Activity

30 days up to

User

Activity

From 03/22/2020 to 04/20/2020

04/20/2020

10:13 AM Feature #10479 (Pull Request Review): Keep settings after deinstall option: Jim Pingle
09:41 AM Feature #10479: Keep settings after deinstall option: https://github.com/pfsense/FreeBSD-ports/pull/845 Viktor Gurov
10:11 AM Bug #10476: Services - Acme - Certificates using loopia API: Jim Pingle wrote:
> The TTL value of @60@ is hardcoded in the "dns_loopia.sh script":https://github.com/acmesh-offic... Tobias Müllauer
08:57 AM Bug #10476 (Needs Patch): Services - Acme - Certificates using loopia API: The TTL value of @60@ is hardcoded in the "dns_loopia.sh script":https://github.com/acmesh-official/acme.sh/blob/mast... Jim Pingle
08:52 AM Todo #8332: pfBlockerNG doesn't include L2TP interface in outbound floating rules: Rules shouldn't be needed for each individual L2TP interface. There is an interface group called "l2tp" which handles... Jim Pingle
08:48 AM Feature #10474 (Pull Request Review): Suppress notifications for specific MACs: Jim Pingle
08:29 AM Bug #10475 (Pull Request Review): pfSense-pkg-arpwatch unconditinally clobbers the arpwatch database files on upgrade: Jim Pingle

04/19/2020

03:30 AM Bug #10385 (Resolved): Pb with Username authorized characters when OTP is disabled: tested on 2.4.5/2.5 with freeradius3 0.15.7_13
works as expected - allows you to use special characters in the use... Viktor Gurov
03:21 AM Feature #10479 (Resolved): Keep settings after deinstall option: Currently, it is not possible to clear FreeRADIUS settings except with the backup / restore configuration.
It will... Viktor Gurov

04/18/2020

05:55 PM Bug #10476 (Resolved): Services - Acme - Certificates using loopia API: Hello i am trying to add certificate from letsecrypt using Acme.
I try diferent setup but it seams Acme try to ad... Tobias Müllauer
01:28 PM Todo #8332: pfBlockerNG doesn't include L2TP interface in outbound floating rules: Something still needs to be fixed.
Either the rule needs to be applied to any/all L2TP interfaces created, or the ... Stuart Wyatt
06:35 AM Todo #8332: pfBlockerNG doesn't include L2TP interface in outbound floating rules: Mpd5 will create new L2TP interfaces for each client:
l2tp0, l2tp1, l2tp2 etc..
The only way to apply firewall ru... Viktor Gurov
12:44 PM Bug #10475 (Resolved): pfSense-pkg-arpwatch unconditinally clobbers the arpwatch database files on upgrade: I was surprised to find that upgrading the pfSense-pkg-arpwatch package today nuked all of my .dat files. There is an... Craig Leres
09:51 AM Feature #10474: Suppress notifications for specific MACs: https://github.com/pfsense/FreeBSD-ports/pull/843 Viktor Gurov
09:46 AM Feature #10474 (Resolved): Suppress notifications for specific MACs: From https://forum.netgate.com/topic/151832/suppress-arpwatch-flip-flop-emails-for-bonjour-sleep-proxy:
I just set u... Viktor Gurov
09:34 AM Bug #10261 (Resolved): Arpwatch fails to download ethercodes.dat: Tobias Müllauer wrote:
> This is still a issue !!
>
> I have all vendors as unknown.
>
> I fix it and after a... Viktor Gurov
09:32 AM Bug #10432 (Resolved): Arpwatch show unknown vendor: shows correct vendors on 2.4.5/2.5 with arpwatch 0.2.0_1 Viktor Gurov

04/17/2020

12:46 PM Feature #10472: Blocked host alert table break out by timestamp and type to allow sorting by date: Allowing filter by date & time would also be a handy feature on that page as well if that's easier or another thought... tasty ratz
12:36 PM Feature #10472 (Resolved): Blocked host alert table break out by timestamp and type to allow sorting by date: The blocked list doesn't by nature sort by last hit or date of creation so I have to read every entry for the most re... tasty ratz
06:18 AM Feature #9774: Squid logs / remote logs: Allow to download log files from WebGUI feature:
https://redmine.pfsense.org/issues/10468 Viktor Gurov
03:10 AM Feature #10466 (New): Add checkbox to Suricata blocked host view to resolve all resolvable IP's automatically: Manually resolving individual IP's is cumbersome when I want to get a holistic view of the blocked hosts. Also, resol... tasty ratz

04/16/2020

08:08 AM Bug #10369 (Pull Request Review): Remote OpenVPN server protocol definition: Jim Pingle
03:14 AM Bug #10369: Remote OpenVPN server protocol definition: OpenVPN < 2.4 doesn't support remote IPv4/IPv6 protocol definition (udp4/udp6/tcp4/tcp6),
If checkbox **Legacy Clien... Viktor Gurov
01:05 AM Feature #10462 (Resolved): CPU Temp Screen: Hello, is it possible to add to the lcdproc package on pfsense a screen with the CPU-Temperature? I know that is not ... odo maitre

04/15/2020

10:44 AM Bug #9350 (Pull Request Review): not appear proxy config: Jim Pingle
10:24 AM Bug #9350: not appear proxy config: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/841 Viktor Gurov
10:43 AM Bug #9776 (Pull Request Review): Wrong function in squidguard_log.php: Jim Pingle
10:24 AM Bug #9776: Wrong function in squidguard_log.php: PR: https://github.com/pfsense/FreeBSD-ports/pull/841
it also fixes https://redmine.pfsense.org/issues/9350 Viktor Gurov
04:13 AM Feature #9762: Squid Reverse Proxy Change redir domain(s) to use regex: Updated PR with checkbox switch:
https://github.com/pfsense/FreeBSD-ports/pull/840 Viktor Gurov

04/14/2020

01:02 PM Feature #10428 (Resolved): LCDProc: Add the EZIO driver to the lcdproc config page: Looks good. Tested using an EZIO-300
Tested package: 0.10.6_10 in: 2.4.5-rel Steve Wheeler
12:42 PM Feature #10428 (Feedback): LCDProc: Add the EZIO driver to the lcdproc config page: PR has been merged. Thanks! Renato Botelho
12:57 PM Feature #10356 (Feedback): Support for additional Notification Support: PR has been merged. Thanks! Renato Botelho
12:43 PM Feature #10297 (Feedback): IPv6 user attributes: PR has been merged. Thanks! Renato Botelho
12:37 PM Bug #10450 (Feedback): Squid reverse proxy switching peers: PR has been merged. Thanks! Renato Botelho
11:22 AM Bug #10452 (Resolved): acme - new DNS-Api namemaster.de in overview hash visible: Hi,
the new dnsapi-plugin for namemaster.de made it into my pfsense with package version 0.6.6
in Services / Ac... Thilo Gass

04/13/2020

09:42 AM Bug #7797 (Pull Request Review): Squid Reverse Proxy alternating between destinations: PR: https://github.com/pfsense/FreeBSD-ports/pull/839 Jim Pingle
09:42 AM Bug #10450 (Pull Request Review): Squid reverse proxy switching peers: Jim Pingle
05:28 AM Bug #10450: Squid reverse proxy switching peers: https://github.com/pfsense/FreeBSD-ports/pull/839 Viktor Gurov
05:25 AM Bug #10450 (Feedback): Squid reverse proxy switching peers: https://forum.netgate.com/topic/118255/squid-reverse-proxy-switching-peers:
I want Squid to direct incoming requests... Viktor Gurov

04/12/2020

05:57 PM Bug #10427 (Resolved): LCDproc: Handle multiple lcdproc clients: This works in as far as it avoids blowing up if there is more than one client. It now successfully kills all php clie... Steve Wheeler
10:43 AM Bug #10320 (Resolved): lcdproc Crash report begins: Looks good. Enabling the 'Addresses by traffic' screen shows the correct data and no longer throws a php error.
Te... Steve Wheeler
10:36 AM Feature #10243 (Resolved): rawserial driver for lcdproc: Looks good. Size, speed and port are passed correctly to the conf file:... Steve Wheeler
10:21 AM Feature #8198 (Resolved): pfSense-pkg-LCDproc: Add a link status screen for each interface: Looks good. Tested in lcdproc 0.10.6_9, pfSense 2.4.5-rel Steve Wheeler

04/07/2020

05:46 PM Bug #10445 (Feedback): BIND crashed when added RPZ. rpz is not a master or slave zone.: Before upgrade pfsense to version 2.4.5 i try update packages on 2.4.4p3.
After updating BIND to 9.14_3 (Package Dep... lexxai lexxai
03:23 PM Bug #10444 (Resolved): FRR will not start in 2.4.5 aarch64: We have an internal bug open for this but it's not public.
https://redmine.netgate.com/issues/3765
Updates will b... Steve Wheeler
11:44 AM Bug #10443 (Closed): pfSense-pkg-squid-0.4.44_19 and pfSense-pkg-squid-0.4.44_20: Fixed:
see https://redmine.pfsense.org/issues/10434#note-4
and PR https://github.com/pfsense/FreeBSD-ports/pull/836 Viktor Gurov
11:00 AM Bug #10443 (Closed): pfSense-pkg-squid-0.4.44_19 and pfSense-pkg-squid-0.4.44_20: After update from pfSense-pkg-squid-0.4.44_18 to pfSense-pkg-squid-0.4.44_19 Reverse proxy stopped working.
Squid do... Ilian Cheneshev
11:36 AM Feature #10434 (Pull Request Review): Squid whitelist/blacklist with IDN hostnames: Jim Pingle
11:32 AM Feature #10434: Squid whitelist/blacklist with IDN hostnames: Use idn_to_ascii() only for ACL
Otherwise sq_text_area_decode() create incorrect files (i.e. crt or key files)
Fi... Viktor Gurov
09:38 AM Bug #10442: ACME: special characters in descriptions trigger silent error and rollback: Ah I see. Would just filtering out those characters via an error message before trying to save it be a better approac... Jens Groh
09:30 AM Bug #10442: ACME: special characters in descriptions trigger silent error and rollback: No, it's not from htmlentities. It's that those characters are not valid in XML. So the field probably needs to have ... Jim Pingle
09:25 AM Bug #10442: ACME: special characters in descriptions trigger silent error and rollback: small addition:
is related to Acme 0.6.6 (still happens on 2.5.x snapshots)
There are special chars that work (... Jens Groh
09:19 AM Bug #10442 (Resolved): ACME: special characters in descriptions trigger silent error and rollback: pfSense: 2.4.5
Acme: 0.6.6
Re-create:
1) ACME > Certificates: create new certificate
2) enter any settings fo... Jens Groh
09:35 AM Bug #10439: BandwidthD stopped working after update: Jim Pingle wrote:
> It works fine here on 2.4.5, and you did not provide enough detail to even guess at what might b... Mark Grant
08:05 AM Bug #10439 (Rejected): BandwidthD stopped working after update: It works fine here on 2.4.5, and you did not provide enough detail to even guess at what might be wrong in your speci... Jim Pingle
09:17 AM Bug #10440 (Feedback): Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: PR has been merged. Thanks! Renato Botelho
08:50 AM Bug #10440: Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: Thanks for your quick update :)
I patched the file and it works as before. Tobias Meyer
08:06 AM Bug #10440 (Pull Request Review): Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: Jim Pingle
05:32 AM Bug #10440: Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: ACLs are blank on pre-2.4.5 pfSense,
caused by the absence of _idn_to_ascii()_
Fix:
https://github.com/pfsense/F... Viktor Gurov
02:59 AM Bug #10440: Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: Viktor Gurov wrote:
> can you check it in your squid.conf?
> Need more information
I can see the subnet on the U... Tobias Meyer
02:47 AM Bug #10440: Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: There is only one change in https://github.com/pfsense/FreeBSD-ports/pull/830
- fixes IPv6 duplicate addresses in lo... Viktor Gurov
02:31 AM Bug #10440 (Resolved): Squid proxy ignoring allowed_subnets after package upgrade 0.4.44_9 ==> 0.4.44_19: We allow an additional subnet (OpenVPN Roadwarriors) on our squid proxy server additionally to the LAN interface.
... Tobias Meyer
08:22 AM Feature #10441 (Pull Request Review): Integration of bfd daemon: Jim Pingle
07:48 AM Feature #10441: Integration of bfd daemon: Corresponding PR :
https://github.com/pfsense/FreeBSD-ports/pull/835 Emmanuel Roger
07:34 AM Feature #10441 (Resolved): Integration of bfd daemon: FRR package already include bfd daemon and it could be use to reduce fault detection.
Some changes are needed in o... Emmanuel Roger
07:59 AM Bug #10338 (Resolved): FRR OSPF6 Router-ID configuration statement has changed: OK on frr 0.6.4_3 Viktor Gurov
03:30 AM Bug #7048 (Resolved): Add IPv6 support to squid: resolved in https://redmine.pfsense.org/issues/10335
and https://redmine.pfsense.org/issues/8887 Viktor Gurov
03:26 AM Feature #10335 (Resolved): Squid IPv6 transparent mode: works as expected on 2.4.5/2.5 with squid 0.4.44_19 Viktor Gurov
01:01 AM Bug #10422 (Resolved): Squid LDAP auth must use LDAPURI option: works as expected on 2.4.5 with squid 0.4.44_19 Viktor Gurov
12:59 AM Bug #10378 (Resolved): Add IPv6 network to Squid localnet: works as expected on 2.4.5 with squid 0.4.44_19 Viktor Gurov
12:54 AM Bug #10379 (Resolved): squid not authenticate LDAP/RADIUS: works as expected on 2.4.5 with squid 0.4.44_19 Viktor Gurov

04/06/2020

07:19 PM Bug #10436: softflowd no longer sends flow data after upgrade (v0.9.9_1 -> v1.0.0): Manuel Piovan wrote:
> me too
> can you try with the flag -P udp from console and report back?
> example /usr/loca... Mark Hassman
06:25 AM Bug #10436: softflowd no longer sends flow data after upgrade (v0.9.9_1 -> v1.0.0): me too
can you try with the flag -P udp from console and report back?
example /usr/local/bin/softflowd -D -i 1:vmx1... Manuel Piovan
02:01 AM Bug #10436 (Feedback): softflowd no longer sends flow data after upgrade (v0.9.9_1 -> v1.0.0): Hi, after upgrading pfsense from v2.4.4_3 -> v2.4.5 (which included an upgrade of softflowd from v0.9.9_1 -> v1.0), s... Mark Hassman
06:49 PM Bug #10439 (Rejected): BandwidthD stopped working after update: BandwidthD package stopped working after an update.
it installs fine, but no graphs.
deinstall/reinstall, same ... Mark Grant
02:21 PM Feature #10428: LCDProc: Add the EZIO driver to the lcdproc config page: tested here https://forum.netgate.com/topic/115071/ezio-driver-for-lcdproc/115
PR https://github.com/pfsense/FreeBSD... Manuel Piovan
11:04 AM Bug #7654 (Feedback): Can't use a LDAP search filter containing an accent: PR has been merged. Thanks! Renato Botelho
07:55 AM Bug #7654 (Pull Request Review): Can't use a LDAP search filter containing an accent: Jim Pingle
11:01 AM Bug #10432 (Feedback): Arpwatch show unknown vendor: PR has been merged. Thanks! Renato Botelho
08:17 AM Bug #10432 (Pull Request Review): Arpwatch show unknown vendor: Jim Pingle
11:00 AM Feature #10434 (Feedback): Squid whitelist/blacklist with IDN hostnames: PR has been merged. Thanks! Renato Botelho
07:57 AM Feature #10434 (Pull Request Review): Squid whitelist/blacklist with IDN hostnames: Jim Pingle
11:00 AM Feature #10335 (Feedback): Squid IPv6 transparent mode: PR has been merged. Thanks! Renato Botelho
08:10 AM Feature #10335 (Pull Request Review): Squid IPv6 transparent mode: Jim Pingle
10:55 AM Bug #10427 (Feedback): LCDproc: Handle multiple lcdproc clients: PR has been merged. Thanks! Renato Botelho
07:49 AM Bug #10427 (Pull Request Review): LCDproc: Handle multiple lcdproc clients: Jim Pingle
10:55 AM Bug #10385 (Feedback): Pb with Username authorized characters when OTP is disabled: PR has been merged. Thanks! Renato Botelho
07:48 AM Bug #10385 (Pull Request Review): Pb with Username authorized characters when OTP is disabled: Jim Pingle

04/05/2020

03:03 PM Feature #10434: Squid whitelist/blacklist with IDN hostnames: https://github.com/pfsense/FreeBSD-ports/pull/832 Viktor Gurov
02:58 PM Feature #10434 (Resolved): Squid whitelist/blacklist with IDN hostnames: Squid doesn't block non-ascii domans
non-ascii domains must first be converted to punycode:
https://unix.stackexcha... Viktor Gurov
02:11 PM Bug #7654: Can't use a LDAP search filter containing an accent: TODO:
CDATA encode FreeRADIUS LDAP options Viktor Gurov
02:10 PM Bug #7654: Can't use a LDAP search filter containing an accent: CDATA encode Squid LDAP options:
https://github.com/pfsense/pfsense/pull/4265 Viktor Gurov
07:10 AM Feature #10428: LCDProc: Add the EZIO driver to the lcdproc config page: EZIO is a serial connection type for HD44780. It must be set for the server to be able to talk to it.
https://github... Steve Wheeler
07:05 AM Feature #10428: LCDProc: Add the EZIO driver to the lcdproc config page: https://github.com/lcdproc/lcdproc/releases
HD44780 connection type "serial" supports Portwell EZIO-100 and EZIO-300... Manuel Piovan
06:00 AM Bug #10432: Arpwatch show unknown vendor: this is due to $oui = strtoupper(substr($mac, 0, 8));
the content of ethercodes.dat is not uppercase
PR https://... Manuel Piovan
05:55 AM Bug #10432 (Resolved): Arpwatch show unknown vendor: arpwatch.inc
line 164
if (preg_match("/^$oui\s+(.*)$/m", file_get_contents(ARPWATCH_LOCAL_DIR.'/ethercodes.dat'), $... Manuel Piovan
05:31 AM Bug #10431: pfBlockerNG Cron Job wrong - Clear IP / DNSBL Statistics: Preview function is your friend. Cron looks like... Luki TJ
05:26 AM Bug #10431 (Resolved): pfBlockerNG Cron Job wrong - Clear IP / DNSBL Statistics: Configuring on the pfBlockerNG Widget the Statistic clearance on a weekly frequency results in this cron config:
*... Luki TJ

04/04/2020

05:10 PM Feature #10335: Squid IPv6 transparent mode: https://github.com/pfsense/FreeBSD-ports/pull/830 Viktor Gurov
01:28 PM Bug #10429: Status Traffic Total broken 2.4.5: https://forum.netgate.com/topic/151914/traffic-totals-hourly-report-problem/ Manuel Piovan
01:22 PM Bug #10429 (New): Status Traffic Total broken 2.4.5: it's broken on 2.4.5
Hourly and Daily tab show data in the future
top 10 show ... some strange geometric figure Manuel Piovan
10:20 AM Feature #10428: LCDProc: Add the EZIO driver to the lcdproc config page: LCDd.conf not lcdproc.conf Steve Wheeler
10:18 AM Feature #10428 (Resolved): LCDProc: Add the EZIO driver to the lcdproc config page: The EZIO driver was written by forum member fmertz and accepted upstream, it's now part of the package but there is n... Steve Wheeler
10:15 AM Bug #10427: LCDproc: Handle multiple lcdproc clients: https://github.com/pfsense/FreeBSD-ports/pull/829 Viktor Gurov
10:13 AM Bug #10427 (Resolved): LCDproc: Handle multiple lcdproc clients: Return only one argument from pgrep to avoid breaking [ ]. Without that the client processes are not killed if there ... Viktor Gurov
09:55 AM Bug #10422: Squid LDAP auth must use LDAPURI option: I upgraded squid to 0.4.44_18 on 2.4.5/2.5 but can't see this code
Viktor Gurov
06:22 AM Bug #10426 (Resolved): Filer must validate that File name is uniq: Filer Plugin allow create multiply files with same name which is not have any usecase. I think this bug. DRago_Angel [InV@DER]
04:56 AM Bug #10385: Pb with Username authorized characters when OTP is disabled: MILO MEDIN wrote:
> There is also an issue with being able to user MAC addresses in the FreeRadius username in the X... Viktor Gurov

04/03/2020

08:10 PM Feature #10425 (Resolved): upgrade ntopng to 4.0.0: ntopng 4.0.0 has been released.
https://github.com/ntop/ntopng/commits/4.0
Could the ntopng package for pfSense... Jeffrey Altman
12:08 PM Bug #10422 (Feedback): Squid LDAP auth must use LDAPURI option: PR has been merged. Thanks! Renato Botelho
11:45 AM Bug #10422: Squid LDAP auth must use LDAPURI option: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/823
This PR also changes STARTTLS -Z option to -ZZ,
it's used... Viktor Gurov
11:39 AM Bug #10422 (Resolved): Squid LDAP auth must use LDAPURI option: basic_ldap_auth must use LDAPURI option (-H) to successfully connect using ldaps.
see https://forum.netgate.com/topi... Viktor Gurov
10:31 AM Feature #10421 (Resolved): suricata unix_stream support for telegraf: it would be nice if there was support for telegraf under suricata
input.suricata need unix socket to be created for ... Manuel Piovan
10:25 AM Todo #10419 (Feedback): Update haproxy ports: Done. Bumped haproxy and haproxy-devel pfSense packages to 0.60_4 to let users to see a new version Renato Botelho
08:26 AM Todo #10419 (Closed): Update haproxy ports: pfSense-pkg-haproxy depends on net/haproxy18 which is currently 1.8.23
pfSense-pkg-haproxy-devel depends on net/hapr... Jim Pingle
10:19 AM Bug #10369 (Feedback): Remote OpenVPN server protocol definition: PR has been merged. Thanks! Renato Botelho
10:19 AM Bug #10393 (Feedback): Syslog-ng TLS support is broken: PR has been merged. Thanks! Renato Botelho
10:17 AM Bug #10413 (Feedback): BIND plugins are not copied into chroot: PR has been merged. Thanks! Renato Botelho
10:16 AM Bug #10378 (Feedback): Add IPv6 network to Squid localnet: PR has been merged. Thanks! Renato Botelho
07:19 AM Bug #10378 (Pull Request Review): Add IPv6 network to Squid localnet: Jim Pingle
10:16 AM Feature #10415 (Feedback): FreeRADIUS Package: Add option to enter NT or MD5 prehashed passwords in configuration: PR has been merged. Thanks! Renato Botelho
07:28 AM Feature #10415 (Pull Request Review): FreeRADIUS Package: Add option to enter NT or MD5 prehashed passwords in configuration: Jim Pingle

04/02/2020

09:50 PM Feature #10415: FreeRADIUS Package: Add option to enter NT or MD5 prehashed passwords in configuration: Link to pull request: https://github.com/pfsense/FreeBSD-ports/pull/822 Implements #10415 Adds prehashed NT-Password ... Tet-Woo Lee
09:19 PM Feature #10415 (Resolved): FreeRADIUS Package: Add option to enter NT or MD5 prehashed passwords in configuration: The FreeRADIUS Package currently provides the option to use 'Cleartext-Password' and only hashing option - 'MD5-Passw... Tet-Woo Lee
03:19 PM Bug #10413 (Pull Request Review): BIND plugins are not copied into chroot: PR: https://github.com/pfsense/FreeBSD-ports/pull/816 Jim Pingle
02:55 PM Bug #10413 (Resolved): BIND plugins are not copied into chroot: BIND 9.13.5 introduced a new plugin system, and the filter-aaaa support was moved to a plugin, so we need to copy the... Scott Dial
03:07 PM Bug #10378: Add IPv6 network to Squid localnet: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/817 Viktor Gurov
01:07 PM Bug #10411: ACME only uses DoH, Broken renewal: Jim Pingle wrote:
> Still seems like acme.sh should handle that more gracefully without relying on such a long timeo... theodore adams
12:44 PM Bug #10411: ACME only uses DoH, Broken renewal: Still seems like acme.sh should handle that more gracefully without relying on such a long timeout, or have an option... Jim Pingle
12:41 PM Bug #10411: ACME only uses DoH, Broken renewal: Thank you for reviewing Jim.
I have been researching further and found closed issues on the acme.sh github:
https... theodore adams
10:36 AM Bug #10411 (Needs Patch): ACME only uses DoH, Broken renewal: That will need to be raised as an issue directly with acme.sh not here. Jim Pingle
10:21 AM Bug #10411 (Needs Patch): ACME only uses DoH, Broken renewal: The issue is described on the forum here:
> https://forum.netgate.com/topic/150984/doh-verification-method
DoH ap... theodore adams
12:25 PM Bug #10379 (Feedback): squid not authenticate LDAP/RADIUS: PR 814 was merged Jim Pingle

04/01/2020

02:21 PM Bug #9347 (Resolved): Domain SAN list displays "Key Algorithm: HMAC-MD5, API Endpoint: portal.nexcess.net": Jim Pingle
02:17 PM Feature #10403 (Feedback): Add Proxy support to ACME package: This has been implemented in ACME package version 0.6.6
I tested it against a local squid instance and it worked. ... Jim Pingle
09:49 AM Feature #10403 (Resolved): Add Proxy support to ACME package: The ACME package does not utilize the system proxy settings when making outbound queries.
Though there is not spec... Jim Pingle
02:16 PM Bug #10405 (Feedback): Additional instances of ACME Domain SAN list entries with passwords are rendered as checkboxes: This is fixed in ACME package version 0.6.6 Jim Pingle
10:29 AM Bug #10405 (Resolved): Additional instances of ACME Domain SAN list entries with passwords are rendered as checkboxes: When adding more than one Domain SAN list entry to an ACME certificate, password type fields are rendered as checkbox... Jim Pingle
01:33 AM Bug #10379: squid not authenticate LDAP/RADIUS: Ismael Peixoto Azambuja wrote:
> O 71 wrote:
> > Hi Ismael,
> >
> > Can you give me the line write in the squid... O 71

03/31/2020

06:29 PM Bug #10379: squid not authenticate LDAP/RADIUS: O 71 wrote:
> Hi Ismael,
>
> Can you give me the line write in the squid.conf file ?
> If you check or uncheck "... Ismael Peixoto Azambuja
03:43 PM Bug #10379 (Pull Request Review): squid not authenticate LDAP/RADIUS: Jim Pingle
02:53 PM Bug #10379: squid not authenticate LDAP/RADIUS: Fix: https://github.com/pfsense/FreeBSD-ports/pull/814 Viktor Gurov
10:05 AM Bug #10379: squid not authenticate LDAP/RADIUS: I test and it works if I modify the file /usr/local/pkg/squid.inc like this :... O 71
04:37 AM Bug #10379: squid not authenticate LDAP/RADIUS: Hi Ismael,
Can you give me the line write in the squid.conf file ?
If you check or uncheck "LDAP follow referrals... O 71
02:06 AM Bug #10379: squid not authenticate LDAP/RADIUS: available update: 0.4.44_16, here all work perfect now.
do not know who to thank, but thanks for the correction! Ismael Peixoto Azambuja
10:33 AM Bug #10385: Pb with Username authorized characters when OTP is disabled: There is also an issue with being able to user MAC addresses in the FreeRadius username in the XX:XX:XX:XX:XX:XX beca... MILO MEDIN

03/30/2020

05:09 PM Bug #10379: squid not authenticate LDAP/RADIUS: Hello,
I update to 0.4.44_16, I use LDAP Authentification. The password is ok, but it doesn't work correctly with ... O 71
12:45 PM Bug #10379 (Feedback): squid not authenticate LDAP/RADIUS: PR was merged Jim Pingle
02:56 PM Bug #10393 (Pull Request Review): Syslog-ng TLS support is broken: Jim Pingle
02:53 PM Bug #10393 (Resolved): Syslog-ng TLS support is broken: The TLS support currently is broken because the CA certificate file name is not correct. For this reason the clients ... Daniel Fariña
02:35 PM Feature #10297 (Pull Request Review): IPv6 user attributes: Jim Pingle
01:55 PM Bug #10369 (Pull Request Review): Remote OpenVPN server protocol definition: Jim Pingle
11:43 AM Feature #10377: Allow usage of TOTP (Google-Authenticator) without PIN: Since the user enters the PIN alongside the randomly generated OTP code (password=PIN+CODE) I am not seeing how any c... Jim Pingle
11:36 AM Feature #10377: Allow usage of TOTP (Google-Authenticator) without PIN: Thanks for your answers.
I would agree, generally the 4 digit pin + totp makes the system safer.
Here are our t... Andreas Heckmann
10:23 AM Feature #10377: Allow usage of TOTP (Google-Authenticator) without PIN: While the GA script allows omitting the PIN I don't see why you'd want to reduce the security in that way. Part of th... Jim Pingle
04:19 AM Bug #10261: Arpwatch fails to download ethercodes.dat: This is still a issue !!
I have all vendors as unknown.
I fix it and after a while it get broken again.
Us... Tobias Müllauer

03/29/2020

01:36 PM Bug #10379: squid not authenticate LDAP/RADIUS: O 71 wrote:
> I have the same problem after update.
>
> I think the problem comes from the -w parameter. It shoul... Viktor Gurov
08:13 AM Bug #10379: squid not authenticate LDAP/RADIUS: A picture of my test to illustrate O 71
08:06 AM Bug #10379: squid not authenticate LDAP/RADIUS: I have the same problem after update.
I think the problem comes from the -w parameter. It should be done like this... O 71
05:36 AM Bug #10379: squid not authenticate LDAP/RADIUS: Ismael Peixoto Azambuja wrote:
> Hi, i test this fix, but dont work here...
I have successfully tested this PR w... Viktor Gurov

03/28/2020

06:21 PM Bug #10379: squid not authenticate LDAP/RADIUS: Viktor Gurov wrote:
> Local and RADIUS auth works fine
>
> LDAP auth fix:
> https://github.com/pfsense/FreeBSD-p... Ismael Peixoto Azambuja
04:16 AM Bug #10379: squid not authenticate LDAP/RADIUS: Local and RADIUS auth works fine
LDAP auth fix:
https://github.com/pfsense/FreeBSD-ports/pull/811 Viktor Gurov
12:57 AM Bug #10379: squid not authenticate LDAP/RADIUS: I have not found the problem yet, but I did test on an outdated server, 2.4.4p3 squid 0.4.44_8 and everything works p... Ismael Peixoto Azambuja
12:58 PM Bug #10385: Pb with Username authorized characters when OTP is disabled: Hi, thanks for your fast answer.
So I have modifief the file /usr/local/pkg/freeradius.inc, line 3668 and 3669 wit... Olivier GUENET
12:08 PM Bug #10385: Pb with Username authorized characters when OTP is disabled: need to revert back https://github.com/pfsense/FreeBSD-ports/pull/775/
and cherry-pick https://redmine.pfsense.org... Viktor Gurov
11:34 AM Bug #10385 (Resolved): Pb with Username authorized characters when OTP is disabled: Hi,
I have done the update to the 2.4.5 version of pfsense, with the update of the last package of freeradius3.
... Olivier GUENET
12:01 PM Feature #8878 (Resolved): Propagate user's description field into QR code for FreeRADIUS: works as expected on pfSense 2.4.5 with freeradius3 0.15.7_11 Viktor Gurov
12:57 AM Feature #10297: IPv6 user attributes: https://forum.netgate.com/topic/151725/freeradius-ipv6-framed-ip-issue-with-2-4-5:... Viktor Gurov

03/27/2020

09:31 AM Bug #10379: squid not authenticate LDAP/RADIUS: Cache.log
[2.4.4-RELEASE][admin@PFLog01.intra.uergs.rs]/var/squid/logs: cat cache.log
2020/03/27 10:29:52 kid1| S... Ismael Peixoto Azambuja
09:18 AM Bug #10379: squid not authenticate LDAP/RADIUS: Apparently everything is right in the configuration, when I type user and password, in the log appears users. In this... Ismael Peixoto Azambuja
09:07 AM Bug #10379: squid not authenticate LDAP/RADIUS: Ismael Peixoto Azambuja wrote:
> pfsense 2.4.4p3 with all packages updated, using squid with LDAP authentication wa... Viktor Gurov
08:36 AM Bug #10379: squid not authenticate LDAP/RADIUS: seems regression by https://redmine.pfsense.org/issues/9217 Viktor Gurov
05:19 AM Bug #10379 (Resolved): squid not authenticate LDAP/RADIUS: pfsense 2.4.4p3 with all packages updated, using squid with LDAP authentication was working perfectly, server with 2 ... Ismael Peixoto Azambuja
04:40 AM Bug #10367 (Resolved): squid reverse proxy not starting: works as expected on 2.5.0.a.20200326.1148 with squid 0.4.44_15 Viktor Gurov
02:22 AM Bug #10367: squid reverse proxy not starting: tested on 2.4.5 with squid 0.4.44_15
reverse proxy starts successfully Viktor Gurov
03:18 AM Bug #8774 (Resolved): Whitelist ALC type not supported by ssl_bump: tested on 2.4.5 with squid 0.4.44_15
works as expected Viktor Gurov
02:19 AM Bug #10378 (Resolved): Add IPv6 network to Squid localnet: Currently, the “Allow users in the interface” option only adds the IPv4 interface subnet to the list of allowed subne... Viktor Gurov
02:13 AM Bug #8887 (Resolved): Squid Proxy Interface not assignee to IPv6: tested on 2.4.5 with squid 0.4.44_15
now it works as expected Viktor Gurov
02:04 AM Feature #10357 (Resolved): Add Iperf verbose output option: works as expected on 2.4.5 with iperf 3.0.2_4 Viktor Gurov
02:02 AM Feature #9272 (Resolved): Allow multiple IP in ListenIP for Zabbix Agent: works as expected on 2.4.5 with zabbix-agent44 1.0.4_4 Viktor Gurov

03/26/2020

12:57 PM Feature #10377: Allow usage of TOTP (Google-Authenticator) without PIN: Pardon my lack of experience using openvpn, but would this request mean all someone needs is the username? TOTP reall... Ben Cronce
09:10 AM Feature #10377 (New): Allow usage of TOTP (Google-Authenticator) without PIN: Currently it is not possible to create a radius user with TOTP enabled without entering an additional pin.
So to aut... Andreas Heckmann
06:30 AM Feature #9272 (Feedback): Allow multiple IP in ListenIP for Zabbix Agent: Renato Botelho
06:29 AM Bug #10338 (Feedback): FRR OSPF6 Router-ID configuration statement has changed: PR has been merged. Thanks! Renato Botelho
06:29 AM Feature #10357 (Feedback): Add Iperf verbose output option: PR has been merged. Thanks! Renato Botelho
06:24 AM Bug #8774 (Feedback): Whitelist ALC type not supported by ssl_bump: PR has been merged. Thanks! Renato Botelho
06:24 AM Bug #8887 (Feedback): Squid Proxy Interface not assignee to IPv6: PR has been merged. Thanks! Renato Botelho
06:24 AM Bug #10367 (Feedback): squid reverse proxy not starting: PR has been merged. Thanks! Renato Botelho
06:19 AM Bug #8625 (Feedback): PFsense squidGuard faulty URL check: PR has been merged. Thanks! Renato Botelho

03/23/2020

06:06 PM Bug #10370 (New): ntopng Timeseries not send to InfluxDB: When moving timeseries from rrd to influxdb it initial configures the db but does not send data to Influxdb.
Netga... Alex Garcia
02:28 PM Bug #10369: Remote OpenVPN server protocol definition: https://github.com/pfsense/FreeBSD-ports/pull/808 Viktor Gurov
02:25 PM Bug #10369 (Resolved): Remote OpenVPN server protocol definition: An exact definition of the OpenVPN remote server protocol must be present,
Otherwise, it may try to establish a conn... Viktor Gurov

03/22/2020

03:05 PM Bug #8625: PFsense squidGuard faulty URL check: https://github.com/pfsense/FreeBSD-ports/pull/806 Viktor Gurov
01:40 PM Bug #10367: squid reverse proxy not starting: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/805 Viktor Gurov
08:06 AM Bug #10367 (Resolved): squid reverse proxy not starting: FATAL: Bungled /usr/local/etc/squid/squid.conf line 89: http_port Array:80 accel defaultsite=mysite.com vhost
http... Manuel Piovan

Also available in: Atom

Project

General

Profile

pfSense » pfSense Packages

Activity

Activity

04/20/2020

04/19/2020

04/18/2020

04/17/2020

04/16/2020

04/15/2020

04/14/2020

04/13/2020

04/12/2020

04/11/2020

04/10/2020

04/09/2020

04/08/2020

04/07/2020

04/06/2020

04/05/2020

04/04/2020

04/03/2020

04/02/2020

04/01/2020

03/31/2020

03/30/2020

03/29/2020

03/28/2020

03/27/2020

03/26/2020

03/23/2020

03/22/2020