Activity

30 days up to

User

Activity

From 01/29/2020 to 02/27/2020

02/23/2020

09:24 AM Feature #9003: Add 'Copy Running to Saved' option to the raw config: I do not understand why quagga-way (saving configuration in base64 format in config.xml) may be error prone.
Both *... Viktor Gurov

02/22/2020

08:16 PM Bug #10279: pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality: Might need to try on 2.4.5 or 2.5.0 to get the updated ports. I don't have any problem with guest functionality there... Jim Pingle
12:52 PM Bug #10279 (New): pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality: When I run pfSense on ESXi6.7 (Update 3) with Open-VM-Tools installed from Package Manager, ESXi sees the Open VM too... Travis McMurry
10:46 AM Feature #8181 (Resolved): Quagga OSPF failover mechanism takes too much time to converge in HA environments: successfully tested on 2.5.0.a.20200220.1948 with Quagga_OSPF 0.6.21_5 Viktor Gurov
10:37 AM Bug #9652 (Resolved): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc: Renato Botelho wrote:
> PR has been merged. Thanks!
works ok on 2.4.5.r.20200222.0000 and 2.5.0.a.20200221.1911 w... Viktor Gurov
10:33 AM Bug #9681 (Resolved): [Monitoring] New views title are always in lower case.: mixed titles is ok on 2.5.0.a.20200221.1911 and 2.4.5.r.20200222.0000
Viktor Gurov
10:12 AM Bug #8887: Squid Proxy Interface not assignee to IPv6: This fix allows you to select the IP protocol over which Squid will listen for connections:
https://github.com/pfsen... Viktor Gurov
08:55 AM Bug #10278 (New): pfBlockerNG: Formatting issue on DNSBL stats page: I have found that on the stats pages, the center bar that divides source from the pie charts is static.
I cannot... Steve Klund
07:41 AM Bug #4497: Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!: This fix allow to use only ^[a-zA-Z0-9_.-]*$ for usernames:
https://github.com/pfsense/FreeBSD-ports/pull/775 Viktor Gurov
07:32 AM Bug #10265: Adding a Note with malformed title will force system restore: Jim Pingle wrote:
> The string uses characters which are invalid in XML, and that field is not protected. The packag... Viktor Gurov
07:08 AM Bug #8729: IPv6 - FRR BGP issue with Redistribute connected networks: This PR allow to select No/IPv4/IPv6/IPv4+IPv6 in the Redistribute drop-down menu (where 'IPv4+IPv6' is 'yes' for bac... Viktor Gurov

02/20/2020

09:17 AM Bug #9934: suricata update kills WAN interface: A look through the Suricata source code shows that the Suricata binary, when running in PCAP mode, will send explicit... Bill Meeks
07:58 AM Bug #9934: suricata update kills WAN interface: If Suricata is running using Legacy Mode Blocking, then the _libpcap_ library is used and bonded to the interface whe... Bill Meeks

02/19/2020

11:25 PM Bug #8830 (Resolved): Automatic flowbit resolution setting does not match description: works as expected on pfSense 2.4.5.a.20200123.1100 with snort 3.2.9.10_1 Viktor Gurov
01:45 PM Bug #10261: Arpwatch fails to download ethercodes.dat: Samuel: /etc/inc/pfsense-utils.inc: function download_file($url, $destination, *$verify_ssl = true*, $connect_timeout... Manuel Piovan
01:40 PM Feature #10227 (Resolved): ACME: Do not show passwords: Thanks for testing! Jim Pingle
01:39 PM Feature #10227: ACME: Do not show passwords: It works nicely Torben Hørup
12:06 PM Feature #10227 (Feedback): ACME: Do not show passwords: Fixed in ACME package version 0.6.5
As well as it can be in the current framework anyhow. Passwords and other sens... Jim Pingle
01:38 PM Bug #10266: ACME: Changing validation from http to dns provokes ACME: Hi,
Confirmed (again), the issue described now works correctly.
A Andrew Nimmo
01:25 PM Bug #10266 (Resolved): ACME: Changing validation from http to dns provokes ACME: Thanks! Jim Pingle
01:21 PM Bug #10266: ACME: Changing validation from http to dns provokes ACME: Hi.
Confirmed working.
Regards,
M Greg M
12:07 PM Bug #10266 (Feedback): ACME: Changing validation from http to dns provokes ACME: Should be fixed in ACME package version 0.6.5 which synced up to the latest acme.sh changes. Jim Pingle
12:15 PM Bug #7829 (Duplicate): Unable to expand the "Advanced Server Settings" in ACME certificate edit: Actually duplicated by #9347 but that had a more accurate description of what was happening. It should be better on A... Jim Pingle
12:12 PM Bug #9347 (Feedback): Domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net": This should be better in ACME package version 0.6.5. I added default values for those fields which are set to 'none' ... Jim Pingle
12:08 PM Bug #9752 (Resolved): ACME - Actions have no access to additionally generated certificate files.: Fixed months ago, no additional feedback. Jim Pingle
12:08 PM Bug #9888 (Resolved): ACME output sent to browser without encoding: Fixed months ago, no additional feedback. Jim Pingle

02/18/2020

06:02 AM Bug #8830: Automatic flowbit resolution setting does not match description: Viktor Gurov wrote:
> works as expected on 2.5.0.a.20200214.1446 with snort 4.0_11
>
> 2.4.5 PR:
> https://githu... Renato Botelho
05:10 AM Bug #10266: ACME: Changing validation from http to dns provokes ACME: Subject cut; should read *ACME: Changing validation from http to dns provokes ACME bug* Andrew Nimmo
01:57 AM Bug #10266 (Resolved): ACME: Changing validation from http to dns provokes ACME: ACME package version: 0.6.4
Updating the validation method of an existing certificate from http to dns causes an e... Andrew Nimmo

02/17/2020

03:16 PM Bug #10265: Adding a Note with malformed title will force system restore: The string uses characters which are invalid in XML, and that field is not protected. The package should probably val... Jim Pingle
02:27 PM Bug #10265 (New): Adding a Note with malformed title will force system restore: This is related to using Notes package.
Add a new note with title
"Add/Change/Set the custom resolution of you... Yuri Weinstein

02/15/2020

06:44 AM Bug #10261: Arpwatch fails to download ethercodes.dat: Viktor Gurov wrote:
> this is caused by the default connection timeout (5s) of the download_file() in arpwatch.inc:
... Samuel Scheetz
01:10 AM Bug #10261: Arpwatch fails to download ethercodes.dat: this is caused by the default connection timeout (5s) of the download_file() in arpwatch.inc:... Viktor Gurov
01:35 AM Bug #8830: Automatic flowbit resolution setting does not match description: works as expected on 2.5.0.a.20200214.1446 with snort 4.0_11
2.4.5 PR:
https://github.com/pfsense/FreeBSD-ports/p... Viktor Gurov

02/14/2020

04:27 PM Bug #10261: Arpwatch fails to download ethercodes.dat: I have a workaround in place which involves disabling the update vendors option and using cron to run the command bel... Samuel Scheetz
04:03 PM Bug #10261: Arpwatch fails to download ethercodes.dat: This is version 2.4.4-RELEASE-p3 (arm64) Samuel Scheetz
04:01 PM Bug #10261 (Resolved): Arpwatch fails to download ethercodes.dat: I noticed that the ethernet vendor field in arpwatch alerts is always unknown even though the update vendors option i... Samuel Scheetz
01:36 PM Bug #10244: PHP crash: suricata: I think that forcing inclusion of the regex delimeter in the pcre: definition would be very flexible but would defini... John Silva
10:23 AM Bug #10244: PHP crash: suricata: John Silva wrote:
> If I had to choose I'd choose to not use preg_quote() so that pcre works as expected.
>
> I t... Bill Meeks

02/12/2020

07:02 PM Bug #10244: PHP crash: suricata: If I had to choose I'd choose to not use preg_quote() so that pcre works as expected.
I think this could be done s... John Silva
04:27 PM Bug #10244: PHP crash: suricata: John Silva wrote:
> I think the issue is traced to the following line:
>
> [...]
>
> Unlike snort, the suricat... Bill Meeks
12:23 AM Feature #10220 (Resolved): Add softflow 1.0.0 features - sampling and PSAMP export: tested on pfSense 2.5.0.a.20200211.1811 with softflowd 1.2.6
works as expected Viktor Gurov
12:21 AM Feature #7895 (Resolved): Add a script for CARP monitoring to NRPE: tested on pfSense 2.5.0.a.20200211.1811 with nrpe 3.1_2
ok now Viktor Gurov

02/11/2020

05:18 PM Bug #10252: pfblockerng-devel: Grimson Gretzleburg wrote:
> Quote from the VIP section of the DNSBL Webserver Config:
> > Changes to the DNSBL VIP... Chris Roadfeldt
05:17 PM Bug #10252: pfblockerng-devel: When you change the DNSBL VIP a *Force Update* will not change the Sinkhole'd IPs already established in the pfb_dnsb... BBcan177 .
09:02 AM Bug #10252 (Not a Bug): pfblockerng-devel: The issue I want to address here is with the pfb_dnsbl.conf file. The IPs are incorrect and do not match the VIP I ha... Chris Roadfeldt
09:18 AM Bug #10251: Avahi-daemon choosing VIP instead of interface IP: Chris Roadfeldt wrote:
> Jim Pingle wrote:
> > Avahi operates using interfaces and selects the addresses automatica... Chris Roadfeldt
09:08 AM Bug #10251: Avahi-daemon choosing VIP instead of interface IP: Jim Pingle wrote:
> Avahi operates using interfaces and selects the addresses automatically. All the config can do i... Chris Roadfeldt
09:05 AM Bug #10251 (Not a Bug): Avahi-daemon choosing VIP instead of interface IP: Avahi operates using interfaces and selects the addresses automatically. All the config can do is tell it to use or n... Jim Pingle
08:55 AM Bug #10251 (Not a Bug): Avahi-daemon choosing VIP instead of interface IP: I have pfblockerng-devel installed and configured with DNSBL on most of my interfaces and VLANs. I also have avahi-da... Chris Roadfeldt
09:17 AM Bug #10253 (New): pfblockerng-devel uses user interface for VIP causing issues with other services: I have pfblockerng-devel installed and configured with DNSBL on most of my interfaces and VLANs. I also have avahi-da... Chris Roadfeldt

02/10/2020

10:02 PM Bug #10245 (Not a Bug): PHP errors in snort package: Jim Pingle
09:19 PM Bug #10245: PHP errors in snort package: I think you're correct. This isn't a bug in your code.
There are a couple of things going on.
First, my SID ma... John Silva
10:56 AM Bug #10245: PHP errors in snort package: I don't believe this is a bug in the Snort package source code. I think it is instead a problem with your search term... Bill Meeks
09:28 PM Bug #10244: PHP crash: suricata: I think the issue is traced to the following line:... John Silva
08:45 PM Bug #10244: PHP crash: suricata: Thanks for checking, Bill. These patterns worked OK in 2.4.4-p3 before the 2.4.5-RC upgrade. I do see a pattern typ... John Silva
11:02 AM Bug #10244: PHP crash: suricata: Same as the issue you reported for the Snort package, I don't believe this is a bug in the Suricata package source co... Bill Meeks
02:33 PM Feature #10242 (In Progress): E2guardian Web filtering package: PR has been merged and code review / improvement just started but we won't build public packages while it's not finished Renato Botelho
08:02 AM Feature #10242 (Pull Request Review): E2guardian Web filtering package: Did you check with / confirm this was OK with the package author? Jim Pingle
09:34 AM Feature #10243 (Feedback): rawserial driver for lcdproc: PR has been merged. Thanks! Renato Botelho
08:03 AM Feature #10243 (Pull Request Review): rawserial driver for lcdproc: Jim Pingle
07:37 AM Feature #10220 (Feedback): Add softflow 1.0.0 features - sampling and PSAMP export: PR merged. Thanks! Renato Botelho
07:26 AM Feature #10220 (Pull Request Review): Add softflow 1.0.0 features - sampling and PSAMP export: Jim Pingle
07:18 AM Feature #7895 (Feedback): Add a script for CARP monitoring to NRPE: Fixed on version 3.1_2 Renato Botelho

02/08/2020

12:02 PM Bug #10245 (Not a Bug): PHP errors in snort package: Running 2.4.5-RC with Snort package.
Crash Reporter is reporting an error in the snort package. Crash report foll... John Silva
11:59 AM Bug #10244 (Closed): PHP crash: suricata: Running 2.4.5-RC with Suricata package.
Crash Reporter is reporting an error in the suricata package. Crash repor... John Silva
09:59 AM Bug #9935 (Resolved): hide ECDSA certs for Zabbix: tested on pfSense 2.5.0.a.20200207.2007 with zabbix-agent44 1.0.4_3 and zabbix-proxy44 1.0.4_3
works as expected -... Viktor Gurov
09:11 AM Feature #10243: rawserial driver for lcdproc: https://github.com/pfsense/FreeBSD-ports/pull/768 Viktor Gurov
09:09 AM Feature #10243 (Resolved): rawserial driver for lcdproc: Rawserial driver has been avalbile since 0.5.7 this will dump raw serial data to the serial port. Hackers/makers can ... Viktor Gurov
08:56 AM Feature #10242: E2guardian Web filtering package: https://github.com/pfsense/FreeBSD-ports/pull/767
initial version - copy of original package with changed director... Viktor Gurov
08:48 AM Feature #10242 (New): E2guardian Web filtering package: E2guardian Web filtering http://e2guardian.org
original package by Marcello Coutinho (Apache 2 license):
https://... Viktor Gurov
07:19 AM Feature #7895: Add a script for CARP monitoring to NRPE: fix that adds ${MKDIR} ${STAGEDIR}${PREFIX}/libexec/nagios line to Makefile:
https://github.com/pfsense/FreeBSD-port... Viktor Gurov
01:12 AM Feature #10220: Add softflow 1.0.0 features - sampling and PSAMP export: This PR fix input validation, to allow select PSAMP protocol version:
https://github.com/pfsense/FreeBSD-ports/pull/... Viktor Gurov

02/07/2020

11:15 PM Bug #10218 (Resolved): Telegraf: Error creating the telegraf.ca file when you have more then one CA in pfSense: works as expected on pfSense 2.5.0.a.20200207.2007 and 2.4.5.r.20200206.1944
Telegraf 0.9_2
Viktor Gurov
08:06 AM Bug #10218 (Feedback): Telegraf: Error creating the telegraf.ca file when you have more then one CA in pfSense: Pull request has been merged. Thanks! Renato Botelho
11:08 PM Feature #7895: Add a script for CARP monitoring to NRPE: I'm getting a build error with the addition of the script:... Ronald Schellberg
08:39 AM Feature #10140 (Closed): allow to select webserver certificate: we discussed this with BBcan177 - this is unnecessary
I think this can be useful only if the company uses a specia... Viktor Gurov
08:18 AM Bug #8830: Automatic flowbit resolution setting does not match description: Pull Request only applied on 2.5.0 Renato Botelho
08:16 AM Bug #8830 (Feedback): Automatic flowbit resolution setting does not match description: Pull request has been merged. Thanks! Renato Botelho
08:11 AM Feature #9916 (Feedback): Check allow-transfer in custom option when the zone is slave: Pull request has been merged. Thanks! Renato Botelho
08:08 AM Feature #10220 (Feedback): Add softflow 1.0.0 features - sampling and PSAMP export: Pull request has been merged. Thanks! Renato Botelho
04:51 AM Bug #9934 (New): suricata update kills WAN interface: same issue on XG-1537 (pfSense 2.4.4-p3, suricata 4.1.6_3) with ix interface,
I found that killing suricata process ... Viktor Gurov

02/06/2020

03:56 PM Feature #8547: fwknop Port Knocking Package: Jim Pingle wrote:
> If you want secure remote access, use a VPN. If someone wants to make a package for this, we cou... Kurt Yoder
02:24 PM Bug #9934 (Not a Bug): suricata update kills WAN interface: Jim Pingle
01:51 PM Bug #9934: suricata update kills WAN interface: Suricata running with Inline IPS Mode uses the netmap kernel device. When Suricata stops and restarts, that also stop... Bill Meeks
03:38 AM Bug #9934: suricata update kills WAN interface: You can set Suricata to "Live Reload" the new rules without restarting itself.
Enable this global option to preven... Danilo Zrenjanin

02/03/2020

07:41 AM Bug #8830 (Pull Request Review): Automatic flowbit resolution setting does not match description: Jim Pingle
04:33 AM Feature #10227 (Resolved): ACME: Do not show passwords: Those DNS validation methods that uses ordinary username/password for authentication (such as DNS-GratisDNS) should n... Torben Hørup

02/01/2020

06:19 AM Bug #8830: Automatic flowbit resolution setting does not match description: This PR simply sets the default value for this checkbox to on when adding a new interface:
https://github.com/pfsens... Viktor Gurov

01/31/2020

09:38 PM Feature #9238: Add support for Zerotier: Package has been updated to run on 2.4.4-RELEASE-p3. Still some work to be done on setting up the interfaces, right n... Gregory Moore
08:33 AM Bug #8538 (Closed): arpwatch missing ethercodes.dat: already in 0.2.0:... Viktor Gurov

01/30/2020

09:26 AM Feature #10165: Add High-Availability tracking to avahi package.: Renato Botelho wrote:
> PR has been merged on 2.5.0 and 2.4.5 branches. Thanks!
do you plan to merge it on 2.4.4 ... Viktor Gurov
08:03 AM Feature #7895 (Pull Request Review): Add a script for CARP monitoring to NRPE: Jim Pingle
05:43 AM Feature #7895: Add a script for CARP monitoring to NRPE: https://github.com/pfsense/FreeBSD-ports/pull/759 Viktor Gurov
06:56 AM Bug #8194 (Closed): BIND fails to respond after interface goes down: no such issue on pfSense 2.4.5.r.20200128.2345 with BIND 9.14_1 Viktor Gurov
06:12 AM Bug #8400 (Closed): FreeRadius 3 EAP-TLS Missing O.U. Option: Duplicate of https://redmine.pfsense.org/issues/8224 Viktor Gurov
05:14 AM Bug #8195 (Closed): BIND packages launches two instances of /usr/local/sbin/named on boot: no such issue with BIND package 9.14_1
tested on pfSense 2.4.5.r.20200128.2118 and 2.5.0.a.20200129.1414 Viktor Gurov
02:31 AM Feature #9916: Check allow-transfer in custom option when the zone is slave: updated PR:
https://github.com/pfsense/FreeBSD-ports/pull/758 Viktor Gurov

01/29/2020

07:18 AM Feature #10220 (Pull Request Review): Add softflow 1.0.0 features - sampling and PSAMP export: Jim Pingle
03:58 AM Feature #10220: Add softflow 1.0.0 features - sampling and PSAMP export: https://github.com/pfsense/FreeBSD-ports/pull/757 Viktor Gurov
03:14 AM Feature #10220 (Resolved): Add softflow 1.0.0 features - sampling and PSAMP export: Add sampling configuration to softflowd package:... Viktor Gurov
07:16 AM Bug #10218 (Pull Request Review): Telegraf: Error creating the telegraf.ca file when you have more then one CA in pfSense: Jim Pingle
12:46 AM Bug #10218: Telegraf: Error creating the telegraf.ca file when you have more then one CA in pfSense: https://github.com/pfsense/FreeBSD-ports/pull/756 Viktor Gurov

Also available in: Atom

Project

General

Profile

pfSense » pfSense Packages

Activity

Activity

02/27/2020

02/26/2020

02/25/2020

02/24/2020

02/23/2020

02/22/2020

02/20/2020

02/19/2020

02/18/2020

02/17/2020

02/15/2020

02/14/2020

02/12/2020

02/11/2020

02/10/2020

02/08/2020

02/07/2020

02/06/2020

02/03/2020

02/01/2020

01/31/2020

01/30/2020

01/29/2020