Die Open-Source Firewall OPNsense erhielt das Bugfix Release 23.7.3, dass neben neuer Sprache, Fehler behebt und Neuigkeiten zur Open-Source Lösung für VPN Wireguard berichtet. Ein Neustart nach dem Update wird automatisch durchgeführt.
OPNsense 23.7.3 Release Notes
Recently we improved the workflow for bringing language updates to the release so here we are with an updated translation package including added support for Korean. Thanks a lot to all contributors for keeping this going strong!
If you would like to help with translations you can sign up via:
Of note is also the largely rewritten backend for the WireGuard kernel module plugin which offers separate services for each instance much like OpenVPN offers it. The requirement of the wireguard-tools and bash packages were removed. This also means the plugin will be moved to the core for 24.1 along with Wireguard go plugin being removed completely since on FreeBSD 13.2 no external package is needed to enjoy WireGuard and the permanent existence of a kernel module renders the Go fallback defunct through wireguard-tools/wg-quick implementation quirks.
Here are the full patch notes:
- system: fix missing config save when RRD data is supplied during backup import
- system: defer config reload to SIGHUP in gateway watcher
- system: handle „force_down“ state correctly in gateway watcher
- system: make Gateways class argument optional
- interfaces: tweak UX of interface settings page
- interfaces: further improve PPP MTU handling
- interfaces: remove workaround to re-reload the routing during bootup for edge case that no longer exist
- firewall: fix group priority handling regression
- firewall: improve filter functionality to combine multiple network clauses in states page
- dhcp: map interfaces to interface names instead of devices
- dhcp: fix iaid_duid parsing in IPv6 lease page
- intrusion detection: support „bypass“ keyword in user-defined rules (contributed by Monviech)
- openvpn: fix mismatch issue when pinning a CSO to a specific instance
- openvpn: add advanced option for optional CA selection
- unbound: fix concurrent session closing the handle while still writing data in Python module
- web proxy: remove long deprecated „dns_v4_first“ setting from GUI
- mvc: extend PortField to optionally allow port type aliases
- lang: update all languages and add Korean
- plugins: os-firewall 1.4 adds port alias support
- plugins: os-frr 1.35[1]
- plugins: os-wireguard 2.0[2]
- ports: filterlog fix to prevent crash on default rule number -1
Interessiert in verschiedenste IT Themen, schreibe ich in diesem Blog über Software, Hardware, Smart Home, Games und vieles mehr. Ich berichte z.B. über die Installation und Konfiguration von Software als auch von Problemen mit dieser. News sind ebenso spannend, sodass ich auch über Updates, Releases und Neuigkeiten aus der IT berichte. Letztendlich nutze ich Taste-of-IT als eigene Dokumentation und Anlaufstelle bei wiederkehrenden Themen. Ich hoffe ich kann dich ebenso informieren und bei Problemen eine schnelle Lösung anbieten. Wer meinen Aufwand unterstützen möchte, kann gerne eine Tasse oder Pod Kaffe per PayPal spenden – vielen Dank.