1. Home
  2. pfSense Packages

Subcategories

  • Discussions about packages which handle caching and proxy functions such as squid, lightsquid, squidGuard, etc.

    4k Topics
    21k Posts
    D
    Retested on 24.11-RELEASE (amd64) all seems to work. So it seems right to file a bug for this issue.

  • Discussions about packages whose functions are Intrusion Detection and Intrusion Prevention such as snort, suricata, etc.

    2k Topics
    16k Posts
    S
    So since there is no version 25.03. There is an official 25.07 now but only get a 7.08.2 what happen to the rest up to Suricata 7.0.10 or 7.0.12?

  • Discussions about packages that handle bandwidth and network traffic monitoring functions such as bandwidtd, ntopng, etc.

    571 Topics
    3k Posts
    K
    @pulsartiger The database name is vnstat.db and its location is under /var/db/vnstat. With "Backup Files/Dir" we are able to do backup or also with a cron.

  • Discussions about the pfBlockerNG package

    3k Topics
    20k Posts
    R
    @Gertjan said in pfBlockerNG not logging anything by default?: 192.168.1.85 doesn't exist on your LAN ? This IP does exist on my LAN but why it resolves some weird random desktop-sdshdsd.local? I am overwhelmed by the logs and see so much weird stuff like this. None of these things are on my network. Also no 192.168.51.5 exists on my network either. DNS-reply,Aug 5 12:42:25,reply,A,NSEC,1835,desktop-A5k217Qu.local,192.168.1.86,NXDOMAIN,unk DNS-reply,Aug 5 10:09:22,reply,A,SOA,2942,hometheater-tQNIYv.local,192.168.1.86,SOA,unk DNS-reply,Aug 5 14:22:28,reply,A,SOA,3146,desktop-ZmWfGXFW.local,192.168.1.86,SOA,unk DNS-reply,Aug 5 10:38:49,local,PTR,PTR,Unk,10.34.1.10.in-addr.arpa,192.168.1.86,NXDOMAIN,unk DNS-reply,Aug 5 10:39:03,local,PTR,PTR,Unk,5.51.168.192.in-addr.arpa,192.168.1.86,NXDOMAIN,unk DNS-reply,Aug 5 10:39:09,local,PTR,PTR,Unk,10.170.0.10.in-addr.arpa,192.168.1.86,NXDOMAIN,unk DNS-reply,Aug 5 11:21:24,reply,A,SOA,2827,hometheater-WADQ2.local,192.168.1.86,SOA,unk I checked the pfblockerng logs and at 11:59:58 I see all these resolve. I assume it is related to time servers? I cant find any good info on what zorac.sf-bay.org is for example? EDIT: Seems to be related to Perl which is used by pfsense plugins. But just a guess. DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,86400,anyns.pch.net,127.0.0.1,2001:500:14:6004:ad::1,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,86400,anyns.pch.net,127.0.0.1,204.61.216.4,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,57600,f.ntpns.org,127.0.0.1,139.178.72.201,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,57600,f.ntpns.org,127.0.0.1,2a05:dfc1:cb1:123::,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,86400,dns2.udel.edu,127.0.0.1,128.175.13.17,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,600,dns1.udel.edu,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,600,dns2.udel.edu,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,86400,ns1.eu.bitnames.com,127.0.0.1,165.227.133.206,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,86400,ns1.eu.bitnames.com,127.0.0.1,2a03:b0c0:3:d0::c0:4001,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,3600,osdn.services.net,127.0.0.1,192.55.226.68,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,57600,e.ntpns.org,127.0.0.1,45.33.123.43,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,57600,c.ntpns.org,127.0.0.1,2.59.255.53,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,600,dns2.udel.edu,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,600,dns1.udel.edu,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,300,zorac.sf-bay.org,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,A,SOA,300,zorac.sf-bay.org,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,10400,g.ntpns.org,127.0.0.1,212.12.50.229,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,3600,sdn.iecc.com,127.0.0.1,72.249.171.254,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,57600,e.ntpns.org,127.0.0.1,2400:6180:0:d1::695:5001,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,3600,sdn.iecc.com,127.0.0.1,2606:4300:0:4::106e,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,3600,sdn.iecc.com,127.0.0.1,72.249.171.254,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,3600,osdn.services.net,127.0.0.1,2001:470:1f07:1126:4e:6f74:6269:6e64,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,57600,c.ntpns.org,127.0.0.1,2600:3c02::f03c:92ff:fe5f:baf1,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,3600,ns2.everett.org,127.0.0.1,2001:470:1:205::230,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,86400,ns2.us.bitnames.com,127.0.0.1,107.170.182.174,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,SOA,300,zorac.sf-bay.org,127.0.0.1,SOA,unk DNS-reply,Aug 5 11:59:58,resolver,AAAA,AAAA,3600,sdn.iecc.com,127.0.0.1,2606:4300:0:4::106e,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,86400,ns3.us.bitnames.com,127.0.0.1,68.183.187.150,unk DNS-reply,Aug 5 11:59:58,resolver,A,A,57600,d.ntpns.org,127.0.0.1,86.109.15.15,unk @Gertjan said in pfBlockerNG not logging anything by default?: Without details, set your system to, use 192.168.1.1 = pfSense, and you'll be good. I did that but it hasn't changed anything. This was a default Ubuntu install and it has something to do with systemd-resolve but I can't figure it out myself. @Gertjan said in pfBlockerNG not logging anything by default?: You saw the name of the system process, : is "systemd-resolve" a resolver ? If so, then your Ubuntu totally bypasses the pfSense resolver (and pfBlockerng) . This means that DNS requests made by your Unbuntu are being handled by Ubuntus own resolver. But why do I see stuff being resolved in pfblockerNG if it should be bypassed?

  • Discussions about Network UPS Tools and APCUPSD packages for pfSense

    101 Topics
    2k Posts
    dennypageD
    @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: Interesting. I would have thought the initial reboot, which occurred as part of the upgrade, would have done the trick, but it took a second reboot, just now, to get things working. Glad you have it sorted. There was no difference in the output of usbconfig show_ifdrv at any point -- before or after unplugging/replugging the USB cable, nor after rebooting. ... Question: What would tell me whether or not a driver was loaded? If there were an attached driver, it should have shown up with the show_ifdrv command. If you use the command and look at the other usb devices, I think they will show attached drivers. I don't expect to see a driver attached to the ups, because there is a quirk that tells the OS to ignore that device (and not attach a driver). Look for idVendor and idProduct in the above output. The Vendor ID for your device is 0764, which corresponds to Cyber Power Systems, and the Product ID for your device is 0601, which is registered as "PR1500LCDRT2U UPS" (don't sweat an exact match for the name). You can see the quirk with the following command: [25.07-RC][root@fw]/root: usbconfig dump_device_quirks | grep 0764 VID=0x0764 PID=0x0005 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0501 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE VID=0x0764 PID=0x0601 REVLO=0x0000 REVHI=0xffff QUIRK=UQ_HID_IGNORE [25.07-RC][root@fw]/root: Your device is third on the list. The HID_IGNORE quirk says to ignore the device and not attach a driver. @jhg said in NUT fails to start after 2.7.2 -> 2.8.0 upgrade: You might consider adding this resolution to the release notes for 2.8. LOL... sorry, I don't have input to the release notes (I don't work here). While I wrote and maintain various packages, including NUT, I'm still just a volunteer. Most packages are actually written by volunteers.

  • Discussions about the ACME / Let’s Encrypt package for pfSense

    493 Topics
    3k Posts
    GertjanG
    @EChondo What's your pfSense version ? The instructions are shown here : [image: 1753262126227-1acdc586-cb29-4148-9e36-81ade4e5e60c-image.png] A restart of a service will start by re creating their config files. If a certificate changed, it will get included. When the process starts, it will use the new certificate. @EChondo said in Issue with ACME Certificates Refresh & Restarting HAProxy: I haven't been able to confirm if the above works(mine just renewed, don't feel like doing it again just to test), so we'll see in 60 days I guess. No need to wait x days. You can re test / renew right away, as you are 'allowed' to renew a couple (5 max ?) of times per week.

  • Discussions about the FRR Dynamic Routing package on pfSense

    294 Topics
    1k Posts
    J
    @div444 i'm finding the same - did you find a solution or did reverting fix it? Hoping there is a patch fix or something to get it working! Rather not rollback if i can avoid it

  • Discussions about the Tailscale package

    90 Topics
    583 Posts
    L
    Any ideas to why I get this error? Im running pfsense CE 2.8.0-RELEASE (amd64) pkg add https://pkg.freebsd.org/FreeBSD:15:amd64/latest/All/tailscale-1.84.2_1.pkg pkg: An error occured while fetching package

  • Discussions about WireGuard

    692 Topics
    4k Posts
    F
    Hi again, to be honest: I guess, I did not remember exactly what I did 2 years ago. May I was mistaken by the interface name opt2 because the SG-3100 has a physical port OPT1 and I mixed up physical and virtual names. The goal was to use 2 different tunnels, one for the mobile clients and one for the site-2-site connection. And now all is running in that way . Regards
Log in to post
Load new posts
  • V

    IMSpector v0.6

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    ?
    Perhaps you should put together a bounty.
  • G

    NTOP

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    G
    Wow thats hard to believe! This has to be the best package out there. What is required for updating the package? Is it a matter of logging in through the console and untar the new version to the directory?
  • H

    WebGui broken after lightsquid install

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    D
    possible change config.xml file and restart
  • H

    Zabbix agent

    Locked
    6
    0 Votes
    6 Posts
    6k Views
    A
    We have a zabbix server yes and about 100 servers/services which we monitor with it. Would be nice to get data from the pfsense, I would like to have graphs for the dl/up for each interface and a general up/down status. The snmp service doesn't send the correct stats for the interface traffic for some reason. I tried using the SNMP public service in zabbix as an alternative, but as explained before.. not the right traffic data. RDD Shows completely different data.
  • M

    LightSquid Logs only tracking one User…

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • M

    SquidGuard Bypass Bug (squidGuard Advisory: SG-2007-04-15)

    Locked
    3
    0 Votes
    3 Posts
    4k Views
    M
    Were you able to fix this bug yet?
  • F

    SquidGuard ACL Order

    Locked
    7
    0 Votes
    7 Posts
    7k Views
    F
    i got it… thanks a lot.
  • A

    Snort - slow to load the Bocked page

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    A
    I've read the old post http://forum.pfsense.org/index.php/topic,2849.0.html This bug of snort should be fixed. But I still have this problem in pfSense 1.2. Also the php process will at up all the CPU, I must kill it every time.
  • A

    Squid website logging per user

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    A
    Cool stuff! Thanks mate, must of overlooked this package because it seems to have the same functionality as SARG.
  • C

    Clamav + iptraf

    Locked
    6
    0 Votes
    6 Posts
    5k Views
    D
    I presume that netview has installed the iftop port - the output shows it being run from the shell. I would recommend trying pftop first, which is part of the base system - I find it works well.
  • B

    How to resotre /usr/local/etc/squid/

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    B
    ok, that di the job, thanks
  • H

    Package! Squid can not keep cache

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    M
    Why are you using 1.0.1?  Please use 1.2 or later and let us know the results.  The package has changed greatly since it was compatible with 1.0.1.
  • W

    SquidGuard redirect

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    W
    excellent thx.  I will give that a shot this afternoon.
  • F

    IMspector Transparent

    Locked
    7
    0 Votes
    7 Posts
    4k Views
    W
    Hi, i am not a savvy unix user.  i am running into this situation where i only need to keep about no more then a month old log… anyone can help coming up with a script? thanks
  • L

    BandwidthD stops loading

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    C
    hello I'm not an expert but you could use this command : " /usr/local/bandwidthd/bandwidthd start or restart " I hope this would help
  • ?

    Squid"Custom Options,Transparent proxying&"Allow users on interface" Not working

    Locked
    5
    0 Votes
    5 Posts
    4k Views
    M
    There has been a very large bounty for a powerful traffic shaper.  See the below post for LOTS of details.  I haven't read the whole thing, but would expect it that it could throttle by destination, therefore doing what you need.  You can have access to the 'beta' version now if you make a 3 digit contribution to the devs $xxx (please do, pfsense is great). It has been discussed how to write custom redirect rules for transparent squid so that some traffic will go through squid and some will not, just search this packages forum. http://forum.pfsense.org/index.php/topic,2718.0.html
  • ?

    Something like BandwidthD on an embeded pfsense?

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    S
    You can use bandwithd in promiscuous mode on another box.
  • C

    Transparent Proxy & limit Instant messengers in schedule

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • I

    Spamd whitelisting

    Locked
    7
    0 Votes
    7 Posts
    3k Views
    I
    Perhaps a seperate bounty to add a few checkboxes that say "Attempt to Auto-Add Gmail to Whitelist" and one for each major service like hotmail yahoo etc? Then it could just run a script / add a cront tab in the background  and add the entries it finds to the whitelist.txt… lets wait and see how the rest of the original bounty plays out in the next few weeks (sullrich was going to take a break then work on it more later) and go from there. I think that and allowed domain access could make the user interface very nice for beginners...
  • Q

    Can't install any package!

    Locked
    11
    0 Votes
    11 Posts
    8k Views
    ?
    @josempinto: Once Again, Apparently PFSense is more a toy, than a serious firewall, on we can trust! I can't find any sense, and/or coherence  on this hack. Only plaiyng arround with a toy, one can  arrive to such a crazy way to be able to remove a package… Regards. Keeping in mind that this is a guy who claimed that he had a solution for blocking all P2P applications using a combination of like 5 different (and completely unrelated packages).  Feel free to check out his posting history.  It's special.  IPCop might be too challenging for him.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.