OPNsense has released version 23.7. The release, codenamed “Restless Roadrunner”, brings numerous innovations and improvements to the open-source firewall platform.
Key New Features
New Dashboard
OPNsense 23.7 introduces a completely redesigned dashboard that provides a better overview of the current system status. The new interface is more modern and offers configurable widgets.
IPsec Improvements
- Complete migration to the new swanctl-based IPsec configuration
- Improved management of IPsec tunnels via the web interface
- Legacy IPsec configuration has been removed
Firewall and Networking
- Improved alias management for firewall rules
- Extended GeoIP filtering
- Improved NAT configuration
System Updates
- Update to FreeBSD 13.2
- PHP 8.2 support
- Improved Unbound DNS resolver configuration
VPN Improvements
- Updated WireGuard integration
- Improved OpenVPN configuration options
Upgrade Notes
Existing OPNsense installations can be updated to version 23.7 via the built-in update system. It is recommended to create a complete backup of the configuration before updating.
Implementation Support
DATAZONE supports you with the implementation and operation of your OPNsense firewall. Contact us for individual consultation.
More on these topics:
More articles
Backup Strategy for SMBs: Proxmox PBS + TrueNAS as a Reliable Backup Solution
Backup strategy for SMBs with Proxmox PBS and TrueNAS: implement the 3-2-1 rule, PBS as primary backup target, TrueNAS replication as offsite copy, retention policies, and automated restore tests.
OPNsense Suricata Custom Rules: Write and Optimize Your Own IDS/IPS Signatures
Suricata custom rules on OPNsense: rule syntax, custom signatures for internal services, performance tuning, suppress lists, and EVE JSON logging.
Systemd Security: Hardening and Securing Linux Services
Systemd security hardening: unit hardening with ProtectSystem, PrivateTmp, NoNewPrivileges, CapabilityBoundingSet, systemd-analyze security, sandboxing, resource limits, and creating custom timers.