CLI - unattended alias change / script.

  • Hello,
    pfSense is great but I cannot find an important feature.

    I need to be able to change an alias IP content. I found a CLI way to create pass or block rules.
    How can I edit aliases?

    In my case I have a procedure for migrating a service from a server to another. It works fine but I'd like to leave the IP untouched on the OS, simply changing the alias content.

    Is there or will there be a better way than editing the config.xml file?

    I guess that with reg expressions it could be feasable but I'd rather have a command to use instead of a search and replace that could lead to errors.


  • Netgate Administrator

    For some reason you don't want to use the webgui? You need to do this unattended?


  • Hello,
    I need this to run from a script connecting to pfSense box through ssh via sshkeys, so yes :) I need it unattended!

    My config is currently:





    I thought to try a search and replace / regular expression solution:




    Would a modification be promptly applied?

    Or keep several copies of config.xml files to be substituted to the operative one. Will exchanging files trigger the system to read and act accordingly to the new settings?

    Cumbersome I guess, but could do for my scenario.

    Definitely I hope that pfSense will have a full CLI interface. It's greatness, the web gui, can't be a weakness too :)
    At the moment the only important cli feature I can think of is the one of aliases, since I read that pass and block are already active

    what if i have CARP? (not the case but it is in program), would config.xml editing via regular expressions or if overwritten by other file trigger a sync to the other boxes?


Log in to reply