Software-update: OPNsense 25.7.4
Het pakket OPNsense is een firewall met uitgebreide mogelijkheden. Het is gebaseerd op het besturingssysteem FreeBSD en is oorspronkelijk een fork van m0n0wall en pfSense. Het pakket kan volledig via een webinterface worden ingesteld en heeft onder andere ondersteuning voor mfa, OpenVPN, IPsec, CARP en captive portal. Daarnaast kan het packetfiltering toepassen en beschikt het over een traffic shaper. De ontwikkelaars achter OPNsense hebben de vierde update voor versie 25.7 uitgebracht en de releasenotes voor die uitgave kunnen hieronder worden gevonden.
OPNsense 25.7.4 releasedUpdates are slower than usual at the moment, but it is also relatively calm out there security-wise. While this finally ships Kea version 3 we are still working on the package manager version 2 and Suricata 8 with good results. Stay tuned!
Here are the full patch notes:system: fix reconfigure control on HA status page for small viewportssystem: add pluginctl -m and -v options for model migrations and validations callssystem: add "power off" backend action to GUI cron optionsinterfaces: replace MAC vendor database from py-netaddr with a simple local implementationinterfaces: refactor getting both devices from interface in settings pageinterfaces: get both devices of interface in one callinterfaces: fix flags display in interface overview detailfirewall: treat "skip" protocol as a string to avoid syntax errorfirewall: improve alias parsing performance in diagnostics pageintrusion detection: make grids virtual to fix performance issueskea-dhcp: honour IPv4 client specific reservation domain name option (contributed by NOYB)lang: new Ukrainian language and assorted updatesmonit: fix migration weirdness with run/post useunbound: add support for TXT records in host overridesbackend: add "!" operator to execute and flush cache when it existsmvc: remove empty string fallbacks for backend invokes that are no longer neededmvc: more style changes on existing core modelsmvc: disable Dnsmasq/Unbound template generationmvc: remove getDescription() overlay in ModelRelationFieldui: legacy_html_escape_form_data() was not escaping keys only data elements (reported by Alex Williams from Pellera Technologies)ui: do not add an empty option into an empty option groupui: add datetime-local to field typesplugins: os-caddy 2.0.4plugins: os-netbird 1.1 fixes service startup and switches to syslog (contributed by Bethuel Mmbaga)plugins: os-theme-advanced 1.1 fixes styling issues on 25.7 (contributed by Jaka Prašnikar)plugins: os-zabbix-agent 1.17plugins: os-zabbix-proxy 1.14ports: dnspython 2.8.0ports: kea 3.0.1ports: libpfctl 0.17ports: lighttpd 1.4.82ports: nss 3.116ports: openvpn 2.6.15ports: php 8.3.26ports: py-requests 2.32.5ports: suricata 7.0.12ports: unbound 1.24.0
system: fix reconfigure control on HA status page for small viewportssystem: add pluginctl -m and -v options for model migrations and validations callssystem: add "power off" backend action to GUI cron optionsinterfaces: replace MAC vendor database from py-netaddr with a simple local implementationinterfaces: refactor getting both devices from interface in settings pageinterfaces: get both devices of interface in one callinterfaces: fix flags display in interface overview detailfirewall: treat "skip" protocol as a string to avoid syntax errorfirewall: improve alias parsing performance in diagnostics pageintrusion detection: make grids virtual to fix performance issueskea-dhcp: honour IPv4 client specific reservation domain name option (contributed by NOYB)lang: new Ukrainian language and assorted updatesmonit: fix migration weirdness with run/post useunbound: add support for TXT records in host overridesbackend: add "!" operator to execute and flush cache when it existsmvc: remove empty string fallbacks for backend invokes that are no longer neededmvc: more style changes on existing core modelsmvc: disable Dnsmasq/Unbound template generationmvc: remove getDescription() overlay in ModelRelationFieldui: legacy_html_escape_form_data() was not escaping keys only data elements (reported by Alex Williams from Pellera Technologies)ui: do not add an empty option into an empty option groupui: add datetime-local to field typesplugins: os-caddy 2.0.4plugins: os-netbird 1.1 fixes service startup and switches to syslog (contributed by Bethuel Mmbaga)plugins: os-theme-advanced 1.1 fixes styling issues on 25.7 (contributed by Jaka Prašnikar)plugins: os-zabbix-agent 1.17plugins: os-zabbix-proxy 1.14ports: dnspython 2.8.0ports: kea 3.0.1ports: libpfctl 0.17ports: lighttpd 1.4.82ports: nss 3.116ports: openvpn 2.6.15ports: php 8.3.26ports: py-requests 2.32.5ports: suricata 7.0.12ports: unbound 1.24.0
Source:
Tweakers.net