New OPNsense Release

Hi all,

This update is preparation for the upcoming major release firmware upgrades, because FreeBSD 11.0 just came out (yay!). The intended target for this version is OPNsense 17.1, so it feels only natural to add the bits and bolts for it as early as possible. Seamless upgrades from any major release to the next is our mission. 🙂

A few security-related ports got updated to their latest versions and we have fixed the PSK-related IPsec regression that sneaked into 16.7.5.

Here are the full patch notes:

  • system: add language selection to initial wizard
  • system: allow disabling the root user
  • firmware: new mirror in Serbia (contributed by FourDots[1])
  • firmware: assorted changes for upcoming major upgrade
  • interfaces: wait for DHCP6 client to properly exit
  • firewall: allow route-to to loopback gateways
  • openvpn: fix download of config file for iOS
  • ipsec: fix mobile / PSK regressions of 16.7.5
  • intrusion detection: added syslog support
  • dns: improve forwarder interface listening generation
  • rc: silence backup warnings about stripped leading slashes
  • ports: libressl 2.3.8[2], bind 9.10.4-P3[3]
  • ports: ca_root_nss 3.27.1[4], unbound 1.5.10[5]

Stay safe,
Your OPNsense team