I gave Claude access to my OPNsense firewall — here's what happened

Disclaimer: This software is provided as-is, without warranty of any kind. Upgrading firewall firmware carries inherent risk including temporary or permanent loss of network connectivity. Always maintain a tested backup of your configuration, ensure you have out-of-band access (console, IPMI) before performing major upgrades, and test in a non-production environment first. The authors are not responsible for any damage, data loss, or network outages resulting from the use of these tools. Use at your own risk. TL;DR: OPNsense major upgrades can break in ways the web UI can't recover from. I built a stateful SSH upgrade script that handles reboots and pkg ABI mismatches automatically, plus a Claude MCP server so you can manage your firewall conversationally. During a live upgrade this week, we found and fixed two bugs in real time. Code on GitHub. The upgrade that broke everything If you run OPNsense at home or in a small business, you've probably been there. A major version upgrade star