pfSense » pfSense Packages

03/17/2019

12:26 PM Bug #9204: ospfd: GRE tunnels became unnumbered since 2.4.4

I think the root of the problem is frr incorrectly detecting that GRE tunnels have /32 netmasks - this makes them unn... Firstname Surname

08:54 AM Bug #9352: Duplicate default views in Status Monitoring that can't be removed.

I can confirm all of this.
Thanks for creating the redmine. Raul Ramos

03/16/2019

09:04 PM Feature #9289: Snort enable react

Snort on pfSense currently runs in what is really IDS mode using libpcap. The "blocking" done by Snort uses a custom... Bill Meeks

03:43 PM Bug #9403 (Resolved): Suricata - Checkbox 'Traffic Flows' enables logging for both logging formats

The checkbox 'Traffic Flows' in 'EVE Output Settings' now enables netflow and flow output. (net)flow logging is quite... Julian Wecke

03/15/2019

10:19 AM Feature #9399: pkg support for SSH + sudo authentication via LDAP

nss_ladp and LDAP-enabled sudo are both now present on 2.5.0 snapshots. Jim Pingle

03/14/2019

03:45 PM Feature #9399 (Feedback): pkg support for SSH + sudo authentication via LDAP

Applied in changeset pfsense:commit:7db5a396d398b010bfb70048881a6cec0577338f. Jim Pingle

03:36 PM Feature #9399: pkg support for SSH + sudo authentication via LDAP

Considering we already build pam_ldap I'm not sure why nss_ldap was omitted, so I added it to the build list for 2.5.... Jim Pingle

12:15 PM Feature #9399 (Resolved): pkg support for SSH + sudo authentication via LDAP

Hi Folks,
You have a very usable and user-friendly webUI configuration tool for setting up LDAP authorization for ... Mark Staudinger

03/12/2019

04:49 PM Feature #9387: Update telegraf to 1.9.3 from ports

Sounds good, thanks. John Silva

03:11 PM Feature #9387: Update telegraf to 1.9.3 from ports

1.9.0 is available on pfSense 2.5.0 snapshots (which are not yet public)
That is the most recent release in the 20... Jim Pingle

03:37 PM Bug #9339: Misc typos in pfsense/FreeBSD-ports

PR Link: https://github.com/pfsense/FreeBSD-ports/pull/624 Jim Pingle

03:09 PM Feature #9389 (Closed): More frequent package repo updates needed

Sounds good on paper, but doesn't work in practice.
We can't automatically track a branch because a base system pa... Jim Pingle

03/11/2019

01:07 PM Todo #9392 (Resolved): Status_Traffic_Totals needs updated for vnstat 2.0

In the FreeBSD ports repository, vnstat has been upgraded to vnstat 2.0 (from 1.15).
vnstat 2.0 does not appear to... Jim Pingle

01:40 AM Bug #9322: telegraf "Additional configuration for Telegraf" lost configuration after reboot

additional issue： running configurations will ALSO be lost after sometime, you'll have to re-click SAVE in "PackageSe... mrco chen

03/10/2019

01:15 PM Feature #9389 (Closed): More frequent package repo updates needed

I've been noticing that the release package repo lags far behind the quarterly ports tree releases and the official p... John Silva

12:27 PM Feature #9387 (Resolved): Update telegraf to 1.9.3 from ports

Telegraf port in pfsense (1.6.3) is substantially behind upstream FreeBSD ports tree (1.9.3). 1.9.3 has support for ... John Silva

03/08/2019

09:34 AM Bug #9368 (Feedback): ACME certificates cannot have more than ~35 SAN entries due to input variable limits

PR Merged Jim Pingle

03/06/2019

04:28 PM Bug #9368: ACME certificates cannot have more than ~35 SAN entries due to input variable limits

Should be fixed with this: https://github.com/pfsense/FreeBSD-ports/pull/626
Or would that possibly cause sideeffect... Pi Ba

09:22 AM Bug #9368 (Resolved): ACME certificates cannot have more than ~35 SAN entries due to input variable limits

The way that acme_certificates_edit.php submits data results in a failure to add more SAN entries due to input variab... Jim Pingle

12:07 PM Feature #6651: Loopback interfaces

Slava Bendersky wrote:
> Hello Everyone,
> I would like place request add ability manipulate loopback interfaces th... Slava Bendersky

03/05/2019

09:08 AM Bug #9364 (Resolved): squidguard int error page does not use https

Hello,
I'm running these versions on my system(s):
pfSense 2.4.4-RELEASE-p2
squid 0.4.44_7
squidguard 1.16.18_1... Florian Stichlberger

02/28/2019

10:15 AM Todo #9354 (Feedback): Update OpenVPN Client Export with OpenVPN 2.4.7

The OpenVPN 2.4.7 Windows installer is included in OpenVPN Client Export Package version 1.4.18_3, which is available... Jim Pingle

09:35 AM Bug #8476 (Resolved): OpenVPN Client Export TLS Key Direction Directive Location

ovpn configuration file exported from:
2.4.5-DEVELOPMENT (amd64)
built on Wed Feb 13 06:09:38 EST 2019
FreeBSD 11.... Danilo Zrenjanin

02/26/2019

10:57 AM Bug #9355 (Bogus): Telegraf Package - https for InfluxDB Server

Setup Telegraf to send stats to InfluxDB
When trying https:// in url no stats until http:// used.
Would prefer to... Erin O'Meara

08:43 AM Todo #9354 (Resolved): Update OpenVPN Client Export with OpenVPN 2.4.7

OpenVPN 2.4.7 released last week, needs updated in the OpenVPN client export package: https://openvpn.net/community-d... Jim Pingle

08:35 AM Bug #9345 (Resolved): Quagga Ospf MD5 interface password truncated to 15 characters

Jim Pingle

12:05 AM Bug #9345: Quagga Ospf MD5 interface password truncated to 15 characters

Tested for FRR OSPF (version 0.2_7). Thank you for the quick fix. Henning Rogge

02/25/2019

04:04 PM Bug #9352 (Resolved): Duplicate default views in Status Monitoring that can't be removed.

Ended up with multiple "Default" views under status monitoring that could not be removed. When attempting to create a... Mike A

02/23/2019

11:41 AM Bug #9350 (Resolved): not appear proxy config

This problem is observed when using "squid" and "squidguard" packages together. If you enter values in the "blacklist... Yuran Yastreb

02/22/2019

12:08 PM Bug #9348 (New): Results of Acme certificate issuance/renewal are not properly formatted

The results of an Acme certificate issuance/renewal aren't properly formatted. Even when there are no errors the resu... Isaac McDonald

11:21 AM Bug #9347: Domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net"

This happens because those options have drop-down selectors without a 'none' option (since it's required for their re... Jim Pingle

11:08 AM Bug #9347 (Resolved): Domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net"

The domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net" regardless of the update met... Isaac McDonald

07:22 AM Bug #9345 (Feedback): Quagga Ospf MD5 interface password truncated to 15 characters

Fix pushed. Will be available once the packages rebuild. Jim Pingle

07:20 AM Bug #9345 (In Progress): Quagga Ospf MD5 interface password truncated to 15 characters

The code in the quagga was cutting it down to 15 characters, and that code was copied to FRR. Easy fix, will be up sh... Jim Pingle

02:03 AM Bug #9345: Quagga Ospf MD5 interface password truncated to 15 characters

The same seems to be true for the FRR Ospfd package. Henning Rogge

01:40 AM Bug #9345 (Resolved): Quagga Ospf MD5 interface password truncated to 15 characters

I am working with the quagga_ospf package for pfsense and noticed that the Web-GUI seems to cut of MD5 password strin... Henning Rogge

02/21/2019

07:01 PM Bug #9211: GeoIP broken in pfSense-pkg-ntopng-0.8.13_3

Any ETA on this please?
B D

12:42 PM Bug #9340: Buypass CA does not support wildcard

At Let's encrypt:
acme1: https://acme-staging.api.letsencrypt.org/directory
acme2: https://acme-staging-v02.api.let... Idar Lund

02/20/2019

09:27 AM Bug #9340: Buypass CA does not support wildcard

We can remove the "ACME v2" label from Buypass but the error message you quote doesn't appear to come from this packa... Jim Pingle

09:21 AM Bug #9340 (Resolved): Buypass CA does not support wildcard

The BuyPass server is listed as "acmev2":
BuyPass Production ACME v2 (Applies rate limits to certificate requests)
... Idar Lund

02/19/2019

09:33 PM Bug #9339 (Resolved): Misc typos in pfsense/FreeBSD-ports

I'm not entirely sure where this belongs, but I wanted to point out a cross-post of mine for fixing some typos in the... Bryan Stenson

02:18 PM Bug #9322: telegraf "Additional configuration for Telegraf" lost configuration after reboot

I can confirm the same issue. Aaron Morris