1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    J
    @qupfer What did I bang my head over this strange 502 issue. Your solution did it! Thank you so much, even 2.5 years later!

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    M
    Hi, I had a problem with my home network today, so I checked pfsense and discovered that suricata had blocked the wan ip. After some tests and triggering some suricata alerts, the wan ip was blocked. I restarted pfsense and ran some more tests, but the problem no longer occurred. I then checked the wan interface settings and indeed the ip list does not include the wan ip, both now that it's working and before, when it was blocked. I'm using pfsense 2.8.0 and suricata 7.0.8_2. I use PPPoE to access the Internet.

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    571 Topics
    3k Posts
    dennypageD
    @Leon-Straathof Data retention settings are handled inside of ntopng. Documentation here. Pay attention to the RRD note. Also, if you've turned on some of the slice and dice time series information (is off by default), I'd suggest turning them back off. These balloon the storage requirements and are of little actual use.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    fireodoF
    @tinfoilmatt said in Failed or invalid Mime Type: [application/SIMH-tape-data|0]: (ASN data is IPinfo, not Maxmind) Thats correct but "GeoLite2-Country" is from Maxmind ... (that confused me) I'm considering simply adding "application/SIMH-tape-data" to the list to test. Thats what i tought too ... I'll try when I have the time for it ... Edit: I can confirm - adding "application/SIMH-tape-data" to the list at line 257 in /usr/local/pkg/pfblockerng/pfblockerng.inc did the trick - no more error! Edit: OK, problem resolved but I would like to know, whats the cause for that error! (SIMH-tape-data sounds like a "blast from the past" ...) Thanks a lot!

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    101 Topics
    2k Posts
    dennypageD
    @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: Interesting. I would have thought the initial reboot, which occurred as part of the upgrade, would have done the trick, but it took a second reboot, just now, to get things working. Glad you have it sorted. There was no difference in the output of usbconfig show_ifdrv at any point -- before or after unplugging/replugging the USB cable, nor after rebooting. ... Question: What would tell me whether or not a driver was loaded? If there were an attached driver, it should have shown up with the show_ifdrv command. If you use the command and look at the other usb devices, I think they will show attached drivers. I don't expect to see a driver attached to the ups, because there is a quirk that tells the OS to ignore that device (and not attach a driver). Look for idVendor and idProduct in the above output. The Vendor ID for your device is 0764, which corresponds to Cyber Power Systems, and the Product ID for your device is 0601, which is registered as "PR1500LCDRT2U UPS" (don't sweat an exact match for the name). You can see the quirk with the following command: [25.07-RC][root@fw]/root: usbconfig dump_device_quirks | grep 0764 VID=0x0764 PID=0x0005 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0501 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0601 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE [25.07-RC][root@fw]/root: Your device is third on the list. The HID_IGNORE quirk says to ignore the device and not attach a driver. @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: You might consider adding this resolution to the release notes for 2.8. LOL... sorry, I don't have input to the release notes (I don't work here). While I wrote and maintain various packages, including NUT, I'm still just a volunteer. Most packages are actually written by volunteers.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    496 Topics
    3k Posts
    M
    And when you are on version 25.07.1 or 25.07 and then click on the reinstall button for the ACME package. It will downgrade. :) [image: 1755753389733-125fc31e-ef4f-4342-b364-48c2b03446c5-image.png]

  • Discussions about the FRR Dynamic Routing package on pfSense

    294 Topics
    1k Posts
    yon 0Y
    said in Please update frr on Pfsense+ to FRR 10.3: https://redmine.pfsense.org/issues/15785 now frr 10.4.1

  • Discussions about the Tailscale package

    90 Topics
    599 Posts
    S
    Upgraded to 25.07 and facing the same issue. Tried the "tailscale up" command as suggested above but restarting the tailscale service kills the login again.[image: 1755715824513-tailscale_logged_out_25_07.jpg]

  • Discussions about WireGuard

    695 Topics
    4k Posts
    GertjanG
    @rosskan In theory, when you tunnel a 'VPN1' over another 'VPN2', VPN2 will see the originating IP as the one belonging to VPN1, not your real WAN IP. So far, ok. That said, when you subscribed to VPN1 and VPN2, you probably used your ISP IPv4 ^^ You installed the VPN1 (or2) application on your crappy laptop ?, if so, 'forget about it' ^^ 'as they know', the app is at an end point, and can see 'everything'. Don't forget that you pay for your VPN subscription, but you give them more then your money. They can see and use your data connection for 'data mining'. And they will make use of that data - by selling it. Why ? Because the share holders want a good financial result. If you need to connect two (your !) networks (or sites) together, use your own VPN solution. Don't use a commercial company. For example, take the ones you got with pfSense. If you really need to use that public network (aka : the Internet) to contact public servers, you are aware that the connection is already encrypted end-to-end ? That's what https is all about. 'http' doesn't really exist anymore / shouldn't be used. Also, you need to take other steps to be safe : you really should start with removing "windows 10" out of the equitation .... @rosskan said in What information can vpn provider see when I use wireguard?: does wireguard share the mac address of the ethernet port of the crappy laptop with vpn provider #2? MAC addresses travel on a local segment. Your laptop's MAC doesn't travel any further then the first hop, this is most probably your first router (gateway) like pfSense. Packet capture your traffic to check this. The Ethernet headers are not encrypted.
Log in to post
Load new posts
  • T

    Using Pfsense in aws with Freeradius and AD accounts for mfa/otp functionality

    1
    0 Votes
    1 Posts
    406 Views
    No one has replied
  • B

    HAProxy Maint Mode Page

    4
    0 Votes
    4 Posts
    1k Views
    P
    @brailyn Well.. ssl/https uses 'mode tcp'. And haproxy will not send the errorfile in that case. To make haproxy respond with a http error response, you would need it to 'offload' the ssl traffic with a certificate. Or if you can supply haproxy with the certificate you could still pass the main traffic as-is with the sni frontend and send it to a second 'local frontend' that does the decryption of the https request if a backend is down to serve the error reply.. Together with a nbsrv acl to switch to that second 'error frontend' if the webserver is down.
  • R

    Package database getting deleted

    8
    0 Votes
    8 Posts
    2k Views
    R
    My bad. I had a proxy URL configured. Removing it has solved my problem. Thanks for you help everyone. Ricky
  • S

    BIND forwarding is not working

    28
    0 Votes
    28 Posts
    13k Views
    B
    In case somebody is still having this issue: https://forum.netgate.com/topic/139262/query-forwarding-in-bind9-is-not-working
  • A

    NUT Package Eaton Ellipse Pro

    3
    0 Votes
    3 Posts
    576 Views
    A
    Hi Reboot was the solution. Thx Admins
  • W

    Install HA on PFSense Environment

    3
    0 Votes
    3 Posts
    2k Views
    W
    @jimp Thanks a lot for your answer!!! :-D
  • V

    Does NUT package display on the Dashboard

    4
    0 Votes
    4 Posts
    398 Views
    V
    Thanks for that
  • M

    another tftp server question

    1
    0 Votes
    1 Posts
    287 Views
    No one has replied
  • S

    DLNA across VLAN subnets with IGMP Proxy not working

    14
    0 Votes
    14 Posts
    8k Views
    QinnQ
    Update....I was far too quick in my judgement, after say 25 sec it worked . Pimd did it, with the above conf, but now I would like to know why, for instance what I don't understand is why don't I have to define an up- or downstream. Could you give me some insight how and why this works. Cheers Qinn
  • A

    how to Load many users on freeradius automatically?

    Moved
    7
    0 Votes
    7 Posts
    766 Views
    mike69M
    @aliadam Great.
  • ?

    FreeRADIUS3: Starting up too late for IPSEC?

    radius freeradius ipsec
    1
    0 Votes
    1 Posts
    587 Views
    No one has replied
  • R

    LCSproc on XTM5

    9
    0 Votes
    9 Posts
    1k Views
    chpalmerC
    @rosiakc Either port on board is bad or LCD is bad.
  • nzkiwi68N

    Get Auto Configuration Backup to skip backing up when pfblocker updates

    Locked
    8
    0 Votes
    8 Posts
    2k Views
    lawrencedolL
    @doktornotor : Why the antagonism? The fact is that the backups triggered by pfBlockerNg (an excellent package) are useless to the firewall Administrator. It would be nice if they could be eliminated, or reduced to once a day or only once-since-the-last-non-pfBlockerNg-triggered backup. I can't help but wonder at some of the (hopefully only apparent) arrogance of some of the posters on this forum. It's not constructive, and it's off-putting. We ge it,t OK? You (the snarky, elitist responders) are brilliant and we are just worthless plebeians. You could, and should, be courteous regardless of that (pseudo) fact.
  • B

    Spamed by Arpwatch Notification : Cron

    1
    0 Votes
    1 Posts
    277 Views
    No one has replied
  • M

    how to disable squid

    17
    0 Votes
    17 Posts
    3k Views
    vallumV
    @mcuddy said in how to disable squid: @vallum said in how to disable squid: Psec or Gre That would be my problem. I did not create a tunnel. All I did was change the dns addresses. Check their documentation for further details At the moment, I don't know how to add the tunnel, nor the implications of doing it (am I likely to take the internet down while setting it up? etc.) I'll look into it. Do you have any direction here? You can create IPsec tunnel in pfsense , I don't see any issue with that. at securly end you need to create tunnel parameters like preshared key and IP address of site, subnet details etc. Then same information in Pfsense while setting up tunnel.
  • I

    OpenNTPD vs. NTP

    6
    0 Votes
    6 Posts
    1k Views
    I
    With external you hopefully do not mean those in package manager too?
  • L

    SNORT

    20
    0 Votes
    20 Posts
    3k Views
    bmeeksB
    @modesty said in SNORT: @bmeeks Hi. I only run windows + pfsense so Graylog is not for me. Can it be that there is no opensource log analyzer for snort logs? For pretty much all of the open source stuff out there for log consolidation and analysis, you are going to need a Linux box to host the software. I suggest a VMware host and then one or more Linux virtual machines. If you are a Windows shop, then Hyper-V can be your host and you can run the Linux VMs on it. The new fad these days is JSON logging, so most of the tools that ingest log files are tending toward accepting that format natively. However, some can still take plain text logs. You just might have to fiddle around with regular expressions and other minutia to get it working.
  • D

    Question about snort + squid

    2
    0 Votes
    2 Posts
    476 Views
    bmeeksB
    @derklaus said in Question about snort + squid: Hello. I have a question regarding Snort + Squid package. Is it possible to add a Windows application to a whitelist with Snort? After that i want bypass a OpenVPN connection with the whitelist over squid. Would that be possible? You can only whitelist IP addresses in Snort, so if your Windows application runs on a specific server (as in on some host with a static IP), then the answer might be "yes". You can't whitelist by any kind of name, though.
  • adamwA

    manually installed package doesn't appear on lists

    8
    0 Votes
    8 Posts
    2k Views
    jimpJ
    Because you installed it "offline" and not from the pfSense repository, it won't display in the GUI list. https://www.netgate.com/docs/pfsense/releases/2-4-4-new-features-and-changes.html#errata
  • Z

    TINC Restarting every few seconds

    1
    0 Votes
    1 Posts
    438 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.