IPFire has announced the release of Core Update 195 for IPFire 2.29, marking a significant milestone with the introduction of native WireGuard VPN support alongside various system improvements and security enhancements.
This long-awaited update transforms the open-source firewall distribution by integrating modern VPN capabilities directly into its core functionality, offering users a streamlined alternative to traditional VPN solutions like IPsec and OpenVPN.
The centerpiece of this release is the comprehensive integration of WireGuard, a modern VPN protocol renowned for its simplicity and performance characteristics.
IPFire’s implementation goes beyond basic support, delivering a fully integrated web-based interface that enables administrators to configure and manage WireGuard tunnels without requiring command-line expertise.
The system supports both network-to-network and host-to-network (Roadwarrior) VPN configurations, making it versatile for various deployment scenarios.
The WireGuard implementation includes several user-friendly features designed to streamline deployment and management.
Most notably, the system generates QR codes for mobile client configuration, eliminating the complexity typically associated with manual VPN setup on smartphones and tablets.
Additionally, the configuration file export functionality ensures compatibility with existing WireGuard clients across different platforms.
The connection importer feature enhances interoperability by allowing administrators to import configurations from other vendors and VPN providers, facilitating migration from existing solutions.
A critical advantage of IPFire’s WireGuard integration is its seamless compatibility with existing security infrastructure.
The VPN service maintains full support for the Intrusion Prevention System and Connection Tracking, ensuring that security policies remain effective across VPN connections.
Furthermore, WireGuard operates alongside existing VPN services, allowing organizations to implement hybrid VPN strategies without disrupting current operations.
IPFire 2.29 Core Update
Beyond VPN capabilities, Core Update 195 introduces several important system enhancements and security improvements:
- Enhanced Password Security: Proxy user database passwords now utilize bcrypt hashing for improved security, reflecting ongoing efforts to modernize security practices within the IPFire ecosystem.
- Infrastructure Improvements: Significant changes to blocklist and ruleset management, including the removal of discontinued 3CoreSec blocklists.
- Code Refactoring: Stefan Schantl refactored internal downloading code for IP blocklists and IPS rulesets, creating reusable components that will benefit future development initiatives.
- Hardware Monitoring Enhancement: The system now automatically updates its SMART database with hard drive information, improving hardware monitoring capabilities
- Core Package Updates: Major updates include:
- coreutils 9.7
- OpenSSH 10.0.p1
- OpenSSL 3.5.0
- Unbound 1.23.0
- btrfs-progs 6.14
- gzip 1.14
- harfbuzz 11.2.0
- Add-on Package Updates: Updated packages include alsa 1.2.14, monit 5.35.2, nano 8.4, nfs 2.8.3, htop 3.4.1, and tshark 4.4.6.
Community Support and Availability
IPFire’s development team emphasized the community-driven nature of this release, particularly highlighting how features like WireGuard support have been made possible through community contributions.
The developers stress that continued development requires ongoing financial support from users who rely on IPFire’s capabilities for their network security needs.
Core Update 195 is immediately available for download, with comprehensive documentation provided to assist users with WireGuard setup and configuration.
The release includes updated add-on packages such as alsa 1.2.14, monit 5.35.2, and tshark 4.4.6, ensuring comprehensive system compatibility and functionality across the IPFire ecosystem.
Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates.
.webp?w=356&resize=356,220&ssl=1 "Microsoft Teams Blocking Users from Accessing Embedded Office Documents")
