pfSense bugtracker: Issueshttps://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162024-03-28T15:30:27ZpfSense bugtracker
Redmine pfSense Plus - Feature #15368 (New): Bulk import DHCP host reservationshttps://redmine.pfsense.org/issues/153682024-03-28T15:30:27ZChris W
<p>It'd be a huge time saver to import from a CSV or XML file into Kea, or even just pasting into a text field like Firewall > Alias > Bulk Import currently does.</p> pfSense Plus - Feature #15280 (New): Boot Environments 2.0https://redmine.pfsense.org/issues/152802024-02-21T19:59:52ZChristian McDonaldcmcdonald@netgate.com
<p>Changes:</p>
<ul>
<li>Configuration History is now a separate page and is no longer part of Backup & Restore.</li>
<li>Configuration History is now aware of Boot Environments. Supports downloading, deleting and restoring across boot environment boundaries.</li>
<li>System updates are now installed in an offline clone of the running system and booted "temporarily" to facilitate automatic fallback to previous working environment.</li>
<li>Boot Verification is performed when booting temporary Boot Environments. System will automatically reboot into prior boot environment upon boot failure.</li>
</ul>
<p><img src="https://redmine.pfsense.org/attachments/download/5936/clipboard-202402211456-bdjnl.png" alt="" /><br /><img src="https://redmine.pfsense.org/attachments/download/5937/clipboard-202402211457-fegcy.png" alt="" /><br /><img src="https://redmine.pfsense.org/attachments/download/5938/clipboard-202402211457-rbjkq.png" alt="" /><br /><img src="https://redmine.pfsense.org/attachments/download/5939/clipboard-202402211457-fcvqv.png" alt="" /><br /><img src="https://redmine.pfsense.org/attachments/download/5940/clipboard-202402211458-ydyne.png" alt="" /></p> pfSense Plus - Todo #15266 (Feedback): Prevent usage of the default password in User Manager acco...https://redmine.pfsense.org/issues/152662024-02-16T18:53:24ZJim Pingle
<p>Currently we detect in the GUI when the admin account is using the default password (<code>"pfsense"</code>) and print a warning message: source:src/usr/local/www/head.inc#L564</p>
<p>We should change that to check any account (not just <code>admin</code>) and force a password change during one or more of the user's initial interactions, for example:</p>
<ul>
<li>During the setup wizard</li>
<li>GUI login any time the password matches the default password</li>
<li>Shell (console or SSH) login any time the password matches the default password</li>
<li>Possibly during the installation process</li>
</ul>
<p>We should also not allow the user to change their password to any variation of "pfsense" in upper/lower/mixed case.</p> pfSense Plus - Feature #14945 (New): Allow IPsec VTI ``ipsecX`` interfaces to be added to interfa...https://redmine.pfsense.org/issues/149452023-11-06T16:54:39ZMike Moore
<p>Provide the ability to add IPsecX interfaces that are set up for VTI and filtering enabled, to be part of an Interface Group.<br />With the help of a Netgate Admin, modifying a .php file ive been able to test grouping IPsec interfaces and so far so good.</p>
<p>reference: <a class="external" href="https://forum.netgate.com/topic/183820/interface-groups-no-ipsec-tunnels-listed/8?_=1699278877471">https://forum.netgate.com/topic/183820/interface-groups-no-ipsec-tunnels-listed/8?_=1699278877471</a></p> pfSense Plus - Feature #14789 (Pull Request Review): Captive Portal - Add OTP authentication opti...https://redmine.pfsense.org/issues/147892023-09-18T06:34:26ZBarry Schut
<p>I have created a small modification to the captive portal pages so it would be possible to use an OTP as login option for the portal.</p>
<p>This will allow for an ever changing password on the portal but also control over who gets to use it.</p>
<p>In my personal situation:</p>
<p>I have a guest wifi and I am using the captive portal to allow people to login. With a small hardware OTP generator (hand held device) I can grant visitors access. No fuss, no accounts, no risk of leaking details.</p>
<p>I will be creating a pull request soon.</p> pfSense Plus - Feature #14743 (New): Add Passkey/Certificate-based Authenticationhttps://redmine.pfsense.org/issues/147432023-09-03T04:21:49ZKris Phillips
<p>pfSense Plus's webConfigurator is currently limited in authentication for local auth, requiring third party implementations to add 2FA or other authentication means.</p>
<p>There is already redmine 12546 for adding 2FA to pfSense Plus natively, but it would also be beneficial to add passkey/cert-based authentication to pfSense Plus' webConfigurator and other functions.</p> pfSense Plus - Feature #14297 (New): Add Option for Vendor Class ID in DHCP Clienthttps://redmine.pfsense.org/issues/142972023-04-21T15:07:26ZKris Phillips
<p>Some ISPs require a Vendor Class ID be sent (option 60) when requesting DHCP. This can currently be accomplished in pfSense with vendor-class-identifier manually added to a dhcp config file, but adding this as a field would be helpful.</p> pfSense Plus - Feature #14205 (New): Allow for maximum concurrent users, per user, in captive portalhttps://redmine.pfsense.org/issues/142052023-03-30T07:05:21ZAlex Rubenstein
<p>We have several schools who wish to impose how many devices are allowed to have access via the Captive Portal, per user.</p> pfSense Plus - Feature #14131 (New): Add Dynamic DNS Service: DYNUhttps://redmine.pfsense.org/issues/141312023-03-20T03:30:05ZSteven Cedrone
<p>Please add Dynamic DNS provider DYNU</p>
<p><a class="external" href="https://www.dynu.com/en-US/">https://www.dynu.com/en-US/</a></p>
<p>It's working now but sometimes won't update and it appears it's PfSense causing it because other non PfSense routers that update on the same connection will update all the time without fail.</p>
<p>Update URL:<br /><a class="external" href="https://api.dynu.com/nic/update?hostname=XXXXXX.ddnsfree.com&password=999999">https://api.dynu.com/nic/update?hostname=XXXXXX.ddnsfree.com&password=999999</a> (EXAMPLE)</p>
<p>Result Match:<br />good|nochg|good <span>IP</span></p> pfSense Plus - Feature #14125 (New): Add Cateogory field to Available Packages Tab like Installed...https://redmine.pfsense.org/issues/141252023-03-19T02:33:48ZScott Costa
<p>Under the Installed Packages the header fields have the following listed at the top Name Category Version Description Action</p>
<p>Under the Available Packages the header fields have the following listed at the top Name Version Description</p>
<p>Could the Category field be added to help provide more information as to if the package is a sysutil, security, benchmarks, etc...</p> pfSense Plus - Feature #14066 (New): Add line number to rules and insert optionhttps://redmine.pfsense.org/issues/140662023-03-03T09:20:22ZMike Moore
<p>From a rule management perspective, is it possible to do the following:<br />1. Add line numbers in the GUI. So an admin can say 'Line 30' needs to be modified instead of having to relay the rule to the team and everyone hunting for that specific rule. Of course the line numbers will need to be adjusted each time a rule is added or deleted. Makes administration easier.</p>
<p>2. Insert a rule within the rule set. Currently, the only options are to add a rule at the top or at the bottom or maybe copy an existing rule which would place it underneath what you are copying - which is a good step. Having a large rule set it makes sense to create a rule and have the option presented to 'place after line 15' for example.</p>
<p>This is all about better rule administration and management.</p> pfSense Plus - Feature #14017 (New): Ability to remove all packages before upgardes with saved co...https://redmine.pfsense.org/issues/140172023-02-22T14:38:47ZYuri Weinstein
<p>Currently, every time when a new upgrade is available the first thing recommended to do is uninstalling all packages.</p>
<p>I suggest considering a feature that will allow selecting all packages to be removed as a part of the upgrade and then afterward installing all of them back.</p> pfSense Plus - Feature #12832 (New): 6100 configurable Blinking Blue LED https://redmine.pfsense.org/issues/128322022-02-19T11:56:10Zshawn butts
<p>The blinking blue like for "normal operation status" feels like an "everything is ok ALARM!!!!"</p>
<p>I'd like to see an option to either make it solid blue for "normal" or disable the LED altogether.</p> pfSense Plus - Feature #12546 (New): Add 2FA Support to pfSense Plus Local Database Authenticationhttps://redmine.pfsense.org/issues/125462021-11-27T17:36:40ZKris Phillips
<p>To eliminate the reliance on unsupported packages like freeRADIUS for making this work, we should add the capability to the built-in user database in pfSense for time-based tokens. This could be "bolted on" to the end of passwords similar to how other options accomplish this for OpenVPN or IPSec VPNs, but we may be able to add a field to the webConfigurator login for 2FA.</p> pfSense Plus - Feature #11732 (New): Add VXLAN Support to pfSense Plushttps://redmine.pfsense.org/issues/117322021-03-26T11:23:30ZKris Phillips
<p>VXLAN Support would be useful for scalable cloud deployments of pfSense Plus</p>