Version 4.11.0 Scheduled Release is out for pfSense® and ASUS® and VyOS® as of 25 January 2024.
It includes a few improvements and fixes as outlined in previous 4.10 rapid releases. The most significant improvements are:
- TCP 443 reject rule to “This firewall” no longer a required rule as the muscle will issue
RSET
packet to endpoints attempting to reach outgoing TCP443 connections at “stranger” destinations - When dashboard DTTS feature is turned on or off, firewall rule changes are no longer required, provided the default tag of
adamone_pass
rule remains in place as the second last rule - Improved dual-stack IPv4/IPv6 functionality including retries for failed hole creations
- Improved Reflex connections and monitoring
- Optimized ACME renewals
- Fixed
router.asus.com
to always resolve to ASUS LAN interface - Added a config switch of
packet-monitor-excluded-discovery-subnets
which allows devices to be added to the dashboard that are IP-locked locked-hw-ip
feature added to allow devices to be specified to ignore source MAC address- traffic reporting now supports IPSec and OpenVPN tunnels via per-interface config switch specifications
Special thanks to all the testers that made this possible.
For installation of adam:ONE® see:
- pfSense®: adamnet.io/pfsense
- ASUS®: adamnet.io/asus
- VyOS®: adamnet.io/vyos
Note on automatic upgrades
During adamone-setup configure
installation wizard, we recommend the default to automatically upgrade adam:ONE® software. When that default is selected, the attempt will be made based on contents in /etc/crontab
(pfSense®) or cru l
(on ASUS®).
However, in some circumstances, the internet will fail after automatic upgrade, specifically if these conditions are all met:
- your pfSense is older than what is listed at adamnet.io/pfsense
Disable the Dashboard auto-update check
is checked (System → Update → Update Settings)- the cronjob has executed and upgraded to
4.11.0
The solution is to:
- upgrade pfSense®
- re-install adam:ONE®
Update on older versions of pfSense®
Automatic upgrades have been completely disabled for any pfSense® versions prior to 23.01.
Thank you
– Adam Networks team