pfSense, 7 years young. Congratulations

pfSense is Seven

The pfSense  (which stands for…) project exists 7 years this week, well, that is the age of the pfSense domain. I’m sure the project existed long before that in Chris Buechler, the project founder’s head.

Congratulations to Chris and his team for the great job they’re doing and all the work they’ve done so far. According to some update stats there are currently ca. 100,000 known live pfSense installs.

pfSense and PBI’s

Some say that PC-BSD‘s PBI package format is not needed in addition to other *BSD ways of installing software, and that it’s “un-UNIX”. I think it’s a very user-friendly, point-and-click way for installing software, and advanced users don’t need to use it.

It’s great to see that not only FreeNAS, the NAS O/S, but also pfSense will be supporting PBI packages in the future:

Moving packages to PBIs – the package system in 2.1 will switch to using the PBI package system, originally from PC-BSD, though also used by some on stock FreeBSD installs. The benefit of using PBIs is each package has all its dependencies included in the package, which eliminates the dependency messes that can happen currently, such as one package requiring a certain version of a dependent package but another requiring a different version, uninstallation of one package stomping on another package by uninstalling a dependency it requires, uninstallation of a package breaking the base system by deleting things it uses (though we already work around that one automatically), easing clean uninstall of packages, amongst other benefits. This will be a great improvement in the package system for 2.1. (source)

If you’re looking for a feature rich (BSD) firewall, why not consider pfSense?

Embedded Monowall Installation (video)

This tutorial will guide you through copying the m0n0wall image to a compact flash card and the initial configuration of the m0n0wall on the ALIX embedded board. I will be using a VPN accelerator card since I will have about 10 IPsec tunnels actively running at one time. I would only recommend using the VPN accelerator card if you plan on maintaining several VPN tunnels at one time, otherwise it is overkill.


Debian GNU/kFreeBSD on production

Debian GNU/kFreeBSD is a port that consists of GNU userland using the GNU C library on top of FreeBSD’s kernel, coupled with the regular Debian package set. This project is still very much work-in-progress. Rebort has Millan has a summary post of recent changes and updates: Recent improvements with Debian GNU/kFreeBSD

Robert has been using Debian GNU/kFreeBSD for a few week and writes:

Yesterday I begun using Debian GNU/kFreeBSD “squeeze” in thorin, my main workstation.

During the last few weeks I had to work through some of the limitations that were holding me back, such automated driver load and FUSE. I was lucky enough that other people filled the missing pieces I wanted, such as NFS client support and a GRUB bugfix that broke booting from Mirrored pools.

I have to say that I’m very satisfied. Barring a pair of small nuissances, the result is quite impressive: more…

PC-BSD 9.0RC1 available & new website

The first release candidate for the upcoming PC-BSD 9.0 is now available! This release includes the latest FreeBSD 9.0-RC1 base, along with numerous bug fixes and enhancements.

Notable changes in this release are:

  • Added support for installing to BootCamp partitions on Apple OSX systems
  • Added checks for invalid characters in the username
  • Added button to installer allowing toggle between US keyboard layout and currently selected
  • Added improved portjail init scripts
  • Life-Preserver now defaults to backing up to a remote directory set as the client hostname
  • Add some sanity checks to pbi-manager when creating new repositories
  • Fixed bugs setting the proxy server in pbi-manager / AppCafe (Uses the default config in networking GUI)
  • Improved the default firewall ruleset
  • Enable IPv6 support on all nic’s by default
  • Added options to pbi-manager which enables tmpfs memory building
  • Improved pc-thinclient setup to use pre-built FreeBSD world instead of building from source
  • Fix bug in pbi-manager when doing binary updates to ensure it is only attempted on the correct build
  • Fix issues installing with mirrors / raidz on ZFS

Source: PC-BSD 9.0RC1 Available (PC-BSD blog)

Have you seen PC-BSD’s new website? It has now the same look and feel as FreeNAS and iXsystems (Both PC-BSD and FreeNAS are projects supported by iXsystems).

 

How to configure a pfSense 2.0 Cluster using CARP

howtoforge.com has a easy to follow tutorial (How to configure a pfSense 2.0 Cluster using CARP) showing you how to set up a pfSense cluster with CARP.

In this HowTo I will show you how to configure a pfSense 2.0 Cluster using CARP Failover. pfSense is quite a advanced (open-source) firewall being used everywhere from homes to enterprise level networks, I have been playing around with pfsense now for the last 3 months and to be honest I am not looking back, it is packed full of features and can be deployed easily within minutes depending on your requirements.

This howto is based on this tutorial on pfSense’s website: Configuring pfSense Hardware Redundancy (CARP).

 

Mixed FreeBSD News: FreeNAS 8.0.2, GhostBSD 2.5, WhatsApp

FreeNAS 8.0.2

iXsystems has released a new update for FreeNAS, FreeNAS 8.0.2, fixing the email subsystem. More release updates here.

GhostBSD 2.5

GhostBSD 2.5 BETA-2 is now available for testing. GhostBSD 2.5 comes in a lite and a DVD version which are based on FreeBSD 9 Beta. GhostBSD is a FreeBSD based desktop operating systems with Gnome

WhatsAPP uses FreeBSD

What kind of operating system does one need for 1 million concurrent TCP/IP sessions? FreeBSD is one of the choices. WhatsApp uses FreeBSD in combination with Erlang to achieve this: One Million.

WhatsApp Messenger is a cross-platform mobile messenger that replaces SMS and works through the existing internet data plan of your device. WhatsApp is available for iPhone, BlackBerry, Android and Nokia Symbian60 phones. Because WhatsApp Messenger uses the same internet data plan that you use for email and web browsing, there is no cost to message and stay in touch with your friends.

A new kind of Cache

It’s called Bullet Cache, created by Ivan Voras.

“Think of Bullet Cache as  ”Memcached, only better” :) It offers some unique data query options and is blazingly fast!”

Introduction - Installation & testing.

KDE SC 4.7.2 is available in ports.

BSDRP 1.0 (BSD Router Project)

Olivier Cochard-Labbé has made version 1.0 available of the BSD Router Project (BSDRP). Before the FreeNAS project was taken over by iXsystems, Olivier was the founder and project leader of FreeNAS.

BSD Router Project (BSDRP) is an open source router distribution based on FreeBSD, supporting all majors routing protocols (RIP, OSPF, BGP, PIM, etc..) and fits on a 256Mb Compact Flash/USB.

For more information, check out the Release Notes or visit the BSDRP website.

FreeNAS 8.0 videos (toosmartguys)

TooSmartGuys have uploaded 4 more FreeNAS releated videos. This time they’re using FreeNAS 8.0, explaining the hardware needed, how to build the machine and how to configure it.

Building A FreeNAS 8 Box – Part 1 – Hardware

FreeNAS 8 – Part 2 – Build And Install

FreeNAS 8 – Part 3 – Configuration

FreeNAS 8 – Part 4 – FTP Server Setup

(via nasstorageserver.com)