As the year comes to a close, we at Netgate want to take a moment to express our heartfelt gratitude for your continued support and trust in our mission to provide secure and reliable networking solutions. We wish you a wonderful holiday season and a prosperous 2024.
pfSense Point Releases
Netgate® announced the release of pfSense® Plus software version 23.09.1 and pfSense CE software version 2.7.2. These upgrades address potential ZFS file system corruption issues as well as other high-priority fixes.
These releases have changes related to three ZFS file system issues, two of which could lead to data corruption. The first is related to block cloning, a ZFS feature that is not currently enabled in pfSense software. The second, as detailed in this FreeBSD Errata Notice, is related to reporting holes in sparse files, which is difficult to trigger given typical usage on a system loaded with pfSense software. However, given other data corruption problems reported in the same area in the past, we have included a change to address the issue. This fix may result in a small increase in storage space used. These releases also correct a third ZFS issue that can cause high CPU usage. Details for this issue are available in this FreeBSD Errata Notice.
TNSR software version 23.11-RELEASE is now available. This is a regularly scheduled release of TNSR software, including new features, upgrades, and bug fixes.
New Features and Enhancements
Remote Access IPsec (Mobile IPsec) Support for business flexibility, secure remote work, data protection, and regulatory compliance. Supported clients include Windows 10 and 11, macOS, iOS, Android, and Ubuntu.
Radius External Authentication for granular enterprise-level authentication of appliance management.
Command Output Filters for better management and troubleshooting.
Core Technology Upgrades: VPP, FRR, and Clixon have been upgraded to versions 23.06, 8.5.3, and 6.30, respectively.
TNSR Software High-Performance VPN Concentrator Now Available
We are excited to announce the launch of TNSR High-Performance VPN Concentrator on the AWS® and Azure® marketplaces.
TNSR High-Performance VPN Concentrator delivers route-based VPN solutions for edge, cloud, and multi-cloud. Customers get high-performance routed IPsec site-to-site VPNs or remote access via Mobile IPsec or WireGuard® with no hidden fees - just unparalleled TCO.
Product Highlights
Easy to Deploy VPN solution for edge, cloud, and multi-cloud.
Simple Management and Monitoring with a command line interface (CLI), RESTCONF API, GUI, SNMP, Prometheus Exporter, and IPFIX Exporter.
Stable Security and Performance, built with open-source technology and zero trust architecture in mind.
24x7 technical support included.
TNSR Software Tip
Backdoor Static Route
A router may use several methods for path selection to network addresses of the same prefix length (Remember longest match always wins). A router may have dynamic routes, static routes, and directly connected routes. A dynamic route may be learned from multiple routing protocols (OSPF, BGP, RIP). A router will use Administrative Distances to prioritize which method to choose to get the next hop address for the prefix. The lower the administrative distance, the higher the priority. Directly connected routes are always prioritized, as they are local. Typically, Static Routes have a very low Administrative Distance and have priority over the dynamically learned routes. Since you are manually specifying this route, you must really want it to take that path. What if you want the static route to be your last option should dynamic routing fail? This is known as a Back Door Static Route. When you create the static route entry, you can specify the priority (Administrative Distance). Configure the priority to be above that of the highest Dynamic Protocol you are running (Typically IBGP), and the route will only be used as a last resort.
Configuration Example in TNSR:
route table ipv4-VRF:0
id 0
route 10.0.0.0/24
priority 220
next-hop 0 via 1.1.1.1
exit
Announcing Netgate 4200 Security Gateway
The Netgate 4200 is the ideal network solution for small and medium businesses that want powerful performance at a reasonable price.
With its robust, high-performance 4-core Intel® Atom® C1110 CPU @ 2.1Ghz, the 4200’s benchmark results set a new standard: routing, firewall, and IPsec VPN operations up to three times faster than the Netgate 4100.
The 4200 offers flexible, high-bandwidth connectivity to deliver business value today. Four unswitched 2.5 gigabit ethernet WAN/LAN ports (RJ45) can keep a small to medium-sized business network running fast without the need for fiber infrastructure.
The Netgate 4200 is a Security Gateway (router, firewall, and VPN) with best-in-class processing power, delivering the industry-leading stability and capabilities of pfSense Plus software (with free upgrades for the life of the hardware), all at a great price. It includes complimentary TAC Lite “zero to ping” assistance to get you up and running. TAC Pro and TAC Enterprise subscription support, with enhanced SLAs, are available for an additional fee.
The Netgate 4200 is priced at $549 ($50 below the Netgate 4100) and will be available for order on 1 January 2024.
Give the Gift of Security this Holiday Season
We're excited to introduce a limited-time offer on the following Netgate appliances. From now until December 31, 2023, you can enjoy a 10% Discount. Just use the code EOY2023 at checkout.
Meet Poppy (left) and Brody (right). These two are the fur children of our Creative Director, Jarred Hoelle. Poppy is three years old, and her idea of fun is stealing food off the counter and annoying her brother into chasing her. Brody is fourteen, and even though he's not a pup anymore, his idea of fun is jumping fences and getting into fights with black bears.
Technical Assistance Center
The Netgate Technical Assistance Center (TAC) provides technical assistance with pfSense Plus software & TNSR. Every Netgate Security Gateway and cloud instance comes with TAC Lite included. TAC Lite offers Zero-to-Ping assistance, ensuring a smooth setup and configuration. Zero-to-Ping assistance will get your Netgate appliance with pfSense Plus & TNSR software, AWS, or Azure firewall connected to the Internet and one client on the same network online.
In addition to TAC Lite, TAC Professional and TAC Enterprise levels are available for faster response times and a much wider variety of assistance topics. Regardless of support level, TAC is here 24/7 to help.
Netgate Holiday Schedule
As the holidays near, please be aware that Netgate will be closed on the following dates except for Technical Support. Considerations should be made for possible delays due to these closures:
Monday, December 25, 2023 - Christmas
2024 Netgate Holidays:
January 1- New Year’s Day
February 19- President’s Day
March 29- Good Friday
May 27- Memorial Day
July 4- Independence Day
July 5- Independence Day
September 2- Labor Day
November 28- Thanksgiving
November 29- Thanksgiving
December 24- Christmas Eve
December 25- Christmas
The Netgate Global Support Technical Assistance Center (TAC) is fully staffed and operational for all holidays. The engineering, sales, manufacturing, and shipping teams will be off for the holidays listed above.
We Want Your Feedback
Thank you for subscribing to the Netgate newsletter, and for your continued support of Netgate and our products. We are always looking for ways to improve and value your feedback. If you have suggestions, please reply to this email, contact us, or send an email to mktg@netgate.com. You can also talk to us on social media, or visit our forum.
%201000px-1.png?upscale=true&width=600&upscale=true&name=Netgate%20Logo%20White%20(horizontal)%201000px-1.png)
