New pfSense Plus 25.03-BETA is here!
-
Just upgraded from last BETA to the current one. No issues so far.
-
Another one :
Current Base System : 25.03.b.20250610.1659
The "Juin 10" version is now installed.
Using a 4100 MAX : all is well.Mandatory packages : Netgate_Firmware_Upgrade 23.05.01 Nexus 25.03.b.20250610.1659 aws-wizard 0.12 ipsec-profile-wizard 1.2.4 openvpn-client-export 1.9.5 openvpn-client-import 1.2_3 System_Patches 2.2.21_2 (why is this package 'optional' ?) My packages : the classic GUI / quality of live stuff : acme 0.9_1 Avahi 2.2_7 Backup 0.6.3 Cron 0.3.8_6 Filer 0.60.6_9 Notes 0.2.9_5 nut 2.8.2_5 Shellcmd 1.0.5_4 Not really needed : very light DNSBL setup / Python mode : pfBlockerNG-devel 3.2.7 Because I like to things the hard way (auth captive portal): freeradius3 0.15.14This is a production device (company).
-
Update from 25.03.b.20250606.1549 to 25.03.b.20250610.1659 on my SG4200 worked.
-
Still two open bugs in 25.03 and we are just a few days away from July. I have a funny feeling this will get merged and only become a 25.07 release...
https://redmine.pfsense.org/projects/pfsense/roadmap#pfsense-plus-25.03
https://redmine.pfsense.org/projects/pfsense/roadmap#pfsense-plus-25.07
-
@drewsaur based on
@netblues said in New pfSense Plus 25.03-BETA is here!:Additionally 25.03 is in sync (if not based) on 2.8ce (which has a release candidate too)
I am expecting 25.03 to be released, and not skipped/merged into a later release. I don't care for the "older" .3 number - it's just a number. No one really expected the final version to be released in March anyway. It would create a lot of issues to change that now, and solve nothing.
Many people bootstrap Plus off CE. Thus, it makes sense to keep the underlying OS versions of both in sync. At worst, Plus can be ahead of CE, but it should never be behind - at least not for long. By "underlying OS", I mean FreeBSD kernel, drivers, core libraries etc. It would be a horrible thing for a customer to have hardware supported by CE (and be running happily on that), then pay a license fee to "upgrade" to Plus, only to find upon upgrading, that everything breaks due to Plus being based on an older FreeBSD, and lacking driver/kernel support for the newer cutting-edge hardware.
Thus, the amount of time that CE is "ahead" of Plus should be kept to the absolute minimum. Since the latest CE has been out for about a month, the onus really is on Netgate now to get the latest Plus version out.
I will be upgrading one site to Plus from CE, where the customer is currently running on Plus (24.11). I am migrating this customer from vSphere to Proxmox, and will be making a lot of fundamental design choices around filesystems and VLANs. A fresh install (but restoring the existing firewall and NAT rules) is definitely the way to go. I plan on doing a fresh install of 2.8.CE first. Then after about a week or so with no deal-breaker issues, I'll get Netgate to migrate the existing Plus license to the new installation. That will be far safer than doing the install and license change all together in one weekend, then finding out on Monday that there are issues, but I can't spin up the old firewall VM as I've already migrated the license away. bow bowwww (game over you lose).
Ideally, I want to go from 2.8.CE to 25.03 (same underlying OS apparently), rather than than 2.8.CE -> 24.11 -> 25.03, given how close 25.03 must be.
Anyway, I really hope 25.03 is released very soon. I'm sweating on it, and each day since 2.8CE came out I'll have my morning coffee and check for it. I think I'll fall off my chair when I finally see it!
-
@Gcon Its higly unlikely for any merge to happen. plus 25.07 does not exist at the moment.
It will only be a rename of 25.03 to 25.07, nothing more than that, so expect no issues.As for licensing and migrations, things are not as hard as you thing.
Even after migrating you can spin up a saved vm, it will work you can just can't install updates or packages (at least automatically) giving you plenty of options. -
@Gcon said in New pfSense Plus 25.03-BETA is here!:
and lacking driver/kernel support for the newer cutting-edge hardware
pfSense is FreeBSD based. That's the cutting edge network firewall OS.
Cutting-edge hardware is more a Microsoft or Apple thing.
A firewall needs a proven (over time ... FreeBSD => long time ...) CPU, known to be good RAM, if possible no realtek NIC, but Intel NIC.
And that's it. No flashy ventilo light, no bleutooth doorbell. The less, the better. It's a security device, not a gaming rig.
If important hardware uses chip sets that are publicly detailed, some one could write an (open source) driver for it. So, for example, no broadcom hardware as most of their chips are closed source.
Knowing that broadcom makes most of the Wifi equipment, you'll understand why FreeBSD has 'bad' Wifi support. -
@netblues looks like my hunch was correct. Not that I wanted it to be.
-
@Gertjan "cutting edge" should really just say "new". Intel do introduce new NICs from time to time, which need new driver support. I distinctly remember when Intel i225 vs i226 did not have support. So if you introduce support in CE first, and then much later in Plus - this is enough to illustrate my point. No need for an unhinged rant about "bleutooth" doorbells.
@netblues Great info - thank you
-
@Gcon said in New pfSense Plus 25.03-BETA is here!:
So if you introduce support in CE first, and then much later in Plus ...
Probably because Plus uses 15.0 which isn't officially released yet. The latest official release is FreeBSD 14.3.
So, afaik, driver writers (Intel ?) aren't done adapting yet.
