Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    Licensestatus and Bulk-Apply

    Scheduled Pinned Locked Moved Multi-Instance Management
    4 Posts 2 Posters 150 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      CDe80
      last edited by

      Hi,

      two feature requests based on recent MIM automation work. Couldn't find either on the docs/roadmap, so posting here in case they're already planned or make sense as user input.

      1. License status of managed instances

      GET /api/mim/devices returns a fully populated sys_info.license block for the controller itself, but for managed instances the same field comes back empty:

      "license": {
      "id": "",
      "expiration": "",
      "expired": true,
      "features": []
      }

      Are there plans to include the managed instance's own pfSense Plus subscription data (id, expiration, features) in the MIM API response? When operating many customer firewalls, tracking subscription
      expiry centrally through MIM — alongside the existing mim-devices entitlement check — would avoid maintaining that list in a separate tool.

      1. Pending-changes visibility in the device overview

      Applying pending changes on a managed instance from the Nexus GUI already works, but only by opening that instance's management view. The main device overview doesn't show whether a given managed device
      currently has pending changes. Two improvements would help a lot in daily operations:

      • Indicator in the device list (column or badge) showing which managed devices are currently "dirty"
      • Bulk "Apply Changes" action across selected or tagged devices, so after a fleet-wide change (e.g. syncing aliases across many customer firewalls via the API) the operator can activate all affected
        instances in one step instead of per-device

      Regards

      1 Reply Last reply Reply Quote 0
      • M Offline
        marcosm Netgate
        last edited by

        for managed instances the same field comes back empty

        Are those devices licensed? I tested this on 26.03 and licensed devices show the license details.

        As for a bulk-apply GUI feature that's something that could be added in some capacity along with some features already being worked on. For now it may be best left to the admin to implement. Presumably the fleet-wide change would be done via the API in which case it should be simple enough to also call the necessary API endpoints to apply the change.

        C 1 Reply Last reply Reply Quote 0
        • C Offline
          CDe80 @marcosm
          last edited by

          @marcosm thx, the managed device netgate 2100 has no mim-license. I thought the endpoint also returns if the pfsense plus subscription itsself is valid, which should always be true for the netgate-devices, but not for selfhostet vms.

          For the bulk-apply thx for pointing me to the right docu-path for the api.

          1 Reply Last reply Reply Quote 0
          • M Offline
            marcosm Netgate
            last edited by

            Currently the pfSense+ license itself isn't tracked by Nexus.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.