1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    JonathanLeeJ
    Squid can be configured externally, I would love a how to guide on how to do this correctly.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    D
    I turned off pFBlocker and hit RUN on Update. You what? Like BBCan177 said: unchecked pBlocker, hit save. Force update (so click on Update and click the RUN button on the screen).

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    GPz1100G
    @agitelzon I have no issue connecting to LE servers from pf shell. The issue is cloudflare security setting is configured as a whitelist for api zone record changes. The whitelist includes my ipv4 address only, as a /32. As I mentioned, I could add the ipv6 prefix as a /64. Given that pf is configured to prefer ipv4, I thought that would carry over to acme as well.

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    657 Posts
    C
    @lbm_ I have the same problem: pfSense v25.07.1 on FreeBSD 15-Current, Netgate 6100. Could you let me know if you found a solution? I haven't. I have been updating Tailscales from Freshports while keeping the Tailscale Package installed. I have recently read that this can cause problems with routes, interfaces, firewall rules, and others. I am leaning towards deleting the Tailscale package.

  • Discussions about WireGuard

    716 Topics
    4k Posts
    chpalmerC
    @tinfoilmatt Thanks! I have done that and it worked when forcing just her TV out the Centurylink.. My problem is my local box here. Im missing something because I can not get it to pass traffic from the WAN to the Wireguard tunnel. Ive got some time today so will chip away on my lab setup to see if I can finally accomplish it here first.
Log in to post
Load new posts
  • J

    Help Ntopng

    1
    0 Votes
    1 Posts
    489 Views
    No one has replied
  • P

    Squid Proxy Report on LightSquid

    1
    0 Votes
    1 Posts
    989 Views
    No one has replied
  • E

    LCDProc Matrix Orbital and USB Port assignments - Under ESXI 6.5

    7
    0 Votes
    7 Posts
    2k Views
    E
    That made no difference which suggests it's not an ESXi issue. Is there a driver needed for this to work? :'( Edit: Got a bit further. After a reinstall of pfSense and restore of settings from backup, I can now get the LCDProc service started on CUA0! However the display is stuck with the Matrix Orbital banner. Checking the Log shows the below issues; Jul 3 22:55:17 LCDd LCDd version 0.5.7 starting Jul 3 22:55:17 LCDd Using Configuration File: /usr/local/etc/LCDd.conf Jul 3 22:55:17 LCDd Listening for queries on 127.0.0.1:13666 Jul 3 22:55:17 LCDd MtxOrb: unable to read device type Jul 3 22:55:17 LCDd MtxOrb: unable to read device firmware revision Jul 3 22:55:17 LCDd MtxOrb: unable to read device serial number Jul 3 22:55:17 php lcdproc: Start client procedure. Error counter: (0) Any ideas? Cheers Jon
  • P

    Snort rulesets

    1
    0 Votes
    1 Posts
    508 Views
    No one has replied
  • S

    Speedtest.net fails when routing traffic through squid proxy

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • G

    2.3.3-RELEASE-p1, "Unable to check for updates"

    11
    0 Votes
    11 Posts
    5k Views
    K
    I have the same issue. pkg update Updating pfSense-core repository catalogue... pkg: Repository pfSense-core has a wrong packagesite, need to re-create database Fetching meta.txz: 100%    944 B  0.9kB/s    00:01    Child process pid=80643 terminated abnormally: Segmentation fault Web GUI says "Unable to check for updates".
  • jimpJ

    New Package: Service Watchdog

    35
    0 Votes
    35 Posts
    28k Views
    N
    Hi friends. I just want to ask if its possible some way to add the redis server to the watchdog list.  Because i have installed the ntopng package and redis server keep stop it alone.  In the watchdog i config ntopng but when redis its down the ntopng doesn start. Thanks –---------- EDIT:  At the momenti did it with a script and crontab  checking the redis pid,  also the directory /var/run/redis/redis.pid  doesnt exists so maybe that was making errors.
  • A

    Named (bind) service is started when disabled

    3
    0 Votes
    3 Posts
    2k Views
    C
    I believe this is still happening. I installed but eventually disabled BIND and re-enabled the builtin DNS Resolver service. After a reboot, I see both unbound and named running and it appears that BIND and not DNS Resolver is answering DNS queries. Enabling and disabling the "Enable BIND DNS server." checkbox (and applying settings in-between) results in named being killed and DNS queries once again being answered as expected by the DNS Resolver. This is a nearly fresh installation of pfSense 2.3.4-RELEASE and BIND 9.11_7, so I doubt there's anything unusual about my installation aside from having installed BIND, enabled it (and disabled DNS Resolver), disabled it again (and then reenabled DNS Resolver) and finally rebooted in this configuration. It appears that BIND simply launches unconditionally at boot regardless of whether it's actually enabled.
  • H

    Per-user TLS certificates with FreeRADIUS

    1
    0 Votes
    1 Posts
    509 Views
    No one has replied
  • R

    Upgraded to 2.3.4 I386 full install, no packages to install at all…

    1
    0 Votes
    1 Posts
    550 Views
    No one has replied
  • fabricioguzzyF

    LCDPROC Service doesn't start when using certain drivers. Need Help!

    5
    0 Votes
    5 Posts
    2k Views
    fabricioguzzyF
    Hello FMERTZ Thanks much for the tips. I just used the command line:  LCDd -f -r 5 -s 0    and it showed me the problem…. It seems the FREEBSD is not recognizing my USB display at the plugged port. Anyway, now I finally know what is going on here. It seems I have something wrong with my USB ports. Checking now... By the way, I have started it (for tests) using a regular COM port and the service finally started. Up and running. Thanks Much! Appreciate it! Fabricio Guzzy
  • G

    Getting error while installing squid package

    2
    0 Votes
    2 Posts
    700 Views
    jimpJ
    Looks like your filesystem is corrupted, at least the password/user database files. Backup the config, reinstall with a current version, then restore and try again. If you're running from SD card, replace the SD card while you're at it. Those don't last forever. If it's an mSATA then you probably just need to reinstall.
  • ?

    WebVPN package (clientless VPN) via Apache Guacamole

    4
    0 Votes
    4 Posts
    3k Views
    H
    Another vote for this.  2FA and a true clientless portal like Sophos UTM/XG is all I'm missing with pfSense. Any ETA?
  • C

    Igmpproxy - stream stops after 4 mins

    5
    0 Votes
    5 Posts
    2k Views
    C
    Hi, The way I managed to get it working reliably was to turn off the IGMP snooping on my managed switch, then the timing out issue went away, but to prevent the multicast flooding my network I put the Youview box onto a separate VLAN and it all worked a treat. Since then I've got the Netgate SG-1000 but had to enable the switch's snooping again to work on that for to work?????
  • R

    LCDproc with Matrix Orbital LCD

    11
    0 Votes
    11 Posts
    4k Views
    fabricioguzzyF
    Hello Everyone, I just got an LCD 16x2 Display (MATRIX compatible)… (It´s working fine on Windows using MATRIX Drive with LCD Smartie) The problem is that the LCDPROC service doesn't start when using MATRIX driver option. (see image) - Also doesn't start with some of the available options.  Am I missing something? Any tip to resolve the problem? Thanks Much Fabricio. [image: Config.JPG] [image: Config.JPG_thumb] [image: Service.JPG] [image: Service.JPG_thumb]
  • S

    Snort - Interfaces Shut Down

    3
    0 Votes
    3 Posts
    1k Views
    S
    Snort is for IDS/IPS. Yeah I've checked all those threads and none offer working solutions. When I say the "snort interfaces will shut down", I don't mean the actual true LAN/WAN interfaces on pfSense. In Snort, you set up which interfaces you want to monitor with Snort, and those are your "snort interfaces". I agree that after the auto update runs, it would want to recycle the "snort interfaces". It shuts them down alright. They don't come back up without manual intervention.
  • J

    Find / Probe APCUPSD device type

    3
    0 Votes
    3 Posts
    789 Views
    J
    Thanks.  The device parameter you provided was the only thing I was missing.  APC status is now populated and appears to have the correct information.  What I find odd, is that even after rebooting my system last night /dev/cuau0 still does not show in dmesg.  I tried probing the hardware a few other way also and still could never find reference to the APC unit being connected. Jeff
  • W

    Tinc - firewall rules not working for tun0

    2
    0 Votes
    2 Posts
    958 Views
    D
    Hello, I can confirm that behavior, I would regard it as a bug. What I dont get is, why only inbound is affected. Your post saved my …  Thanks! rgds, derjohn
  • M

    LCDProc 0.5.4-dev

    587
    0 Votes
    587 Posts
    817k Views
    fabricioguzzyF
    Hello Stephenw10 Thanks much for the message. I will check it, although the service can't start, not with that config. Anyway, I am also trying to use parallel port configuration since it doesnt' need any interface in between. (I have another display hd44780 compatible with no USB interface) Will post the results here after all. Thanks Fabricio.
  • K

    Traffic totals issues with Squid?

    1
    0 Votes
    1 Posts
    472 Views
    No one has replied
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.