1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    JonathanLeeJ
    Squid can be configured externally, I would love a how to guide on how to do this correctly.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    GertjanG
    @shady28 Click on the round "I" for more info. After reading, you'll know now that "unbound mode" is the old legacy mode, it's advised to use Python mode which : Is faster Is faster to reload Offers more options Etc.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    GPz1100G
    @agitelzon I have no issue connecting to LE servers from pf shell. The issue is cloudflare security setting is configured as a whitelist for api zone record changes. The whitelist includes my ipv4 address only, as a /32. As I mentioned, I could add the ipv6 prefix as a /64. Given that pf is configured to prefer ipv4, I thought that would carry over to acme as well.

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    657 Posts
    C
    @lbm_ I have the same problem: pfSense v25.07.1 on FreeBSD 15-Current, Netgate 6100. Could you let me know if you found a solution? I haven't. I have been updating Tailscales from Freshports while keeping the Tailscale Package installed. I have recently read that this can cause problems with routes, interfaces, firewall rules, and others. I am leaning towards deleting the Tailscale package.

  • Discussions about WireGuard

    716 Topics
    4k Posts
    chpalmerC
    @tinfoilmatt Thanks! I have done that and it worked when forcing just her TV out the Centurylink.. My problem is my local box here. Im missing something because I can not get it to pass traffic from the WAN to the Wireguard tunnel. Ive got some time today so will chip away on my lab setup to see if I can finally accomplish it here first.
Log in to post
Load new posts
  • D

    Spamd install/reinstall problem

    Locked
    22
    0 Votes
    22 Posts
    10k Views
    jimpJ
    It seems to be enabled on 2.0, though I don't know if it's currently working.
  • D

    FreeSWITCH… incoming / outgoing calls

    Locked
    3
    0 Votes
    3 Posts
    5k Views
    C
    Sorry for the late reply been working making FusionPBX easier to use. Also recently added Time conditions (time based routing), Queues, and interactive Queue list for active and recently active Queues. I setup two extensions and could not get them to connect to the LAN interface.  Eventually I tried the WAN interface and that worked.  I would assume that I want my internal phones to connect to the LAN and not the WAN interface.  Any thoughts on why this would be happening? By default the internal profile binds to the WAN IP. The internal profile handles SIP on 5060 TCP or UDP. You can change the internal sip profile sip-ip and rtp-ip and set it to the LAN interface IP address. Leave the external profile registering on the WAN interface. I setup two gateways (Flowroute.com and Vitelity) and those register fine, but I can not get a call to come thru.  I assume the PUBLIC section which has a rule for inbound (condition  destination_number  ^(phone#)$) etc is what I needed.  Is there suppose to be rules in the firewall for inbound calls?  My thought was since FreeSWITCH is listen on the WAN port, that wouldn't be necessary. Try setting the inbound destination_number to you 10 digit number without the ^ $. The ^ and $ represent the beginning and end value. If you leave those off and use 10 digits it will accept any call with correct 10 digit number. I have for a long time used ^ and $ but then it is required to know whether the provider is sending the 10 digits or 11 digits and this varies from provider to provider. With just putting the 10 digit number it will look for those 10 digits being contained in the destination_number then it will work for both 10 or 11 digits. Finally, can't do outbound calls either but my bigger concern is on incoming for now. Outbound can be setup the easiest by using the dialplan expression tool that can be found under Gateways. To learn how to install FusionPBX on pfSense see the following instructions. http://wiki.fusionpbx.com/index.php/PfSense_Install
  • E

    Havp issues

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    E
    yes. on a testing environment with vmware & openvmtools.. (Virtual IDE) working fine on 1.2.3. did you experienced the same?
  • J

    IGMP Proxy stops working on PPPoE reset every day on embedded

    Locked
    43
    0 Votes
    43 Posts
    23k Views
    J
    Hi jimp, that didn't work either…. Weird. So I'll stay with the fix in rc.newwanip ;)
  • ?

    Problem Squid ignores Whitelist and Unrestricted IPs

    Locked
    3
    0 Votes
    3 Posts
    5k Views
    ?
    @mhab12: Two things to try:  First, add suffixes to your whitelist.  It should look more like google.com, facebook.com, something.no, test.ru, etc.  Second, try adding your lan subnet to the allowed subnet box at the top, for you it looks like it would be 192.168.0.0/24.  If you're still not getting through, try toggling the 'allow users on interface' box.  Uncheck it, click save.  Check it again, hit save again.  Test. Thanks i will try this ASAP!
  • V

    LogMeIn problems with HAVP/Squid/SquidGaurd

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • C

    Rookie having problem with Snort

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    C
    Thanks very much for the feedback. Regards, Carl PS >> And many thanks to jamesdean!
  • L

    Logrotation issues between squid and lightsquid

    Locked
    3
    0 Votes
    3 Posts
    6k Views
    L
    maybe… the log rotation in ls is much nicer than the one provided in squid.  So... if this functionality were moved from ls to squid then I say yes... otherwise its fine the way it is... Currently the only restriction in having ls do the log rotation is that you are stuck with 10 copies of the log which is the squid default. Take care. --luis
  • C

    Squid and SquidGuard does not start after reboot

    Locked
    56
    0 Votes
    56 Posts
    64k Views
    L
    OK.  the discussion has now been moved to http://forum.pfsense.org/index.php/topic,26604.0.html Take care. –luis
  • A

    Snort problem

    Locked
    17
    0 Votes
    17 Posts
    8k Views
    ?
    When is the package going to be fixed ? I am using a another flavor of firewall and it has dns problems .
  • F

    Pfflowd (unsuported pfsync version 0, exiting)

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    P
    Found this post about pfflowd v .8: http://forum.pfsense.org/index.php/topic,24364.0.html So, perhaps someone is working on this already…  The original poster hasn't commented back, though...  Hoping that we can get that code in the community so we can all benefit from it.
  • J

    Winnut client and pfsense nut server

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • T

    Snort 2.8.5.3 pkg v. 1.23 issues

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    A
    I had 309 entries in my white-list, found some duplicate entries and changed some to networks instead of many in a row. It's down around 290 now and I can add more.  Maybe 300 is the limit?
  • A

    Unable to retrieve package after initial setup

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • S

    FreeSwitch Assistance on PFS 1.2.3Release, Post-Install

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • K

    Country Block Nightmare

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    D
    gasp!  don't block Canada!  We like the US, honest!
  • D

    Squid Custom error page (Where to put picture files?)

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • E

    Freeradius 802.1X-support

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    E
    http://blog.vannuil.com/2008/10/wpa2-enterprise.html
  • H

    I have pfflowd v0.8 - Now with Netflow v9 and properly indexed interfaces!

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    X
    any chance we could get those files? i'm looking to implement netflow v9 to get VoIP metrics from our routers. thank you
  • X

    Squid 2.7.9 cant edit

    Locked
    10
    0 Votes
    10 Posts
    4k Views
    X
    well, just tested and it doesnt seem to work with havp or i have a problem with the install, I am reverting back to ver 2 to check. Edit: Yep, ver 3 doesnt support HVAP yet
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.