Dear all, This update fixes CRL code handling with third party software and sandboxes the code to avoid dealing with boot-time issues ever again.  However, due to the nature of the sandboxing no automatic fix can be made for the following case: Creating and using an empty CRL in OpenVPN broke in 22.7.5 due to […]

Good morning, Today we are fixing a security issue involving the “installer” user and kernel-based TCP panics that some have been fighting with since FreeBSD 13. Some ports and plugins have also been updated now that the holiday season is coming to its inevitable end. The security issue arises on fresh 22.7 installs only due […]

Hello, This update addresses more issues with the somewhat unfortunate phpseclib 3 migration.  WAN IPv6 SLAAC mode now works more reliably and TLS 1.3 web GUI configurations will enforce the expectations by software clients regarding interoperability. Last but not least the “assign VLAN parent and enable” migration note from 22.1 is no longer required as […]

Good day everyone, Pick up the new FreeBSD security advisories while also introducing assorted reliability improvements. CRL now works again for elliptic curve with the adoption of version 3 of phpseclib. Wireless handling was improved due to PHP 8 errors and coding style issues. It is also the subject of further work for 23.1. Here […]

Hello, This update comes a little earlier than expected due to FreeBSD security advisories.  Of special interest is the new firewall alias BGP ASN type and notices system which can also be implemented from plugins in the future. Here are the full patch notes: o system: replace static notices system with a shared one based […]

August 9, 2022 Dear all, This update first and foremost addresses reported regressions with the initial version and the required security update for Unbound.  Expect follow-up releases to be a bit more noisy as we are going to introduce the new notification system and further IPv6 improvements plus new roadmap items to be announced in […]

August 4, 2022 This business release is based on the OPNsense 22.1.10 community version with additional reliability improvements. Here are the full patch notes: o system: properly shut down removed interfaces in console port assignment o system: log hard limit results in 9999 entries for grid output o system: move add_user script out of shell […]

July 28, 2022 Hi there, For more than 7 and a half years now, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. 22.7, nicknamed “Powerful Panther”, features the […]

July 7, 2022 This business release is based on the OPNsense 22.1.9 community version with additional reliability improvements. Here are the full patch notes: o system: support plugin device reconfiguration in pluginctl utility o system: use password_verify() in authenticators (contributed by oittaa) o system: hide password from command line during config encryption o system: improve […]

Good morning, Today we are shipping small reliability improvements and a few security updates for bundled packages.  Of special note is the upgrade of Phalcon 5, Python 3.9 and move of the StrongSwan vici library into a separate package. This release will be the last of the 22.1 series.  The release candidate for 22.7 will […]