https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162015-06-07T16:12:47ZpfSense bugtrackerpfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=186902015-06-07T16:12:47ZErmal Luçieri@pfsense.org
<ul><li><strong>Status</strong> changed from <i>Confirmed</i> to <i>Feedback</i></li></ul><p>Actually filterdns was not updated with changes done to ipfw patches for 10.1.<br />Now it should properly do its task.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=188422015-06-17T01:30:59ZChris Buechlercbuechler@gmail.com
<ul></ul><p>this change could also be what completely broke CP (see <a class="issue tracker-1 status-3 priority-11 priority-high3 closed" title="Bug: kernel panic after disabling captive portal when idle timeout is in use (Resolved)" href="https://redmine.pfsense.org/issues/4751">#4751</a>)</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=188622015-06-17T21:21:33ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Confirmed</i></li></ul><p>no change here. Logs show during boot: <br /><pre>
Jun 17 21:19:25 pfs22-CPtest3 filterdns: adding entry ::2610:160:11:11:0:0 to table 3 on host pfsense.org
Jun 17 21:19:25 pfs22-CPtest3 filterdns: adding entry 208.123.73.69 to table 3 on host pfsense.org
Jun 17 21:19:25 pfs22-CPtest3 filterdns: adding entry ::2610:160:11:11:0:0 to table 4 on host pfsense.org
Jun 17 21:19:25 pfs22-CPtest3 filterdns: adding entry 208.123.73.69 to table 4 on host pfsense.org
</pre></p>
<p>but a 'table all list' comes back empty. Restart filterdns and it logs same again, but the tables are again all empty.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=189382015-06-22T16:56:07ZChris Buechlercbuechler@gmail.com
<ul></ul><p>no change from last comment. filterdns is running with the correct instance ID for -y, logs that it's adding entries like shown in previous comment, but tables end up empty. Go into the CP instance, edit and save one of the hostname entries, and the IPs are added to the tables.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=189562015-06-23T12:52:27ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Assignee</strong> deleted (<del><i>Ermal Luçi</i></del>)</li></ul> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=189572015-06-23T12:52:34ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Target version</strong> changed from <i>2.2.3</i> to <i>2.3</i></li></ul> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=190402015-07-02T03:15:03ZDavide Cottignolidavidecottignoli@racine.ra.it
<ul></ul><p>As stated in version 2.2.3 changelog, this bug has to be resolved but now, it doesn't work also if you add FQDN in the hostname table and don't reboot o restart the service. Only IP address table works.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=190422015-07-02T06:53:00ZPhillip Davisphil@jankaritech.com
<ul></ul><p>Yes, the 2.2.3 New Features and Changes page says that this is fixed in 2.2.3, but here in Redmine it says target 2.3<br /><a class="external" href="https://doc.pfsense.org/index.php/2.2.3_New_Features_and_Changes">https://doc.pfsense.org/index.php/2.2.3_New_Features_and_Changes</a><br />Which is it? Or half and half?</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=203922015-09-03T21:56:13ZJim Thompsonjim@netgate.com
<ul><li><strong>Assignee</strong> set to <i>Luiz Souza</i></li></ul> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=206012015-09-12T06:52:46ZDavide Cottignolidavidecottignoli@racine.ra.it
<ul></ul><p>Is there a workaround for this bug in 2.2.2-2.2.4 ?</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217362015-10-19T07:04:46ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>We got the same issue. I can add/delete allowed hostnames but they are not loaded, not even by reloading the service.</p>
<p>Any work around for 2.2.4?</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217372015-10-19T07:16:17ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>If we try to delete Allowed hostnames, this is the result I get in the logs: (the list is empty in GUI though...)</p>
<p>Oct 19 14:19:06 filterdns: failed to resolve host msftncsi.com will retry later again.<br />Oct 19 14:19:06 filterdns: COULD NOT clear entry 0:0:2a02:26f0:e6:: from table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry 0:0:2a02:26f0:e6:: from table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry 0:0:2a02:26f0:e6:: from table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry 0:0:2a02:26f0:e6:: from table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2001:16d8:1:2:0:0 to table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2001:16d8:1:2:0:0 to table 3 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry 0:0:2a02:26f0:e6:: from table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry 0:0:2a02:26f0:e6:: from table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry 0:0:2a02:26f0:e6:: from table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry 0:0:2a02:26f0:e6:: from table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2001:16d8:1:2:0:0 to table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2001:16d8:1:2:0:0 to table 4 on host <a class="external" href="http://www.msftncsi.com">www.msftncsi.com</a><br />Oct 19 14:19:06 filterdns: failed to resolve host msftncsi.com will retry later again.<br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:29d:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:29d:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:28a:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:28a:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:29a:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:29a:0:0 from table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:29d:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:29d:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:28a:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:28a:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: COULD NOT clear entry ::2a02:26f0:41:29a:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a> will retry later<br />Oct 19 14:19:06 filterdns: clearing entry ::2a02:26f0:41:29a:0:0 from table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2a02:26f0:18:18c:0:0 to table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2a02:26f0:18:1a1:0:0 to table 3 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2a02:26f0:18:18c:0:0 to table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a><br />Oct 19 14:19:06 filterdns: adding entry ::2a02:26f0:18:1a1:0:0 to table 4 on host <a class="external" href="http://www.apple.com">www.apple.com</a></p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217382015-10-19T08:17:07ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>Sorry for spamming. I have not added any IPv6 addresses so it's very strange that they are added at all?<br />This might be another issue maybe?</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217472015-10-19T10:32:35ZLuiz Souzaluiz@netgate.com
<ul></ul><p>Jonatan Hazell wrote:</p>
<blockquote>
<p>Sorry for spamming. I have not added any IPv6 addresses so it's very strange that they are added at all?<br />This might be another issue maybe?</p>
</blockquote>
<p>No this is okay. The v6 address you see, comes from the hostnames you added in 'allowed hostnames'.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217482015-10-19T10:46:08ZLuiz Souzaluiz@netgate.com
<ul><li><strong>Status</strong> changed from <i>Confirmed</i> to <i>Feedback</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Fixed in 2.3 and 2.2.x.</p>
<p>There were two bugs here:</p>
<p>- A few malformed rules in the initialisation rules (at system startup), was breaking the parsing of rules (2.3 specific);</p>
<p>- filterdns was not adding the resolved address to ipfw tables.</p>
<p>This is why the CP tables are empty after a reboot. At the system startup the system skips the hostnames as the network may need a few seconds to initialise. It is a filterdns task update those tables as soon as the network come up.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217522015-10-19T11:02:32ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>Thanks. <br />We're running 2.2.4 and it is still not working, can't add Allowed Hostnames: they are listed in GUI but not loaded.<br />I've tried rebooting and restarting CP service + filter reload, doesn't help.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217542015-10-19T11:07:19ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>Actually, pfSense has loaded ONE of hostnames, but no more (we got about 10 hostnames listed).</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=217572015-10-19T11:21:29ZKill Bill
<ul></ul><p>Obviously it will NOT be working in a version released <strong>months</strong> before the fix?! Use the latest 2.2.5 snapshot.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=218552015-10-26T05:05:04ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>Updated to 2.2.2-DEVELOPMENT (20151019-1916), it is still not working. Only a few of the Allowed Hostnames are working, seems random.</p>
<p>Resolver Log still shows problems with clearing entries:<br /><pre>
Oct 26 11:03:23 filterdns: adding entry ::2610:160:11:11:0:0 to table 3 on host www.pfsense.org
Oct 26 11:03:23 filterdns: adding entry 208.123.73.69 to table 3 on host www.pfsense.org
Oct 26 11:03:23 filterdns: adding entry ::2610:160:11:11:0:0 to table 4 on host www.pfsense.org
Oct 26 11:03:23 filterdns: adding entry 208.123.73.69 to table 4 on host www.pfsense.org
Oct 26 11:01:11 filterdns: COULD NOT clear entry 23.5.108.224 from table 4 on host www.apple.com will retry later
Oct 26 11:01:11 filterdns: clearing entry 23.5.108.224 from table 4 on host www.apple.com
</pre></p>
<p>Nothing is added when I try to add <a class="external" href="http://www.pfsense.org">www.pfsense.org</a> for example. The entry does not show up when I run <code>ipfw -x 2 table all list</code>. It should resolve to 208.123.73.69.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=218582015-10-26T07:25:15ZKill Bill
<ul></ul><p>You need a snapshot that had a chance of including the patch; i.e., the one built AFTER the patch was committed. I thought it'd be very obvious, but apparently you decided that using a week old one would be a great idea. Sigh. You can check what's included by</p>
<pre>
cat /etc/version.lastcommit
</pre> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=218892015-10-26T17:23:26ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li><li><strong>Target version</strong> changed from <i>2.3</i> to <i>2.2.5</i></li></ul><p>Kill Bill: be nice, please.</p>
<p>Jonatan: use the newest available 2.2.5 snapshot and this will work.</p>
<p>Confirmed fixed. There is an outstanding issue in that functionality with IPv6, opened <a class="issue tracker-1 status-3 priority-4 priority-default closed" title="Bug: IPv6 captive portal allowed hostnames added as /32s (Resolved)" href="https://redmine.pfsense.org/issues/5345">#5345</a> for that.</p> pfSense - Bug #4746: captive portal allowed hostnames not loaded into table at boot timehttps://redmine.pfsense.org/issues/4746?journal_id=223852015-11-13T02:11:03ZJonatan Hazelljonatan.hazell@oru.se
<ul></ul><p>Confirmed working here. Thank you!</p>
<p>Kill Bill: Actually, I chose the latest snapshot, the same day I got the reply here. I didn't check the lastcommit though, will do that from now on. Thanks for the info.</p>