1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    tinfoilmattT
    @ha11oga11o What version of pfSense is this system running?

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    RedDelPaPaR
    @bmeeks Understood. Thank for kindly for your help. I will likely be ordering a new unit soon.

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    D
    @Gertjan Thanks a lot for your help. This really helped me: I'm not using "pfSense pfBlocker Web server logging" (DNSBL Webserver/VIP ) as the "you are blocked web page" only shows up when the end browser user visits http sites, something that doesn't exist anymore on the Internet. All sites are https these days, and https sites can be redirected to "another https web server" like the "pfSense pfBlocker Web server". With that hint I was able to resolve my issue by: Unchecking the Python Group Policy Enable checkbox for the DNSBL Webserver Configuration on the DNSBL tab in pfblockerng. Checking the Permit Firewall Rules Enable checkbox and selecting the appropriate interfaces for the DNSBL Configuration on the DNSBL tab in pfblockerng. Forced Update | All. It now appears that all the blocked domains are appearing on the Alerts tab in pfblockerng. I couldn't find that host name in the "/var/db/pfblockerng/dnsbl/Max_MS.txt" file - where does your "/var/db/pfblockerng/dnsbl/Crazy_Max_Extra.txt:" come from ? I get that DNSBL, and 2 others, from the original maintainer (https://github.com/crazy-max/WindowsSpyBlocker): https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/extra.txt https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/update.txt. I really appreciate your help!

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    dennypageD
    @fjmp24 said in Notification: UPS ups battery is low: If I remove ignorelb directive, my UPS shuts down after 16 seconds This means your UPS is signaling a low battery. Either your battery is bad, or your UPS is bad. Most likely battery, but you never know. I suggest reaching out to Eaton support.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    M
    I am using the DNS-Update method I have to use a DNS-Sleep of 5 minutes to let the letsencrypt txt dns record update propagate. During this 5 minutes the acme-webgui times out. when the acme-webgui times out the Action list is NOT executed. How can I solve this ? Would it maybe be an idea to let the acme.sh script execute the actions in the action list as a post-hook instead of the web-gui? Or maybe add an option to add post-hooks in the webUI ?

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    92 Topics
    639 Posts
    E
    Updated CE 2.8.1 to 1.90.4. Looks like they are already working on .6 Freshports pkg add -f https://pkg.freebsd.org/FreeBSD:15:amd64/latest/All/tailscale-1.90.4.pkg Changelog

  • Discussions about WireGuard

    713 Topics
    4k Posts
    M
    I have my wiregaurd up and running and can ping from firewall to devices on the vlan but cannot get clients to ping each other.
Log in to post
Load new posts
  • BBcan177B

    PfBlocker Lists

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • T

    SARG Schedule Starting Multiple force refreshs at scheduled time

    17
    0 Votes
    17 Posts
    7k Views
    B
    @thestealth: I assume I was looking for this line: root  28032  0.0  0.3  3348  1332  ??  Ss    6:39PM  0:00.01 /usr/sbin/cron -s No more weirdness in my log either. Thank a lot it is much appreciated. Yes as you can see their were 6 running before and you are welcome!
  • M

    Snort Barnyard2 MSSQL support

    8
    0 Votes
    8 Posts
    4k Views
    M
    Hmm… Let me look into it and I'll get back to you.
  • B

    Web proxy

    2
    0 Votes
    2 Posts
    935 Views
    R
    Not sure if this is the config you are looking for or not, but any machine on the network could run squid and serve as a proxy. It would only need one NIC to do so… Likewise, you wouldn't need pfSense at all - just squid running on a server that had access to the internet and was accessible from the other network.
  • A

    Squid + Sarg totals dont match actual figures (plus other reporting questions)

    1
    0 Votes
    1 Posts
    677 Views
    No one has replied
  • johnpozJ

    Vnstat2 on 2.1 broken now that rc0

    20
    0 Votes
    20 Posts
    6k Views
    B
    I have updated package. Waiting on one of the devs to upload the new php_frontend file.  :-[ https://forum.pfsense.org/index.php/topic,71553.0.html [quote author=marcusone link=topic=62708.msg390896#msg390896 date=1390242650] Sorry for waking an old thread… but the same issue is back :( Beginning package installation for vnstat2 . Downloading package configuration file… done. Saving updated package information... done. Downloading vnstat2 and its dependencies... Checking for package installation... Downloading http://files.pfsense.org/packages/8/All/vnstat-1.11_1-i386.pbi ...  (extracting) Loading package configuration... done. Configuring package components... Additional files… vnstat_php_frontend-1.5.1-updated.tar.gz failed. Backing up libraries… Removing package... Starting package deletion for vnstat-1.11_1-i386...done. Removing vnstat2 components... Tabs items... done. Menu items... done. Loading package instructions... Deinstall commands... done. Removing package instructions...done. Auxiliary files... done. Package XML... done. Configuration... done. Cleaning up... done. Failed to install package. Installation halted.
  • N

    Snort "disable http alerts"

    4
    0 Votes
    4 Posts
    1k Views
    bmeeksB
    @newbieuser1234: If i am having problem with http slowness and inspect blocks is it correct to disable the alerts to make it faster? newbieuser1234: The way to solve your issues is by adding these alerts to the Suppress List.  Go to the Alerts tab, and for each HTTP Inspect block you think is bogus, click the plus icon (+) in the SID column.  That will automatically add that alert to the Suppress List and it won't cause further blocks.  Do this for all the HTTP Inspect alerts you don't want to cause blocks, then stop and restart Snort on that interface when you're done. Alternatively, run Snort in non-blocking mode for several days or weeks to get a feel for the traffic in your environment.  Look at the Alert logs and add Suppress Entries for things you believe are false positives.  Once you have a good Suppress List with few or no false positives showing up in the Alerts, then put Snort back into blocking mode.  You do this on the Interface Edit tab for the interface in Snort. Bill
  • S

    Trigger a sync from the Pfsense-Config to the Squidquard-Config?

    1
    0 Votes
    1 Posts
    835 Views
    No one has replied
  • J

    Squid data export

    1
    0 Votes
    1 Posts
    918 Views
    No one has replied
  • Z

    Missing Quagga BGP package?

    6
    0 Votes
    6 Posts
    2k Views
    B
    The PBI allows for the package to sit in its own directory with its dependencies. Though the package probably needs to be rewritten to make sure that it is not moving things out of the pbi directory etc. As long as they are encapsulated I think that would work but I do not have a working understanding of either package right now.
  • bmeeksB

    Snort 2.9.5.5 pkg v3.0.2 Update Released – Bug fixes only

    9
    0 Votes
    9 Posts
    3k Views
    C
    I noticed I was also getting update errors at some times during the day. I changed the 'Update Start Time' parameter to a non-standard value and it fixed the problems.
  • N

    Snort http inspection

    7
    0 Votes
    7 Posts
    10k Views
    N
    Thanks Bill
  • W

    No graphs in bandwidthd

    12
    0 Votes
    12 Posts
    5k Views
    W
    OK, Good to know. I have a spare firewall with the exact same specs which is configured the same way. I will do a complete wipe and fresh install on that one and after that do the same to this one. Thanks, Roger
  • D

    VNstat2 и PF 2.1 calendar problem

    38
    0 Votes
    38 Posts
    7k Views
    B
    @DasTieRR: thank for your help, I really appreciate it :) Your welcome  ;)
  • R

    Dglog2 for dansguardian log analysis

    8
    0 Votes
    8 Posts
    3k Views
    R
    Really haven't messed with lightsquid much… sorry.
  • S

    Sarg and squidguard reports

    10
    0 Votes
    10 Posts
    4k Views
    S
    @periko: Have u try this with squid3+squidguard? I have and it works very well.
  • D

    Transparent Proxy: Squid allow Chrome to open gmail.com when it's blocked

    5
    0 Votes
    5 Posts
    3k Views
    D
    To those intressted, I managed to archive my goal by setting up an Firewall rule to REJECT the following Network range: 74.125.0.0/16
  • J

    Mailscanner clamav update

    1
    0 Votes
    1 Posts
    771 Views
    No one has replied
  • ?

    Use Squid for IPSec HTTP Traffic

    2
    0 Votes
    2 Posts
    2k Views
    ?
    I can't see the forest for the trees. Now I configured a Proxy in the VPN-Settings for the Client. Then I added a Rule on IPSec Interface that blocks all HTTP/HTTPS Traffic not going to the Proxy or the LAN Subnet. It seems to work fine now.
  • J

    Squid Lograte not happening

    2
    0 Votes
    2 Posts
    1k Views
    J
    I have the same issue. My squid access.log log file size is growing up.  It never rotate since the first day I start running squid. Looking for the solution too. Thanks.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.