Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Packages wishlist?

    Scheduled Pinned Locked Moved pfSense Packages
    661 Posts 384 Posters 1.5m Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • GruensFroeschliG
      GruensFroeschli
      last edited by

      @CliftonR:

      It's just understanding what's involved in hooking it in that's an issue for me - how to map setting up the configuration, forwarders/root servers, etc. into the pfSense menus, and whether there's actual PHP code to write or not.

      This might help you:
      http://devwiki.pfsense.org/PfSenseDevHome
      –> http://devwiki.pfsense.org/PackageInfo

      We do what we must, because we can.

      Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

      1 Reply Last reply Reply Quote 0
      • C
        CliftonR
        last edited by

        @GruensFroeschli:

        This might help you:
        http://devwiki.pfsense.org/PfSenseDevHome
        –> http://devwiki.pfsense.org/PackageInfo

        Thank you!  I had looked at the wiki previously, but hadn't found that overview page.

        1 Reply Last reply Reply Quote 0
        • P
          prodzekshn
          last edited by

          PF SENSE as a Dynamic DNS server

          can something like this be implemented
          http://code.blitzaffe.com/pages/phpscripts/files/ddns_server_54-35

          1 Reply Last reply Reply Quote 0
          • L
            LiquiD_85
            last edited by

            What about Dans Guardian???

            1 Reply Last reply Reply Quote 0
            • D
              DarkServant
              last edited by

              Hi
              A preprocessor for Snort that block the packets that matches the rules before they ever reach the target, and make the Snort implementation a true IPS would be nice.

              1 Reply Last reply Reply Quote 0
              • T
                tommyboy180
                last edited by

                DenyHosts. I was able to install it with the pkg_add command, so it shouldn't be that hard right.
                I would love to help if someone can tell me what I need to do to get this package made, maybe and example.

                -Tom Schaefer
                SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                Please support pfBlocker | File Browser | Strikeback

                1 Reply Last reply Reply Quote 0
                • M
                  Meulator
                  last edited by

                  A USER TRACE MODULE!!

                  Kind of simple, i think : a module which when activated, logs everything regarding a certain authenticated user, from captive portal for instance. You go on the GUI, then type in the name of the user and here it goes, it displays you all the websites the user went to, and when he logged in etc…

                  Doing the same with pfsense requieres to log systems to a syslog, and to transfert squid logs files to a server, and you have to check each file to find what you're looking for. This module could be really usefull, and totally push to garbage products like zyxel G4100 or Ucopia boxes...

                  1 Reply Last reply Reply Quote 0
                  • C
                    cybrsrfr
                    last edited by

                    snort is already there use pfSense 1.2.3 RC1 and then look under packages.

                    1 Reply Last reply Reply Quote 0
                    • C
                      chudy
                      last edited by

                      TOS/DSCP set and reset (or TOS/DSCP remarking)

                      1 Reply Last reply Reply Quote 0
                      • K
                        kodimar
                        last edited by

                        I would like to see a package that analyzes all traffic and organizes it in the same way that lightsquid does it.  NTOP is the only package that comes close, but I found it unstable and the information is scattered.

                        For example each day you get a list of all your host ip addresses and underneath it will have all the sorted protocols used by that ip address and the ip addresses that it connected to.

                        192.168.1.28
                            HTTP
                            1 v7.cache5.c.youtube.com 1 24.9 M 24.9 M 18.1%
                            FTP
                            Sent
                            1 ftp.ftp.com        1  24.9 M 24.9 M 18.1%
                            Recieved
                            1 ftp.ftp.com 1 14.7 M 14.7 M X%

                        1 Reply Last reply Reply Quote 0
                        • X
                          XIII
                          last edited by

                          How about the R-U-ON server monitoring agent (http://www.r-u-on.com)?

                          -Chris Stutzman
                          Sys0:2.0.1: AMD Sempron 140 @2.7 1024M RAM 100GHD
                          Sys1:2.0.1: Intel P4 @2.66 1024M RAM 40GHD
                          freedns.afraid.org - Free DNS dynamic DNS subdomain and domain hosting.
                          Check out the pfSense Wiki

                          1 Reply Last reply Reply Quote 0
                          • F
                            freebee
                            last edited by

                            SS5 is a socks server that implements the SOCKS v4 and v5 protocol.
                            ports/net/ss5/
                            http://ss5.sourceforge.net/

                            Have many good features, like bandwidth control per user, balancing and work with ldap.

                            1 Reply Last reply Reply Quote 0
                            • J
                              jasonjordan
                              last edited by

                              http://update-accelerator.advproxy.net/

                              This looks fantastic and would be an awesome add-on for saving bandwidth.  It caches updates from:
                                  * Adobe
                                  * Apple
                                  * Avast
                                  * Linux (.deb and .rpm)
                                  * Microsoft
                                  * Symantec
                                  * Trend Micro
                              and you can add custom download sites too.

                              It's been written specifically for IPCop - so I have no idea how hard it would be to "port".

                              From the Site:
                              The Update Accelerator caches files from update sites automatically at the first request. All subsequent downloads of these files from other clients will be processed with LAN speed.

                              Even though the standard Web Proxy cache does almost the same job, there are important differences between the Web Proxy cache and the Update Accelerator cache.

                              For example, it would be difficult to store, reliably, a Service Pack with a size of about 300MB in the Web Proxy cache. Unlike a Web Proxy with its internal cache and uncontrollable results, the Update Accelerator works rather in a similar way to a File Server - dead reliable and independent of any Proxy cache size or replacement strategy.

                              1 Reply Last reply Reply Quote 0
                              • jimpJ
                                jimp Rebel Alliance Developer Netgate
                                last edited by

                                @jasonjordan:

                                http://update-accelerator.advproxy.net/

                                This looks fantastic and would be an awesome add-on for saving bandwidth.  It caches updates from:
                                    * Adobe
                                    * Apple
                                    * Avast
                                    * Linux (.deb and .rpm)
                                    * Microsoft
                                    * Symantec
                                    * Trend Micro
                                and you can add custom download sites too.

                                It's been written specifically for IPCop - so I have no idea how hard it would be to "port".

                                From the Site:
                                The Update Accelerator caches files from update sites automatically at the first request. All subsequent downloads of these files from other clients will be processed with LAN speed.

                                Even though the standard Web Proxy cache does almost the same job, there are important differences between the Web Proxy cache and the Update Accelerator cache.

                                For example, it would be difficult to store, reliably, a Service Pack with a size of about 300MB in the Web Proxy cache. Unlike a Web Proxy with its internal cache and uncontrollable results, the Update Accelerator works rather in a similar way to a File Server - dead reliable and independent of any Proxy cache size or replacement strategy.

                                With the right settings, Squid will happily cache updates, including service packs, as long as you have the proper directives in the config.

                                I have it caching updates for my repair bench and it does a great job. It does the adobe updates without any special config, too.

                                http://doc.pfsense.org/index.php/Squid_Package_Tuning#Caching_Windows_Updates

                                Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

                                Need help fast? Netgate Global Support!

                                Do not Chat/PM for help!

                                1 Reply Last reply Reply Quote 0
                                • T
                                  taphy
                                  last edited by

                                  Hi I'm using nagios & nrpe a lot, so many thanks for added nrpe package!

                                  ..but it would be great to change/add a few things:

                                  1. I need be able to add some custom commands to nrpe.cfg  via GUI, at this moment I have to manually place them in  /usr/local/pkg/nrpe2.xml
                                    (not sure if  it is possible to do in other way at this moment)

                                  2. would be great include test for "warning" and "critical" command parameters in  /usr/local/pkg/nrpe2.inc . At this moment  after configuration via GUI I have in nrpe.cfg :
                                    command[check_myhost_ssh]=/usr/local/libexec/nagios/check_ssh -w  -c  -t 20 -H my.host.net

                                  and as a result:

                                  /usr/lib/nagios/plugins/check_nrpe -n -H 192.168.55.11 -p 5666 -c check_myhost_ssh

                                  Usage:check_ssh [-46] [-t <timeout>] [-r <remote version="">] [-p <port>] <host>I think something like next would be good:

                                  diff /usr/local/pkg/nrpe2.inc.orig /usr/local/pkg/nrpe2.inc

                                  147c147,151
                                  < $cmds[] = "command[{$cmd['name']}]=/usr/local/libexec/nagios/{$cmd['command']} -w {$cmd['warning']} -c {$cmd['critical']} {$cmd['extra']}\n";
                                  –-

                                  if (isset($cmd['warning'])) {
                                  $cmds[] = "command[{$cmd['name']}]=/usr/local/libexec/nagios/{$cmd['command']} -w {$cmd['warning']} -c {$cmd['critical']} {$cmd['extra']}\n";
                                  } else {
                                  $cmds[] = "command[{$cmd['name']}]=/usr/local/libexec/nagios/{$cmd['command']} {$cmd['extra']}\n";
                                  }
                                  188c192

                                  1. also there is still a bug in the nagios-plugins-1.4.13,1 which would be great resolve :
                                    /usr/local/libexec/nagios/check_procs -w 5 -c 10 -s Z
                                    /libexec/ld-elf.so.1: /lib/libc.so.7: version FBSD_1.1 required by /usr/local/libexec/nagios/check_procs not found (and this is a bit annoying …)
                                    (this is the only plugin which requires FBSD_1.1, all other are ok with FBSD_1.0)

                                  Many thanks in advance</host></port></remote></timeout>

                                  1 Reply Last reply Reply Quote 0
                                  • J
                                    jan.gestre
                                    last edited by

                                    Dansguardian! If Comixwall (an OpenBSD based firewall) was able to use this I see no reason why pfSense can't . IMSpector for SMTP to monitor rogue employees leaking out confidential information would be a welcome addition.

                                    1 Reply Last reply Reply Quote 0
                                    • C
                                      cybrsrfr
                                      last edited by

                                      DNS Blacklist package, OpenDNS and SquidGuard can all block domains like DANS guardian can.

                                      1 Reply Last reply Reply Quote 0
                                      • J
                                        jan.gestre
                                        last edited by

                                        Yes, combination of those certainly can but it's not as flexible as Dansguardian. A lot of guys are clamoring for it to be included, If others were able to include it so could we.

                                        1 Reply Last reply Reply Quote 0
                                        • P
                                          philrou
                                          last edited by

                                          OSPF/bgp package support (see www.qugga.net) it's OSPF/BGP package support . Package for solaris, redhat and linux platform exist none Freebsd package at this moment. But source available, and BGP works fine (not like openBGP ;-) sorry..;-))

                                          1 Reply Last reply Reply Quote 0
                                          • P
                                            pinguinito
                                            last edited by

                                            hi
                                            my pfsense has squid as a transparent proxy and I want use DNS black list can it work???

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.