The new IP Fire 2.29 Core Update 199 It is now available This update arrives as a major revision of this Linux-based firewall distribution, widely used as a router and dedicated firewall. The update focuses on strengthening security, improving the management of next-generation wireless networks, and refining several critical functions for the daily administration of professional networks.
With this launch, IPFire takes another step towards adapting to increasingly complex network environments, where High-speed Wi-Fi, advanced segmentation, and strict monitoring requirementsAlthough it is a global project, many of the new features are particularly interesting for security and network operations teams in Spain and the rest of Europe, where the deployment of Wi-Fi 6 and Wi-Fi 7 and regulatory pressure on cybersecurity are constantly increasing.
Support for Wi-Fi 6 and Wi-Fi 7 with more control
One of the most visible changes in IPFire 2.29 Core Update 199 is the addition of native support for Wi-Fi 6 and Wi-Fi 7 standardsThe system now allows you to select your preferred wireless mode and is able to automatically detect the capabilities offered by the installed hardware, enabling compatible functions without the need for overly complex manual configurations.
The update also activates by default the SSID protectionThis measure is designed to strengthen the security of wireless networks against various types of attacks and impersonation. Furthermore, it incorporates the ability to convert multicast packets to unicast packets by default, which can improve efficiency and stability in certain Wi-Fi deployments, especially in networks with a large number of clients.
Another new feature related to the wireless aspect is the background radar detectionThis is key to complying with regulations on the use of the radio spectrum, something especially relevant in Europe. This function helps avoid interference with priority systems operating in certain frequency bands, aligning the platform with regulatory requirements.
Greater network visibility with LLDP and CDPv2
In corporate and service provider environments, visibility into what connects to what is critical. That's why IPFire 2.29 Core Update 199 integrates native support for LLDP (Link-Local Discovery Protocol) and Cisco Discovery Protocol version 2 directly in their web interface, within the services section dedicated to LLDP.
Thanks to this integration, the firewall is able to Identify the network devices connected to their interfaces And, even more useful in large installations, knowing which switch ports it's connected to. This information can feed network monitoring and inventory tools used in large deployments, facilitating diagnostics, auditing, and topology reorganization.
For administrators managing multiple sites, communications closets, or data centers, having this data centralized on-site is a significant advantage. IPFire web interface It helps reduce intervention times and minimize errors when modifying physical connections or making configuration changes to adjacent switches and routers.
Kernel update and system core changes
The development team has updated the linux kernel which uses IPFire, surpassing it to version 6.12.58This upgrade incorporates numerous stability and security improvements from the Linux ecosystem, resulting in a more robust firewall operation, especially under load or in scenarios with highly varied traffic.
Along with this core update, there has been a significant change in the initramfs generation system: the dracut tool has been replaced by dracut-ngThis move comes after the original project was abandoned by its main maintainer. The aim is to ensure long-term maintenance and greater adaptability to future platform changes.
Furthermore, the demon D-Bus is now running by default In IPFire, this paves the way for future improvements and new features that can leverage this internal communication bus. These types of adjustments aren't always immediately apparent, but they are often essential for incorporating more advanced functionalities without compromising stability.
Strengthening the intrusion prevention system (IPS)
In terms of security, IPFire 2.29 Core Update 199 updates its intrusion prevention system engine to Meerkat 8.0.2This version introduces corrections related to alert handling and the behavior of the reporting system, critical elements for security teams that depend on this data to react to incidents.
The planning of IPS reports has also been adjusted, so that The reports are always sent at 1 a.m.This decision aims to standardize and simplify daily review tasks, allowing for a more predictable routine for teams analyzing events outside of regular working hours.
Additionally, an issue has been resolved where the new reporting functionality could missing some alerts when the internal SQLite database was busyThis correction is especially relevant for organizations that need the most complete record possible of security events, as it reduces the risk of certain suspicious activities going unnoticed in high-load scenarios.
Improvements to OpenVPN and remote connectivity
IPFire is widely used for remote access and site-to-site VPN connections, so the project has also introduced changes to its OpenVPN implementationAmong the new features, the ability to send multiple DNS and WINS servers to clients stands out, facilitating more flexible configurations for resolving names on networks with different internal domains.
The OpenVPN server can now operate on permanent multi-home modeThis is useful in cases where the firewall has multiple WAN interfaces or outbound routes, which is common in companies that combine different connectivity providers to gain resilience.
In addition, the directive has been removed from the client configuration files. auth-nocache, considered ineffective in this context. A problem that could have prevented the first custom route The information defined by the administrator will be correctly distributed to clients, thus avoiding unexpected behavior in more complex topologies.
Adjustments to the web interface and operational management
The browser-based administration interface, a key component for many technicians' daily work, incorporates several improvements to make it clearer and more reliable. The notification message that appears has been refined. when the system is not compatible with SMT (Simultaneous Multithreading)so that the administrator receives a more accurate explanation of this hardware limitation.
In the mail section, IPFire 2.29 Core Update 199 improves credential handling, including special charactersThis reduces issues when configuring notification systems or sending alerts via email. These types of details are common in corporate environments where complex password policies are in place.
A bug that prevented create new location groups on the firewall pageThis is an important element when organizing rules by region, IP range, or different security zones. For administrators who segment traffic based on geographic origin or network function, this fix simplifies management and avoids the need for compromise solutions.
Proxy security mitigations and race condition correction
In the proxy area, the new version includes a specific mitigation for the vulnerability identified as CVE-2025-62168This measure strengthens protection against potential attacks that exploit this vector, a point to consider for organizations that use IPFire's proxy as a core component of web traffic filtering.
Several have also been resolved race conditions which could generate erratic behavior. One of them could cause the forced termination of the URL filtering process during database compilation, which directly impacted the ability to block unwanted or malicious sites.
Another corrected career condition affected the application of the firewall rulesThis allowed previously applied rules to be overridden when a new one was inserted. These types of errors are particularly critical, as they can create temporary gaps in network security policy if not detected promptly, making their resolution a significant improvement in operational reliability.
Update of key packages and components
In addition to functional changes, IPFire 2.29 Core Update 199 includes a massive update of packages and plugins. Among the notable changes are: ffmpeg 8.0 For multimedia processing, ClamAV 1.5.1 as the antivirus engine, GNU nano 8.7 as the text editor, Samba 4.23.2 for file and print services in mixed environments, and Tor 0.4.8.19 for anonymous communications.
In the area of ​​networking and security, the update includes Fetchmail 6.5.7, cURL 8.17.0, OpenSSL 3.6, SQLite 3.51.0, OpenLDAP 2.6.10, OpenSSH 10.2p1 and BIND 9.20.16These versions also incorporate their own security fixes and performance improvements, which is especially relevant for organizations that must comply with regulations and best practices regarding software updates.
The suite of add-ons is expanded with new tools, including dmaA utility designed to create local mailboxes. This type of addition allows IPFire to be better adapted to environments where it is necessary to register and distribute notifications or messages internally without deploying heavier email solutions.
Availability and installation options for different architectures
IPFire 2.29 Core Update 199 is now available Download from the project's official website in ISO image and USB format. The device maintains support for x86_64 (64-bit) and AArch64 (ARM64) architectures, opening the door to its deployment in both traditional servers and appliances and in ARM-based platforms that are gaining ground in Europe, especially in low-power environments or dedicated devices.
For those already using IPFire in production, the update is part of the regular channel of Core UpdatesTherefore, it can be applied following the distribution's standard procedures. However, as with any major version change, it is recommended to back up the configuration and plan an appropriate maintenance window to minimize the impact on end users.
In the case of new installations, the availability of Images prepared for different media It makes it easier to test IPFire in labs, small offices, or pilot deployments before fully integrating it into critical network infrastructures.
With this change package, IPFire 2.29 Core Update 199 is consolidated as a more mature option to act as a firewall and router in modern networks, combining Support for next-generation Wi-Fi, enhancements to the intrusion prevention system, security mitigations in the proxy, and a comprehensive upgrade of key componentsAll of this is aimed at providing a more stable platform, better prepared for the current cybersecurity needs in Spain and the rest of Europe.
