Project

General

Profile

Activity

From 02/19/2020 to 03/19/2020

03/19/2020

03:04 PM Feature #10357 (Pull Request Review): Add Iperf verbose output option
Jim Pingle
01:17 AM Feature #10357: Add Iperf verbose output option
https://github.com/pfsense/FreeBSD-ports/pull/801 Viktor Gurov
01:12 AM Feature #10357 (Resolved): Add Iperf verbose output option
iperf verbose output (-V) shows more detailed information, including TCP MSS, CPU utilization, time and version:
<pr... Viktor Gurov
03:01 PM Feature #10356 (Pull Request Review): Support for additional Notification Support
PR: https://github.com/pfsense/FreeBSD-ports/pull/800 Jim Pingle
02:23 AM Feature #10358 (New): Stage FRR Configuration Changes
Changes made to the configuration on any FRR Component are applied immediate when hitting the save button. If a large... Luki TJ

03/18/2020

08:06 PM Feature #10356 (Resolved): Support for additional Notification Support
Refer to feature #10354 Telegram Notification Support in the main pfsense package.
In order for the service watch... John Kap

03/16/2020

08:06 AM Bug #8774 (Pull Request Review): Whitelist ALC type not supported by ssl_bump
Jim Pingle

03/15/2020

02:02 PM Bug #8774: Whitelist ALC type not supported by ssl_bump
https://github.com/pfsense/FreeBSD-ports/pull/799 Viktor Gurov
10:51 AM Feature #10347 (New): Request to add pull-filter
Since the option --route-nopull is under discussion to be deprecated I would like to propose --pull-filter to be adde... Pippin MMD

03/12/2020

01:33 PM Todo #9200: Add DNS support for Google domain to Acme manager
The question is how is certbot doing it using a plugin called dns-google
It is a python plugin Manvir Randhawa
09:13 AM Bug #10338 (Pull Request Review): FRR OSPF6 Router-ID configuration statement has changed
Jim Pingle

03/11/2020

10:13 PM Todo #9200: Add DNS support for Google domain to Acme manager
Google Domains currently does not have any API that allows DNS records to be managed programmatically, so no ACME cli... Jeremy  99
04:09 PM Bug #10338: FRR OSPF6 Router-ID configuration statement has changed
Only a quick fix so submitted a PR.
https://github.com/pfsense/FreeBSD-ports/pull/798 Ben Hughes
03:51 PM Bug #10338 (Resolved): FRR OSPF6 Router-ID configuration statement has changed
Trying out the latest 2.4.5 RC and I noticed that my ospf6 router-id had reverted to the default of picking the highe... Ben Hughes
06:48 AM Bug #10320 (Feedback): lcdproc Crash report begins
PR has been merged. Thanks! Renato Botelho
01:24 AM Feature #10335 (Resolved): Squid IPv6 transparent mode
Add IPv6 transparent mode feature to Squid
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193568#c2:
Your PF... Viktor Gurov

03/10/2020

11:14 AM Bug #10332 (Closed): PFBlockerNG loading GeoLite2-Country.mmdb
Running pfsense 2.4.5.r.20200305.1800 with pfBlockerNG-devel 2.2.5_29
After downloading GeoLite2-Country.tar.gz, p... John Clark
09:47 AM Bug #10326 (Not a Bug): Snort - Blocked Alert - Show IP but Description loss -> "Alert Description No Longer Available"
Jim Pingle
05:34 AM Bug #10330 (Feedback): BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
Hi everybody
The zone GUI for the BIND DNS server helpfully displays the DS resource records to transfer to the pa... Andreas Grommek

03/09/2020

06:48 PM Bug #10326: Snort - Blocked Alert - Show IP but Description loss -> "Alert Description No Longer Available"
This is not a bug. It's caused by the alert log file getting purged by either getting rotated as part of the periodic... Bill Meeks
12:13 PM Bug #10326 (Not a Bug): Snort - Blocked Alert - Show IP but Description loss -> "Alert Description No Longer Available"
Snort v 3.2.9.10
Package Dependencies:
snort-2.9.15  barnyard2-1.13_1
In the blocked tab show data in the IP C... Diego Leon
10:58 AM Feature #9003 (Feedback): Add 'Copy Running to Saved' option to the raw config
PR has been merged. Thanks! Renato Botelho
10:53 AM Feature #8196 (Feedback): pfSense-pkg-LCDproc: add a shutdown/reboot control menu
PR has been merged. Thanks! Renato Botelho
10:52 AM Feature #8198 (Feedback): pfSense-pkg-LCDproc: Add a link status screen for each interface
PR has been merged. Thanks! Renato Botelho
10:45 AM Feature #8574 (Feedback): Enable AgentX-support in lldpd using GUI
PR has been merged. Thanks! Renato Botelho
10:32 AM Bug #8887 (Feedback): Squid Proxy Interface not assignee to IPv6
PR has been merged on 2.4.5 and 2.5.0. Thanks! Renato Botelho
10:28 AM Feature #10297 (Feedback): IPv6 user attributes
PR has been merged. Thanks! Renato Botelho
10:03 AM Feature #9272 (Pull Request Review): Allow multiple IP in ListenIP for Zabbix Agent
Jim Pingle
04:48 AM Feature #9272: Allow multiple IP in ListenIP for Zabbix Agent
Fix + allow to use :: and ::/1 IPv6 addresses:
https://github.com/pfsense/FreeBSD-ports/pull/791 Viktor Gurov
09:56 AM Bug #10320 (Pull Request Review): lcdproc Crash report begins
Jim Pingle

03/07/2020

05:14 PM Bug #10320: lcdproc Crash report begins
for($i = 0; $i < ($lcdpanel_height - 1) && i < count($traffic); $i++)... Manuel Piovan
05:07 PM Bug #10320: lcdproc Crash report begins
the first crash seem to be related to the last option undere screen, Addresses by traffic
i add this information: WA... Manuel Piovan
05:04 PM Bug #10320: lcdproc Crash report begins
if i stop the service lcdproc i have another crash report for a while, i think LCDd is killed but lcdproc took some t... Manuel Piovan
03:33 PM Bug #10320 (Resolved): lcdproc Crash report begins
Crash report begins. Anonymous machine information:
amd64
12.0-RELEASE-p10
FreeBSD 12.0-RELEASE-p10 ce9563d5729(... Manuel Piovan
12:26 PM Bug #6690: SURICATA IPS Issue - Kills VLANS & Traffic Shaper
Tenzen Tunkman wrote:
> This issue is still not solved - Inline filtering will break traffic shaping as well as for ... Bill Meeks
08:19 AM Bug #6690: SURICATA IPS Issue - Kills VLANS & Traffic Shaper
This issue is still not solved - Inline filtering will break traffic shaping as well as for example traffic graph fun... Tenzen Tunkman

03/06/2020

06:05 AM Bug #8729 (Resolved): IPv6 - FRR BGP issue with Redistribute connected networks
tested on 2.5.0.a.20200305.2255 with frr 0.6.4_2
works as expected - address family sections now looks good
 Viktor Gurov

03/02/2020

12:58 PM Bug #10309 (Rejected): frr in pf2.4.5
Most of these are not bugs but just a fact of how the FRR package works. Configuring FRR manually in Linux (or even F... Jim Pingle
12:45 PM Bug #10309 (Rejected): frr in pf2.4.5
1.when i deleted an Neighbor via web gui, but this session still run in frr. i have to restart pf system.
2.when i c... yon Liu
11:03 AM Bug #10185 (Closed): Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port
Jim Pingle
11:03 AM Feature #9848 (Closed): file-store retention limits
Jim Pingle
11:03 AM Bug #10244 (Closed): PHP crash: suricata
Jim Pingle

03/01/2020

06:07 PM Bug #10279: pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality
Thanks for the info! Looking ahead, ESXi 7.0 is headed toward a launch at VMworld late August 2020. That said, if 2... Travis McMurry

02/29/2020

09:19 PM Bug #10185: Suricata 'Alert Log View Filter' undesirably port matches substrings instead of exact port
The requested feature has been added to the Filter Panel on the ALERTS tab of the latest Suricata GUI package release... Bill Meeks
09:16 PM Feature #9848: file-store retention limits
This feature has been added to the LOGS MGMT tab in Suricata and also code was added to the logs and space management... Bill Meeks
09:13 PM Bug #10244: PHP crash: suricata
This is addressed by the latest posted versions of the Suricata GUI packages for pfSense 2.4.5-RC and 2.5-DEVEL. The ... Bill Meeks

02/28/2020

10:09 AM Bug #10302: LIGHTSQUID - Running When Squid Disabled - 2.4
Reporting bugs against outdated versions is not allowed, either.
Post on a forum thread for assistance, not here. Jim Pingle
10:03 AM Bug #10302: LIGHTSQUID - Running When Squid Disabled - 2.4
2.4.3-RELEASE
been up for 13 days
lightsquid package version has not been updated in a while
Lightsquid www 3.... Web Dawg
09:56 AM Bug #10302: LIGHTSQUID - Running When Squid Disabled - 2.4
I can stop it from services. I can't reboot this router to test right now. Web Dawg
09:54 AM Bug #10302 (Rejected): LIGHTSQUID - Running When Squid Disabled - 2.4
There is not nearly enough information here for a proper bug report.
This site is not for support or diagnostic di... Jim Pingle
09:52 AM Bug #10302 (Rejected): LIGHTSQUID - Running When Squid Disabled - 2.4
I have my squid proxy disabled:
@
7445/tcp open ssl/http lighttpd 1.4.48
| http-auth:
| HTTP/1.1 401 Unauth... Web Dawg
08:14 AM Feature #8196 (Pull Request Review): pfSense-pkg-LCDproc: add a shutdown/reboot control menu
Jim Pingle
12:36 AM Feature #8196: pfSense-pkg-LCDproc: add a shutdown/reboot control menu
fixed/resolved PR:
https://github.com/pfsense/FreeBSD-ports/pull/784 Viktor Gurov
08:05 AM Feature #8198 (Pull Request Review): pfSense-pkg-LCDproc: Add a link status screen for each interface
Jim Pingle
12:08 AM Feature #8198: pfSense-pkg-LCDproc: Add a link status screen for each interface
fixed/resolved PR:
https://github.com/pfsense/FreeBSD-ports/pull/783 Viktor Gurov

02/27/2020

02:26 PM Bug #10299: Snort - Blocked Alert - Description loss -> Alert Description No Longer Available
Bill Meeks wrote:
> Diego Leon wrote:
> > Snort v 3.2.9.10
> >
> > Package Dependencies:
> > snort-2.9.15  ... Diego Leon
12:54 PM Bug #10299 (Not a Bug): Snort - Blocked Alert - Description loss -> Alert Description No Longer Available
Jim Pingle
12:54 PM Bug #10299: Snort - Blocked Alert - Description loss -> Alert Description No Longer Available
Diego Leon wrote:
> Snort v 3.2.9.10
>
> Package Dependencies:
> snort-2.9.15  barnyard2-1.13_1
>
> The S... Bill Meeks
10:19 AM Bug #10299 (Not a Bug): Snort - Blocked Alert - Description loss -> Alert Description No Longer Available
Snort v 3.2.9.10
Package Dependencies:
snort-2.9.15  barnyard2-1.13_1
The Snort first report in Blocked ta... Diego Leon
01:02 PM Bug #10292: Suricata not respecting SID Mgmt list
There were zero changes to that part of the Suricata code in version 4.1.6_3. In fact, both updates to 4.1.6_2 and 4.... Bill Meeks
10:12 AM Bug #10265: Adding a Note with malformed title will force system restore
It is not viable to set that list up dynamically, since if a user removes the package, the value is still in the conf... Jim Pingle
10:10 AM Bug #10265: Adding a Note with malformed title will force system restore
Jim Pingle wrote:
>
> Yes that's a general issue with XML storage but it's unrelated to this specific bug. We use ... Viktor Gurov
08:03 AM Feature #8574 (Pull Request Review): Enable AgentX-support in lldpd using GUI
Jim Pingle
05:35 AM Feature #8574: Enable AgentX-support in lldpd using GUI
https://github.com/pfsense/FreeBSD-ports/pull/782 Viktor Gurov
07:31 AM Feature #9989 (Pull Request Review): Add FreeBSD port and pfSense plugin for HoneyTrap
PR: https://github.com/pfsense/FreeBSD-ports/pull/772 Jim Pingle
07:24 AM Feature #10297 (Pull Request Review): IPv6 user attributes
Jim Pingle
03:24 AM Feature #10297: IPv6 user attributes
https://github.com/pfsense/FreeBSD-ports/pull/781 Viktor Gurov
01:09 AM Feature #10297 (Assigned): IPv6 user attributes
Add IPv6 related attributes no the user configuration page in the same way as existing IPv4 Network Configuration:
F... Viktor Gurov
05:34 AM Feature #9249 (Feedback): [siproxd] Add config for siptrunk plugin
PR has been merged. Thanks! Renato Botelho
05:32 AM Feature #8878 (Feedback): Propagate user's description field into QR code for FreeRADIUS
PR has been merged. Thanks! Renato Botelho
05:28 AM Bug #8729 (Feedback): IPv6 - FRR BGP issue with Redistribute connected networks
PR has been merged. Thanks! Renato Botelho
05:21 AM Bug #4497 (Feedback): Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!
Renato Botelho

02/26/2020

02:03 PM Bug #10291 (Resolved): Export using DDNS hostnames (port forward targets) does not include domain name for split DDNS types
Works as expected now. Full hostname is observed in @remote@ statements which only had the short hostname before. Ent... Jim Pingle
11:08 AM Bug #10294 (New): FRR Route Counts Incorrect on Status Page
Something is still truncating the route counts on the FRR status pages. Seems to be intermittent.
Zebra Routes D... Chris Linstruth
10:02 AM Feature #9249 (Pull Request Review): [siproxd] Add config for siptrunk plugin
Jim Pingle
04:37 AM Feature #9249: [siproxd] Add config for siptrunk plugin
from siproxd.conf.example:... Viktor Gurov
09:57 AM Feature #8878 (Pull Request Review): Propagate user's description field into QR code for FreeRADIUS
Jim Pingle
03:27 AM Feature #8878: Propagate user's description field into QR code for FreeRADIUS
https://github.com/pfsense/FreeBSD-ports/pull/779 Viktor Gurov
03:43 AM Bug #8885 (Closed): HAProxy "Log hostname parameter broke local syslog
no such issue with haproxy-devel 0.60_3 on pfSense 2.4.5.r.20200225.2100 and 2.5.0.a.20200225.0859
- hostname field... Viktor Gurov

02/25/2020

05:10 PM Bug #10292 (Not a Bug): Suricata not respecting SID Mgmt list
I am running pfSense 2.4.4-RELEASE-p3 (amd64) with Suricata VERSION 4.1.6_3 on an SG-2440.
Suricata is inspecting ... Markus P
10:45 AM Bug #10291 (Feedback): Export using DDNS hostnames (port forward targets) does not include domain name for split DDNS types
Pushed a fix in OpenVPN client export pkg version 1.4.20 Jim Pingle
10:41 AM Bug #10291 (Resolved): Export using DDNS hostnames (port forward targets) does not include domain name for split DDNS types
Some Dynamic DNS entries are considered "split" so they have the hostname and domain name in separate variables (e.g.... Jim Pingle

02/24/2020

01:35 PM Bug #10278 (New): pfBlockerNG: Formatting issue on DNSBL stats page
Jim Pingle
01:19 PM Bug #10278: pfBlockerNG: Formatting issue on DNSBL stats page
Jim Pingle wrote:
> Did you mean pfBlockerNG? "pfsense-ng" is not a valid package name. For now I'll set this as pfB... Steve Klund
07:48 AM Bug #10278 (Feedback): pfBlockerNG: Formatting issue on DNSBL stats page
Did you mean pfBlockerNG? "pfsense-ng" is not a valid package name. For now I'll set this as pfBlockerNG since that s... Jim Pingle
08:11 AM Feature #9003: Add 'Copy Running to Saved' option to the raw config
Viktor Gurov wrote:
> I do not understand why quagga-way (saving configuration in base64 format in config.xml) may b... Ben Hughes
08:08 AM Feature #9003 (Pull Request Review): Add 'Copy Running to Saved' option to the raw config
Jim Pingle
07:54 AM Bug #8887 (Pull Request Review): Squid Proxy Interface not assignee to IPv6
Jim Pingle
07:39 AM Bug #4497 (Pull Request Review): Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!
Jim Pingle
07:38 AM Bug #10265: Adding a Note with malformed title will force system restore
Viktor Gurov wrote:
> Jim Pingle wrote:
> > The string uses characters which are invalid in XML, and that field is ... Jim Pingle
07:34 AM Bug #8729 (Pull Request Review): IPv6 - FRR BGP issue with Redistribute connected networks
Jim Pingle
03:14 AM Bug #10279: pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality
graceful shutdown work with esxi 6.7u3 and pfsense 2.5.0-dev Manuel Piovan

02/23/2020

09:24 AM Feature #9003: Add 'Copy Running to Saved' option to the raw config
I do not understand why quagga-way (saving configuration in base64 format in config.xml) may be error prone.
Both *... Viktor Gurov

02/22/2020

08:16 PM Bug #10279: pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality
Might need to try on 2.4.5 or 2.5.0 to get the updated ports. I don't have any problem with guest functionality there... Jim Pingle
12:52 PM Bug #10279 (New): pfSense's OpenVM Tools on ESXi 6.7 no longer provides guest vm functionality
When I run pfSense on ESXi6.7 (Update 3) with Open-VM-Tools installed from Package Manager, ESXi sees the Open VM too... Travis McMurry
10:46 AM Feature #8181 (Resolved): Quagga OSPF failover mechanism takes too much time to converge in HA environments
successfully tested on 2.5.0.a.20200220.1948 with Quagga_OSPF 0.6.21_5 Viktor Gurov
10:37 AM Bug #9652 (Resolved): Squid Proxy Server /var/squid/lib/ssl_db directory not found in squid.inc
Renato Botelho wrote:
> PR has been merged. Thanks!
works ok on 2.4.5.r.20200222.0000 and 2.5.0.a.20200221.1911 w... Viktor Gurov
10:33 AM Bug #9681 (Resolved): [Monitoring] New views title are always in lower case.
mixed titles is ok on 2.5.0.a.20200221.1911 and 2.4.5.r.20200222.0000
 Viktor Gurov
10:12 AM Bug #8887: Squid Proxy Interface not assignee to IPv6
This fix allows you to select the IP protocol over which Squid will listen for connections:
https://github.com/pfsen... Viktor Gurov
08:55 AM Bug #10278 (New): pfBlockerNG: Formatting issue on DNSBL stats page

I have found that on the stats pages, the center bar that divides source from the pie charts is static.
I cannot... Steve Klund
07:41 AM Bug #4497: Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!
This fix allow to use only ^[a-zA-Z0-9_.-]*$ for usernames:
https://github.com/pfsense/FreeBSD-ports/pull/775 Viktor Gurov
07:32 AM Bug #10265: Adding a Note with malformed title will force system restore
Jim Pingle wrote:
> The string uses characters which are invalid in XML, and that field is not protected. The packag... Viktor Gurov
07:08 AM Bug #8729: IPv6 - FRR BGP issue with Redistribute connected networks
This PR allow to select No/IPv4/IPv6/IPv4+IPv6 in the Redistribute drop-down menu (where 'IPv4+IPv6' is 'yes' for bac... Viktor Gurov

02/20/2020

09:17 AM Bug #9934: suricata update kills WAN interface
A look through the Suricata source code shows that the Suricata binary, when running in PCAP mode, will send explicit... Bill Meeks
07:58 AM Bug #9934: suricata update kills WAN interface
If Suricata is running using Legacy Mode Blocking, then the _libpcap_ library is used and bonded to the interface whe... Bill Meeks

02/19/2020

11:25 PM Bug #8830 (Resolved): Automatic flowbit resolution setting does not match description
works as expected on pfSense 2.4.5.a.20200123.1100 with snort 3.2.9.10_1 Viktor Gurov
01:45 PM Bug #10261: Arpwatch fails to download ethercodes.dat
Samuel: /etc/inc/pfsense-utils.inc: function download_file($url, $destination, *$verify_ssl = true*, $connect_timeout... Manuel Piovan
01:40 PM Feature #10227 (Resolved): ACME: Do not show passwords
Thanks for testing! Jim Pingle
01:39 PM Feature #10227: ACME: Do not show passwords
It works nicely Torben Hørup
12:06 PM Feature #10227 (Feedback): ACME: Do not show passwords
Fixed in ACME package version 0.6.5
As well as it can be in the current framework anyhow. Passwords and other sens... Jim Pingle
01:38 PM Bug #10266: ACME: Changing validation from http to dns provokes ACME
Hi,
Confirmed (again), the issue described now works correctly.
A Andrew Nimmo
01:25 PM Bug #10266 (Resolved): ACME: Changing validation from http to dns provokes ACME
Thanks! Jim Pingle
01:21 PM Bug #10266: ACME: Changing validation from http to dns provokes ACME
Hi.
Confirmed working.
Regards,
M Greg M
12:07 PM Bug #10266 (Feedback): ACME: Changing validation from http to dns provokes ACME
Should be fixed in ACME package version 0.6.5 which synced up to the latest acme.sh changes. Jim Pingle
12:15 PM Bug #7829 (Duplicate): Unable to expand the "Advanced Server Settings" in ACME certificate edit
Actually duplicated by #9347 but that had a more accurate description of what was happening. It should be better on A... Jim Pingle
12:12 PM Bug #9347 (Feedback): Domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net"
This should be better in ACME package version 0.6.5. I added default values for those fields which are set to 'none' ... Jim Pingle
12:08 PM Bug #9752 (Resolved): ACME - Actions have no access to additionally generated certificate files.
Fixed months ago, no additional feedback. Jim Pingle
12:08 PM Bug #9888 (Resolved): ACME output sent to browser without encoding
Fixed months ago, no additional feedback. Jim Pingle
 

Also available in: Atom