Activity
From 12/14/2018 to 01/12/2019
01/12/2019
-
09:19 PM Bug #8872: PHP7 error in squid
- If you're on 2.4.4 or later, edit/save options on the squid cache settings tab.
-
09:02 PM
Bug #8872: PHP7 error in squid
- How to reproduce the issue?
-
- Looks like it would take activating and tripping a squidGuard filter that replaced content with a blank image. If it ...
-
09:03 PM
Bug #8873: PHP7 warning in squidguard
- How to reproduce the issue?
-
- It wasn't really the upgrade that did anything. Only need to test apcupsd on 2.4.4 or later to make sure there are no...
-
09:01 PM
Bug #8780: Apcupsd PHP errors in 2.4.4 snapshot
- There is no way to test this, without an instance of pfSense already running 2.4.3 *with* apcupsd already installed.
...
01/11/2019
-
12:34 PM Bug #8476: OpenVPN Client Export TLS Key Direction Directive Location
- Tested on:
2.4.4-RELEASE-p2 (amd64)
built on Wed Dec 12 14:40:29 EST 2018
FreeBSD 11.2-RELEASE-p6
client expo... -
01:01 AM Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3
- in the topic mentioned above there has been found a possible cause for this:
> "Using pfSense 2.4.4-RELEASE-p2 wit...
01/10/2019
-
07:19 AM Feature #9265 (Resolved): Add options to configure TIMEOUTclose and debug on stunnel package
- Hello all...
This PR[1] add options to configure TIMEOUTclose and debug (log level) and also fix package doc URL o...
01/09/2019
-
08:08 AM Feature #9227: Please include Tinc in base pfSense, as a standard way of configuring tunnels
- I don't see the advantage by installing it by default, the whole purpose of packages is to make the base system not t...
01/08/2019
-
12:41 PM Bug #9261: haproxy GUI failure
- The acl "Traffic is ssl (no value needed)" is using the actual haproxy option: "req.ssl_ver gt 0" this is one that on...
-
11:23 AM Bug #9261 (New): haproxy GUI failure
- The GUI is misbehaving. I'm unable to add a specific ACL via the GUI. Simply adding "http-request redirect scheme htt...
01/06/2019
-
- Support for that is already in ACME 0.5, available on 2.4.5 snapshots. If stable, it will be made available for 2.4.4...
-
04:04 AM Feature #9257 (Duplicate): add more servers to acme
- Hi,
The Security Researcher Scott Helme has just blogged about an alternative to Let's Encrypt; https://scotthelme...
01/03/2019
-
-
03:28 PM
Feature #9250 (Resolved): Adjust download buttons and labels in OpenVPN Client Export
- Adjust download buttons and labels in OpenVPN Client Export, according to https://redmine.pfsense.org/issues/8671?iss...
-
03:14 PM Feature #9249 (Resolved): [siproxd] Add config for siptrunk plugin
- I use a sip trunk and it didn't work out of the box.
After adding these four lines to /usr/local/etc/siproxd.conf ...
01/02/2019
-
04:44 PM Bug #9247 (New): HAProxy multiple server selection on stats pages doesn't work
- Hi,
When selecting multiple servers to perform an action on in the Stats or Stats FS pages, the action performed o... -
- That PR hasn't been merged yet, probably should be its own ticket since it isn't related to this v83 change.
-
02:45 PM
Todo #8671: Add "V83" to Yealink T38G (2) download label
- On 2.4.5.a.20190102.0951 with pfSense-pkg-openvpn-client-export-1.4.18, seeing...
01/01/2019
-
07:26 PM Bug #9244 (Resolved): FRR Status BGP Summary only shows "IPv4 Unicast Summary"
- ON the FRR status pages, Services / FRR / Status, On the All and BGP tabs.
BGP Summary contains no info about IPv6...
12/31/2018
-
03:02 PM Feature #9240 (Rejected): allow users to define custom ipsec configuration using web-page for ipsec
- Just like in OpenVPN configuration page, where users can add custom options (Advanced Configuration -- Custom options...
-
01:22 PM Feature #9238: Add support for Zerotier
- Minimal functionality required would be joining and leaving networks. The controller service is not necessary as that...
-
- Excerpt from https://zerotier.com/blog/2018-05-04-128.shtml...
12/30/2018
-
- Adding support for ZeroTier with its multi-path feature, would give pfS a better position in the SD-WAN market.
12/29/2018
-
- We don't have any control over that, it comes from FreeBSD as a part of the ports tree. The ports tree also contains ...
-
11:14 AM Todo #9236 (Rejected): Rename japanese/prn directory to avoid windows names restriction issue
- Hello,
Because of the 'japanese/prn' directory, users with windows 10 systems can't fetch repository.
Microsoft u... -
06:51 AM Bug #9233: Error adding new status monitoring view
- I was able to avoid the problem: I saved a configuration file, located the <savedviews> etc </ savedviews> section th...
12/28/2018
-
- sorry, my bad, i was talking about : https://github.com/pfsense/FreeBSD-ports/pull/604
i correct my precedent post -
- I don't think so....I can in fact do updates on default view. My problem is different...It can not ADD new VIEWS afte...
-
- Hello,
Maybe you experienced this issue : https://redmine.pfsense.org/issues/9194
If so, you can try this patch... -
- Now I can no more add a new "Monitoring View". After choose "Add View" I get the message "The name-of-my-view view ha...
-
- i redo a correct PR : https://github.com/pfsense/FreeBSD-ports/pull/604
-
- the PR is now ok : https://github.com/pfsense/FreeBSD-ports/pull/603
12/27/2018
-
10:36 AM Bug #9229 (New): Tinc package: no way of specifying multiple critical configuration parameters from web interface
- Hello,
After installing the *Tinc package* provided in the official pfSense repository, there is *no apparent way ... -
- *Tinc* software ([[https://tinc-vpn.org/]]) is an excellent and easy way of configuring *SSL tunnels* to various othe...
12/26/2018
-
08:50 AM Bug #8918 (Resolved): OpenVPN Client Export: First user does not get username added to filename
- Tested: pfSense-pkg-openvpn-client-export-1.4.18
Username is added to the file for userID 0, the admin user:
<pre...
12/24/2018
-
- It is also not showing the locations (other than home location) and flows om the maps page
-
- Tested in current package version: pfSense-pkg-Service_Watchdog-1.8.6
No errors.
12/23/2018
-
- This looks better:
https://github.com/pfsense/FreeBSD-ports/pull/605 -
- Testing: pfSense-pkg-openvpn-client-export-1.4.18
Button labeling is correct. Though the alignment could be better. -
- No php errors in current package: pfSense-pkg-stunnel-5.47_1
-
- Tested: pfSense-pkg-stunnel-5.47_1
In the list of defined tunnels shown in /pkg.php?xml=stunnel.xml the certificat... -
- After defining a new tunnel with a non-default certificate the resulting .pem file is readable by any user resulting ...
-
- Tested:...
-
- Check swap is one of the selectable commands included by default in package version: 3.1
-
- Fixed in current packages versions:...
-
- No errors in current package: 4.0.13_11
-
-
- This now looks to have been surpassed:...
12/22/2018
-
- Hooo Thank you Jim !
I didn't know "convert_seconds_to_dhms()":https://github.com/pfsense/pfsense/blob/master/src/et... -
02:29 AM Bug #9108: OpenVPN client without "explicit-exit-notify" does not trigger client-disconnect portion of /usr/local/sbin/openvpn.attributes.sh
- Thank you everyone.
I dropped the session duration out of my log records. It didn't seem to provide any added val...
12/21/2018
-
- We already have a time conversion function :-)
"convert_seconds_to_dhms()":https://github.com/pfsense/pfsense/blob... -
- I just :
- add the format_byte to bytes values
- add the duration time
- change format to be like others "openvpn ...
12/20/2018
-
- Thank you very much Jim for your reply.
I can play with these variables now.
I'll post a feedback later about it ... -
12:24 AM Feature #9217 (Resolved): Squid LDAP Authentication - spaces in ldif values
- If OU value or another ldif unit contains spaces, for example OU=all users, squid ldap auth works only if to put the ...
12/19/2018
-
10:12 AM
Bug #9181: Spelling error in gwled package (0.2.4_1)
- Confirmed resolved in pfSense-pkg-gwled 0.2.4_2
12/18/2018
-
04:35 PM Bug #9211 (Resolved): GeoIP broken in pfSense-pkg-ntopng-0.8.13_3
- Since upgrading ntopng (from previous to latest version), GeoIP support is broken. No flags are shown, listing by cou...
-
- I wouldn't use @${bytes_sent} bytes@ or @${bytes_received} bytes@
Run them through "format_bytes()":https://github... -
- Thank you, i'll correct it.
I don't know where you find the "fucking manual" for these variables, if you got a link ...
12/17/2018
-
01:19 PM Feature #9085: OpenVPN connect/disconnect scripts
- The default for pfS is keepalive 10 60 on server side and will be automatically pushed to clients.
Please see "--k... -
12:58 PM Bug #9195: Suricata (latest): very large number of rules cause errors due to unknown reference keys on Rebuild with Interface SID Management List Assignments
- I have made at least a couple of posts on the pfSense IDS/IPS forum about this: _snortrules-snapshot-3000.tar.gz (14...
12/16/2018
-
06:38 PM Bug #9204 (Needs Patch): ospfd: GRE tunnels became unnumbered since 2.4.4
- I have recently tested an upgrade to 2.4.4_1, from 2.4.3. It is a hub and spoke type setup with GRE over IPSec, ipv4 ...
-
05:54 PM Bug #9195: Suricata (latest): very large number of rules cause errors due to unknown reference keys on Rebuild with Interface SID Management List Assignments
- The errors now appear to be due to illegal rules instead of "unknown reference key", with the exception an unknown ru...
-
- My bug report that re-installing Suricata does *not* restore important configuration files to their default settings ...
-
- This issue is still open. If a proposed workaround for this issue didn't fix it doesn't make that a new issue. It's s...
-
- Bug report #9202 was closed as a duplicate. However, bug #9202 relates to the failure of re-install options from fix...
-
- Forgot to mention that I have changed my connect logger line to:...
-
- See my comment under https://redmine.pfsense.org/issues/9085. (Not 9805, sorry.)
I agree that the numbers could b... -
- See also here:
https://redmine.pfsense.org/issues/9085
-
- I think you're correct but I guess I didn't wait long enough for the keepalive timer to expire.
In testing this,... -
02:40 PM Bug #9079: High CPU usage of ntopng even during IDLE and no network traffic
- Thanks for the script. Since version 2.4.4-p1 with the new version of ntopng the CPU idle usage did improve:
(weaker... -
- Clearly, this is not the same bug report.
That was a bug with errors occuring with Suricata. This is a bug that t... -
- The other bug report is still open. Add notes there, don't open a new issue for the same problem.
-
- I have tried System -> Package Manager -> Installed Packages -> Suricata -> clicked Reinstall. Same issue (Bug #9195)...
-
- Anything like that would have to be self-contained on the firewall. Relying on an external/internet-based service is ...
12/15/2018
-
- I'am looking for a way to join graphics/charts as image objects (png,gif,jpg,and so on...) in mail reports.
I notice... -
- I use ntop and didn't notice this problem.
Maybe some ntop options can cause more cpu usage...
I use Pfsense 2.4.... -
- And just for information : OpenVPN client without "explicit-exit-notify" *TRIG* the client-disconnect portion of /usr...
-
- I just test your logger lines, it is really fun to get the result :...
-
- Thank You.
I added this commit to my current PR : https://github.com/pfsense/FreeBSD-ports/pull/602/commits/b03293... -
07:00 AM Bug #9196: mailreport stopped work
- Hi, Joshua.
Yes, that solved the problem, thanks. -
- Hi Alex,
Thank you for your reply.
As we can see in the telnet output you give : your mail server purpose START... -
- Ok.
[2.4.4-RELEASE][root@pfsense.mydomain]/root: telnet 10.1.97.12 25
Trying 10.1.97.12...
Connected to mail.myd...
12/14/2018
-
- I have tried System -> Package Manager -> Installed Packages -> Suricata -> clicked Reinstall. Same issue.
Will t... -
- config reference: McAfee http://vil.nai.com/vil/content/v_
I am unable to resolve "vil.nai.com". Problem? -
- cat /usr/local/etc/suricata/reference.config
config reference: arachNIDS http://www.whitehats.com/info/IDS
con... -
- I have clicked on Diagnostics -> Backup & Restore -> Backup & Restore -> Package Functions -> Reinstall Packages.
... -
- On the same page, I use: Snort IPS Policy selection -> Use IPS Policy (checked), Use rules from one of three pre-defi...
-
- I have uninstalled Suricata without preserving settings and re-installed from scratch. I still see these errors. I ...
-
- I have not been able to reproduce this error in any of my testing. I have tested updated an existing Suricata instal...
-
- The latest version of the acme.sh script (not the GUI package) has some support but it isn't like the other integrate...
-
08:21 PM Todo #9200 (Resolved): Add DNS support for Google domain to Acme manager
- Please add DNS support of Acme manager for use with google domains. I'm using their DDNS feature and can't find them...
-
- Alex,
In the "System/Advanced/Notifications/Test SMTP Settings" log there is "ehlo=1 mail=1 rcpt=1 data=1 quit=1 c... -
- The error seems to indicate that it fails to verify peer certificate because unknown CA.
The successfull test is m... -
12:51 PM Bug #9181 (Resolved): Spelling error in gwled package (0.2.4_1)
- Corrected the typo:
Commit fd1d1c086c844c32835d26b35cb1a7c1c88927ca
pfSense-pkg-gwled 0.2.4_2 -
Also available in: Atom