1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    A
    Docker image for squid 7.3 and above https://hub.docker.com/r/fredbcode/squid If pfsense does not push the update.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    DARAD
    Hello team, I have a Netgate 8200 running 24.11-RELEASE (amd64) with Suricata 7.0.8_5 package installed. Suricata doesn't seem to start. It loops to red once I press the Play button on the interface. It leaves no logs in the System logs, it leaves no logs in suricata.log at /var/log/suricata/suricata_ovpns933787/suricata.log I tried launching it manually: # /usr/local/bin/suricata -V or # /usr/local/bin/suricata -c /usr/local/etc/suricata/suricata_33787_ovpns9/suricata.yaml -i suricata_ovpns933787 and I get this output ld-elf.so.1: /usr/local/bin/suricata: Undefined symbol "__strlcpy_chk@FBSD_1.8" Thanks in advance, Dara

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    573 Topics
    3k Posts
    dennypageD
    @kabeda If memory serves, that old version of ntopng did not run as user ntopng, but as user nobody. There are lots of problems in that old version. Anyway, check the ownership and permissions of /var/db/ntopng and make sure it matches the user that ntopng runs as. You may need to set ownership of the entire hierarchy. Example: /usr/sbin/chown -R nobody:nobody /var/db/ntopng However, the better choice would be to upgrade to a more recent version.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    tinfoilmattT
    @vicking said in No blocks on IP: Is it a bad idea to have the action set to deny both instead of inbound only? Question is squarely for admin. Per the infoblock which explains, in part, the "Deny Inbound", "Deny Outbound", and "Deny Both" actions: 'Deny' Rules: 'Deny' rules create high priority 'block' or 'reject' rules on the stated interfaces. They don't change the 'pass' rules on other interfaces. Typical uses of 'Deny' rules are: Deny Both - blocks all traffic in both directions, if the source or destination IP is in the block list Deny Inbound/Deny Outbound - blocks all traffic in one direction unless it is part of a session started by traffic sent in the other direction. Does not affect traffic in the other direction. One way 'Deny' rules can be used to selectively block unsolicited incoming (new session) packets in one direction, while still allowing deliberate outgoing sessions to be created in the other direction. In other words: When set to "Deny Inbound", incoming connection requests from WAN hosts are blocked and therefore no state will be created. However a LAN host can still establish state to an otherwise listed IP. If set to "Deny Outbound", outgoing connection requests from LAN hosts are blocked and therefore no state will be created. However an incoming connection request from an otherwise listed IP to an 'open' WAN port can still establish state. If set to "Deny Both", both incoming connection requests and outbound connections requests are blocked and therefore no state will be created regardless of connection direction.

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    102 Topics
    3k Posts
    C
    @dennypage Nicely done sir!

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    503 Topics
    3k Posts
    M
    I am using the DNS-Update method I have to use a DNS-Sleep of 5 minutes to let the letsencrypt txt dns record update propagate. During this 5 minutes the acme-webgui times out. when the acme-webgui times out the Action list is NOT executed. How can I solve this ? Would it maybe be an idea to let the acme.sh script execute the actions in the action list as a post-hook instead of the web-gui? Or maybe add an option to add post-hooks in the webUI ?

  • Discussions about the FRR Dynamic Routing package on pfSense

    296 Topics
    1k Posts
    C
    This one has been tricky still not sure what to try. Any ideas?

  • Discussions about the Tailscale package

    93 Topics
    654 Posts
    C
    @luckman212, Thanks for your suggestion. I will check what I have in /usr/local/pkg/tailscale/state, and also the RAM disk settings others have brought up. I could learn more about where Tailscale and pfSense store system files. If I find anything worth sharing, I will let you know.

  • Discussions about WireGuard

    715 Topics
    4k Posts
    patient0P
    @andresbraga if you still have the firewall rules as you posted, then I don't know why from the laptop you can't ping the pfSense Wireguard address 10.10.6.1 nor the pfSense gateway 10.10.1.1 What is the routing table of the laptop. And I would run a packet capture on pfSense and check what you see if you run the ping to 10.10.1.1 or 10.10.6.1.
Log in to post
Load new posts
  • I

    Is cache really improve the connection speed?

    Locked
    41
    0 Votes
    41 Posts
    21k Views
    J
    Thanks. Im downloading now the cacheboy. Ill update you :) Good afternoon jigp Davao City
  • J

    Blocking Internet Download Manager IDM

    Locked
    1
    0 Votes
    1 Posts
    4k Views
    No one has replied
  • perikoP

    Squid customize ports

    Locked
    9
    0 Votes
    9 Posts
    4k Views
    J
    Thanks for the heads up :) Good morning all :) That did the trick :) But what is the purpose of chaning the ports squid and lan ? jigp Davao City 1.2.2
  • D

    Pfsense can url filter ????????

    Locked
    10
    0 Votes
    10 Posts
    26k Views
    J
    After following the steps, my squid package wont run now. I have to reinstall the package..Reinstalling package did the trick but i lost the backup squid configuration.Good thing i backup the xml.. jigp Davao City
  • A

    Limit speed for downloading

    Locked
    8
    0 Votes
    8 Posts
    6k Views
    J
    Setup traffic shaper. Firewall >Traffic. It will not down. You can setup cacheboy too.Hope it help. jigp Davao City
  • S

    Snort smtp rule

    Locked
    6
    0 Votes
    6 Posts
    8k Views
    J
    @samer79: Dear James, What do you mean by suppress the alert? does it mean that snort will no more block the hosts generating this alert? (this is what i need to do) Thanks. Yes, by using suppress snort will not alert you and will not block any hosts. James
  • D

    Snort messing up

    Locked
    10
    0 Votes
    10 Posts
    4k Views
    F
    Hi, I have problem with my snort from beginning. Every time I reboot pfSense, snort stop working. Basically what I found is that snort load itself to memory at startup but it doesn't work. If I wish for snort to work I have to manually clear Alert logs. After that snort reboots itself and start working. Anyone else have same problem? Is there any way to make that automatically? I use last version of pfSense and snort (1.2.3-RC2 built on Wed Jul 8 06:05:02 EDT 2009, Snort 2.8.4.1 pkg v. 1.4). I testing snort with grc.com. Thx for answers…
  • F

    Bypass proxy by mac-address

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    F
    Ah okej. That should been a nice feature though :) Thanks anyway guys.
  • L

    Problem Freeswitch - Error 16 Normal Call Clearing

    Locked
    3
    0 Votes
    3 Posts
    3k Views
    C
    Making an educated guess on what was missed 'User Context' needs to be set to 'default' as shown in the example. Regardless what it was I'm glad you were able to get that working. You  can get additional help on IRC at freenode #pfsense-freeswitch. Or continue to ask questions on the forum.
  • C

    FreeSwitch missing required dependencies

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • D

    SquidGuard - Squid - what am I doing wrong

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    E
    As my experience, once you click Apply sometimes state will show stop in my experience, this cause by the Blacklist turned ON. but since the blacklist worked fine, then like zabidin said, it must be in the Default tab. In the destination rules, set Default access [all] = deny might be work. ;D
  • E

    Re: squidGard not working

    Locked
    4
    0 Votes
    4 Posts
    18k Views
    E
    finally my pfsense - squid - squidguard - lighsquid is WORKING !!!!  ;D ;D ;D :D :D :D ;) ;) ;) :) :) :) ::) ::) ::) i'm very happy about this, because it's been 6 month for me to searching for this! let me share some tips and trick why this can work : 1. Make sure in     PROXY SERVER tab,     >>>the "Proxy interface" = LAN     >>> "Allow users on interface" is turned ON     >>>Transparant mode = ON     >>> Enabled logging = ON     >>> Log store directory = /var/squid/log     >>> Proxy port = 3128     >>> After you turn on the squid guard, in Custom Options = redirect_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf;redirector_bypass on;redirect_children 3 2. Make sure in PROXY FILTER (SQUID GUARD),   >>> the Enable = ON   >>> the SquidGuard service state: STARTED   >>> Blacklist = OFF   >>> Blacklist proxy = [EMPTY] 3. In FIREWALL Rules for LAN   >>> Allow access for LAN  = ON 4. In STATUS - SERVICES   >>> Squid, Squid Guard = RUNNING that's all… if still not work, try this : 1. Reinstall the package 2. SAVE and APPLY the squid guard a couple of times 3. Monitor the system log, if there any errors 4. Monitor the services, makes sure all service is running The last is when i'll already done all of that, and it's still not working, this is the thing that i do : 1. ERASE all the DESTINATION, TIMES, ACL, REWRITES. 2. Don't use the BLACKLIST. It makes (sometimes) the SAVE and APPLY acted strange! 3. RESTART the squid and squidguard. finally, i'm able to accomplish THE MOST POWERFULL AND EASIES FIREWALL, GATEWAY in the WORLD...pfsense... OUUUGGGHHHH !!! thanks for all!!! this forum really makes my mind open! :-*
  • L

    I cannot use Norton LiveUpdate when is activated squid proxy

    Locked
    7
    0 Votes
    7 Posts
    12k Views
    C
    hmn. you can try cache-boy $conf .= "http_port 127.0.0.1:80 transparent http11\n";
  • P

    FreeRADIUS: why an expired user still can login on a second try?

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    P
    Thanks It can solv by solution from topic  Freeradius package - user expiration not working (FIX)
  • H

    Snort is blocking everything after a vpn connection. No Alerts on snort log!

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    H
    [image: vpnk.th.jpg] This is what I have for the Vpn clients.
  • T

    Squid+squidguard redirect

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    T
    Just didn't want to make too many changes to things without knowing the "right"answer. Thanks.
  • T

    Snort fatal error locking pid file

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    T
    After looking over other snort errors in the forum, this looks like a duplicate entry.  Sorry for the dup. I have noticed the same things that others have reported.  Snort starts up perfectly if restarted.  No fatal error.  Still might be a bug here.  But, the quick question is if snort is running after the "fatal error" is it really a problem? EDIT: new information I just noticed, the error says that it's trying to lock 'for PID "1521"'.  But, on a ps, the snort that's running is PID 993, and 993 is the contents of the pid file in /var/run.  This is confusing.
  • Z

    Squidguard error page.

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    D
    @zabidin2: Hi, Can i modified squidguard error page? If possible, can i add image in it? Thank you. Select 'ext' type of page and enter url to self page.
  • V

    Filesystem full (over 32GB)

    Locked
    6
    0 Votes
    6 Posts
    6k Views
    jimpJ
    Try: du -d 1 / | sort -n -r Find the largest directory, and then repeat the command in there.
  • dotdashD

    Dashboard 0.8.3_1 IPsec strangeness

    Locked
    11
    0 Votes
    11 Posts
    5k Views
    dotdashD
    Ah, that would be it. It was upgraded from 1.2. Good catch: /usr/local/sbin/setkey -D my.wan.carp.ip[4500] mobileclient.public.ip[30883]         esp-udp mode=any spi=304123313(0x12208db1) reqid=0(0x00000000)         E: aes-cbc  a68ee719 c719199a 30aef38d 7524469a         A: hmac-sha1  1bf31131 c2c3e9dc 25888fca 026d9802 ad0856f3         seq=0x0001b1c1 replay=4 flags=0x00000000 state=mature         created: Jun 29 07:33:05 2009  current: Jun 29 09:27:55 2009         diff: 6890(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:55 2009      hard: 0(s)      soft: 0(s)         current: 13942840(bytes)        hard: 0(bytes)  soft: 0(bytes)         allocated: 111041      hard: 0 soft: 0         sadb_seq=6 pid=9564 refcnt=2 mobileclient.public.ip[30883] my.wan.carp.ip[4500]         esp-udp mode=tunnel spi=163139250(0x09b94eb2) reqid=0(0x00000000)         E: aes-cbc  05d6cf01 9fbe5b6a 358cf833 e9da3aad         A: hmac-sha1  feea0912 bd67cfea 6b734dee be610ec2 e973a04c         seq=0x00028d22 replay=4 flags=0x00000000 state=mature         created: Jun 29 07:33:05 2009  current: Jun 29 09:27:55 2009         diff: 6890(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:55 2009      hard: 0(s)      soft: 0(s)         current: 226902514(bytes)      hard: 0(bytes)  soft: 0(bytes)         allocated: 167202      hard: 0 soft: 0         sadb_seq=5 pid=9564 refcnt=1 my.wan.carp.ip remote.ip.D         esp mode=any spi=120936904(0x073559c8) reqid=16389(0x00004005)         E: aes-cbc  6b76fbdb 4a1c6c28 9f396457 655cb910         A: hmac-sha1  81eeab0d 0694980a 07a48cc9 de001298 9f956ad4         seq=0x000013fe replay=4 flags=0x00000000 state=mature         created: Jun 29 07:57:26 2009  current: Jun 29 09:27:55 2009         diff: 5429(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:50 2009      hard: 0(s)      soft: 0(s)         current: 1169424(bytes) hard: 0(bytes)  soft: 0(bytes)         allocated: 5118 hard: 0 soft: 0         sadb_seq=4 pid=9564 refcnt=2 remote.ip.D my.wan.carp.ip         esp mode=tunnel spi=227089053(0x0d891a9d) reqid=16390(0x00004006)         E: aes-cbc  d16c5888 752d83be fb5cda1c 09137340         A: hmac-sha1  4a4edba1 99efb15b e9192b16 40f727f6 7b8142f7         seq=0x00000dc6 replay=4 flags=0x00000000 state=mature         created: Jun 29 07:57:26 2009  current: Jun 29 09:27:55 2009         diff: 5429(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:50 2009      hard: 0(s)      soft: 0(s)         current: 597881(bytes)  hard: 0(bytes)  soft: 0(bytes)         allocated: 3526 hard: 0 soft: 0         sadb_seq=3 pid=9564 refcnt=1 remote.ip.D my.wan.carp.ip         esp mode=tunnel spi=47308714(0x02d1dfaa) reqid=16390(0x00004006)         E: aes-cbc  4d7635cb e77e5ad2 f5a864f0 aaa441e4         A: hmac-sha1  007d7961 1fb4072c 4bece018 850108ab 006c3936         seq=0x00000000 replay=4 flags=0x00000000 state=mature         created: Jun 29 07:57:25 2009  current: Jun 29 09:27:55 2009         diff: 5430(s)  hard: 28800(s)  soft: 23040(s)         last:                          hard: 0(s)      soft: 0(s)         current: 0(bytes)      hard: 0(bytes)  soft: 0(bytes)         allocated: 0    hard: 0 soft: 0         sadb_seq=2 pid=9564 refcnt=1 my.wan.carp.ip remote.ip.G         esp mode=any spi=145602196(0x08adb694) reqid=16391(0x00004007)         E: aes-cbc  e40282bc 734c5f93 a12b51bb d8b66a96         A: hmac-sha1  6cc652f7 f8679ebb 2b9c6522 57b963d5 60b03b87         seq=0x0007a755 replay=4 flags=0x00000000 state=mature         created: Jun 29 04:43:41 2009  current: Jun 29 09:27:55 2009         diff: 17054(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:55 2009      hard: 0(s)      soft: 0(s)         current: 61248056(bytes)        hard: 0(bytes)  soft: 0(bytes)         allocated: 501589      hard: 0 soft: 0         sadb_seq=1 pid=9564 refcnt=2 remote.ip.G my.wan.carp.ip         esp mode=tunnel spi=257452519(0x0f5869e7) reqid=16392(0x00004008)         E: aes-cbc  e61e358e 8999e9c1 61a588ce 26b07a72         A: hmac-sha1  fc2948b5 8c93bc95 9f879e40 6aad17b7 3de2d5a2         seq=0x000c49f2 replay=4 flags=0x00000000 state=mature         created: Jun 29 04:43:41 2009  current: Jun 29 09:27:55 2009         diff: 17054(s)  hard: 28800(s)  soft: 23040(s)         last: Jun 29 09:27:55 2009      hard: 0(s)      soft: 0(s)         current: 1084481374(bytes)      hard: 0(bytes)  soft: 0(bytes)         allocated: 805362      hard: 0 soft: 0         sadb_seq=0 pid=9564 refcnt=1
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.