This version is a maintenance release of pfSense Plus software. pfSense Plus software version 21.05.2 corrects an issue with the pre-installed Netgate Firmware Upgrade package on Netgate 6100 hardware devices.
In certain circumstances the pre-installed Netgate Firmware Upgrade package could have incorrectly offered to downgrade the firmware to version 4 when the hardware shipped from the factory with a newer version 5 of firmware.
The pfSense Plus software version number was increased for all models of Netgate hardware for consistency, but there are no functional changes for other hardware platforms. Upgrading a device in the field to 21.05.2 is not necessary at this time, but users may do so if they wish.
pfSense Plus software version 21.05.2-RELEASE updates are available now. For installation images, contact Netgate TAC.
Customers running pfSense Plus software, or the Factory Edition of pfSense software version 2.4.5-p1 and older, can upgrade in-place automatically to pfSense Plus software version 21.05.2 as with any other previous upgrade.
Please note, as stated here in March 2019, AES-NI is not required to run pfSense software version 2.5.0; this also applies to pfSense Plus 21.05.
IMPORTANT: Proceed with caution when upgrading pfSense software while COVID-19 travel restrictions are in effect.
During this time of travel limitations, remote upgrades of pfSense software should be carefully considered, and avoided where possible. Travel restrictions may complicate any repair of any issue, including hardware-related issues that render the system unreachable. Should these issues require onsite physical access to remedy, repair of the issue may not be possible while travel restrictions related to COVID-19 are in effect.
Due to the change in native package builds on this release, all components of the base system and packages will be reinstalled as a part of this upgrade. This must be done to ensure that the firewall contains a consistent set of packages from the same build environment even if their versions did not change. This process will increase the time required for the upgrade to complete.
Warnings and error messages are likely to occur while the upgrade is in process. In particular, errors from PHP and package updates may be observed on the console and in logs. In nearly all cases these errors are a harmless side effect of the inconsistent state of the system during the upgrade from changes in the operating system, libraries, and PHP versions. Once the upgrade completes, the system will be in a consistent state again. Only errors which persist after the upgrade are significant.
Always take a backup of the firewall configuration prior to any major change to the firewall, such as an upgrade.
Once the firewall detects that an upgrade is available, do not update packages before initiating the upgrade! Either remove all packages or do not update packages before running the upgrade.
The upgrade will take several minutes to complete. The exact time varies based on download speed, hardware speed, and other factors such as installed packages. Be patient during the upgrade and allow the firewall enough time to complete the entire process. After the update packages finish downloading it could take 10-20 minutes or more until the upgrade process ends. The firewall may reboot several times during the upgrade process. Monitor the upgrade from the firewall console for the most accurate view.
If the update check fails, or the update does not complete, run pkg install -y pfSense-upgrade to ensure that pfSense-upgrade is present.
Consult the Upgrade Guide for additional information about performing upgrades to pfSense software.
Updating from an earlier release to this release is possible via the usual methods:
From the GUI:
From the console or ssh:
Select option 13 OR select option 8 and run pfSense-upgrade
See Upgrade Troubleshooting for the most up-to-date information on working around upgrade issues.
If the update system does not offer an upgrade to the current release or the upgrade will not proceed, take the following steps:
pkg-static clean -ay; pkg-static install -fy pkg pfSense-repo pfSense-upgradeThis release is ready for production use. Should any issues occur with pfSense Plus software version 21.05, please post about them on the Netgate forum.
Thanks!
pfSense Plus is derived from FreeBSD and pfSense CE with additional proprietary changes. The source code for the upstream projects is freely and publicly available from the same repositories as pfSense CE:
To install or reinstall pfSense Plus software, contact Netgate TAC to obtain the installation media and include the Netgate Device ID of the hardware.
Using the automatic update process is typically easier than reinstalling to upgrade. See the Upgrade Guide page for details.
Our efforts are made possible by the support of our customers and the community. You can support our efforts via one or more of the following.