1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    M
    You have several choices depending on budget but none of them will be on your pfsense. Your options will be Replace pfsense with another vendor that can do content filtering Use another service while keeping pfsense in line .

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    RedDelPaPaR
    @bmeeks Understood. Thank for kindly for your help. I will likely be ordering a new unit soon.

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    N
    @Gertjan said in is something wrong with pfBlockerNG?: "is something wrong with my pfBlockerNG?". First off, thanks for the detail reply. After my post, I "changed" DNSBL -> DNSBL mode from "unbound python mode" to "unbound mode" and so far i have no issues. I understand what you are saying & hinting "maybe something is wrong with my settings" - my response is this: Everything was working before i upgraded the pfsense software to " 25.07.1-RELEASE (arm64)" -- Before the update my DNSBL Mode was set as "unbound python mode" and everything worked. Here is my "inference" - something broke in pfBlockerNG after the upgrade and I cannot 100% point to what that setting (my) is? I will observe for some days how this change in DNSBL mode works out and report the findings.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    dennypageD
    @fjmp24 said in Notification: UPS ups battery is low: If I remove ignorelb directive, my UPS shuts down after 16 seconds This means your UPS is signaling a low battery. Either your battery is bad, or your UPS is bad. Most likely battery, but you never know. I suggest reaching out to Eaton support.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    M
    I am using the DNS-Update method I have to use a DNS-Sleep of 5 minutes to let the letsencrypt txt dns record update propagate. During this 5 minutes the acme-webgui times out. when the acme-webgui times out the Action list is NOT executed. How can I solve this ? Would it maybe be an idea to let the acme.sh script execute the actions in the action list as a post-hook instead of the web-gui? Or maybe add an option to add post-hooks in the webUI ?

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    644 Posts
    C
    @elvisimprsntr Thank you. I would not be surprised if I ended up with a lengthy solution that works but needs significant improvement. I am using a Netgate 6100 with pfSense+, starting with version 24.x. I had updated Tailscale without trouble per this discussion by using pkg add -f https://pkg.freebsd.org/FreeBSD:15:amd64/latest/All/tailscale-x.y.z.pkg. This worked until pfSense+ version 25.0.07 (FreeBSD 15-CURRENT) and Tailscale upgrade 1.88.3. After several attempts and web searches, I was only able to install that upgrade by using: fetch https://pkg.freebsd.org/FreeBSD:15:amd64/latest/All/tailscale-1.88.3.pkg, and then IGNORE_OSVERSION=yes pkg-static add -f tailscale-1.88.3.pkg. Then, I could not restart Tailscale, no matter what I tried, including the sequence: service tailscaled stop, tailscale logout, service tailscaled start, and then tailscale up.

  • Discussions about WireGuard

    714 Topics
    4k Posts
    R
    I was on PfSense version 23.xx (don't recall the xx) and was able to start the Wireguard service. I upgraded to the 25.11 beta version and now the Wireguard service will not even start. I am on Wireguard version 2.1, and I see that there are versions that go up to 2.9. How do I upgrade to a later version? The only version in the pfSense updater is 2.1. Thank you
Log in to post
Load new posts
  • K

    Snort rules order

    12
    0 Votes
    12 Posts
    3k Views
    T
    Bill, Thanks v much for the detailed reply, which gives much more info. Can visualise the little boxes and data flow. With snort being an optional package, I guess the only way it can work is to use some sort of hooks in the packet filter for snort inputs and outputs. Thinking streams, but maybe wrong. My confusion was the snort block list report, which sort of suggested that block info was snort generated only. Pfsense is a really great piece of work and it would be good to contribute to the effort at some stage. In particular, getting pfsense running on old Sun hardware. There's a lot of it about, it's cheap, good and it's not X86, which gives added security. Have never worked with or programmed FreeBSD and almost nil experience of interpreted languages, but that could be fixed. Have plenty of old Sun hardware to contribute if anyone is interested in starting a project and can provide support on hardware related issues.. I guess the first thing to do is to try a FreeBSD install. Debian runs fine and installed just about out of the box on a V240 class machine, but no idea how good or stable is the support for FreeBSD on Sparc… Chris
  • D

    Emerging Threats Pro with Snort on pfsense?

    17
    0 Votes
    17 Posts
    5k Views
    bmeeksB
    @t3rmin: Great! Many thanks @bmeeks and @ermal! Yep.  Approved and merged.  The pfSense guys have been really busy the last few weeks, and that's the reason it took a bit longer to approve the Pull Request.  I will be posting a new thread in the Packages sub-forum with the release notes. UPDATE:  the release notes are in this thread – http://forum.pfsense.org/index.php/topic,68884.0.html Bill
  • M

    Pfblocker whitelisted address still being blocked?

    4
    0 Votes
    4 Posts
    1k Views
    marcellocM
    IIRC, it extract ip from lines without coments. You can try to check applied list on diagnostic-> tables.
  • keyserK

    Squid 3.3.8-Dev Situation report

    2
    0 Votes
    2 Posts
    960 Views
    marcellocM
    Current status is: antivirus is still not finished gssapi libs from freebsd are still need to run squid(you can get it from any 8.3 freebsd or from my repo) There is something with squid compilation on freebsd with IPV6 that does not listen on configured port if pfsense is not configured with ipv6 option enabled I have not tested this package with squidguard yet but they may work together. ssl filtering is working fine If you want, you can donate/contribute with it to speed up the -dev drop from this package.
  • bmeeksB

    Snort 2.9.4.6 pkg v2.6.0 Update

    61
    0 Votes
    61 Posts
    19k Views
    bmeeksB
    @turker: I got this error,  what does it mean? Thanks. pfsense 2.1 x64 [image: CE2OIvk.png] That would indicate that at the instant the Snort binary's output plugin attempted to call the API function to insert an IP address into the snort2c table in the packet filter engine, the engine process was not there or not where the output plugin expected it to be.  The event immediately preceding the error also gives me a clue.  It says the check_reload_status() function in pfSense is reloading the firewall filter.  That may temporarily stop and restart the processes the Snort binary plugin was trying to contact in order to insert the IP address for blocking. Bill
  • A

    Havp blocking (?)

    6
    0 Votes
    6 Posts
    3k Views
    A
    @Ramosel: So do you have both squid and HAVP setup as transparent proxies?  If so, you should set HAVP as a "parent for squid" That said, this is not how HAVP blocking will alert you. If HAVP is working you should get a blue and orange graphic screen showing that HAVP has blocked a file. You can test this safely with these downloads at EIECAR http://www.eicar.org/85-0-Download.html Correct, that is how squid and HAVP are setup - HAVP as "parent for squid" and I do/did get the blue and orange graphic screen stating HAVP blocking. Thx.
  • J

    How big is the Avahi package and dependencies?

    2
    0 Votes
    2 Posts
    1k Views
    jimpJ
    The size of the USB stick doesn't matter as much as the size of the CF image that was loaded upon it. For example, if you load a 1GB CF image on an 8GB stick, it would still only have a 512MB OS slice to work with. You might be better off going to 2.1 if you need Avahi. The PBI install mechanism is much simpler/safer than what 2.0.x used.
  • P

    Vnstat2

    4
    0 Votes
    4 Posts
    1k Views
    E
    I have to agree. I LOVE vnstat2, and if it wasn't for the hardware I was using, I wouldn't have went to 2.1 because of vnstat2 not working with it. I greatly miss it, and would really like to have it back as a supported package (without all of the manual hacks).
  • K

    Date/time sync

    1
    0 Votes
    1 Posts
    785 Views
    No one has replied
  • P

    [RESOLVED] Snort - Time stamp wrong after change from DST to Standard Time

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • H

    PfBlocker I-Blocklist crashes pfSense

    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • A

    Dansguardian freshclam issue

    60
    0 Votes
    60 Posts
    27k Views
    W
    I had this same issue and found a solution. I first got freshclam to run by creating /var/log/clamav and /var/db/clamav directories and using chown -R clamav clamav to change the ownership. I noticed that /usr/local/etc/rc.d/clamav-clamd was empty.  I copied the contents from /usr/pbi/dansguardian-amd64/etc/rc.d/clamav-clamd into it.  I then created a new file /usr/local/etc/rc.d/clamav-freshclam and copied the contents of /usr/pbi/dansguardian-amd64/etc/rc.d/clamav-freshclam into it. After a reboot the clamav service started and I was able to use DG to filter web traffic with clamav enabled.
  • F

    Any packages that offer Torrent/nzb support ?

    1
    0 Votes
    1 Posts
    958 Views
    No one has replied
  • S

    Squid proxy not working after boot/WAN reconnect

    3
    0 Votes
    3 Posts
    1k Views
    S
    2.7.9 pkg v.4.3.3 Is this a known problem? I was a bit hesitant to try other versions as I've tweaked the web interface somewhat as shown HERE. Thanks, Steve
  • chrismacmahonC

    Squid…Log Filled with nothing but TCP_200MISS

    19
    0 Votes
    19 Posts
    24k Views
    perikoP
    Remember that dynamic pages(fb, twitter, yt) won't punch the cache, if u can setup calamaris, squid-cache manager and compare with lightsquid reports. 3GB won't say nothing, squid won't warranty that will use those 3GB at the moment. If u want to see the cache at full speed, give little memory to squid 128MB, restart, full day running and watch your reports, I cannot nothing about how lightsquid works, I don't used.
  • C

    Squid3 Caching for xbox marketplace

    23
    0 Votes
    23 Posts
    6k Views
    C
    @periko: If u see the web page slow, try enable "resolv dns v4" check box, some times this cause issues. Is enable? This solved my issues, thank you very much!
  • D

    Email Warnings

    2
    0 Votes
    2 Posts
    1k Views
    S
    @dale1957: Hi, I'm fairly new to PFSense.  We have several routes & gateways setup on our PFSense boxes.  I'm looking for a package that will send me an Email notification when one of the routes/gateways starts loosing packets or goes offline completely.  As I said I'm still learning but I have not been able to find anything built into the program to do this. Thank in advance for your help. Dale Dale, If you go to System -> Advance -> Notifications. You can setup your notifications there. pfsense will start emailing you when it starts encountering loss on the gateways. This is a built in feature of pfsense.
  • ghostshellG

    SNORT Not Adding IP's To Block List

    3
    0 Votes
    3 Posts
    1k Views
    ghostshellG
    Well now i have tons of IPs listed under blocked so something i did worked
  • S

    ET Community Rules False Positives? (Snort)

    3
    0 Votes
    3 Posts
    1k Views
    S
    Thanks for the tips!  I will set mine up like that and it should make it easier for me to track down issues.
  • N

    Snort service wont start

    15
    0 Votes
    15 Posts
    6k Views
    bmeeksB
    @LawrenceIII: hey Bill, that was it!  you were correct about the 0.0.0.0, and also the wrong DNS IP (that was a typo)  :-[ i remember putting in that 0.0.0.0 one day, and forgot all about  it. Thank you so much for straightening me out, that was driving me crazy for weeks. Lawrence [/quote] You're welcome.  Glad you are up and running. Bill
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.