1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    JonathanLeeJ
    Squid can be configured externally, I would love a how to guide on how to do this correctly.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    tinfoilmattT
    @vicking said in No blocks on IP: Is it a bad idea to have the action set to deny both instead of inbound only? Question is squarely for admin. Per the infoblock which explains, in part, the "Deny Inbound", "Deny Outbound", and "Deny Both" actions: 'Deny' Rules: 'Deny' rules create high priority 'block' or 'reject' rules on the stated interfaces. They don't change the 'pass' rules on other interfaces. Typical uses of 'Deny' rules are: Deny Both - blocks all traffic in both directions, if the source or destination IP is in the block list Deny Inbound/Deny Outbound - blocks all traffic in one direction unless it is part of a session started by traffic sent in the other direction. Does not affect traffic in the other direction. One way 'Deny' rules can be used to selectively block unsolicited incoming (new session) packets in one direction, while still allowing deliberate outgoing sessions to be created in the other direction. In other words: When set to "Deny Inbound", incoming connection requests from WAN hosts are blocked and therefore no state will be created. However a LAN host can still establish state to an otherwise listed IP. If set to "Deny Outbound", outgoing connection requests from LAN hosts are blocked and therefore no state will be created. However an incoming connection request from an otherwise listed IP to an 'open' WAN port can still establish state. If set to "Deny Both", both incoming connection requests and outbound connections requests are blocked and therefore no state will be created regardless of connection direction.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    M
    I am using the DNS-Update method I have to use a DNS-Sleep of 5 minutes to let the letsencrypt txt dns record update propagate. During this 5 minutes the acme-webgui times out. when the acme-webgui times out the Action list is NOT executed. How can I solve this ? Would it maybe be an idea to let the acme.sh script execute the actions in the action list as a post-hook instead of the web-gui? Or maybe add an option to add post-hooks in the webUI ?

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    656 Posts
    C
    @elvisimprsntr Updated 25.07.1 to 1.90.6_1, copied and pasted from @elvisimprsntr's post: pkg add -f https://pkg.freebsd.org/FreeBSD:15:amd64/latest/All/tailscale-1.90.6_1.pkg (Why it worked this time and not on previous updates: Over the last couple of days, I ran into the "Shared object "libutil.so.10, not found..." error that triggered the version 25.07.1 update issues some of us have been having. After I fixed that error, I decided to go back to the usual update method, and it worked.)

  • Discussions about WireGuard

    716 Topics
    4k Posts
    chpalmerC
    @tinfoilmatt Thanks! I have done that and it worked when forcing just her TV out the Centurylink.. My problem is my local box here. Im missing something because I can not get it to pass traffic from the WAN to the Wireguard tunnel. Ive got some time today so will chip away on my lab setup to see if I can finally accomplish it here first.
Log in to post
Load new posts
  • E

    Squid install failed… packages-8.1-release/All/perl-5.12.4.tbz

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    marcellocM
    See what perl version are available on files.pfsense.org. Could be just a minor version Fix on squid install.
  • M

    Squid reverse Proxy

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    T
    this one here's working… perhaps you can have a look... INTWEB_SSL;192.168.10.20;443;HTTPS INTWEB;192.168.10.20;80;HTTP WEBAPP_SSL;faq;https://ext.host.net WEBAPP_SSL;gallery;https://ext.host.net WEBAPP_SSL;kplaylist;https://ext.host.net WEBAPP_SSL;filez;https://ext.host.net WEBAPP_SSL;piwik;https://ext.host.net WEBAPP;faq;http://ext.host.net WEBAPP;gallery;http://ext.host.net WEBAPP;kplaylist;http://ext.host.net WEBAPP;piwik;http://ext.host.net INTWEB_SSL;WEBAPP_SSL INTWEB;WEBAPP
  • A

    Snort Won't Start

    Locked
    11
    0 Votes
    11 Posts
    4k Views
    A
    Thanks for the suggestion of looking in the system log.  After attempting start of snort (failure) and reading the log I disable some rules, retry, disable more rules, retry, etc snort starts successfully.  Each rule that was causing an error I disabled and now it's working. Thanks. AWS
  • C

    Squid general question

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    marcellocM
    @crazyzoar: why people give ram space for caching? The answer is Performance. Also squid is not that fast and not that smart for dynamic sites. Ohter point is that cache age has not much sense after 15 days for example.
  • S

    Snort, NanoBSD & Compact Flash writes

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    S
    Might have been too quick uninstalling it, I didn't tune at all, might have enabled too many patterns as well. Not required for my environment anyway, so couldn't be bothered ;D
  • M

    IMSpector IP information

    Locked
    1
    0 Votes
    1 Posts
    881 Views
    No one has replied
  • T

    Proxy filter SquidGuard: Times dont work

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • C

    Snort: how to exclude a lan host from scans?

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    S
    After creating a whitelist, you have to add it in the Snort Interface Settings to a particular interface.
  • C

    Zabbix Proxy will not install in pfSense 2.0.1

    Locked
    11
    0 Votes
    11 Posts
    4k Views
    C
    Fantastic!! Installs ok and talking to my Zabbix server. Thank you very much four your help. Richard
  • T

    Snort: DynamicPlugin: Rule…rule will not be used.

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    T
    @SeventhSon: This is snort starting up and telling you what it loading and not loading. By default a lot of rules are disabled, so you will get a lot of these. Thanks, I kinda figured this after posting my question. But good to have conformation :)
  • N

    Want to configure Proxy server: Authentication

    Locked
    6
    0 Votes
    6 Posts
    10k Views
    N
    Sorry, I don't want to be unfriendly. Just want to make sure we are talking about the same config menu ;o) As I said above I didn't use that in the past but perhaps this thread will help you: http://forum.pfsense.org/index.php?topic=11153.0 http://forum.pfsense.org/index.php/topic,2004.0.html http://forum.pfsense.org/index.php/topic,41501.0.html
  • F

    Avahi fails to install due to dbus dependancy not being met

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    F
    That worked a treat! Thanks Marcello!
  • J

    Files.pfsense.org down?

    Locked
    29
    0 Votes
    29 Posts
    12k Views
    C
    Please start a new thread describing what you're attempting code11x2.
  • T

    Snort Won't Start After Upgrade

    Locked
    301
    0 Votes
    301 Posts
    257k Views
    C
    Locking this thread so it won't get hijacked over and over by numerous different issues, please start new threads instead.
  • M

    Squid reverse redirect

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    A
    @Modivion: Dear Members, I've installed squid and configured it. I just need one more thing to configure, which I dont know how to do. When users typ in http://remote.xxxx.com I want them to be redirected to https://remote.xxxx.com/OWA Any tips how to configure this? Many thanks! I did it outside of pfS via my DNS manager from my domain manager (like GoDaddy).  Basically it's subdomain forwarding, takes about 5 minutes if you can find your login creds to your domain manager web site.  I had a hard time trying to make it all within pfS. AWS
  • P

    PfSense 2.0.1-RELEASE with Squid & HAVP = major problems

    Locked
    27
    0 Votes
    27 Posts
    20k Views
    marcellocM
    @lpallard: The frustrating part is that pfsense with NO packages works PERFECTLY.  So I wont blame pfsense devs because I have used it for more than  a year now and it was flawless until I installed the snort/squid/squidguard/havp  >:( stuff.. Just like I said, packages are contributions, some are maintained by core team, but not all. Uncheck block ofenders from snort, so it will not block false positives and not deny your dns resolution.
  • M

    Snort with cisco port mirrorring

    Locked
    7
    0 Votes
    7 Posts
    7k Views
    M
    my pfsense box has 2 nics. 1 nic dedicated to management… 1 nic connected to the mirrored port on the cisco switch. I figured that by doing it that way i wouldn't get any "pollution" from management traffic on the IDS interface.
  • J

    Snort, pfBlocker, and/or pfSense minor issue

    Locked
    14
    0 Votes
    14 Posts
    7k Views
    marcellocM
    @darklogic: I am still having the same issue with when you click on the snort menu and then try to go to pfblocker, I will get the 404 page cannot be found error. It's fixed now with no version bump, just reinstall package.
  • P

    Packages don't install correctly:out of swap space

    Locked
    12
    0 Votes
    12 Posts
    4k Views
    P
    256MB is guess (isn't that old, maybe 2y).The Problem occured before installing any packages btw. Internet also fails (on LAN) after a while (while being up). last pid: 28374;  load averages:  0.69,  1.52,  0.89                                    up 0+00:08:14  18:47:35 112 processes: 2 running, 93 sleeping, 4 zombie, 13 waiting CPU:  0.4% user,  0.4% nice,  0.8% system,  0.4% interrupt, 98.1% idle Mem: 66M Active, 1820K Inact, 61M Wired, 764K Cache, 34M Buf, 104M Free Swap: PID USERNAME  PRI NICE  SIZE    RES STATE    TIME  WCPU COMMAND   10 root      171 ki31    0K    8K RUN      2:17 89.99% idle 21883 root        65  20 10748K  4860K kqread  0:01  1.95% bandwidthd     0 root      -16    0    0K    48K sched    0:39  0.00% {swapper}   11 root      -64    -    0K  104K WAIT    0:20  0.00% {irq14: ata0}     9 root      -16    -    0K    8K psleep  0:02  0.00% pagedaemon   11 root      -40    -    0K  104K WAIT    0:02  0.00% {swi2: cambio}     4 root        -8    -    0K    8K -        0:02  0.00% g_down   13 root      -16    -    0K    8K -        0:02  0.00% yarrow 46463 root        52    0 33116K    0K accept  0:01  0.00% <php>11 root      -68    -    0K  104K WAIT    0:01  0.00% {irq11: vr1} 39477 root        64  20 10748K  3852K bpf      0:01  0.00% bandwidthd 44678 root        76    0 34140K    0K accept  0:01  0.00% <php>11 root      -68    -    0K  104K WAIT    0:01  0.00% {irq10: vr0}   11 root      -32    -    0K  104K WAIT    0:01  0.00% {swi4: clock}     3 root        -8    -    0K    8K -        0:01  0.00% g_up 46390 root        76    0 34140K    0K accept  0:01  0.00% <php>15 root      -16    -    0K    8K psleep  0:01  0.00% vmdaemon 46945 root        60    0 34140K    0K accept  0:01  0.00% <php>14 root      -64    -    0K    72K -        0:01  0.00% {usbus1}   35 root        -8    -    0K    8K mdwait  0:01  0.00% md1 39810 root        64  20  8700K  3132K bpf      0:01  0.00% bandwidthd 8548 root        44    0  7992K  1948K select  0:00  0.00% sshd 40169 root        44    0  6588K  2964K kqread  0:00  0.00% lighttpd 16571 root        64  20  3656K  512K wait    0:00  0.00% sh 40955 root        76    0 32092K    0K wait    0:00  0.00% <php>41487 root        76    0 32092K    0K wait    0:00  0.00% <php>40749 root        70    0 32092K    0K wait    0:00  0.00% <php>41179 root        76    0 32092K    0K wait    0:00  0.00% <php>42026 root        44    0  3316K  996K select  0:00  0.00% apinger 11278 root        44    0  9488K  2644K select  0:00  0.00% {mpd5}</php></php></php></php></php></php></php></php>
  • S

    IMSpector for pfSense 2.0?

    Locked
    7
    0 Votes
    7 Posts
    3k Views
    marcellocM
    Did you applied the patch for imspector?
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.