Project

General

Profile

Activity

From 06/01/2016 to 06/30/2016

06/30/2016

11:49 PM Feature #6141: Convert apcupsd package to 2.3
Apparently someone has updated the package and it's been waiting on approval here for over a month: https://github.co... Charles Sprickman
09:14 PM Bug #5511 (Feedback): quagga zebra.conf and openvpn interface
fix pushed Chris Buechler
09:05 AM Feature #6555: Support IEEE 1588
See also [[https://redmine.pfsense.org/issues/6554]] Bruce Simpson
09:01 AM Feature #6555: Support IEEE 1588
Here is how I get around the lack of GUI integration at the moment.
(Requires mode7 support on loopback is re-enable... Bruce Simpson
02:46 AM Bug #6562: Bug/Wrong description in the squid settings
Screenshot Author: http://docs.diladele.com/ Richard Eberhard
02:39 AM Bug #6562 (Not a Bug): Bug/Wrong description in the squid settings
I think there is a wrong description or maybe a bug in the "certificate adapt" option in the squid https settings. He... Richard Eberhard
02:41 AM Bug #6563 (Resolved): Squid still accepts sha1 certificates
Squid still accepts sha1 certificates.(Man in the middle proxy) I think this should be blocked by default for securit... Richard Eberhard

06/28/2016

05:05 PM Feature #6555 (New): Support IEEE 1588
pfSense should include a package (and GUI) for driving IEEE 1588 PTPd. This is currently available as a FreeBSD packa... Bruce Simpson

06/27/2016

01:53 PM Feature #6537: Suricata does not autopopulate IP Reputation list from Emerging Threats on rules update
Tried importing manually, this does not work the way one would expect. Please close. John Silva
11:23 AM Bug #6547 (Resolved): syslog-ng log browser only shows the first few lines
The log browser in the package tab only shows the first few lines for each log target.
Right now, it's easier to u... Bruce Simpson

06/25/2016

10:49 PM Bug #6521: pfsense 2.3.1 squidguard -> Groups ACL -> Target Rules List missing...
It works if I change
squidguard_before_form_acl($pkg); to squidguard_before_form_acl($pkg,false);
in
/usr/local/pk... Lars Heer
06:01 PM Feature #6537 (Rejected): Suricata does not autopopulate IP Reputation list from Emerging Threats on rules update
The snort rules update process auto-populates the ET IP reputation list into SNORT_IPREP_PATH on rules update. Suric... John Silva
01:41 PM Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
Okay ... I have to set-up already that if i upgrade the package back to the new one, the issue will happen. Jim ... ... Reqlez Guy

06/23/2016

10:38 PM Bug #6527: Squid 3.5 - Deprecated "ssl_bump server-first all" don't allow SNI in transparent mode with HTTPS/SSL Interception
Edited in order to add more information about ssl peek and splice
http://wiki.squid-cache.org/Features/SslPeekAndS... Michael Epstein
08:51 PM Bug #6527 (Resolved): Squid 3.5 - Deprecated "ssl_bump server-first all" don't allow SNI in transparent mode with HTTPS/SSL Interception
As described in the squid wiki, "ssl_bump server-first all" is deprecated in squid 3.5+
http://wiki.squid-cache.or... Michael Epstein

06/22/2016

05:28 AM Bug #6521 (New): pfsense 2.3.1 squidguard -> Groups ACL -> Target Rules List missing...
The clickable "Target Rules List" field in menu "Groups ACL" disappears if more than 3 "Target categories" are define... Lars Heer
12:01 AM Feature #6502 (Closed): Add samba in the available packages
a firewall isn't a NAS, trying to be one isn't of interest. Chris Buechler

06/21/2016

06:28 PM Bug #6511: In some circumstances the HAProxy clone front-end button can add blank list entries to the front end being cloned resulting in a config that cannot be applied.
It's not just that - the clone/duplicate/whatnot button is borked in general. E.g., when you "duplicate" an ACL, the ... Kill Bill
01:26 PM Bug #6511 (Resolved): In some circumstances the HAProxy clone front-end button can add blank list entries to the front end being cloned resulting in a config that cannot be applied.
1. The blank entries shouldn't be created.
2. The blank entries should be ignored on the backend.
See: RPL-94792 Steve Wheeler
03:32 AM Feature #6508 (Closed): OSPF v3 - Quagga OSPF6d
Hi,
Can you implement, in a future release, the OSPFv3 for IPv6?
In advance tank you Johann Vyncke

06/19/2016

04:33 PM Feature #6502 (Closed): Add samba in the available packages
Hello
I don't know if I'm writing this in the right place if not then I apologise.
My request is that add in the av... John Smith

06/17/2016

02:10 PM Bug #6182: HAProxy not supporting ALPN
Right - openssl is now 1.0.1s where it is 1.0.2c on 2.2.6.
Openssl was downgraded at https://redmine.pfsense.org/p... Sam Bingner
10:18 AM Bug #6497 (Closed): Squid3 web GUI page not saving settings for users in custom system privileged groups in v 2.2.2
In v 2.2.2, if a web UI administrator is in a custom user group that has a subset of system privileges including the ... tqwqllrm tqwqllrm

06/15/2016

06:23 PM Bug #6492 (Resolved): Syslog-ng configuration file warning is treated as syntax error
The syslog-ng package is warning about an old configuration file format. Pfsense is interpreting any warning message ... Thomas Blaschke
01:43 AM Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters
Thank You. Dziugas Bareikis

06/14/2016

07:38 PM Bug #6250 (Needs Patch): Sarg frame.php memory size
this package has been deprecated Chris Buechler
06:55 PM Bug #3766 (Closed): Unhashed plain passwords saved by 2 packages (one a shell login package)
Chris Buechler
06:54 PM Bug #4498 (Closed): SSHDCond - dropdown font unreadable
this package has been deprecated Chris Buechler
06:14 PM Feature #3144 (Closed): Package info - Wiki
Chris Buechler
06:12 PM Feature #6462 (Resolved): Add the php-pgsql module to the pfSense repo.
available on 2.3.1+ Chris Buechler
06:10 PM Bug #5374 (Closed): postfix package is patching /etc/inc/system.inc (syslog configuration)
this package has been deprecated Chris Buechler
06:10 PM Bug #4926 (Closed): Please update darkstat to 3.0.719
this package has been deprecated Chris Buechler
06:08 PM Feature #1973 (Closed): Update siproxd to v0.8.1
done some time ago Chris Buechler
06:05 PM Feature #4368 (Closed): [Unbound] Allow customized root.hints
not desirable, it's correct as-is. Chris Buechler
05:59 PM Feature #4347 (Closed): Recent Version of Asterisk
this package has been deprecated Chris Buechler
05:58 PM Feature #2220 (Closed): Varnish 3 does not have the ability to change vcl_deliver function
this package has been deprecated Chris Buechler
05:58 PM Feature #2576 (Closed): Monitor Multiple Interfaces on "bandwidthd" Packege
this package has been deprecated Chris Buechler
05:57 PM Bug #2879 (Closed): uninstalling Postfix Forwarder leaves widget
package has been removed Chris Buechler
05:55 PM Bug #6194 (Not a Bug): SSL inspection not working
appears to be a config problem Chris Buechler
05:55 PM Bug #5821 (Closed): Asterisk - shared object libperl.so not found
package has been removed Chris Buechler
05:55 PM Bug #5780 (Closed): phpservice.inc - variables between EOF not escaped.
package has been removed Chris Buechler
05:54 PM Bug #3942 (Resolved): bind - allow starting named with "-4" argument
Chris Buechler
05:54 PM Feature #3485 (Closed): Log rotation for mod_security
package has been removed Chris Buechler
05:54 PM Bug #450 (Closed): Some packages do not use authentication for their web interface
the packages in question have all been removed. Chris Buechler
05:48 PM Todo #6190 (Resolved): Convert and add NUT package to pfsense 2.3
merged several weeks ago Chris Buechler
05:48 PM Bug #6248 (Resolved): Feedback for NUT package
this has been merged Chris Buechler
05:48 PM Bug #6247 (Rejected): Feedback for TeamSpeak 3 package
redistribution of TeamSpeak is not permitted, so we can't offer it as a package. Chris Buechler
05:46 PM Feature #6379 (Closed): Please reinstate nameserver package
BIND package has been back for a bit. Chris Buechler
05:43 PM Bug #3363 (Needs Patch): TinyDNS does not respond to IPv6 subnet
this package has been deprecated Chris Buechler
05:43 PM Bug #3530 (Needs Patch): TinyDNS creates incorrect NS records
this package has been deprecated Chris Buechler
05:43 PM Bug #6062 (Needs Patch): stunnel should use "WAN IP" to protect you from breaking stunnel config
our stunnel package has been deprecated Chris Buechler
12:41 PM Bug #6490 (Rejected): Squid Reverse Proxy: Disabling an entry on the "Redirects" tab creates duplicate entries for the previous entry in the squid config
If you disable an redirect entry by disabling the "If checked, then this redirect will be available for reverse confi... Stefan Partner
12:33 PM Bug #6489 (Not a Bug): Squid Reverse Proxy: Deleting an entry on the "Redirects" tab does not reload config
Deleting an entry on page "Package / Reverse Proxy Server: Redirects / Redirects" does not affect the running squid c... Stefan Partner
07:38 AM Bug #6486: Squid fails in transparent proxy mode
This is a configuration issue, not a bug. If your client protocol does not work properly, it's probably not speaking ... Jim Pingle
07:35 AM Bug #6486: Squid fails in transparent proxy mode
I reread the forum articles about this bug. The general consensus was that Squid has been broken in the past. My beli... Allan Levene

06/13/2016

12:41 PM Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters
Yeah, it just does not belong there at all; put the stuff to "Advanced pass thru". Kill Bill
07:02 AM Bug #6484: pfsense 2.3.1_1 does not accept haproxy advanced parameters
Not enough information here about what are you putting where; the entire generated configuration is available under t... Kill Bill
04:00 AM Bug #6484 (Rejected): pfsense 2.3.1_1 does not accept haproxy advanced parameters
Hi!
pfsense 2.3.1_1 does not accept haproxy advanced parameters. I can use redirect in version 2.2.6-RELEASE.
(... Dziugas Bareikis
10:54 AM Bug #6486 (Not a Bug): Squid fails in transparent proxy mode
Not a bug. Post on the forum for help with your configuration. Jim Pingle
10:13 AM Bug #6486 (Not a Bug): Squid fails in transparent proxy mode
Squid 0.4.18 offers transparent proxy capability under 2.3.1-RELEASE-p1 (latest version) by checking a box - Enable t... Allan Levene
08:11 AM Bug #6485 (Rejected): Squid garbage collection is a blocking thread and stops all network traffic
Squid garbage collection is a blocking thread and stops all network traffic when using ram cache.
https://forum.pf... ageekhere ageekhere

06/12/2016

11:00 AM Bug #6449: Email Reports not wait a long command end to send the report.
hi guys ,
any questions or anything I can do to help solve this bug? Luis Couto
12:07 AM Feature #6480 (Closed): pfBlockerNG - add ability to force download of a list
Chris Buechler

06/11/2016

02:59 PM Feature #6480: pfBlockerNG - add ability to force download of a list
OK, got it. I don't think I would have found it had you not pointed me to it - but that's what I was looking for, th... Andrew -
02:46 PM Feature #6480: pfBlockerNG - add ability to force download of a list
Goto the "Log Browser" Tab and view the Feed in the "Deny" folder... There is a delete Icon there... BBcan177 .
05:04 AM Feature #6480 (Closed): pfBlockerNG - add ability to force download of a list
At the moment, there's no way through the GUI to force a re-download of a particular list. The only way to do it is ... Andrew -

06/10/2016

09:22 PM Bug #4736: ladvd crashes, dumps core
Since 2.3-RELEASE, LADVD no longer crashes, but results on i386 are still inconsistent - one firewall sees the switch... Adam Thompson
06:40 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
I submitted a pull request to add GeoIP as a dependency of ntopng:
https://github.com/pfsense/FreeBSD-ports/pull/1... Rich Murphey
06:00 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
There is a missing dependency on GeoIP-1.6.9.
I tried to restart the service, which failed.
Then logged in and tr... Rich Murphey
12:01 PM Feature #6479 (Rejected): Add OpenBGPD config to High Availability Sync option to sync
I believe this functionality would be very intersting in a high avaliabity environment. Deivid Tesch

06/09/2016

04:15 PM Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
seems like someone has found a way to reproduce consistenly. (this is currently not verified by others)
https://fo... jeroen van breedam
03:48 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
Thanks for working on this, It's good to have ntopng back.
I didn't have any install issues (though it looks from... Andrew -
02:49 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
deleted
/usr/local/share/ntopng
that fixed install Michael Kellogg
12:30 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
Kill Bill wrote:
> Rich Murphey wrote:
> Every case of this I've seen on the 2.2.x ntopng package was a password m... Phil Freeman
03:06 AM Todo #6443: Add ntopng package back into pfSense 2.3.x
Rich Murphey wrote:
> After setting the password via the ntopng settings page in the pfsense UI, the ntopng admin pa... Kill Bill
01:38 AM Bug #6473 (Resolved): OpenVPN Client Export package - depends on vulnerable p7zip version (CVE-2016-2334, CVE-2016-2335)
This depends on p7zip version vulnerable to heap-buffer-overflow (CVE-2016-2334) and out-of-bounds read (CVE-2016-233... Kill Bill

06/08/2016

04:03 PM Bug #6471 (New): pfsense 2.3.1 squidguard -> common ACL -> Target Rules List missing...
The clickable "Target Rules List" field in menu "common ACL" disappears if more than 7 "Target categories" are defined. Lars Heer
11:56 AM Feature #6470 (New): CloudFlare Integration Module
I would be interested in assisting with the development of a super simple cloudflare integration module.
It would ... Xander Venterus
09:30 AM Feature #6462 (Feedback): Add the php-pgsql module to the pfSense repo.
Applied in changeset pfsense:commit:4a374da4778f8d94bca07f19cdc37d40208833b9. Renato Botelho
08:55 AM Todo #6443: Add ntopng package back into pfSense 2.3.x
install fails on 2.3.2a here is log
\>>> Installing pfSense-pkg-ntopng...
Updating pfSense-core repository catalo... Michael Kellogg
03:28 AM Bug #6456: vm-bhyve not correctly detecting the modules in kernel
This was fixed in vm-bhyve v0.12.3.
(https://github.com/churchers/vm-bhyve/commit/a74ef7e04a5fa5ce256fe2f213dec6f5... Jose Luis Duran
01:40 AM Feature #6436: Add Stunnel binaries to the pfSense repository
Latest package is in:
http://pkg.freebsd.org/freebsd:10:x86:64/latest/All/stunnel-5.31,1.txz Taha Jahangir

06/07/2016

08:08 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
I've installed snapshot 2.3.2.a.20160606.1543, and ntopng via the web UI package manager.
I see only one possible ... Rich Murphey
04:44 PM Todo #6443: Add ntopng package back into pfSense 2.3.x
Hi Renato. Many thanks for adding it back. I suspect the answer may be no, but is there any way to run the package ... Andrew -
04:19 PM Todo #6443 (Feedback): Add ntopng package back into pfSense 2.3.x
I've added it back to 2.3.2 snapshots, that can be downloaded at https://snapshots.pfsense.org
Note that it was no... Renato Botelho
10:51 AM Feature #6462 (Resolved): Add the php-pgsql module to the pfSense repo.
The php-pgsql module was previously installable in 2.2.X and earlier and some users are using it in custom captive po... Steve Wheeler
02:05 AM Feature #6176: Privilege for OpenVPN Client Export
it would be very cool to be able to limit access for users to their own client configs. users don't need to have acce... bearsh bearsh

06/06/2016

03:16 PM Bug #6456 (Not a Bug): vm-bhyve not correctly detecting the modules in kernel
Trying to run bhyve in pfsense 2.3.1. I have install vm-bhyve. But I found it is not working properly when executing ... Pedro Ramos

06/04/2016

04:08 PM Bug #6449 (Rejected): Email Reports not wait a long command end to send the report.
how to repoduce :
-install speedtest-cli pkg install py27-speedtest-cli
-install email reports package ..
-ad... Luis Couto

06/03/2016

06:20 PM Bug #6368: pfBlockerNG General Settings - Erroneous Text
Unfortunately the line break html code <br/> still exists after pfBlockerNG update to 2.0.17 Rick Strangman
02:12 PM Feature #6445 (Rejected): Request: Zabbix 3.0 LTS proxy
It would be nice to have the 3.0 LTS proxy for zabbix as it is not backwards compatible with the 2.2 or 2.4 version a... Pim Janssen
12:26 PM Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
@jimp
i've updated reply #7 to include the config of client side & server side
the status of before/after was ... jeroen van breedam
10:47 AM Bug #6305 (Feedback): Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
I see the routes sometimes (but not always) marked as Kernel routes in the Zebra routing table, but I have not seen t... Jim Pingle
09:10 AM Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
jeroen van breedam wrote:
> Any of the coredevs been able to replicate this?
I have ( but I'm not a Dev) And ever... Reqlez Guy
05:13 AM Todo #6443: Add ntopng package back into pfSense 2.3.x
Yes, sorry, ntopng package is here: https://github.com/pfsense/FreeBSD-ports/tree/devel/net/pfSense-pkg-ntopng Andrew -
04:53 AM Todo #6443: Add ntopng package back into pfSense 2.3.x
pfsense-packages repo on github is no longer in use (it was used before 2.3 )
New packages go straight into the Free... jeroen van breedam
04:06 AM Todo #6443: Add ntopng package back into pfSense 2.3.x
"*pfSense* has now been added back into the FreeBSD-ports tree" ... sorry, meant ntopng obviously. Andrew -
04:04 AM Todo #6443 (Resolved): Add ntopng package back into pfSense 2.3.x
The ntopng package was previously removed from pfSense 2.3.x because the ntopng port didn't build in FreeBSD.
pfSe... Andrew -

06/02/2016

11:17 PM Bug #5940 (Confirmed): Squid Local Authentication fails with passwords >8 characters
fails because of the crypt using a base64_encode of the password as a salt in that case, plus also fails >8 character... Chris Buechler
11:16 PM Bug #6313 (Duplicate): Squid 0.4.16_2 Local Authentication fails with passwords +8 characters
that's the same root cause as #5940 Chris Buechler
05:25 PM Bug #6368 (Resolved): pfBlockerNG General Settings - Erroneous Text
Chris Buechler
02:03 PM Bug #6368: pfBlockerNG General Settings - Erroneous Text
Resolved with https://github.com/pfsense/FreeBSD-ports/pull/140 BBcan177 .
05:24 PM Bug #6380 (Resolved): pfBlockerNG blocks traffic on server reboot
Chris Buechler
02:02 PM Bug #6380: pfBlockerNG blocks traffic on server reboot
Resolved with https://github.com/pfsense/FreeBSD-ports/pull/140 BBcan177 .
05:24 PM Bug #6116 (Resolved): pfBlockerNG doesn't automatically update after firmware upgrade, meaning that unbound doesn't start and users don't have internet connection
Chris Buechler
02:04 PM Bug #6116: pfBlockerNG doesn't automatically update after firmware upgrade, meaning that unbound doesn't start and users don't have internet connection
Resolved with https://github.com/pfsense/FreeBSD-ports/pull/140 BBcan177 .
01:56 PM Bug #6305: Quagga problems updating routes / mistakenly showing "kernel"-routes while they are not
Any of the coredevs been able to replicate this? jeroen van breedam

06/01/2016

12:46 PM Feature #6436 (Resolved): Add Stunnel binaries to the pfSense repository
Please consider adding the Stunnel binaries and its dependencies to the pfSense repository. The Stunnel package has d... john stew
11:43 AM Bug #6047 (Feedback): syslog-ng does not logrotate
Please try 1.1.2_3, I pushed a fix Renato Botelho
11:26 AM Bug #6047: syslog-ng does not logrotate
Looks like the dependency on sysutils/logrotate was listed in ports_before on the old 2.2.x package but that didn't g... Jim Pingle
 

Also available in: Atom