pkg v. 1.35 gr feike You have two issues working against you.  First, your pfSense version is out of date.  The current release is 2.0.3.  Second, your Snort version is way behind and probably won't have any rules to download.  The current Snort binary version is 2.9.4.1 (you have 2.8.6.1) and the Snort Package version is 2.5.7 (and you have 1.35) Here is what I suggest: 1.  First, make sure Snort is configured to save settings on de-install (this is a checkbox near the bottom of the Global Settings tab). 2.  Go to the Installed Packages tab and delete the Snort package. 3.  Now go to the System menu and do the firmware update to pfSense version 2.0.3. 4.  When that finishes, and you are sure the firewall is running OK, then go to the Available Packages tab and reinstall Snort. These steps should get you an up-to-date system with a functional Snort package.  Here is a post I made a while back showing how to do a basic setup of Snort.  These instructions assume you have the latest Snort package. http://forum.pfsense.org/index.php/topic,61018.msg328717.html#msg328717 Bill
  • M

    OpenVPN Client Export typo

    Locked
    3
    0 Votes
    3 Posts
    1k Views
    M
    Yup thanks for all your hard work jimp and your friendly, polite answers to questions on here :D you are much appreciated!
  • bmeeksB

    Snort Package Update 2.5.7 – Change Log

    Locked
    12
    0 Votes
    12 Posts
    4k Views
    C
    Thanks bmeeks  ;D
  • Q

    Pfblocker not adding firewall rules

    Locked
    8
    0 Votes
    8 Posts
    3k Views
    marcellocM
    @QRBSAdmin: Also now I'm getting all these logs in the firewall, is this normal? pf: 00:00:00.034222 rule 1/0(match): block in on vr0: (tos 0x0, ttl 52, id 2411, offset 0, flags [none], proto UDP (17), length 58) Yes if you select log option on pfblocker
  • E

    Avahi broken on Alix hardware?

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    E
    OK that would make sense because it's running fine on systems with more memory and disk space..  It used to work on the Alix a while back but it seems that it doesn't any more.  The only other package that I have loaded in blinkled.
  • bmeeksB

    Snort Dashboard Widget ver 0.3.4 – Change Log

    Locked
    7
    0 Votes
    7 Posts
    3k Views
    D
    Also a great update. Worked without problems for me (pfSense 2.0.3 i386)  ;D Only had to add the widget again.
  • G

    Snort 2.9.4.1 pkg v. 2.5.6 Issue(s)

    Locked
    62
    0 Votes
    62 Posts
    21k Views
    K
    I haven't experienced this either.. Bill update went fine and everything restarted and is running like it should. :-D Moving over to the new thread now to follow.
  • M

    Access denied from Squid - Help

    Locked
    3
    0 Votes
    3 Posts
    1k Views
    M
    @marcelloc: Are you sure this denied site is not also included on squid blacklist? OMG yes it is included in the squid blacklist and not in dansguardian blacklist! Ok need to figure out how to configure dansguardian than :S. Thanks
  • M

    Squid3 in transparent mode

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    M
    Have you tried a different browser or client pc?  This seems like a software issue on the client side to me.
  • C

    Update package (OpenVPN client export)

    Locked
    8
    0 Votes
    8 Posts
    2k Views
    S
    what parameters!? It's just export tool! If you're talking about the openVPN configurations, it'll be there! To be on the safer side, why don't you take openVPN backup from the dropdown under Diagnostics->Backup/Restore!
  • T

    Load balancing with squid

    Locked
    3
    0 Votes
    3 Posts
    1k Views
    S
    Can u post some screenshots! Btw what interface did you chose on the proxy interface on your squid settings!?
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.