pfSense Packages

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Subcategories

Cache/Proxy

Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

3.7k
Topics

20.5k
Posts

M

@JonathanLee I put my mod in custom mode and re-wrote the certificate. I'll try it a bit and I'll let you know again depending on the situation.

2024/11/17 12:44:10| Processing Configuration File: /usr/local/etc/squid/squid.conf (depth 0)
2024/11/17 12:44:10| Processing: http_port 192.168.2.1:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=10MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
2024/11/17 12:44:10| WARNING: UPGRADE: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in http_port. Use 'tls-cafile=' instead.
2024/11/17 12:44:10| WARNING: Failed to decode EC parameters '/etc/dh-parameters.2048'
OpenSSL-saved error #1: 0x1e08010c
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_DH_USE
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_ECDH_USE
2024/11/17 12:44:10| Processing: http_port 127.0.0.1:3128 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=10MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
2024/11/17 12:44:10| Starting Authentication on port 127.0.0.1:3128
2024/11/17 12:44:10| Disabling Authentication on port 127.0.0.1:3128 (interception enabled)
2024/11/17 12:44:10| WARNING: UPGRADE: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in http_port. Use 'tls-cafile=' instead.
2024/11/17 12:44:10| WARNING: Failed to decode EC parameters '/etc/dh-parameters.2048'
OpenSSL-saved error #1: 0x1e08010c
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_DH_USE
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_ECDH_USE
2024/11/17 12:44:10| Processing: https_port 127.0.0.1:3129 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=10MB cert=/usr/local/etc/squid/serverkey.pem cafile=/usr/local/share/certs/ca-root-nss.crt capath=/usr/local/share/certs/ cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS tls-dh=prime256v1:/etc/dh-parameters.2048 options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
2024/11/17 12:44:10| Starting Authentication on port 127.0.0.1:3129
2024/11/17 12:44:10| Disabling Authentication on port 127.0.0.1:3129 (interception enabled)
2024/11/17 12:44:10| WARNING: UPGRADE: 'cafile=/usr/local/share/certs/ca-root-nss.crt' is deprecated in https_port. Use 'tls-cafile=' instead.
2024/11/17 12:44:10| WARNING: Failed to decode EC parameters '/etc/dh-parameters.2048'
OpenSSL-saved error #1: 0x1e08010c
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_DH_USE
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_ECDH_USE
2024/11/17 12:44:10| Processing: icp_port 0
2024/11/17 12:44:10| Processing: digest_generation off
2024/11/17 12:44:10| Processing: dns_v4_first on
2024/11/17 12:44:10| ERROR: Directive 'dns_v4_first' is obsolete.
2024/11/17 12:44:10| dns_v4_first : Remove this line. Squid no longer supports preferential treatment of DNS A records.
2024/11/17 12:44:10| Processing: pid_filename /var/run/squid/squid.pid
2024/11/17 12:44:10| Processing: cache_effective_user squid
2024/11/17 12:44:10| Processing: cache_effective_group proxy
2024/11/17 12:44:10| Processing: error_default_language en
2024/11/17 12:44:10| Processing: icon_directory /usr/local/etc/squid/icons
2024/11/17 12:44:10| Processing: visible_hostname localhost
2024/11/17 12:44:10| Processing: cache_mgr admin@localhost
2024/11/17 12:44:10| Processing: access_log /var/squid/logs/access.log
2024/11/17 12:44:10| Processing: cache_log /var/squid/logs/cache.log
2024/11/17 12:44:10| Processing: cache_store_log none
2024/11/17 12:44:10| Processing: netdb_filename /var/squid/logs/netdb.state
2024/11/17 12:44:10| Processing: pinger_enable on
2024/11/17 12:44:10| Processing: pinger_program /usr/local/libexec/squid/pinger
2024/11/17 12:44:10| Processing: sslcrtd_program /usr/local/libexec/squid/security_file_certgen -s /var/squid/lib/ssl_db -M 4MB -b 2048
2024/11/17 12:44:10| Processing: tls_outgoing_options cafile=/usr/local/share/certs/ca-root-nss.crt
2024/11/17 12:44:10| Processing: tls_outgoing_options capath=/usr/local/share/certs/
2024/11/17 12:44:10| Processing: tls_outgoing_options options=NO_SSLv3,NO_TLSv1,SINGLE_DH_USE,SINGLE_ECDH_USE
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_DH_USE
2024/11/17 12:44:10| ERROR: Unsupported TLS option SINGLE_ECDH_USE
2024/11/17 12:44:10| Processing: tls_outgoing_options cipher=EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:!RC4:!aNULL:!eNULL:!LOW:!3DES:!SHA1:!MD5:!EXP:!PSK:!SRP:!DSS
2024/11/17 12:44:10| Processing: sslcrtd_children 5
2024/11/17 12:44:10| Processing: logfile_rotate 5
2024/11/17 12:44:10| Processing: debug_options rotate=5
2024/11/17 12:44:10| Processing: shutdown_lifetime 3 seconds
2024/11/17 12:44:10| Processing: acl localnet src 192.168.2.0/24
2024/11/17 12:44:10| Processing: forwarded_for on
2024/11/17 12:44:10| Processing: uri_whitespace strip
2024/11/17 12:44:10| Processing: refresh_pattern -i windowsupdate.com/..(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
2024/11/17 12:44:10| Processing: refresh_pattern -i microsoft.com/..(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
2024/11/17 12:44:10| Processing: refresh_pattern -i windows.com/..(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
2024/11/17 12:44:10| Processing: refresh_pattern -i microsoft.com.akadns.net/..(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
2024/11/17 12:44:10| Processing: refresh_pattern -i deploy.akamaitechnologies.com/.*.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
2024/11/17 12:44:10| Processing: cache_mem 512 MB
2024/11/17 12:44:10| Processing: maximum_object_size_in_memory 1024 KB
2024/11/17 12:44:10| Processing: memory_replacement_policy heap GDSF
2024/11/17 12:44:10| Processing: cache_replacement_policy heap LFUDA
2024/11/17 12:44:10| Processing: minimum_object_size 0 KB
2024/11/17 12:44:10| Processing: maximum_object_size 4 MB
2024/11/17 12:44:10| Processing: cache_dir ufs /var/squid/cache 100 16 256
2024/11/17 12:44:10| Processing: offline_mode off
2024/11/17 12:44:10| Processing: cache_swap_low 90
2024/11/17 12:44:10| Processing: cache_swap_high 95
2024/11/17 12:44:10| Processing: cache allow all
2024/11/17 12:44:10| Processing: refresh_pattern ^ftp: 1440 20% 10080
2024/11/17 12:44:10| Processing: refresh_pattern ^gopher: 1440 0% 1440
2024/11/17 12:44:10| Processing: refresh_pattern -i (/cgi-bin/|?) 0 0% 0
2024/11/17 12:44:10| Processing: refresh_pattern . 0 20% 4320
2024/11/17 12:44:10| Processing: acl allsrc src all
2024/11/17 12:44:10| Processing: acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 3128 3129 1025-65535
2024/11/17 12:44:10| Processing: acl sslports port 443 563
2024/11/17 12:44:10| Processing: acl purge method PURGE
2024/11/17 12:44:10| Processing: acl connect method CONNECT
2024/11/17 12:44:10| Processing: acl HTTP proto HTTP
2024/11/17 12:44:10| Processing: acl HTTPS proto HTTPS
2024/11/17 12:44:10| Processing: acl step1 at_step SslBump1
2024/11/17 12:44:10| Processing: acl step2 at_step SslBump2
2024/11/17 12:44:10| Processing: acl step3 at_step SslBump3
2024/11/17 12:44:10| Processing: acl allowed_subnets src 192.168.2.1/24 192.168.2.0/24
2024/11/17 12:44:10| WARNING: aclIpParseIpData: Netmask masks away part of the specified IP in '192.168.2.1/24'
2024/11/17 12:44:10| WARNING: (B) '192.168.2.0/24' is a subnetwork of (A) '192.168.2.0/24'
2024/11/17 12:44:10| WARNING: because of this '192.168.2.0/24' is ignored to keep splay tree searching predictable
2024/11/17 12:44:10| WARNING: You should probably remove '192.168.2.0/24' from the ACL named 'allowed_subnets'
2024/11/17 12:44:10| Processing: acl whitelist dstdom_regex -i "/var/squid/acl/whitelist.acl"
2024/11/17 12:44:10| Processing: http_access allow manager localhost
2024/11/17 12:44:10| Processing: http_access deny manager
2024/11/17 12:44:10| Processing: http_access allow purge localhost
2024/11/17 12:44:10| Processing: http_access deny purge
2024/11/17 12:44:10| Processing: http_access deny !safeports
2024/11/17 12:44:10| Processing: http_access deny CONNECT !sslports
2024/11/17 12:44:10| Processing: http_access allow localhost
2024/11/17 12:44:10| Processing: request_body_max_size 0 KB
2024/11/17 12:44:10| Processing: delay_pools 1
2024/11/17 12:44:10| Processing: delay_class 1 2
2024/11/17 12:44:10| Processing: delay_parameters 1 -1/-1 -1/-1
2024/11/17 12:44:10| Processing: delay_initial_bucket_level 100
2024/11/17 12:44:10| Processing: delay_access 1 allow allsrc
2024/11/17 12:44:10| Processing: url_rewrite_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf
2024/11/17 12:44:10| Processing: url_rewrite_bypass off
2024/11/17 12:44:10| Processing: url_rewrite_children 16 startup=8 idle=4 concurrency=0
2024/11/17 12:44:10| Processing: http_access allow whitelist
2024/11/17 12:44:10| Processing: acl youtubedst dstdomain -n www.youtube.com m.youtube.com youtubei.googleapis.com youtube.googleapis.com www.youtube-nocookie.com
2024/11/17 12:44:10| Processing: request_header_access YouTube-Restrict deny all
2024/11/17 12:44:10| Processing: request_header_add YouTube-Restrict none youtubedst
2024/11/17 12:44:10| Processing: acl splice_it ssl::server_name .microsoft.com
2024/11/17 12:44:10| Processing: acl splice_it ssl::server_name .windowsupdate.com
2024/11/17 12:44:10| Processing: acl splice_it ssl::server_name .akamaitechnologies.com
2024/11/17 12:44:10| Processing: acl splice_it ssl::server_name .akadns.net
2024/11/17 12:44:10| Processing: acl splice_it ssl::server_name .cloudns.net
2024/11/17 12:44:10| Processing: ssl_bump peek step1
2024/11/17 12:44:10| Processing: acl hasRequest has request
2024/11/17 12:44:10| Processing: access_log daemon:/var/log/squid/access.log hasRequest
2024/11/17 12:44:10| Processing: http_access allow allowed_subnets
2024/11/17 12:44:10| Processing: http_access allow localnet
2024/11/17 12:44:10| Processing: http_access deny allsrc
2024/11/17 12:44:10| WARNING: use of 'reload-into-ims' in 'refresh_pattern' violates HTTP
2024/11/17 12:44:10| Requiring client certificates.
2024/11/17 12:44:10| Loaded signing certificate: /CN=internal-ca/C=TR
2024/11/17 12:44:10| Not requiring any client certificates
2024/11/17 12:44:10| Loaded signing certificate: /CN=internal-ca/C=TR
2024/11/17 12:44:10| Not requiring any client certificates
2024/11/17 12:44:10| Loaded signing certificate: /CN=internal-ca/C=TR
2024/11/17 12:44:10| Not requiring any client certificates
IDS/IPS

Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

2.2k
Topics

15.5k
Posts

J

Sorry I am late to this party. I had issues with STUN and the IPS blocking traffic. It was for my son’s Nintendo switch and Xbox for the chat feature. Once I suppressed the alarms the chat live voice feature worked perfectly. I also think that FaceTime requires you to suppress the STUN alarms. Long story short STUN is finally working on my system as of today.
Traffic Monitoring

Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

553
Topics

2.7k
Posts

W

Hi,

I would like to monitor how much of my traffic is going over IPv6 vs. IPv4.
I can't find and such numbers anywhere.
Am I looking in the wrong place?
Any hints on how I may do that?

Thanks in advance

/Ulrich
pfBlockerNG

Discussions about the pfBlockerNG package

2.5k
Topics

19.0k
Posts

D

How can I limit some of my WAN inbound rules to the US only? I have a range of public IP addresses configured into the Firewall for different inbound services.

I also have multiple VLANs / Subnets it seems like PfBlockerNG is operating at the global system-wide level.

I am trying to be as granular as possible for example:

Client VLAN A services can only be inbounded by CA IP / Outbound to selected countries
Client VLAN B services can only be inbounded by US IP / Outbound to selected countries

Thank you,
UPS Tools

Discussions about Network UPS Tools and APCUPSD packages for pfSense

86
Topics

2.3k
Posts

D

@netboy Glad you got it sorted.
ACME

Discussions about the ACME / Let’s Encrypt package for pfSense

474
Topics

2.7k
Posts

T

For (nearly) the second time now the ACME package has filled up the disk on my pfSense. A recap of some history:
On August 8, the ACME package updated the certificate On October 7, I came home in the afternoon to find the internet not working. Eventually determined the disk was full and deleted some zfs filesystems associated with old versions. This got things working but the webgui was totally borked. On October 11, I finally did a factory reset, and restored a configuration backup from August 8, after the certificate update
Things were working fine until a couple of days ago when I started getting HSTS errors when trying to connect. My browser showed I was being served the August 8 certificate, which expired on November 6. The certificate seemed legit (as in, one that was issued to my pfSense) but for whatever reason a newer cert (that was present in the GUI) wasn't being used. I couldn't find any evidence of this August 8th cert in the GUI or configs, but that's not actually the point of the story.

While trying to figure this out, I noticed that /cf was using a large amount of space. This was one of the things that eventually led to the previous install crashing:
ce5f6f00-8e84-4c7e-a832-560c8c29ee07-image.png

Poking around I found a config file every second in the backup directory:
4715cf3b-c4cb-4739-b212-23875c10069b-image.png

Looking at the timestamps on these config files you can see about when it started:
610c4531-0070-42ac-835b-9191f897a80b-image.png

The first config in that 1731701* bunch had this change, me forcing a certificate issuance in the hope that would fix something:
6cf88b4e-f8e1-4406-824f-2df44f8d9106-image.png

After that, there is an "identical" config every second looking like:
40b5bb0c-a638-4b95-b404-689c4e351e9d-image.png

time is /pfsense/revision/time, and lastrenewal is /pfsense/installedpackages/acme/certificates/item/lastrenewal. The comment on every one of thos configs is the same as above, "(system): Services: Acme: Storing signed certificate". I assume ACME is somehow in a loop where modifying the config is causing it to update the config.

I ended up uninstalling ACME which stopped the problem, but once I re-installed ACME and forced another Issue/Renew, it started again. System Logs shows this loop:
2380115f-0204-4f3f-9f2f-480f5b3ee984-image.png

This is with pfSense-pkg-acme-0.8_1 on a Netgate 1100 running 24.03-RELEASE
FRR

Discussions about the FRR Dynamic Routing package on pfSense

278
Topics

1.1k
Posts

B

@frijolierthnthou Were you able to solve this issue? I've been dealing with this same exact problem from the past 2 weeks
Tailscale

Discussions about the Tailscale package

74
Topics

417
Posts

D

Screenshot_20241113_175104.jpg Good day everyone,
Im getting this notification on my pfsense, can someone tell me what is it?
WireGuard

Discussions about WireGuard

624
Topics

3.3k
Posts

W

Same here. Does not seem to do any harm but it just feels not right, having so much errors on an interface and not knowing why...

J

Zabbix Agent 7

• • jwilli5646

2

0
Votes

2
Posts

110
Views

J

Does anyone have an idea of how quickly this might be updated? There is a thread here but no idea of how long it might be https://redmine.pfsense.org/issues/15548
L

pfBlockerNG Count and Packets Query - Seems like little being captured

• • LPD7

24

0
Votes

24
Posts

505
Views

L

@Uglybrian Appreciate that feedback. Why would cpu usage be at 23% if at idle thats where I am getting confused. Cpu usage has for the most part been half this number or lower and system activity is not showing it working on anything to justify the 23%. I may be looking at this wrong but to my mind cpu usage would be a representation of how much the cpu is being put to work on a task/function. I am assuming idle is the correct state given the command column contents and everything else in the system activity is or was at 0.00%.
P

freeradius3 seemed to use old certificate expiration date

• • pfpv

6

0
Votes

6
Posts

143
Views

J

@pfpv from what I remember the android was the biggest pain.. And someone at the time there was a thread going about on it couldn't get his android to add the ca at all.. But our versions were different.

With ios, I do recall having to do something with the password on the cert or pk12 because it didn't like just blank so used openssl to add a password.. I think you can do it now in the gui.

Windows I had to manually change the mode of the connection to enterprise I believe.

Oh and think there was something about having to set legacy in the openssl cmd to get accepted as well.. But what I can tell you for sure is once their added it doesn't ask you to retrust them on every connection, etc.

Haven't played with it long time, sorry.. But my iphone is using it - and its gone through multiple upgrades to the IOS and still working, etc.
V

Freeradius3: No more automatic service restart upon config change?

• • vLANity

6

0
Votes

6
Posts

206
Views

P

@Gertjan said in Freeradius3: No more automatic service restart upon config change?:

But : where do you see them ? The command line ?

I see these messages in the system log in the pfSense GUI.

@Gertjan said in Freeradius3: No more automatic service restart upon config change?:

are normal messages.
When settings are changed in the pfSense GUI for Freeradius, the process gets restarted.

I also thought they were normal and expected but the title of this thread is "no more automatic service restart upon config change". Somehow this is not happening to the OP.
S

Telegraf stopped working after update to 2.7

• • spaceboy

13

0
Votes

13
Posts

1.5k
Views

P

@pavlos said in Telegraf stopped working after update to 2.7:

The question remains, why different built dates? 2.7.2 stable should have a frozen repo. All of us who d/l pfsense CE 2.7.2 should have the same built date.

Very interesting. I stumbled upon this post looking for something else. Well, my build date is different from your two:
2.7.2-RELEASE (amd64)
built on Wed Dec 6 15:10:00 EST 2023
FreeBSD 14.0-CURRENT

I wonder what's up with that.
T

Ram disk breaks ntopng

• • triks

1

0
Votes

1
Posts

61
Views

No one has replied
T

[RESOLVED] Request for help HAPROXY redirection to subdirectory.

• • Tueurdragon

4

0
Votes

4
Posts

4.3k
Views

S

@Tueurdragon Thanks!
T

Telegraf service keeps stopping

• • Target-Bravo

3

0
Votes

3
Posts

124
Views

O

@Target-Bravo No solution from my side, just saying that I am affected, too!
Using Telegraf to collect data to an InfluxDB to visualize in Grafana...
Oddly it crashes only on 1 of the 3 pFsenses we have...
G

Speedtest CLI. Run speedtest on pfSense box

• • getrav

167

0
Votes

167
Posts

121.0k
Views

A

with some minor changes this worked for me on version 24.03-release
pkg search speedtest py311-speedtest-cli-2.1.3 Command line interface for testing internet bandwidth
use this command to install
pkg update ; pkg install -y py311-speedtest-cli && curl -o /usr/local/www/widgets/widgets/speedtest.widget.php https://raw.githubusercontent.com/aln-1/pfsense-speedtest-widget/master/speedtest.widget.php
G

Disable Tailscale status page

• • gusIT

2

0
Votes

2
Posts

101
Views

E

@gusIT

Uninstall Tailscale package 🤣

Seriously, why do you think you need to?
D

Please add autossh

• • doctorxray

1

0
Votes

1
Posts

57
Views

No one has replied
M

HAproxy and Plex, help to understand

• • mcury

4

0
Votes

4
Posts

3.5k
Views

M

@waffull
I've been trying tot HAproxy to work how I want as well but I think I am missing a step.

I can get it to work so long as I include the port number with the address. Which is what I was trying to avoid. I think the problem is that if youre using a port other than 80 or 443 it doesn't forward to those ports (e.g. 5055). The problem I seem to have is that I have a linux box with a handful of apps that all run on different ports. I could set one of them to 443 or another to 80 and I think HAproxy would work how I want, but that would really limit how many apps that box would be able to run. Unless I am missing some step.. With my understanding if plex is on its default 32400 then you couldn't go to plex.myhouse.com without adding the port to the end.. If I am wrong I would be happy to know where I am wrong and what I can do to fix it.
W

sshguard update question

• • wgstarks

10

0
Votes

10
Posts

260
Views

G

@Gertjan

@wgstarks : you double clicked posted ?
W

How to use the filer package?

• • wgstarks

3

0
Votes

3
Posts

86
Views

W

@mvikman
Thanks. Looks like it has the ability to create a file but no way to add a file or edit/delete a file. There is also a sync tab but the documentation appears to be missing for that. It just links to the pfsense docs so no idea what that does or how to use filer to modify the auto config backup xml.
N

freeRadius and CRL (certification revocation list) not working - bug with spaces and underscores

• • newbie1975

1

0
Votes

1
Posts

103
Views

No one has replied
W

sshguard update question

• • wgstarks

1

0
Votes

1
Posts

59
Views

No one has replied
L

FreeRadius multiple clients problem

• • Laszlo82

2

0
Votes

2
Posts

70
Views

L

Got it, shared secret contained a closing bracket and the client config file misunderstood that.
L

Upgrade pfSense using a repository proxy (Nexus OSS) problem

• • luckybuilding

1

0
Votes

1
Posts

52
Views

No one has replied
A

FreeRADIUS handing out IPs even when MAC auth fails

• • aaronssh

6

0
Votes

6
Posts

136
Views

A

@keyser Thank you, I was wondering if that is was the case! I will follow up with the switch vendor.
R

Cloudflare DDNS update request no longer valid

• • Ritmo2k

3

0
Votes

3
Posts

110
Views

R

@Gertjan My bad, I am sorry.

I did search but I didn't notice the default is to search by titles only.

Thanks for the nudge.

2 / 461