Dear all, Small update here with security advisories, multicast fixes and logging reliability patches amongst others. Overall, the jump to HardenedBSD 12.1 is looking promising from our end. From the reported issues we still have more logging quirks to investigate and especially Netmap support (used in IPS and Sensei) is lacking in some areas that […]
Read moreHi there, For five and a half years, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, HardenedBSD security, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. 20.7, nicknamed “Legendary Lion”, is a major operating system jump […]
Read moreA good day everyone! Sorry about the delay while we chased a race condition in the updates back to an issue with the latest FreeBSD package manager updates. For now we reverted to our current version but all relevant third party packages have been updated as updates became available over the last weeks, e.g. cURL […]
Read moreHi there, Today we move to PHP 7.3 in order to be able to complete testing for the 20.7-BETA online upgrades. Also included is a patch for the packet filter kernel code which could crash with shared forwarding when interfaces disappeared due to use after free in the default network stack path. Here are the […]
Read moreHi all, Quick update as planned. Here are the full patch notes: o system: add data length option to gateway monitor settings o firewall: avoid greedy matching with live log parsing regression from 20.1.5 o firmware: detect runtime defaults when using “make upgrade” with core.git o firmware: clean up packaging code and support “.link” file […]
Read moreHi there, Today ships the first release version of the supplemental firewall rule API via plugin, a new firewall shaper statistics GUI and API and the usual number of improvements and third party updates. Note that this version does not ship OpenSSL 1.1.1g as at this point our release decision would have been to push […]
Read moreHello everyone, It almost looks like business as usual. But we all know it is not. We will get through this together. Here are the full patch notes: o system: add missing strtolower() in LDAP sync response o system: fix /var/run/legacy_log socket creation race with Syslog-ng o system: add info button to display privilege / […]
Read moreHi all, Quick reliability release for all of you out there doing the impossible providing VPN for road warriors and what not. Keep it up! Here are the full patch notes: o system: match group CN case-insensitive o system: added pluggable log format parsing facility o system: update nsComment in OpenSSL config (contributed by vnxme) […]
Read moreGood evening, Today we pick up the recent FreeBSD security advisories as well as the usual noise in bugfixes and third party updates. We are also at the brink of a first HardenedBSD 12.1 based image so stay tuned. Here are the full patch notes: o system: fix leap year issue in new log reader […]
Read moreHello, hello! A tiny update to keep everyone happy. Here are the full patch notes: o system: increase size of user SSH key input box o system: fix faulty PPP log link in the menu o system: fix a PHP warning on the general settings page o interfaces: update maximum MTU for 10Gb NICs (contributed […]
Read more