1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    JonathanLeeJ
    Squid can be configured externally, I would love a how to guide on how to do this correctly.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    S
    @shady28 Are you maybe looking at IP block list feeds vs DNSBL feeds?

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    GPz1100G
    @agitelzon I have no issue connecting to LE servers from pf shell. The issue is cloudflare security setting is configured as a whitelist for api zone record changes. The whitelist includes my ipv4 address only, as a /32. As I mentioned, I could add the ipv6 prefix as a /64. Given that pf is configured to prefer ipv4, I thought that would carry over to acme as well.

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    657 Posts
    C
    @lbm_ I have the same problem: pfSense v25.07.1 on FreeBSD 15-Current, Netgate 6100. Could you let me know if you found a solution? I haven't. I have been updating Tailscales from Freshports while keeping the Tailscale Package installed. I have recently read that this can cause problems with routes, interfaces, firewall rules, and others. I am leaning towards deleting the Tailscale package.

  • Discussions about WireGuard

    716 Topics
    4k Posts
    chpalmerC
    @tinfoilmatt Thanks! I have done that and it worked when forcing just her TV out the Centurylink.. My problem is my local box here. Im missing something because I can not get it to pass traffic from the WAN to the Wireguard tunnel. Ive got some time today so will chip away on my lab setup to see if I can finally accomplish it here first.
Log in to post
Load new posts
  • L

    Squid 3 & reverse proxy?

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    marcellocM
    follow this thread http://forum.pfsense.org/index.php/topic,48347.0.html squid-reverse and squid3 is now merged. Try to use squid without transparent mode.
  • J

    HAProxy 1.4.20 for PFSense

    Locked
    2
    0 Votes
    2 Posts
    970 Views
    marcellocM
    @jwelter99: Anyone working on an update?  1.4.19 is available, but 1.4.20 adds some bug fixes and specifically fixes some FreeBSD related build issues. Haproxy pfsense package is on 1.4.20. What version of pfsense are you using?
  • T

    PFSense 1.3.2 + Squid + Lightsquid + Proxy question

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    T
    Thank you for the hint but there are no stupid questions as I have learned  ;) The new release of PFSense will come in 2 weeks with new hardware. Well I have read your post but I do not understand why these firewall rules should help. The rest is configured according to the manuals or posts in here but I do not understand why it stopped working
  • A

    How to block port 80 for some clients ?

    Locked
    7
    0 Votes
    7 Posts
    3k Views
    marcellocM
    @arushi: It works, but this users that i block on "Banned host addresses" can open the web pages with https (port 443) How can i close this port for this clients?? ;) Transparent proxy does not filter port 443. Create a firewall -> rule to block it.
  • G

    Sn0rt: what are 'good' rulesets to enable in the category tab? pls help.

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    G
    thank you very much kev. that is very good information. now to tweak everything.  :)
  • D

    Squid Guard, immediately disable local account on visiting blocked sites?

    Locked
    5
    0 Votes
    5 Posts
    1k Views
    D
    Oh I see.. Thanks!  :D I've been doing a bit of digging around in the pfSense source code and I think locking the account using exec("/usr/sbin/pw lock {$user_name} -q"); And setting the user's shell to "/sbin/nologin" should be sufficient. Does anyone know of an existing function / better way to do this? (guessing not as I stole my code from https://github.com/bsdperimeter/pfsense/blob/master/etc/inc/auth.inc#L457)
  • K

    Snort/Oinkmaster - Maintaining Disabled/Enabled Rules After Update?

    Locked
    7
    0 Votes
    7 Posts
    3k Views
    J
    I've started using the Snort package a couple of days ago and this bug is really annoying… But I think I might found a semi-working solution for it. In /usr/local/etc/snort/rules are the categories such as snort_* and emerging-*. When I disable/enable specific rules in these files they will at least stay permanent for interface restart and updates when no new rules files are downloaded. But I guess these changes will be overwritten when new rules are actually downloaded (not just checked and no new files where found). But yeah... Not perfect, but at least the rules won't reset every 12 hour anymore. For some reason I don't seem to have a oinkmaster.conf file on my system at all? 2.0.1-RELEASE (amd64) with Snort 2.9.1 pkg v. 2.1.1. What's the current status of this bug btw?
  • M

    Squid start and stop imedialtely

    Locked
    4
    0 Votes
    4 Posts
    3k Views
    M
    i solve it but i need now to flush cache content and removw all cache and i want to know if cach is working and chaching or not cause i have another prob. i remove pfsense and reinstalled it many times and install squid and light squid and in every time i found that lightsquid report is reporting that i use cache and specify the content that cached before the removing pfsense how does this work despite i was erase all hard disk content and reinstall pfsense from zero
  • B

    Freeradius2 removal breaks racoon (IPsec)

    Locked
    6
    0 Votes
    6 Posts
    2k Views
    C
    it doesn't happen with many packages anymore as we take some precautions to prevent it as much as possible, but it does happen on some, have to be careful when messing with packages. 2.1 uses PBI packages to eliminate such dependency hell.
  • B

    Click on the green arrow to start snort - nothing happens

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    B
    Uninstalled and reinstalled the Snort package, and now it works.  I can check under "Services" menu.  Service is running.
  • T

    Squid-reverse

    Locked
    77
    0 Votes
    77 Posts
    48k Views
    marcellocM
    Hi all, I've merged squid-rever and squid3 in only one package for pfsense 2.0 with reverse options in a brand new service-> reverse proxy menu. Check screen shots on it's thread http://forum.pfsense.org/index.php/topic,48347.0.html att, Marcello Coutinho
  • N

    Squid issues

    Locked
    6
    0 Votes
    6 Posts
    2k Views
    N
    no worries pod ;D Only thing i noticed still after restarting the server (Had to move the man cave about a bit) is what it was going to start HAVP, it still complains pw: unknown group havp, but when you go and look at the necessary file, the group is there Weird Should be done fairly shortly, I gotta head out shopping, so im gunna do some more work on this damn server after i get back
  • M

    Snort arp spoof processor pfsense 2.01

    Locked
    6
    0 Votes
    6 Posts
    4k Views
    M
    so any help plz
  • N

    Squid caching downloads

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    N
    Ok discovered how i can be able to cache some of the youtube stuff, but need to know the best way to add what it says to squid: http://wiki.squid-cache.org/ConfigExamples/DynamicContent/YouTube?highlight=%28ConfigExamples%2FIntercept%29%7C%28ConfigExamples%2FAuthenticate%29%7C%28ConfigExamples%2FChat%29%7C%28ConfigExamples%2FStreams%29%7C%28ConfigExamples%2FReverse%29%7C%28ConfigExamples%2FStrange%29%7C%28ConfigExamples%2FExtreme%29%7C%28ConfigExamples%2FPortal%29
  • C

    AFP/SMB FileServer ontop of pfSense

    Locked
    4
    0 Votes
    4 Posts
    3k Views
    stephenw10S
    Good call.  :) Steve
  • E

    The system returned: (61) Connection refused

    Locked
    4
    0 Votes
    4 Posts
    4k Views
    E
    Hi CMB and thanks for the reply. I mean, both Squid and Dolphin are creatures from the sea, so they should get well along…. ;D Why this doesn't happen with PHPBB3 which is running from exactly the same address (192.168.5.8  ), the parent folder is the same, they are in 2 different subfolder which i did even try to swap but the result was the same...the Squid is discriminating
  • C

    Snort Rule-Recategorization

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    K
    Snort on pfsense is currently 2.9.0.5 which is now end of life. You will still get emergingthreats rules but until someone updates the snort package to ideally 2.9.2.2 you won't receive any new VRT rules I am afraid.
  • M

    Snort filtering Tor exit node traffic, configuration help/advise

    Locked
    2
    0 Votes
    2 Posts
    5k Views
    K
    You can use the supress tab to filter the alerts and I would disable the ET-DROP, ET-TOR rules etc. You could use pfblocker and lists like emerging-blocklist and compromised etc .txt files in emergingthreats (firewall and block rules). You could set these to block outbound, inbound or both. Install pfblocker and enable these in the lists as .txt: http://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txt (this is dsield, russian business network, botnet CnCs) http://rules.emergingthreats.net/blockrules/compromised-ips.txt http://rules.emergingthreats.net/blockrules/rbn-malvertisers-ips.txt http://www.ciarmy.com/list/ci-badguys.txt
  • L

    Standalone squid server

    Locked
    12
    0 Votes
    12 Posts
    8k Views
    L
    @marcelloc: leave lightsquid/sarg on the second pfsense firewall with squid in transparent mode on lan + upstream configuration second pfsense with squid and report package Thanks. I'll have to look into this. I have never used or heard of sarg. As my pfSense main firewall is a VM, if i put the cache off onto anothe rbox like this, how much HDD space does pfSense actually need to work efficiently?
  • M

    Squidguard on 2.0 final

    Locked
    27
    0 Votes
    27 Posts
    19k Views
    R
    of course you need to make a cronjob with "/usr/local/sbin/squid -k reconfigure", got an pm to this, so, well you always need the full path in a cron job
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.