Softpedia – pfSense 2.3.2 Open Source BSD Firewall Distro Arrives with over 70 Improvements

An update is available as a follow up to the recently released pfSense version 2.3.1. Version 2.3.1. addressed over 100 bug fixes. See the link below to grab the latest version.

2.3.1 Update 1 (2.3.1_1) is now available. This includes one security fix to the web GUI, and 7 other bug fixes. The 2.3.1-RELEASE change list has been updated with an Update 1 section specifying the changes.

This update will reboot the system after installing.

pfSense 2.3.1 announcement: https://blog.pfsense.org/?p=2050

Update 1 announcement: https://blog.pfsense.org/?p=2068

Related links:

Softpedia – pfSense 2.3 BSD Firewall Gets Its First Major Update with over 100 Changes

DistroWatch – BSD Release: pfSense 2.3.1

The developers of pfSense have made available version 2.3.1 release. Download the update or install file. See the links in the summary for a full list of changes.

We are happy to announce the release of pfSense® software version 2.3.1!

This is a maintenance release in the 2.3.x series, bringing a number of bug fixes, two security fixes in the GUI, as well as security fixes for OpenSSL, OpenVPN and FreeBSD atkbd and sendmsg. The full list of changes is on the 2.3.1 New Features and Changes page.

This release includes a total of 103 bug fixes. 79 regressions in 2.3 have been fixed, mostly minor issues in the new GUI. Several of these are significant issues, and have resolved nearly all the post-upgrade problems encountered in 2.3-RELEASE. 24 issues affecting 2.2.x and prior versions have also been fixed.

If you haven’t yet caught up on the changes in 2.3.x, check out the Features and Highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward, and the webGUI update.

Official announcement: https://blog.pfsense.org/?p=2050

Related links:

DistroWatch – BSD Release: pfSense 2.3.1

Softpedia – pfSense 2.3 BSD Firewall Gets Its First Major Update with over 100 Changes

The developers of pfSense have made available version 2.3-RELEASE! Download the latest version in the link below.

We are happy to announce the release of pfSense® software version 2.3!

The most significant changes in this release are a rewrite of the webGUI utilizing Bootstrap, and the underlying system, including the base system and kernel, being converted entirely to FreeBSD pkg. The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past.  The webGUI rewrite brings a new responsive look and feel to pfSense requiring a minimum of resizing or scrolling on  a wide range of devices from desktop to mobile phones.

For the highlights, check out the Features and Highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward, and the webGUI update.

The full list of changes is on the 2.3 New Features and Changes page.

To get to a release, we’ve closed 760 total tickets.  While the majority of these were related to the Bootstrap conversion, 137 are fixed bugs impacting 2.2.6 and earlier releases.

Downloads for New Installs

Downloads to Upgrade Existing Systems – note it’s usually easier to just use the auto-update functionality, in which case you don’t need to download anything from here. Check the Firmware Updates page for details.

Official announcement: https://blog.pfsense.org/?p=2008

Related links:

DistroWatch – BSD Release: pfSense 2.3

Phoronix – pfSense 2.3 Released With New Web UI

Softpedia – pfSense 2.3 BSD-Based Firewall Officially Released with Revamped webGUI, More

[Discussion] /r/FreeBSD – pfSense 2.3 (based on FreeBSD 10.3, now with pkg, not PBI) released

The developers of pfSense have made available the first release candidate for version 2.3.

We are proud to announce pfSense® software version 2.3 Release Candidate is now available!

The most significant changes in this release are a rewrite of the webGUI utilizing Bootstrap, and the underlying system being converted entirely to FreeBSD pkg (including the base system and kernel). The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past.

For the highlights, check out the Features and Highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward, and the webGUI update.

The full list of changes is on the 2.3 New Features and Changes page.

In the process of getting here, we’ve closed out 742 total tickets, with most of those being items related to the Bootstrap conversion. Of those, 136 bugs have been resolved that affect 2.2.x and prior versions.

Downloads

New Installs

Upgrades

You can upgrade straight to 2.3 from any previous release. Check the Upgrade Guide for details.

Official announcement: https://blog.pfsense.org/?p=1997

DistroWatch:  http://distrowatch.com/?newsid=09348

The developers of pfSense have made available the alpha version of version 2.3. Notable changes are the Bootstrap, rewrite of the front end, and many more. Be aware that it is not suitable in a production system yet.

Link: https://blog.pfsense.org/?p=1854

The developers of pfSense have made available version 2.2.4. Several changes noted are security fixes, PHP update, webGUI update, and more. Download here or check out the full post below.

Original: https://blog.pfsense.org/?p=1833

pfSense® software version 2.2.4 release is now available, bringing a number of bug fixes and some security updates.

Security Fixes and Errata

• pfSense-SA-15_07.webgui: Multiple Stored XSS Vulnerabilities in the pfSense WebGUI
  • The complete list of affected pages and fields is listed in the linked SA.
• FreeBSD-SA-15:13.tcp: Resource exhaustion due to sessions stuck in LAST_ACK state. Note this only applies to scenarios where ports listening on pfSense itself (not things passed through via NAT, routing or bridging) are opened to untrusted networks. This doesn’t apply to the default configuration.
• Note: FreeBSD-SA-15:13.openssl does not apply to pfSense. pfSense did not include a vulnerable version of OpenSSL, and thus was not vulnerable.

• Further fixes for file corruption in various cases during an unclean shut down (crash, power loss, etc.). #4523
  • Fixed pw in FreeBSD to address passwd/group corruption
  • Fixed config.xml writing to use fsync properly to avoid cases when it could end up empty. #4803
  • Removed the ‘sync’ option from filesystems for new full installs and full upgrades now that the real fix is in place.
  • Removed softupdates and journaling (AKA SU+J) from NanoBSD, they remain on full installs. #4822

• The forcesync patch for #2401 is still considered harmful to the filesystem and has been kept out. As such, there may be some noticeable slowness with NanoBSD on certain slower disks, especially CF cards and to a lesser extent, SD cards. If this is a problem, the filesystem may be kept read-write on a permanent basis using the option on Diagnostics > NanoBSD. With the other above changes, risk is minimal. We advise replacing the affected CF/SD media by a new, faster card as soon as possible. #4822

• Upgraded PHP to 5.5.27 to address CVE-2015-3152 #4832

• Lowered SSH LoginGraceTime from 2 minutes to 30 seconds to mitigate the impact of MaxAuthTries bypass bug. Note Sshlockout will lock out offending IPs in all past, current and future versions. #4875

Bug Fixes and Change List

The bug fixes and changes in this release are detailed here.

[Read more…]