February 16, 2022 Good morning/afternoon/evening, The first stable release brings in minor fixes from FreeBSD and instant log file visibility for files without severity written which can happen for individual plugins. We have also gone ahead to restructure the interface code further to resolve dependencies between configured devices and interfaces automatically and the bundled development […]

This business release is based on the OPNsense 21.7.8 community version with additional reliability improvements. Here are the full patch notes: o system: remove spurious XML validation that cannot cope with attributes from backup restore o system: prevent syslog-ng from crashing after update due to “syslog-ng-ctl reload” use o system: changing interface gateway was ignored […]

January 27, 2022 Hello everyone, To improve migration to the next version we are releasing this update back to back with 22.1.  There is no immediate need to upgrade so plenty of time to read and prepare. Suffice to say this will be the last update of the 21.7 series.  Thank you and see you […]

Hi there, For more than 7 years now, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. 22.1, nicknamed “Observant Owl”, features the upgrade to FreeBSD 13, switch to […]

January 13, 2022 This business release is based on the OPNsense 21.7.7 community version with additional reliability improvements. A new plugin called OPNWAF[1] is being added to this release to offer Apache web server for simple setup of load balancing and reverse proxy scenarios. It also offers ACME protocol support for Let’s Encrypt with a […]

December 15, 2021 Hi folks, End-of-the-year security and reliability update coming right up! Due to inconclusive reports we are disabling the Netmap API version 14 support in Suricata to get a better understanding of the situation. The plan still is to keep it for the 22.1 upgrade and it has in fact been enabled on […]

December 2, 2021 OPNsense business edition 21.10.1 released This business release is based on the OPNsense 21.7.5 community version with additional reliability improvements. Please note that OpenSSH was updated to version 8.8 which deprecates ssh-rsa usage which is mainly an issue for client access from the OPNsense system to the outside and can be amended […]

November 25, 2021 Hello there, This smallish update introduces Suricata 5-based versions for Emerging Threats rulesets as well as shipping the latest Suricata 6.0.4 with an additional change for the Netmap API version 14.  Please do let us know how that impacts your IPS performance numbers via the forum if you notice anything. The upgrade […]

Hello, FreeBSD security advisories and an issue with Intel-based ixgbe driver with “ifconfig -v” stalls keep this release rolling.  Also note that OpenSSH was updated to version 8.8 which deprecates ssh-rsa usage which is mainly an issue for client access from the OPNsense system to the outside and can be amended as per the suggestions […]

Howdy, This update features three new major things: optional receive side scaling (RSS) support in the kernel, asynchronous DNS resolving for aliases and configuration support for advanced LAGG settings. RSS is disabled by default but may be switched on by adding a tunable “net.inet.rss.enabled” with value “1” and rebooting the system.  While RSS can improve […]