Author Archive

2.1.2 Release Now available

Thursday, April 10th, 2014

pfSense release 2.1.2 follows less than a week after pfSense release 2.1.1.  pfSense 2.1.2 is primarily a security release.

Security Fixes

The Heartbleed OpenSSL bug and another OpenSSL bug which enables a side-channel attack are both covered by the following security announcements:

Packages also have their own independent fixes and need updating. During the firmware update process the packages will be properly reinstalled.   If this fails for any reason, uninstall and then reinstall packages to ensure that the latest version of the binaries is in use.
Read the rest of this entry »

2.1.1-RELEASE now available

Friday, April 4th, 2014

I’m happy to announce the release of pfSense 2.1.1.

The largest change is to close the following security issues / CVEs:

  • FreeBSD-SA-14:01.bsnmpd / CVE-2014-1452
  • FreeBSD-SA-14:02.ntpd / CVE-2013-5211
  • FreeBSD-SA-14:03.openssl / CVE-2013-4353, CVE-2013-6449, CVE-2013-6450

Other than these, the em/igb/ixgb/ixgbe drivers have been upgraded to add support for i210 and i354 NICs.   Some Intel 10Gb Ethernet NICs will also see improved performance.

The release is making its way to the mirrors now. The complete list of significant changes can also be found here including more details on the above.

pfSense on m3.medium and m3.large Amazon EC2 instances

Wednesday, April 2nd, 2014

The Netgate pfSense® marketplace AMI can run on the new m3.medium and m3.large instance types with significantly lower AWS usage charges than on the previously available m3.xlarge instance type.

The existing user guide now has a section that mentions “Protecting a private network in VPC”, or you can just read the new section on using VPC with pfSense.

 

NYC*BSDcon 2014

Friday, January 31st, 2014

image

I’ll be at NYC*BSDcon next weekend (February 8, 2014).

Be sure to say, “Hi” if you see me.

pfSense talk at “Tokyo FreeBSD Benkyokai” February 17

Tuesday, January 14th, 2014

Isaac (.ike) Levy, Senior Unix System Administrator at National Hockey League (http://www.linkedin.com/in/dotike) will be presenting “pfSense Practical Experiences: from home routers, to High-Availability Datacenter Deployments” at the Tokyo FreeBSD Benkyokai (FreeBSD Study Session) Group on February 17, 2014.

http://atnd.org/events/47084

Ike states that his main objective in Tokyo is to get some real help with the Japanese translation of pfSense.

Ike recently committed “Phase 1″ (machine translation) of this effort, which you can view at GitHub.

Anata to kōun ni kansha (あなたと幸運に感謝), Ike.

Shop at the pfSense store

Monday, December 23rd, 2013

Hide your wallet, the pfSense store is alive. First mentioned in 2008, we’ve finally got it done.

(And you thought 2.1 took a long time.)

Shirts, stickers, pre-loaded USB sticks, and yes, even hardware are now available directly from the same team that brings you pfSense.

Along with pfSense Gold, this is one of the best ways to directly support the project.

To kick things off, we’re running a pre-order sale on shirts. $5.00 off until the end of the year.

(Note that the shipping department will not open until the very beginning of 2014.)

pfSense 2.1 on AWS EC2

Thursday, November 21st, 2013

We now have pfSense 2.1 available on Amazon’s Elastic Compute Cloud (EC2).

Finally.

All instances are currently 64-bit, and thus require HVM.  As such, the EC2 types which are supported are somewhat limited.

Currently there are two versions.   There is a pfSense Certified release available in the AWS Marketplace.  You can find it here: Netgate pfSense Certified Router/Firewall/VPN
Read the rest of this entry »

We’re looking for a new support person

Wednesday, November 13th, 2013

First, note the new skin on the blog (and elsewhere around pfsense.org).   Jared has been busy on both the front-end and back-end of the various websites (blog, forum, etc.)  Huge props to him for his efforts.

Second, due to growth in our commercial support, development and rebranding services, we’re in need of a consultant.  Unless you live in Austin, TX, this is a full time (40 hours a week), permanent, work from home position. Exact hours will depend on the chosen candidate’s preference, but need to be mostly sometime between 8 PM and 8 AM US Eastern time to provide coverage for overseas customers.
Read the rest of this entry »

… by any other name

Monday, September 16th, 2013

Howdy,

If you’ve downloaded pfSense 2.1, you might have noticed that the footer has changed.  What used to say “BSD Perimeter” now says “ESF”.   In early Spring it became apparent that we should consider a reorganization of the company.  BSD Perimeter is still incorporated in Kentucky, but all of the directors and owners live in Texas.   Re-incorporating gave us chance to clean up a few issues, and to change the name, signaling a break with the past.
Read the rest of this entry »