Archive for November, 2008

pfSense 1.2.1-RC2 VMware Appliance available

Friday, November 21st, 2008

With each release going forward, we will be providing a VMware appliance in addition to the versions currently provided. This one is being handled a little differently since it is in the first, in the future they will just be a part of the normal release announcement.

Many people (including nearly all of our developers) run pfSense in various VMware products covering their entire product line. For years now, the pfSense installer has automatically detected when you are running in VMware and applied OS tweaks specific to optimal performance when running under VMware hypervisors. More recently, Open-VM-Tools, the open source version of VMware Tools,is also available as a pfSense package. If you are one of the many existing users of pfSense in VMware, you should consider installing that package.
Read the rest of this entry »

pfSense 1.2.1-RC2 now available

Friday, November 21st, 2008

pfSense 1.2.1-RC2 is now available for testing. This is the first official RC release of 1.2.1, and we believe it eliminates all regressions that have been found since the first 1.2.1 snapshots were made available 4 months ago. Plus it fixes several bugs in 1.2.

1.2.1-RC2 VMware Appliance is also available.

The changes from 1.2 release:

  • Numerous changes to accommodate differences in FreeBSD 7.0. Lesson learned here – we hoped 1.2.1 would be a fast release cycle, but it ended up being a significant amount of work because of the changes in FreeBSD from 6.2 to 7.0. It’s certainly for the better, as 7.0 brings improved performance, more and better hardware support, enhanced wireless capabilities, and more.
  • Read the rest of this entry »

The Road to QoS

Monday, November 17th, 2008

Check out a new blog that goes over the improvements of the pfSense traffic shaper in 2.0.  Basically we are on the road to protocol inspection / classification.

This will be very exciting once the work is completed!!

Linked in pfSense software users group

Tuesday, November 11th, 2008

Use linked in?   Join our pfSense software users group!!

WPA no longer considered reliable?

Thursday, November 6th, 2008

There are a number of stories making the rounds today about how WPA has been cracked, though “it’s not as bad as you think…yet”.

WPA2 when using TKIP is also affected.

Running a VPN on top of your wireless encryption can offer additional protection, and you may want to consider such a deployment regardless of the wireless encryption deployed in your network. Whether pfSense is your AP, or your APs connect to it, it can provide VPN services to internal users on your wireless network, and you can restrict all traffic coming in from your wireless network to only access the VPN. Then after successfully authenticating to the VPN, users can access your internal network and/or the Internet.

Edit:  SANS has a good webcast on this topic for those interested in details.