OPNSense/plugins af86f32net/frr pkg-descr, net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditBGPNeighbor.xml

by Monviech via GitHub on ⎇
net/frr: Changelog for v1.50 (#5133)

* net/frr: Changelog for v1.50

* Fix a helptext to be more generic and one string.

* Remove private AS should be advanced
DeltaFile
+7-5net/frr/pkg-descr
+2-2net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms/dialogEditBGPNeighbor.xml
+9-72 files

OPNSense/plugins f394bdcnet/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditBGPNeighbor.xml

by Monviech on ⎇
Remove private AS should be advanced
DeltaFile
+1-0net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms/dialogEditBGPNeighbor.xml
+1-01 files

OPNSense/plugins 4fdc141net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditBGPNeighbor.xml

by Monviech on ⎇
Fix a helptext to be more generic and one string.
DeltaFile
+1-2net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms/dialogEditBGPNeighbor.xml
+1-21 files

OPNSense/plugins baf64e8net/frr pkg-descr

by Monviech on ⎇
net/frr: Changelog for v1.50
DeltaFile
+7-5net/frr/pkg-descr
+7-51 files

OPNSense/plugins 2ffb9c4net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditBGPNeighbor.xml, net/frr/src/opnsense/mvc/app/models/OPNsense/Quagga BGP.xml

by Shelldog95 via GitHub on ⎇
net/frr: Add capability support for BGP neighbors (#5128)

* net/frr: Add capability support for BGP neighbors

I've recently tried to use OPNsense in an environment where the use of link-local addresses is required.
Since the link-local capability is not available, I was not able to use OPNsense then.

Obviously, there are some other with the same problem:

  * [os-frr] wrong interface for IPv6 link-local used to connect to neighbor #4962
  * https://forum.opnsense.org/index.php?topic=36088.0

So, I'd like to offer support for BGP capabilities.

* net/frr: Improve help string for BGP Capabilities as suggested by @Monviech

* net/frr: Fix typo as found by @Monviech

* net/frr: Remove not needed attribute as suggested by @Monviech

    [5 lines not shown]
DeltaFile
+10-0net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms/dialogEditBGPNeighbor.xml
+9-0net/frr/src/opnsense/mvc/app/models/OPNsense/Quagga/BGP.xml
+5-0net/frr/src/opnsense/service/templates/OPNsense/Quagga/bgpd.conf
+24-03 files

OPNSense/plugins d31618enet/frr/src/opnsense/service/conf/actions.d actions_quagga.conf

by Monviech via GitHub on ⎇
net/frr: Add CARP event handler to restart command (#5132)
DeltaFile
+1-1net/frr/src/opnsense/service/conf/actions.d/actions_quagga.conf
+1-11 files

OPNSense/plugins ea48c14net/frr pkg-descr Makefile, net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditBGPNeighbor.xml

by rfrederick via GitHub on ⎇
net/frr: Add BGP remove-private-AS to neighbors (#5090)

* net/frr: Add BGP remove-private-AS to neighbors

* net/frr: Simplify implementation of BGP remove-private-AS for neighbors

* Apply suggestion from @Monviech

---------

Co-authored-by: Monviech <79600909+Monviech at users.noreply.github.com>
DeltaFile
+10-0net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms/dialogEditBGPNeighbor.xml
+8-0net/frr/src/opnsense/mvc/app/models/OPNsense/Quagga/BGP.xml
+4-0net/frr/pkg-descr
+3-0net/frr/src/opnsense/service/templates/OPNsense/Quagga/bgpd.conf
+1-2net/frr/Makefile
+26-25 files

OPNSense/plugins 7085ae8net/frr/src/opnsense/service/conf/actions.d actions_quagga.conf

by Monviech via GitHub on ⎇
net/frr: Add CARP event handler to restart command
DeltaFile
+1-1net/frr/src/opnsense/service/conf/actions.d/actions_quagga.conf
+1-11 files

OPNSense/plugins 6ef3facnet/relayd Makefile, net/relayd/src/opnsense/mvc/app/controllers/OPNsense/Relayd/Api SettingsController.php

by Franco Fichtner on ⎇
net/relayd: removed isEmptyAndRequired()
DeltaFile
+25-26net/relayd/src/opnsense/mvc/app/controllers/OPNsense/Relayd/Api/SettingsController.php
+1-1net/relayd/Makefile
+26-272 files

OPNSense/plugins 565bd02security/wazuh-agent/src/opnsense/mvc/app/controllers/OPNsense/WazuhAgent/forms settings.xml, security/wazuh-agent/src/opnsense/mvc/app/models/OPNsense/WazuhAgent WazuhAgent.xml

by mbedworth via GitHub on ⎇
[wazuh-agent] Add repeated_offenders config, fix template issues (#5116)

- Add repeated_offenders field to active response settings
- Remove 'without context' from ossec.conf include loop to allow
  variable access in config fragments
- Fix opnsense-fw.conf template bug: wazuh_command -> active_response
- Bump model version to 1.0.3
DeltaFile
+10-0security/wazuh-agent/src/opnsense/mvc/app/controllers/OPNsense/WazuhAgent/forms/settings.xml
+6-1security/wazuh-agent/src/opnsense/mvc/app/models/OPNsense/WazuhAgent/WazuhAgent.xml
+3-0security/wazuh-agent/src/opnsense/service/templates/OPNsense/WazuhAgent/ossec_config.d/005-active-response.conf
+1-1security/wazuh-agent/src/opnsense/service/templates/OPNsense/WazuhAgent/ossec.conf
+1-1security/wazuh-agent/src/opnsense/service/templates/OPNsense/WazuhAgent/opnsense-fw.conf
+21-35 files

OPNSense/plugins f34410bnet/ndp-proxy-go pkg-descr, net/ndp-proxy-go/src/etc/rc.syshook.d/carp 20-ndpproxy

by Monviech via GitHub on ⎇
net/ndp-proxy-go: Add depend on CARP syshook (#5108)

* net/ndp-proxy-go: Add depend on CARP syshook

* net/ndp-proxy-go: When carp_depend_on is enabled, prevent service start on BACKUP

* Depend on CARP is advanced mode, sort other more advanced options under headers

* Use model instead of global config

* Use custom variable for carp check

* Change label and adjust help text
DeltaFile
+53-0net/ndp-proxy-go/src/etc/rc.syshook.d/carp/20-ndpproxy
+19-1net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms/general.xml
+5-1net/ndp-proxy-go/src/opnsense/mvc/app/models/OPNsense/NdpProxy/NdpProxy.xml
+3-0net/ndp-proxy-go/src/opnsense/service/templates/OPNsense/NdpProxy/ndp_proxy_go
+1-0net/ndp-proxy-go/pkg-descr
+81-25 files

OPNSense/plugins 8895dd9net/frr pkg-descr Makefile, net/frr/src/opnsense/service/conf/actions.d actions_quagga.conf

by Monviech via GitHub on ⎇
net/frr: Prevent errors in diagnostics view when a frr daemon is not started (#5119)

* net/frr: Prevent errors in diagnostics view when a frr daemon is not started

* Add revision
DeltaFile
+23-0net/frr/src/opnsense/service/conf/actions.d/actions_quagga.conf
+1-0net/frr/pkg-descr
+1-0net/frr/Makefile
+25-03 files

OPNSense/plugins be46e83net/frr pkg-descr Makefile

by Monviech on ⎇
Bump version and changelog
DeltaFile
+4-0net/frr/pkg-descr
+1-1net/frr/Makefile
+5-12 files

OPNSense/plugins e5bbdafnet/frr/src/opnsense/service/conf/actions.d actions_quagga.conf

by Monviech on ⎇
net/frr: Prevent errors in diagnostics view when a frr daemon is not started
DeltaFile
+23-0net/frr/src/opnsense/service/conf/actions.d/actions_quagga.conf
+23-01 files

OPNSense/plugins d3cbedasecurity/wazuh-agent/src/opnsense/scripts/wazuh opnsense-fw

by mbedworth via GitHub on ⎇
security/wazuh-agent: Fix active response duplicate key causing false aborts (#5104)

When multiple IPs trigger the same rule simultaneously, they were
sharing the same check_keys value (only rule ID), causing the manager
to abort all but the first execution.

Changed the key to include both rule_id and srcip to make it unique
per source IP, allowing multiple simultaneous blocks while still
preventing duplicate blocks of the same IP.

Fixes #4738
DeltaFile
+2-1security/wazuh-agent/src/opnsense/scripts/wazuh/opnsense-fw
+2-11 files

OPNSense/plugins 809f2aenet/ndp-proxy-go pkg-descr Makefile, net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms general.xml

by Monviech via GitHub on ⎇
net/ndp-proxy-go: Add ratelimit for pfctl operations (#5096)
DeltaFile
+9-2net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms/general.xml
+4-0net/ndp-proxy-go/pkg-descr
+3-0net/ndp-proxy-go/src/opnsense/service/templates/OPNsense/NdpProxy/ndp_proxy_go
+3-0net/ndp-proxy-go/src/opnsense/mvc/app/models/OPNsense/NdpProxy/NdpProxy.xml
+1-1net/ndp-proxy-go/Makefile
+20-35 files

OPNSense/plugins 320563dnet/ndp-proxy-go pkg-descr Makefile, net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms general.xml

by Monviech on ⎇
net/ndp-proxy-go: Add ratelimit for pfctl operations
DeltaFile
+9-2net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms/general.xml
+4-0net/ndp-proxy-go/pkg-descr
+3-0net/ndp-proxy-go/src/opnsense/service/templates/OPNsense/NdpProxy/ndp_proxy_go
+3-0net/ndp-proxy-go/src/opnsense/mvc/app/models/OPNsense/NdpProxy/NdpProxy.xml
+1-1net/ndp-proxy-go/Makefile
+20-35 files

OPNSense/plugins d987a7edns/dnscrypt-proxy/src/opnsense/scripts/OPNsense/Dnscryptproxy dnsbl.sh, security/q-feeds-connector pkg-descr Makefile

by Q-Feeds via GitHub on ⎇
Feature/dnscrypt proxy blocklist support (#5083)

* Add ports to Events page

* fixes race condition updating the blocklist

* Native integration with DNSCrypt-proxy

Added Q-Feeds domains to the DNSBL list of DNSCrypt-Proxy. Changed since the initial way, this is more native. Q-Feeds domains txt files only created if DNSCrypt-proxy is installed and if the list (qf) is selected.
DeltaFile
+92-0security/q-feeds-connector/src/opnsense/scripts/dnscryptproxy/blocklists/qfeeds_bl.py
+20-1security/q-feeds-connector/src/opnsense/scripts/qfeeds/lib/__init__.py
+10-0dns/dnscrypt-proxy/src/opnsense/scripts/OPNsense/Dnscryptproxy/dnsbl.sh
+8-0security/q-feeds-connector/pkg-descr
+1-1security/q-feeds-connector/src/opnsense/service/conf/actions.d/actions_qfeeds.conf
+1-1security/q-feeds-connector/Makefile
+132-31 files not shown
+133-37 files

OPNSense/plugins 1d60f3bmisc/theme-rebellion Makefile, misc/theme-rebellion/src/opnsense/www/themes/rebellion/build/css opnsense-bootgrid.css

by Franco Fichtner on ⎇
misc/theme-rebellion: sync with master
DeltaFile
+276-0misc/theme-rebellion/src/opnsense/www/themes/rebellion/build/css/opnsense-bootgrid.css
+1-1misc/theme-rebellion/Makefile
+277-12 files

OPNSense/plugins 711a8bfnet/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/Api GeneralController.php, net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms dialogAlias.xml general.xml

by Franco Fichtner on ⎇
net/ndp-proxy-go: sync with master
DeltaFile
+33-2net/ndp-proxy-go/src/opnsense/mvc/app/views/OPNsense/NdpProxy/general.volt
+27-1net/ndp-proxy-go/src/opnsense/mvc/app/models/OPNsense/NdpProxy/NdpProxy.xml
+25-0net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/Api/GeneralController.php
+22-0net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms/dialogAlias.xml
+11-0net/ndp-proxy-go/src/opnsense/service/templates/OPNsense/NdpProxy/ndp_proxy_go
+7-1net/ndp-proxy-go/src/opnsense/mvc/app/controllers/OPNsense/NdpProxy/forms/general.xml
+125-43 files not shown
+135-69 files

OPNSense/plugins d24e3b9net/udpbroadcastrelay Makefile, net/udpbroadcastrelay/src/opnsense/mvc/app/views/OPNsense/UDPBroadcastRelay index.volt

by Franco Fichtner on ⎇
net/udpbroadcastrelay: sync with master
DeltaFile
+10-10net/udpbroadcastrelay/src/opnsense/mvc/app/views/OPNsense/UDPBroadcastRelay/index.volt
+1-1net/udpbroadcastrelay/Makefile
+11-112 files

OPNSense/plugins 81f3e21www/squid/src/opnsense/mvc/app/controllers/OPNsense/Proxy/forms main.xml

by Franco Fichtner on ⎇
www/squid: remove old link reference; closes #9537
DeltaFile
+1-1www/squid/src/opnsense/mvc/app/controllers/OPNsense/Proxy/forms/main.xml
+1-11 files

OPNSense/plugins 8e4cf22. README.md, www/web-proxy-sso Makefile

by Franco Fichtner on ⎇
www/web-proxy-sso: sync with master
DeltaFile
+19-19www/web-proxy-sso/src/opnsense/mvc/app/models/OPNsense/ProxySSO/ProxySSO.xml
+1-1README.md
+0-2www/web-proxy-sso/Makefile
+20-223 files

OPNSense/plugins 716e75edns/ddclient/src/opnsense/mvc/app/models/OPNsense/DynDNS DynDNS.xml, dns/ddclient/src/opnsense/scripts/ddclient checkip

by Ad Schellevis on ⎇
ddclient: Cloudflare - add Cloudflare dns ip check option, merge https://github.com/opnsense/plugins/pull/4184 with minor modifications.
DeltaFile
+29-4dns/ddclient/src/opnsense/scripts/ddclient/lib/address.py
+2-2dns/ddclient/src/opnsense/scripts/ddclient/checkip
+1-1dns/ddclient/src/opnsense/scripts/ddclient/lib/__init__.py
+1-0dns/ddclient/src/opnsense/mvc/app/models/OPNsense/DynDNS/DynDNS.xml
+33-74 files

OPNSense/plugins b943ea3www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

by Franco Fichtner on ⎇
www/nginx: bump model version
DeltaFile
+1-1www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx/Nginx.xml
+1-11 files

OPNSense/plugins dcaf201www/nginx/src/opnsense/mvc/app/controllers/OPNsense/Nginx/forms httpserver.xml, www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

by Jan Chlouba via GitHub on ⎇
nginx: add optional HTTP/3 support with dynamic Alt-Svc (#5071)
DeltaFile
+14-0www/nginx/src/opnsense/service/templates/OPNsense/Nginx/http.conf
+7-0www/nginx/src/opnsense/mvc/app/controllers/OPNsense/Nginx/forms/httpserver.xml
+4-0www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx/Nginx.xml
+25-03 files

OPNSense/plugins 89b8cdddns/ddclient/src/opnsense/scripts/ddclient/lib/account hetzner.py

by Michael J. Arcan via GitHub on ⎇
ddclient: add Hetzner DNS provider (#5082)

Add native support for Hetzner Cloud DNS API (api.hetzner.cloud).
  Hetzner is migrating from dns.hetzner.com to Cloud Console,
  with the old API shutting down in May 2026.

  Features:
  - Bearer token authentication
  - A and AAAA record support
  - Multiple hostnames (comma-separated)
  - Configurable TTL
DeltaFile
+545-0dns/ddclient/src/opnsense/scripts/ddclient/lib/account/hetzner.py
+545-01 files

OPNSense/plugins 2cf65f8sysutils/nextcloud-backup/src/opnsense/mvc/app/library/OPNsense/Backup Nextcloud.php

by Nuadh123 via GitHub on ⎇
Rewrite plugin, so it backs up the content of /conf/backup/ instead, (#4952)

this makes it only upload configs that have actually changed.

fixes #4945

Co-authored-by: Daniel Lysfjord <lysfjord.daniel at smokepit.net>
DeltaFile
+45-26sysutils/nextcloud-backup/src/opnsense/mvc/app/library/OPNsense/Backup/Nextcloud.php
+45-261 files

OPNSense/plugins 4b80067net/freeradius/src/opnsense/service/templates/OPNsense/Freeradius mods-enabled-eap

by schreibubi via GitHub on ⎇
net/freeradius: Change TLS max version to 1.3 (#4883)
DeltaFile
+1-1net/freeradius/src/opnsense/service/templates/OPNsense/Freeradius/mods-enabled-eap
+1-11 files

OPNSense/plugins 2ea658anet/udpbroadcastrelay Makefile, net/udpbroadcastrelay/src/opnsense/mvc/app/views/OPNsense/UDPBroadcastRelay index.volt

by Martin Wasley via GitHub on ⎇
index.volt changes (#4719)

Removed fixed size grid data-width specifiers.
DeltaFile
+10-10net/udpbroadcastrelay/src/opnsense/mvc/app/views/OPNsense/UDPBroadcastRelay/index.volt
+1-1net/udpbroadcastrelay/Makefile
+11-112 files