tiermutter
Well-known member
Kürzlich ist Version 21.7.3 erschienen... sehr interessant ist tls-crypt support für OpenVPN, was in dieser Version aber fehlerhaft ist, daher ist nachfolgender Patch erforderlich:
Hier die Release Notes:
o system: allow automatic user creation on LDAP-based logins
o interfaces: add and use unified function is_interface_assigned() to prevent deleting assigned interfaces
o interfaces: sync firewall groups after internal create/destroy operations
o interfaces: add netstat tree search and improve page layout
o interfaces: replace opportunistic diagnostics IP address lookups with more robust variants
o firewall: clarify match/set priority in rules
o firewall: improve alias description/preview
o firewall: aliases maximum entries progress bar
o dhcp: add shared dhcpd_leases() reader and use it in both lease pages
o openvpn: use is_interface_assigned() to prevent deletion of assigned instances
o openvpn: CARP status read cleanups (contributed by vnxme)
o openvpn: tls-crypt support (contributed by vnxme)
o openvpn: do not create empty router file
o router advertisements: remove AdvRDNSSLifetime / AdvDNSSLLifetime bounds (contributed by Maurice Walker)
o unbound: register DHCP leases with their matching IP range configured DHCP domain
o plugins: os-acme-client 3.1[1]
o plugins: os-chrony 1.4[2]
o plugins: os-collectd 1.4[3]
o plugins: os-fetchmail 1.1[4]
o plugins: os-freeradius 1.9.16[5]
o plugins: os-realtek-re 1.0 adds Realtek vendor NIC driver module
o plugins: os-telegraf 1.12.1[6]
o ports: dnsmasq 2.86[7]
o ports: filterlog 0.5 removes unused IPv6 options support
o ports: nss 3.70[8]
o ports: pcre 8.45[9]
o ports: python 3.8.12[10]
o ports: sudo 1.9.8p1[11]
o ports: suricata 6.0.3[12]
o ports: syslog-ng 3.34.1[13]
Code:
# opnsense-patch 98e6d76d
Hier die Release Notes:
o system: allow automatic user creation on LDAP-based logins
o interfaces: add and use unified function is_interface_assigned() to prevent deleting assigned interfaces
o interfaces: sync firewall groups after internal create/destroy operations
o interfaces: add netstat tree search and improve page layout
o interfaces: replace opportunistic diagnostics IP address lookups with more robust variants
o firewall: clarify match/set priority in rules
o firewall: improve alias description/preview
o firewall: aliases maximum entries progress bar
o dhcp: add shared dhcpd_leases() reader and use it in both lease pages
o openvpn: use is_interface_assigned() to prevent deletion of assigned instances
o openvpn: CARP status read cleanups (contributed by vnxme)
o openvpn: tls-crypt support (contributed by vnxme)
o openvpn: do not create empty router file
o router advertisements: remove AdvRDNSSLifetime / AdvDNSSLLifetime bounds (contributed by Maurice Walker)
o unbound: register DHCP leases with their matching IP range configured DHCP domain
o plugins: os-acme-client 3.1[1]
o plugins: os-chrony 1.4[2]
o plugins: os-collectd 1.4[3]
o plugins: os-fetchmail 1.1[4]
o plugins: os-freeradius 1.9.16[5]
o plugins: os-realtek-re 1.0 adds Realtek vendor NIC driver module
o plugins: os-telegraf 1.12.1[6]
o ports: dnsmasq 2.86[7]
o ports: filterlog 0.5 removes unused IPv6 options support
o ports: nss 3.70[8]
o ports: pcre 8.45[9]
o ports: python 3.8.12[10]
o ports: sudo 1.9.8p1[11]
o ports: suricata 6.0.3[12]
o ports: syslog-ng 3.34.1[13]