1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    JonathanLeeJ
    Squid can be configured externally, I would love a how to guide on how to do this correctly.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    BBcan177B
    @Draco try to goto the General Tab, first ensure that the Keep Settings option is checked. Then unchecked Enable pfBlockerNG so that its disabled. Hit save. Force Update. Then reenable pfBlockerNG and Force update.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    GPz1100G
    @agitelzon I have no issue connecting to LE servers from pf shell. The issue is cloudflare security setting is configured as a whitelist for api zone record changes. The whitelist includes my ipv4 address only, as a /32. As I mentioned, I could add the ipv6 prefix as a /64. Given that pf is configured to prefer ipv4, I thought that would carry over to acme as well.

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    657 Posts
    C
    @lbm_ I have the same problem: pfSense v25.07.1 on FreeBSD 15-Current, Netgate 6100. Could you let me know if you found a solution? I haven't. I have been updating Tailscales from Freshports while keeping the Tailscale Package installed. I have recently read that this can cause problems with routes, interfaces, firewall rules, and others. I am leaning towards deleting the Tailscale package.

  • Discussions about WireGuard

    716 Topics
    4k Posts
    chpalmerC
    @tinfoilmatt Thanks! I have done that and it worked when forcing just her TV out the Centurylink.. My problem is my local box here. Im missing something because I can not get it to pass traffic from the WAN to the Wireguard tunnel. Ive got some time today so will chip away on my lab setup to see if I can finally accomplish it here first.
Log in to post
Load new posts
  • ?

    Snort

    Locked
    15
    0 Votes
    15 Posts
    6k Views
    J
    @g4m3c4ck: Have you even seen if the file or directory truely exists? If the directory exits but not the file have you tried " touch /usr/local/etc/snort/snort_9698_fxp0/snort.conf" in the shell? g4m3c4ck has a good idea. I have a few hours this morning to work on this issue. I'm going to add code to create missing files when a save is executed. James
  • M

    How can block sites over name?. travian, heroes, amazon etc

    Locked
    4
    0 Votes
    4 Posts
    3k Views
    GruensFroeschliG
    In this case i suggest you get paid support here: https://portal.pfsense.org/ (Hint: I was serious when i meant you should start reading the forum. Talk about blocking pages via names is like in the top 10 of the last active threads http://forum.pfsense.org/index.php/topic,24976.0.html )
  • G

    Can I have two categories of sites: 1-accessible with pass, 2-completely blocked

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    jimpJ
    If you setup squid and squidGuard, and then enter the proxy settings on each workstation instead of relying on transparent proxying, you can do this. There are some docs on setting up squid+squidGuard here on the forum and on the doc wiki.
  • J

    Snort package may break today

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    S
    Has this been updated/fixed?
  • D

    Havp antivirus New

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    D
    @deutsche: minimal changelog please,  mark and thx for that Added main status page  ;)
  • I

    Caching problem for game update

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    Cry HavokC
    No need to make the same post in multiple forums.
  • E

    SquidGuard - I want to redirect only on dest blk_BL_porn

    Locked
    6
    0 Votes
    6 Posts
    4k Views
    D
       # --- Blacklist ---    # Note! Blacklist must be added to config permanently. It's need for rebuild DB now    $db_entries = sg_entries_blacklist();    if (($squidguard_config[F_BLACKLISTENABLED] === 'on') and $db_entries) {        $log_entr_added = '';        $log_entr_ignored = '';        sg_addlog("sg_create_config: add blacklist entries", 1);        foreach($db_entries as $key => $ent) {            $ent_state = array(); ..................CUT..............CUT..................CUT........................            # create config if blacklist item exists            if ($ent_state['exists']) {                $sg_tag->clear();                $sg_tag->set("dest", $ent, "", "");                if ($ent_state[F_DOMAINS])     $sg_tag->items[] = "domainlist $ent/domains";                if ($ent_state[F_EXPRESSIONS]) $sg_tag->items[] = "expressionlist $ent/expressions";                if ($ent_state[F_URLS])        $sg_tag->items[] = "urllist $ent/urls";                if ($ent == "blk_BL_porn")                    $ent_state->items[] = "redirect " . sg_redirector_base_url("YOU_URL_HERE", RMOD_EXT_MOVED);                $sg_tag->items[] = "log ". SQUIDGUARD_ACCESSBLOCK_FILE;
  • S

    Stunnel: errors when adding a certificate

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • D

    Internet speed drop (HTTP proxy)

    Locked
    10
    0 Votes
    10 Posts
    4k Views
    D
    Thanks for the reply.  No joy on that solution.  Here is a copy of the contents of my loader.conf after commenting everything out. #autoboot_delay="3" #vm.kmem_size="435544320" #vm.kmem_size_max="535544320" #kern.ipc.nmbclusters="0" Any other suggestions?
  • ?

    Snort fatal error

    Locked
    6
    0 Votes
    6 Posts
    3k Views
    ?
    I was doing nothing at all when snort dies .And snort will not start with pfsense after reboot .This started after the last snort update 1.26?
  • J

    Squidguard, 2 ACL with diffrent Times, not working ???

    Locked
    4
    0 Votes
    4 Posts
    3k Views
    D
    http://diskatel.narod.ru/sgquick.htm
  • A

    BANDWIDTHD Filter out local traffic?

    Locked
    7
    0 Votes
    7 Posts
    6k Views
    A
    Thanks Dropping the 1 seems to have worked . Excellent!!
  • S

    Best bandwidth monitoring package for me?

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    jimpJ
    BandwidthD is probably good enough for what you want, that will get you bandwidth by IP. As for open connections, that's already there under Diagnostics > States, and a better view by the "States Summary" package I wrote.
  • Cry HavokC

    MOVED: Problem with activation

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • J

    Freeradius - user online time

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • G

    Supress Tab Bug in Snort 1.25

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    G
    Easy fix by changing the to the following around line 143 in the file /usr/local/www/snort/snort_interfaces_suppress.php [![](/themes/<?= $g['theme']; ?>/images/icons/icon_x.gif "delete supress rules")](/snort/snort_interfaces_suppress.php?act=del&id=<?=$i;?>)
  • C

    How to install Net::Ping perl module?-Needed for a ISP connection monitor script

    Locked
    5
    0 Votes
    5 Posts
    7k Views
    jimpJ
    that could definitely cause some issues, but it looks like it's just enough to be annoying. Here is how to change the monitor IP, it's not in the GUI: http://doc.pfsense.org/index.php/Using_an_alternate_monitor_IP_for_quality_graphs
  • I

    Caching problem with game update

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    I
    Thx for your answer.. But some application updating patch using  ftp protocol.. Is it possible to configurre squid to read ftp protocol.. If its possible would you mind to share how to configure it.. Thx.man really appreciate it
  • J

    How to set port mirroring?

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    J
    @0tt0: @jilingshu: hi all, I wanna set a port mirroring to monitor all traffic in LAN interface. I have searched this forum and found someone said I can use "dup-to" to do this(http://forum.pfsense.org/index.php?action=printpage;topic=14334.0). But he said no details. So could u tell me some more information on this? thx! Kinda interesting, but I wouldn't burden the firewall with that, have the switch do the work if possible. http://en.wikipedia.org/wiki/Port_mirroring hi, The problem is that I have no switch with port mirroring function… My switch is so cheap(50RMB, about $7) to have any functions except connecting all computers together... I only need to sniff traffic between LAN and WAN so I think make a port mirroring my firewall is suitable. ;)
  • J

    How to monite URLs which users accessed?

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    0
    @jilingshu: yes, I really wanna to log everything which user visited. ;) A little problem: It looks like that a web proxy will make some website cannot be visited like www.alipay.com (This is the most famous online-paying website in China). Is there any way for me to prevent this problem happening? thx! BTW: I think the best solution for my problem is to make a port mirroring, but I dont know how to do this… :( Pretty straight forward once you got the switch that supports it. Check your switch's manual. You have to deal with the traffic being mirrored somehow too.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.