pfSense – Update 2.3.2

Die Entwickler der Open Source Firewall, pfSense, haben das Update 2.3.2 veröffentlicht. Dieses behebt 60 Fehler, bringt 8 Features und beinhaltet 2 Aufgaben von der ToDo-Liste.

https://doc.pfsense.org/index.php?title=2.3.2_New_Features_and_Changes

Weiterhin wurde die Anzahl an verfügbaren Paketen weiter verkleinert. Das pfSense Team hat alle Softwarepaket aussortiert die:

• keinen aktiven Entwickler mehr haben
• niemals Stable wurden
• die noch nicht für Bootstrap konvertiert wurden, aber demnächst wieder hinzu kommen könnten
• Liste der entfernten Pakete https://doc.pfsense.org/index.php/2.3_Removed_Packages

• Apache with mod_security-dev / Proxy Server with mod_security – neither ever worked well, no active maintainer.
• apcupsd – no package maintainer, not converted
• arpwatch – no package maintainer, not converted
• Asterisk – no package maintainer, not converted
• bacula-client – no package maintainer, not converted
• bandwidthd – caused stability problems for some, no package maintainer, not converted
• bind – no package maintainer, not converted
• check_mk agent – no package maintainer, not converted
• DansGuardian – the upstream DansGuardian package is no longer maintained.
• diag_new_states – no package maintainer, not converted
• dns-server – no package maintainer, not converted
• File Manager – no package maintainer, not converted
• Filer – no package maintainer, not converted
• HAVP antivirus and its dashboard widgets – the upstream HAVP project is no longer maintained. Antivirus support is now built into the Squid package.
• imspector – the upstream imspector project is no longer maintained, and doesn’t function with current instant messaging protocols.
• ipguard-dev – no package maintainer, not converted
• lcdproc and lcdproc-dev – not converted.
• mailscanner – no package maintainer, not converted
• netio – no package maintainer, not converted
• ntop – ntop has been deprecated by its creator in favor of ntopng.
• ntopng – ntopng package was removed from FreeBSD ports because it no longer compiled. That issue has recently been fixed, and the package will return soon.
• olsrd – no package maintainer, not converted
• PHPService – no package maintainer, not converted
• Postfix Forwarder – not converted (pending pull request)
• Sarg – deprecated in favor of lightsquid
• spamd – no package maintainer, not converted
• squid / squid3 – the squid packages have been consolidated into a single squid package, using version 3.5. The “squid3” package has been removed, and the “squid” package is now version 3.
• squidGuard / squidGuard-devel – the squidGuard packages have been consolidated into a single option. The squidGuard-devel version no longer exists.
• SSHDCond – no package maintainer, not converted
• stunnel – no package maintainer, not converted
• TFTP – no package maintainer, not converted
• tinc – no package maintainer, not converted
• urlsnarf – no package maintainer, not converted
• Varnish3 – no package maintainer, not converted
• vHosts – no package maintainer, not converted
• vnstat2 – being replaced with a new vnStat package
• widentd – no package maintainer, not converted
• Zabbix-2 agent – not converted. Zabbix LTS available as alternative.
• Zabbix-2 proxy – not converted. Zabbix LTS available as alternative.

Wieder mit dabei sind jedoch folgende 2 neue Pakete:

• ntopng
• vnstat

pfSense 2.3.2 Liste der behobenen Bugs

pfSense 2.2.6 und 2.3.2 bekannte Probleme

• IPsec IPComp does not work. This is disabled by default. However in 2.3.1, it is automatically not enabled to avoid encountering this problem. Bug 6167
• IGMP Proxy does not work with VLAN interfaces, and possibly other edge cases. Bug 6099. This is a little-used component. If you’re not sure what it is, you’re not using it.
• Those using IPsec and OpenBGPD may have non-functional IPsec unless OpenBGPD is removed. Bug 6223

pfSense Release Notes 2.3.2 – https://blog.pfsense.org/?p=2108