Saturday, February 4, 2023
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Software > OPNsense 22.7 released

OPNsense 22.7 released

The OPNsense team announced the general availability of OPNsense 22.7, coming with new features and enhancements.


Erdem Yasar Erdem Yasar
August 1, 2022
7 min read
OPNsense 22.7 released
  • The OPNsense team announced the release and general availability of OPNsense version 22.7, nicknamed Powerful Panther.
  • OPNsense’s latest release features the upgrade to FreeBSD 13.1, PHP 8.0, Phalcon 5, stacked VLAN, and Intel QuickAssist support.
  • The OPNsense team announced that LibreSSL flavor is scheduled for removal at the end of this series and won’t receive maintenance.

A FreeBSD-based open-source operating system designed for firewalls and routers and pfSense fork, OPNsense‘s new version is released. The latest release, OPNsense 22.7, nicknamed “Powerful Panther” comes with FreeBSD 13.1 and PHP 8.0. The latest version can be downloaded from its official website.

Improvements and changes

OPNsense 22.7 is coming with FreeBSD 13.1, PHP 8.0, and Phalcon 5. Another important feature is stacked VLAN and Intel QuickAssist support. Powerful Panther also introduces DDoS protection using SYN cookies, MVC/API pages for IPsec status and Unbound overrides. OPNsense 22.7 includes the new APCUPSD and CrowdSec plugins and more.

The OPNsense team also announced that the LibreSSL flavor will be removed at the end of this series and won’t receive any further maintenance. It can’t work as it should be and starting with Tor will have its plugin removed from the flavor to be able to keep updating it to their latest versions in the OpenSSL flavor. In the next major upgrade, the transition to the OpenSSL flavor will be completed but the team advised users to switch between 22.7.x for the least amount of possible impact. Full patch notes against 22.1.10:

  • system: changed certificate revocation to use the phpseclib library
  • system: performance improvement for set_single_sysctl()
  • system: restart syslog fully and only once after all services have been started
  • system: new setting for deployment mode to control PHP error flow
  • system: /tmp MFS now uses a maximum of 50% of RAM by default and can be adjusted
  • system: /var MFS becomes /var/log MFS and uses a maximum of 50% of RAM by default and can be adjusted
  • system: previous special /var MFS content is now permanently stored under /var to ensure full operability
  • system: flush all core Python pyc files on updates
  • system: protect syslog-ng against out of memory kills
  • system: add filter to system log widget (contributed by kulikov-a)
  • system: disable RRD and NetFlow shutdown backups by default
  • system: render interfaces in convert_config()
  • system: apply default firewall policy before interface configuration
  • system: move remote backup script to proper file system location
  • system: disable flag was not removing static route
  • system: Net_IPv6::compress() should not compress “::” to “”
  • system: fix RADIUS config validation for port requirement (contributed by Josh Soref)
  • system: remove last bits of circular logging (CLOG) support
  • system: removed legacy Diffie-Hellman parameter handling
  • interfaces: refactored LAGG, wireless and static ARP handling
  • interfaces: provide automatic startup of Loopback, IPsec, OpenVPN, VXLAN devices
  • interfaces: removed the side effect reliance on /var/run/booting file
  • interfaces: add dynamic reload of required devices
  • interfaces: add WPA enterprise configuration for infrastructure mode (contributed by Manuel Faux)
  • interfaces: fix “Allow service binding” for multiple aliases per interface (contributed by Adam Dawidowski)
  • interfaces: auto-detect far gateway requirement for default route
  • interfaces: switch to MVC/API variant for DNS lookup page
  • interfaces: refactor DHCP and PPPoE scripts to use ifctl exclusively
  • interfaces: prevent the removal of default routes in dhclient-script
  • interfaces: fix inconsistencies in wireless handling
  • interfaces: fix unable to bring up multiple loopback (contributed Johnny S. Lee)
  • interfaces: fix unable to bring up multiple VXLAN
  • interfaces: check if int before passing to convert_seconds_to_hms()
  • interfaces: disable IPv6 inside 4in6 and 4in4 GIF tunnels (contributed by Maurice Walker)
  • interfaces: ping diagnostics tool must explicitly set IP version (contributed by Maurice Walker)
  • interfaces: remove other inconsistencies regarding ping utility changes in FreeBSD 13
  • interfaces: correct regex validation for dhcp6c expire statement (contributed by Josh Soref)
  • interfaces: add missing scope to link-local GIF host route
  • interfaces: add iwlwiwi(4) to wireless devices
  • firewall: improved port alias performance
  • firewall: obsoleted notices inside the synchronization code
  • firewall: support logging in NPT rules
  • firewall: append missing link-local to inet6 :network selector
  • firewall: move inspect action into its own async API action to prevent long page loads
  • firewall: internal aliases cannot be disabled
  • firewall: performance improvement for reading live log
  • firewall: ignore age/expire when not provided or empty in sessions page
  • firewall: add general firewall log for alias and filter system log messages
  • dhcp: no longer automatically add a link-local address to bridges if IPv6 service is running on it
  • dhcp: allow running relay service on bridges
  • dhcp: clean up IPv6 prefixes script
  • dhcp: include ddns-hostname and other cleanups (contributed by Sascha Buxhofer)
  • dhcp: remove duplicated ddnsupdate static mapping switch
  • dhcp: remove print_content_box() use
  • dhcp: switch to shell-based DHCPv6 lease watcher
  • dhcp: rewrite prefix merge for dynamic IPv6 tracking to support bitwise selection
  • dnsmasq: switch to a Python-based DHCP lease watcher
  • firmware: console script can now show changelog using “less” before update
  • firmware: disable crash reporter in development deployment mode
  • firmware: limit changelog-based update check on dashboard to release version
  • firmware: provide an upgrade log audit
  • intrusion detection: remove dead link to McAfee rule references
  • ipsec: add “IPv4+6” protocol for mobile phase 1 entries (contributed by vnxme)
  • ipsec: mobile property boolean duplication in phase 2
  • ipsec: remember phase 1 setting for next action
  • ipsec: switch to MVC/API variants of SPD, SAD and connection pages
  • ipsec: small UX tweaks in status page
  • openvpn: pinned Diffie-Hellman parameter to RFC 7919 4096 bit key
  • unbound: prevent crash of DHCP lease watcher due to unhandled CalledProcessError exception
  • lang: bring back Italian and update all languages to latest available translations
  • mvc: bugfix search and sort issues for searchRecordsetBase()
  • mvc: add support for non-persistent (memory) models
  • mvc: throw when no mount found in model (contributed by agh1467)
  • mvc: fix rowCount when all is selected in searchRecordsetBase()
  • mvc: fix two regressions in BaseField for Phalcon 5
  • mvc: store configuration changes only when actual changes exist
  • ui: removed Internet Explorer support
  • ui: boostrap-select ignored header height
  • ui: merge option objects instead of replacing them in bootgrid (contributed by agh1467)
  • ui: correct required API for command-info in bootgrid (contributed by agh1467)
  • ui: add catch undefined TypeError in SimpleActionButton (contributed by agh1467)
  • ui: fix assorted typos in the code base (contributed by Josh Soref)
  • ui: handle HTTP 500 error gracefully in MVC pages
  • plugins: os-apcupsd 1.0 (contributed by David Berry, Dan Lundqvist and Nicola Pellegrini)
  • plugins: os-boot-delay is no longer available
  • plugins: os-crowdsec 1.0
  • plugins: os-nginx fix for missing DH parameter file
  • plugins: os-postfix fix for missing DH parameter file
  • plugins: os-tayga 1.2
  • plugins: os-tor no longer available on LibreSSL due to incompatibilities with newer Tor versions
  • plugins: os-web-proxy-useracl is no longer available, no updates since 2017
  • src: FreeBSD 13.1-RELEASE
  • src: axgbe: also validate configuration register in GPIO expander
  • src: pf: ensure that pfiio_name is always nul terminated
  • src: pf: make sure that pfi_update_status() always zeros counters
  • src: igc: change default duplex setting
  • src: e1000: try auto-negotiation for fixed 100 or 10 configuration
  • ports: php 8.0.20
  • ports: sqlite 3.39.0
  • ports: suricata 6.0.6
  • ports: unbound 1.16.1

See more Software News


Tags: FirewallOPNsense
Erdem Yasar

Erdem Yasar

Erdem Yasar is a news editor at Cloud7 News. Erdem started his career by writing video game reviews in 2007 for PC World magazine while he was studying computer engineering. In the following years, he focused on software development with various programming languages. After his graduation, he continued to work as an editor for several major tech-related websites and magazines. During the 2010s, Erdem Yasar shifted his focus to cloud computing, hosting, and data centers as they were becoming more popular topics in the tech industry. Erdem Yasar also worked with various industry-leading tech companies as a content creator by writing blog posts and other articles. Prior to his role at Cloud7 News, Erdem was the managing editor of T3 Magazine.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
Fortinet introduces its new cloud-native protection offering, FortiCNP

Fortinet introduces its new cloud-native protection offering, FortiCNP

Related News

LibreOffice 7.5 Community is released. What's new

LibreOffice 7.5 Community is released. What’s new?

February 3, 2023 3:30 pm
OpenAI can now detect AI-written text

OpenAI’s AI classifier tool can now detect AI-written text

February 2, 2023 3:30 pm
OPNsense 23.1 released

OPNsense 23.1 released, download now

January 31, 2023 3:15 pm
GIMP developers pushing hard to release version 3.0 in 2023

GIMP developers pushing hard to release version 3.0 in 2023

January 31, 2023 2:45 pm
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter
Select list(s):

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Get the free newsletter

Subscribe to receive the latest IT business updates straight to your inbox.

Select list(s):

Check your inbox or spam folder to confirm your subscription.

Editor's Choice

What’s new in Linux kernel 6.2 rc6?

10 Best Web Hosting Services of 2023

Ubuntu 22.04 LTS is available for download. What is new?

CERN and Fermilab recommend AlmaLinux

7 best hosting control panels of 2023

How to update Linux Kernel without rebooting?

7 best Linux mail servers of 2023

7 best cPanel alternatives for 2023

7 best Linux web browsers for 2023

7 best CentOS alternatives

7 best Linux server distros of 2023

Interview with Igor Seletskiy on AlmaLinux

How to create a VM on VMware Workstation

Recent News

  • LockBit encryptor source code is updated
  • LibreOffice 7.5 Community is released. What’s new?
  • NTT to add Palo Alto Networks’ solution to its portfolio
  • Gcore announces partnership with Super Protocol
  • Fortinet is expanding its SOC offerings portfolio

Cloud7 News
Cloud7 is a news source that publishes the latest news, reviews, comparisons, opinions, and exclusive interviews to help tech users of high-experience levels in the IT industry.

EXPLORE

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • How-Tos
  • Troubleshooting

RESOURCES

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2023, Cloud7 News. All rights reserved.

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2023, Cloud7 News. All rights reserved.

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.