pfSense Packages

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Subcategories

Cache/Proxy

Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

3.7k
Topics

20.6k
Posts

J

In case you got the ld-elf parser problem, please check my post in

https://forum.netgate.com/post/1199906

and try if it works for you, too. Seems like an old c++ library won't get cleaned up after the system update to 24.03/24.11 so it get's pulled from the link parser as dependency instead of the real one in /lib. So moving the library away from /usr/lib should get squid to start again.

Cheers :)
IDS/IPS

Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

2.2k
Topics

15.6k
Posts

B

@killmasta93 said in Question about thresholds:

hi @bmeeks quick question so i added the following
threshold gen_id 1, sig_id 2009244, type both, track by_src, count 10, seconds 10, priority 1 threshold gen_id 1, sig_id 2009245, type both, track by_src, count 10, seconds 10, priority 1 threshold gen_id 1, sig_id 2009246, type both, track by_src, count 10, seconds 10, priority 1
would the variable
type both
work for both ends?

Thanks

Here is a link to the official Suricata docs describing the type: keyword: https://docs.suricata.io/en/latest/rules/thresholding.html#type-both. both specifies both a rate limit and threshold value.
Traffic Monitoring

Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

555
Topics

2.7k
Posts

S

PROTOCOL-DNS Microsoft SMTP excessive answer records buffer overflow attempt

Just Curious what this is and how to stop it in snort, I first thought someone was trying to get in but now I am not so sure as I changed my external IP and it happened straight away
on the new External IP. From what I can gather its something to do with a vunerability in dns but at a loss where to start, if its not an issue then fine but its happening a lot.
pfBlockerNG

Discussions about the pfBlockerNG package

2.5k
Topics

19.1k
Posts

S

Wanted to get some feedback from folks before I upgrade to 24.11.
Is the latest pfBlockerNG 3.2.0_16 functioning ok on 24.11?
I moved away from Devel to Stable 6 months ago or so but see that the version hasn’t changed with the release of 24.11.
Just want to be sure I can expect all to function ok before I upgrade.
@BBcan177 can we expect a stable release of 3.2.1_20 perhaps or am I good to go?
Thanks in advance.
UPS Tools

Discussions about Network UPS Tools and APCUPSD packages for pfSense

87
Topics

2.3k
Posts

D

@firefox Glad you got it working
ACME

Discussions about the ACME / Let’s Encrypt package for pfSense

478
Topics

2.7k
Posts

K

@tinfoilmatt it looks like I have finally gotten the certificate to pop up but now I am dealing with getting 503 Service Unavailable error. Do you know if this is an HAProxy issue or on the cloudflare side?

Screenshot 2024-12-05 at 12.51.02 PM.png
FRR

Discussions about the FRR Dynamic Routing package on pfSense

280
Topics

1.1k
Posts

S

How is it configured? Does it appear correctly in vtysh 'show run'?
Tailscale

Discussions about the Tailscale package

75
Topics

428
Posts

E

@rocket

1.78.1 now available for FreeBSD 15

Freshports
WireGuard

Discussions about WireGuard

635
Topics

3.3k
Posts

S

@Bob-Dig Indeed it is! I'm out this evening, but will do a full set of screenshots tomorrow.

J

ntopng not displaying properly on firefox

• • jsbsmd

3

0
Votes

3
Posts

649
Views

B

@jsbsmd

Seems to work fine on FF linux Mint

07784cef-4a8f-4098-a9f0-86003f39a945-image.png

9e22f710-27cb-44d7-a513-cda8552f1c58-image.png
N

openvpn client import can't import tls-crypt info

• • Nan0tEch

1

0
Votes

1
Posts

530
Views

No one has replied
B

OpenVPN/Freeradius issue

• • bluerains

1

0
Votes

1
Posts

520
Views

No one has replied
M

Suricata does not start the interface

• • mssca

6

0
Votes

6
Posts

1.1k
Views

B

@fox95 said in Suricata does not start the interface:

but what does work, is deleting the interface each time you want to make a change to the value because if you don't whatever new value you enter makes no difference. this was the original posters best advice.

You should not have to delete the interface. I suspect what is actually happening is the stale PID file is preventing Suricata from starting with the new stream memcap value.

Each time Suricata tries to start, the daemon creates a PID file in /var/run/ on pfSense. But due to the stream memcap error, the startup of the daemon is aborted and it fails to clean up after itself (leaving the now "stale" PID file). Simply go delete that file and it should start fine (once you get it happy with the stream memcap value).

Notice the original error the OP posted about:
24/11/2019 -- 12:08:14 - <Error> -- [ERRCODE: SC_ERR_INITIALIZATION(45)] - pid file '/var/run/suricata_bce11963.pid' exists but appears stale. Make sure Suricata is not running and then remove /var/run/suricata_bce11963.pid. Aborting!
It is complaining about the leftover PID file. Simply deleting that referenced file will let it start. The reason deleting the interface appears to work is that each time an interface is created, a new UUID is also created. So that 11963 number that is part of the file name will change when a new interface is created, and therefore the daemon will not detect an "existing" file matching the new UUID.
S

Unable to get available and installed packages through web UI (pfSense+ 22.05 AMD64)

• • sniff122

4

0
Votes

4
Posts

932
Views

S

and then its just suddenly worked, typical technology. Thanks for the info!
F

Package "System_Patches" - needed for Updates/Upgrade in virtual environment?

• • FGlaser

2

0
Votes

2
Posts

784
Views

P

Yes, system patches is for seldom issued bug fixes between releases. But it doesn't cost you anything to install, and will be there should you need it.
T

PHP Error openvpn-client-export sice update to pfSense 2.7

• • Techniker_ctr

3

0
Votes

3
Posts

862
Views

T

@bmeeks

Thanks, I opend a corresponding Ticket

https://redmine.pfsense.org/issues/13570
J

This topic is deleted!

• • jameshleo

1

0
Votes

1
Posts

4
Views

No one has replied
J

This topic is deleted!

• • jonemarsh12

1

0
Votes

1
Posts

11
Views

No one has replied
N

log alert

• • Norvik IT

10

0
Votes

10
Posts

1.0k
Views

G

@norvik-it

Ah, ok, nice example of taking care of a sick person with a shotgun.

I use pfBlockerng-devel with dnsbl myself. It's web server doesn't "stop" like that every minute.
The PID is here (according to the info found in the pfBlockerng-devel lighty webserver config file here /var/unbound/pfb_dnsbl_lighty.conf ) : /var/run/dnsbl.pid

The process number is in that file : does it really stops every minute ?

All the others : SquidGuard, ntopng iperf ClamAV ICAP are part of the 'do not belong on a firewall anyway (my opinion).

I've installed this 'Service Watchdog' package and added a task :

d9a1111e-b619-4028-9580-7a90f6642019-image.png

Unselecting the notification box will stop sending you mails.
The issue is now a bit solved.

Next step : check if the service is really stopped.
And if so, why / by who / what reasons ?!

Example :
[22.05-RELEASE][admin@pfSense.xxxxx.net]/root: cat /var/run/dnsbl.pid 4622 [22.05-RELEASE][admin@pfSense.xxxxx.net]/root: ps ax | grep '4622' 4622 - S 0:00.02 /usr/local/sbin/lighttpd_pfb -f /var/unbound/pfb_dnsbl_lighty.conf 35843 1 S+ 0:00.00 grep 4622
So the process running.

If all these process are really killed on your system every minute, I can advise you to do one thing :
Remove / disable all these packages.

Or, as stated above, find the reason why they are dying on your pfSense, or are getting killed.
Remove the issue for each of them.

Example : if free RAM gets low, the system will kill processes, this is known as the OOM (Out Of Memory) event. Restarting them in that case is a really bad idea.
L

Alias Match vs Native

• • lohphat

1

0
Votes

1
Posts

519
Views

No one has replied
P

openvpn-client-export - naming openvpn client config

• • PPCM

2

0
Votes

2
Posts

787
Views

V

@ppcm
The export bundle is an self-extracting 7-zip. You can simply open it with the 7-zip FM and rename the .ovpn file.
C

freeradius3 google authenticatior is not working

• • chandrasekhar

1

0
Votes

1
Posts

565
Views

No one has replied
D

UDP Broadcast Relay

• • djonk

15

2
Votes

15
Posts

5.6k
Views

M

@gzesku 1.0 is only for dev builds.
N

Auto Config Backup Error

• • n0vajay05

4

1
Votes

4
Posts

1.1k
Views

G

I too have just started seeing this error.
N

System_Patches Package & Recommended Patch

• • newUser2pfSense

9

0
Votes

9
Posts

1.6k
Views

N

@bingo600 My biggest apprehension was applying a patch to an already patched system and what that could mean or for that matter do to my system.
D

This topic is deleted!

• • dcuadrados

1

0
Votes

1
Posts

7
Views

No one has replied
G

two openvpn instances via tcp haproxy

• • gwabber

1

0
Votes

1
Posts

579
Views

No one has replied
C

Prevent packages uninstall & reinstall after restoring a config?

• • carlm

5

0
Votes

5
Posts

3.4k
Views

S

Still works. 6 years later. 😉

If you're running ZFS though you need different commands to remount /conf:

https://docs.netgate.com/pfsense/en/latest/troubleshooting/single-user-mode.html#single-user-mode-zfs

Steve
E

Application layer package recommendation?

• • enesas

1

0
Votes

1
Posts

557
Views

No one has replied

19 / 461

This topic is deleted!

This topic is deleted!

This topic is deleted!