Friday, May 27, 2022
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • How-Tos
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • Video
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • How-Tos
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • Video
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Cybersecurity > OPNsense 21.7 released

OPNsense 21.7 released

The OPNsense team announced the general availability of OPNsense 21.7, nicknamed "Noble Nightingale".

Erdem Yasar by Erdem Yasar
July 30, 2021
in Cybersecurity
5 min read
0 0
0
OPNsense 21.7 released
0
SHARES
146
VIEWS
Share on FacebookShare on TwitterShare on EmailFollow on Google News

The OPNsense team announced the release of OPNsense 21.7, nicknamed “Noble Nightingale”. The team also stated that the latest version is one of the largest iterations of code changes in its recent history.

Last release on HardenedBSD 12.1

According to the announcement, OPNsense 21.7 will be the last release on
HardenedBSD 12.1 as the team plans to start working on FreeBSD 13 for the 22.1 series. In the latest version, the installer was replaced to offer native ZFS installations and prevent glitches in virtual machines using UEFI. In OPNsense 21.7, firmware updates were partially redesigned and the UI layout was consolidated between static and MVC pages. It can be downloaded from one of its mirrors.

Full patch notes:

o system: Norwegian translation (contributed by Stein-Aksel Basma)
o system: correctly enforce “Disable writing log files to the local disk” when circular logs are not used
o system: allow to edit gateway entries with non-conforming names
o system: add HA sync entry for live log templates
o system: lock config writes during HA merges
o system: raised PHP memory limit to 1G
o system: raised encryption standard for encrypted config.xml export
o system: removed NextCloud backup from core functionality
o system: allow more characters in the certificate/authority organization fields (contributed by Jan De Luyck)
o system: default gateway failure state killing is now disabled by default
o system: circular logs are now disabled by default
o system: removed unused traffic API dashboard feed
o system: prevent use of client certificates in web GUI
o system: lock config writes during HA merges
o system: hide far gateway option for IPv6
o system: isvalidpid() is not required for a single killbypid()
o system: fix PHP 7.4 deprecated warning in IPv6 library
o system: do not split XMLRPC password into multiple pieces
o system: enable group sync for LDAP servers that do not return memberOf (contributed by rdd2)
o system: prevent excessive config writes on LDAP import
o system: allow cron-based restarts of all “restart” action providers
o interfaces: improve GRE/GIF configuration handling and dynamic reload behaviour
o interfaces: remove duplicated handling of PPP IPv6 interface detection
o interfaces: refactored address removal into interfaces_addresses_flush()
o interfaces: flush IPv6 addresses on the correct IPv6 interface when it differs from the IPv4 interface
o interfaces: do not check for existing CARP interfaces midstream
o interfaces: remove non-tunnel restriction from address collection
o interfaces: set tunnel flag for IPv4 tunnel plus cleanups
o interfaces: allow interface-based overrides of hardware checksum settings
o interfaces: refactor DNS lookup and add PTR to output (contributed by Maurice Walker)
o interfaces: deprecate SLAAC addresses on linkdown
o firewall: set label for obsolete rule in live log (contributed by kulikov-a)
o firewall: MVC rewrite of the states diagnostics pages under “States”
o firewall: MVC rewrite of the pfTop diagnostics pages under “Sessions”
o firewall: renamed “pfTables” diagnostics to “Aliases”
o firewall: add quick link to states counter from firewall rule inspection
o firewall: add manual reply-to configuration to rules
o firewall: delete related rules when an interface group is removed
o firewall: rename source/destination networks when group name changes
o firewall: possibility to filter nat/rdr action in live log
o firewall: use permanent promiscuous mode for pflog0
o firewall: add live log support for new filterlog format
o dhcp: remove ::/0 route from router advertisements (contributed by Maurice Walker)
o dhcp: always deprecate prefixes in automatic router advertisements
o dhcp: fix table header sorting in lease pages (contributed by vnxme)
o dhcp: lock access to settings pages when interface is not suitable for running a DHCP server
o dhcp: assorted improvements surrounding dhcpd_staticmap() for real world operation
o firmware: introduced connectivity check
o firmware: confirm plugin removal dialog
o firmware: static template for firmware upgrade message
o firmware: add version/date header into check script as well
o firmware: mask subscription in GUI output
o firmware: add “-q” option for in-place opnsense-bootstrap run
o firmware: fix grep call on FreeBSD 13 (contributed by Mariusz Zaborski)
o firmware: correct return code on type change in opnsense-update
o installer: assorted wording improvements
o intrusion detection: fix alert reads from eve.json
o ipsec: adhere to system defaults for route-to and reply-to when creating automatic VPN rules
o ipsec: switched to explicit type selection for identities
o network time: added NTPD client mode
o openvpn: offer the ability to export a user without a certificate
o openvpn: increase consistency between export types
o openvpn: fix invalid rules generated by wizard (contributed by kulikov-a)
o unbound: fix domain overrides for private address reverse lookup zones (contributed by Maurice Walker)
o unbound: add “unbound check” backend action
o unbound: allow to retain cache on service reload
o unbound: fix /var MFS dilemma for DNSBL after boot
o unbound: remove deprecated custom options setting
o unbound: switch model to integrate full DNS over TLS support
o unbound: add qname-minimisation-strict option
o unbound: renamed “blacklist” to “blocklist” for clarity
o console: throw error when opnsense-importer encounters an encrypted config.xml
o mvc: allow to unset attribute via setAttributeValue()
o mvc: catch all errors including syntax and class not found errors
o mvc: reduce differentials in config.xml when saving models
o rc: opnsense-beep melody database directory
o shell: fix IPv4 /31 assignment
o ui: improved JS hook_ipv4v6() to jump to /64 on IPv6 and back to /32 on IPv4
o ui: inject default tooltips into bootgrid formatters
o ui: prevent translation line breaks from breaking JS
o ui: removed $main_buttons magic handler
o ui: switch firewall category icon for clarity
o ui: work on unification of add buttons by minifying them and adding primary color markup
o plugins: os-acme-client 2.6
o plugins: os-etpro-telemetry 1.5 exclude stale data from telemetry upload
o plugins: os-fetchmail 1.0 (contributed by Michael Muenz)
o plugins: os-freeradius 1.9.15
o plugins: os-frr 1.22
o plugins: os-haproxy 3.4
o plugins: os-maltrail 1.8
o plugins: os-net-snmp 1.5
o plugins: os-nextcloud-backup 1.0
o plugins: os-nut 1.8
o plugins: os-postfix 1.9
o plugins: os-radsecproxy 1.0 (contributed by Tobias Boehnert)
o plugins: os-telegraf 1.11.0
o plugins: os-tftp 1.0 (contributed by Michael Muenz)
o plugins: os-zabbix-agent 1.9
o src: dhclient support for VLAN 0 decapsulation
o src: FreeBSD updates for the pf(4) and iflib(4) subsystems
o src: FreeBSD updates for Intel e1000, ixgbe and ixl drivers
o src: compatibility shim for upcoming rtsold “-M” command line option
o src: separately log NAT and firewall rules in pf(4)
o src: libcasper: fix descriptors numbers
o src: linux: prevent integer overflow in futex_requeue
o src: axgbe: make sure driver works on V1000 platform and remove unnecessary reset
o ports: drop hardening options to ease migration to FreeBSD ports tree
o ports: clog 1.0.2 fixes garbage header write on init
o ports: curl 7.78.0
o ports: filterlog adds CARP IPv6 support and moves label to previously reserved spot
o ports: libxml 2.9.12
o ports: nettle 3.7.3
o ports: nss 3.68
o ports: openvpn 2.5.3
o ports: php 7.4.21
o ports: phpseclib 2.0.32
o ports: python 3.8.10
o ports: sudo 1.9.7p1
o ports: suricata 5.0.7
o ports: syslog-ng 3.33.2

See more Cyber Security News


Tags: OPNsense
ShareTweetSendShare
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy
Previous Post

Fortinet unveils high-performance next-generation firewall

Next Post

Digital Realty announced a 64 MW facility in South Korea

Erdem Yasar

Erdem Yasar

Erdem Yasar is a news editor at Cloud7 News. Erdem started his career by writing video game reviews in 2007 for PC World magazine while he was studying computer engineering. In the following years, he focused on software development with various programming languages. After his graduation, he continued to work as an editor for several major tech-related websites and magazines. During the 2010s, Erdem Yasar shifted his focus to cloud computing, hosting, and data centers as they were becoming more popular topics in the tech industry. Erdem Yasar also worked with various industry-leading tech companies as a content creator by writing blog posts and other articles. Prior to his role at Cloud7 News, Erdem was the managing editor of T3 Magazine.

Related News

Proof-of-concept exploit code for VMware vulnerability released

Proof-of-concept exploit code for VMware vulnerability released

May 27, 2022 6:48 pm
Tor Browser on Tails 5.0 is not safe

Tor Browser on Tails 5.0 is not safe

May 27, 2022 12:32 pm
VMware ESXi servers are being targeted by a new ransomware

VMware ESXi servers are being targeted by a new ransomware

May 26, 2022 2:07 pm
StackPatch unveils new WAF packages

StackPath unveils new WAF packages

May 24, 2022 4:56 pm
Next Post
Digital Realty announced a 64 MW facility in South Korea

Digital Realty announced a 64 MW facility in South Korea

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Editor's Choice

Interview with Igor Seletskiy on AlmaLinux

7 best hosting control panels

How to update Linux Kernel without rebooting?

7 best Linux mail servers for 2022

7 best cPanel alternatives for 2022

7 best Linux web browsers for 2022

7 best CentOS alternatives

7 best Linux server distros for 2022

How to scan your server for Log4j (Log4Shell) vulnerability

Best web hosting service providers

AlmaLinux 8.6 Stable is ready to download

Ubuntu 22.04 LTS is available for download. What is new?

Kali Linux 2022.2 is ready for download

Advertisement

Recent News

  • Proof-of-concept exploit code for VMware vulnerability released
  • WordPress.com unveils WordPress Starter plan
  • Wayland 1.21 Alpha is released
  • AlmaLinux 9 “Emerald Puma” is available for download
  • Zyxel is patching 4 new vulnerabilities

Our Latest Interview

Interview: Erez Barak, Vice President Observability of Sumo Logic
Interview

Interview: Erez Barak, Vice President Observability of Sumo Logic

by Atalay Kelestemur
November 25, 2021 3:23 am


Cloud7 News is a news source that publishes the latest news, industry news and exclusive interviews on web hosting, cloud computing, data center, cybersecurity and linux.

News Categories

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • Blockchain

Our Free Modules

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About Us
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2022, Cloud7 News. Latest Cloud Computing, Web Hosting, Data Center Industry and Tech News

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • How-Tos
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • Video
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2022, Cloud7 News. Latest Cloud Computing, Web Hosting, Data Center Industry and Tech News

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.