1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    tinfoilmattT
    @johnpoz said in Please help to configure HAProxy to serve certifficate on internal LAN too: Yeah - what part do you not understand if you always resolve nextcloud.domain.tld so that it hits your haproxy on your pfsense wan IP are you not getting? You have 2 options - use a different domain internally and always go to nextcloud.publicdomain.tld, or use the same domain internally as external and run into the problem of what IP it resolves to.. Change your local domain to say home.arpa or .internal or atleast something different than the public domain your using to point to pfsense wan IP on the public internet. You are shooting yourself in the foot trying to use the same domain externally as internally. There are ways around it, but they complicate the setup. For example you might be able to use views in unbound as one way to work around the problem. You could use only host entries for all your resources. But then again you run into a problem of using the fqdn for this service, now always pointing to your wan IP.. And that is great when you want to access the service haproxy is doing - but if you want to access that resource on some other service that haproxy doesn't handle - like say simple file sharing.. You are going to have problems. Since you clearly do not understand how any of this works - the simple solution is change the local domain you are using so it is not the same as the public domain you want to use to get to your nextcloud. This tone is outrageous directed at somebody who acknowledged right off the rip that English is not their first language. How many languages do you speak, John? And safely assuming it's only one—English of course—take it from a fellow English native that you'd do well to say more with less words. You otherwise were directing OP in the right direction in my opinion.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    tinfoilmattT
    @netboy said in is something wrong with pfBlockerNG?: After my post, I "changed" DNSBL -> DNSBL mode from "unbound python mode" to "unbound mode" and so far i have no issues. Terrible idea. Moving backwards in development history there.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    dennypageD
    @fjmp24 said in Notification: UPS ups battery is low: If I remove ignorelb directive, my UPS shuts down after 16 seconds This means your UPS is signaling a low battery. Either your battery is bad, or your UPS is bad. Most likely battery, but you never know. I suggest reaching out to Eaton support.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    M
    I am using the DNS-Update method I have to use a DNS-Sleep of 5 minutes to let the letsencrypt txt dns record update propagate. During this 5 minutes the acme-webgui times out. when the acme-webgui times out the Action list is NOT executed. How can I solve this ? Would it maybe be an idea to let the acme.sh script execute the actions in the action list as a post-hook instead of the web-gui? Or maybe add an option to add post-hooks in the webUI ?

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    652 Posts
    M
    @elvisimprsntr Great in theory, not in practice. I'm the same, but there are unforseen events. Power outages, crashes, etc. And yes, I'm running a UPS.

  • Discussions about WireGuard

    715 Topics
    4k Posts
    S
    @LaUs3r Yeah, I added those IPs, but after restarting pfSense, the WireGuard status says “handshake failed.” Also, when I do nslookup us-bos.prod.surfshark.com, I get two different sets of IPs. For example: • The first time I get 43.225.189.108 and 43.225.189.118 • The next time I get 149.40.50.216 and 149.40.50.290 So I was wondering can I add both sets of IPs, and put a “0” at the end of each, and use /24 for both IPs? I reached out to Surfshark support, and they sent me their official pfSense WireGuard setup guide see the guide here in the guide they mention 10.14.0.2 for static routes
Log in to post
Load new posts
  • D

    Installing CLI Ookla Speedtest; “Command not found”

    Moved
    6
    0 Votes
    6 Posts
    3k Views
    KOMK
    @dominikhoffmann According to pfSense Package Manager: "Iperf is a tool for testing network throughput, loss, and jitter." More specific details can be found at the project's website: https://iperf.fr/
  • L

    Moving to EAP-TLS, how to disable other types?

    1
    0 Votes
    1 Posts
    326 Views
    No one has replied
  • F

    Arpwatch Notification : [Zeek] Connection summary

    1
    0 Votes
    1 Posts
    304 Views
    No one has replied
  • T

    CPU temp and Zabbix

    2
    0 Votes
    2 Posts
    1k Views
    T
    @titan-frost I actually did this long time ago and it is still working after 2.5 upgrade. UserParameter=pfsense.cpu.avg.temp,sysctl dev.cpu | grep temperature | cut -f2 -d ' ' | cut -f1 -d 'C' | awk '{s+=$1} END {print s/NR}'
  • S

    NUT Custom devd Rule

    4
    2 Votes
    4 Posts
    1k Views
    D
    Two steps to do this without a reboot: /etc/rc.d/devd restart Physically unplug and plugin the USB cable from the UPS
  • O

    openvpn-client-export - not showing OpenVPN server in Remote Access Server dropdown menu

    4
    0 Votes
    4 Posts
    1k Views
    O
    Well. Found the error. Had Chosen Peer to Peer in place of Remove Access in Server Mode. So yeah. A single dropdown menu error. S***.
  • M

    What is stopping googleadds?

    7
    1
    0 Votes
    7 Posts
    1k Views
    GertjanG
    @modesty said in What is stopping googleadds?: @kom Thanks for answer I also disabled squid proxy server service, still get "cant reach" this is what happens if i click on a google add: [image: 1619149360314-5e62636d-55b7-4078-b891-360b262c7606-image.png] You're showing in image of something. "Images" are nice when things go well. These days, video's took,over. When there are issues, images and videos show nothing. You should show us the real stuff : On your 'PC' : C:\Users\Left>nslookup www.googleadservices.com Serveur : pfsense.scotybeammeup.net Address: 2001:470:baba:5c0:2::1 Some one told me : Nom : www.googleadservices.com Address: 216.58.213.66 Also good : on pfSense : [2.5.1-RELEASE][admin@pfsense.scotybeammeup.net]/root: dig @127.0.0.1 www.googleadservices.com +short 216.58.213.66 What is your answer ? 10.10.10.1 ? ((( ))) In that case : reset your lcoal DNS cache., reset the pfSense DNS cache, and you'll be fine. Nothing ? DNS is broken ... Btw : some pfSense packages can really be helpful, I agree. But I didn't know there was a "who can install them all contest".
  • federicopF

    freeradius / ntopng error

    1
    0 Votes
    1 Posts
    335 Views
    No one has replied
  • P

    Packages not installing

    2
    0 Votes
    2 Posts
    427 Views
    P
    @powerextreme I ended up going to System->Update-> Update Settings and then for Branch selecting Previous Stable Version
  • A

    squid

    1
    3
    0 Votes
    1 Posts
    368 Views
    No one has replied
  • fireodoF

    py37-speedtest-cli-2.1.2

    7
    0 Votes
    7 Posts
    2k Views
    B
    @kevinrice Its clearly documented in their github issues.
  • S

    Packages for 2.4.4-p3

    3
    0 Votes
    3 Posts
    673 Views
    S
    @stefan-lazarevic Netgate provides packages for the current and former (2.4.5) versions. If you prefer you can use System/Update to set it to "previous stable version" and upgrade to 2.4.5, then install packages for 2.4.5. Overall, only install packages for your version of pfSense.
  • D

    NTOPNG crashing on PFSENSE+

    2
    1 Votes
    2 Posts
    577 Views
    B
    @dwighthenry61 Same issue here on a SG-3100. Service just keeps stopping. Can't find any logs that seem to relate to the issue of course I'm not logging to a syslog server where I could do a thorough search either.
  • L

    Arpwatch / Node_exporter(?) generating a notification mail every minute

    Moved
    1
    0 Votes
    1 Posts
    336 Views
    No one has replied
  • C

    Avahi HomeKit

    3
    5
    0 Votes
    3 Posts
    1k Views
    NogBadTheBadN
    @charlie48 said in Avahi HomeKit: If I want to control it via HomeKit app it does work only if phone is on same VLAN as Philips HUE. Yes unless you have an AppleTV or HomePod acting as a home hub.
  • ?

    SG-2220 w/ LTE, Cellular doesn't work on reboot

    5
    0 Votes
    5 Posts
    830 Views
    ?
    @gertjan I went ahead with the config. I've tried now to rollback to a previous config with the bug, but I don't think I guessed it. Thing is, the issue was there with 2 fresh installs and 2 upgrades. I'm certain the interface was already enabled prior to hitting save.
  • chudakC

    “snort *** Caught Term-Signal” errors

    14
    0 Votes
    14 Posts
    2k Views
    bmeeksB
    @chudak said in “snort *** Caught Term-Signal” errors: @bmeeks I am happy to accept that this is normal I was confused by “A Signal 4 error is most definitely not "normal". Something severe happened in that case to trigger that error. That means the CPU tried to execute binary code that is incompatbile with the CPU platform.” Thx! A Signal 4 error is indeed not normal. A Term-Signal is perfectly normal. They are not at all related.
  • B

    Packages for 2.2.6 no longer available?

    Moved
    5
    0 Votes
    5 Posts
    1k Views
    bmeeksB
    No, packages for older versions are not available with the exception of the most recently retired version. So since 2.5.0 came out back in February, you can still change a system setting and install packages from the 2.4.5_p1 branch (the previous stable version), but you can't go back any farther. And those legacy version packages will not track their counterparts in the RELEASE branch (i.e., they will be potentially an older version and will not be current). You have a very old version of pfSense, and a 32-bit one at that. There is no longer a 32-bit version of pfSense for AMD/Intel platforms. So if you truly have a 32-bit only box, then you need to upgrade to 64-bit hardware and then upgrade pfSense.
  • C

    NUT

    3
    0 Votes
    3 Posts
    695 Views
    GertjanG
    @coreybrett said in NUT: Will the NUT package shut the pfS box down? Connect to the console to have a first row seat. Rip out the power. See what happens, answers are scrolling on the screen.
  • S

    Avahi (mDNS) stops working after ~30 mins on pfSense 2.5

    21
    2
    0 Votes
    21 Posts
    4k Views
    V
    @theskelly I am glad I could help.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.