Activity

30 days up to

User

Activity

From 05/13/2020 to 06/11/2020

06/11/2020

09:49 PM Bug #10656 (Closed): Acme letsencrypt doesn't change private key type: As alluded to in this year and a half old post (https://forum.netgate.com/topic/116404/ntopng-and-let-s-encrypt-certi... Howard Holm
09:43 PM Bug #10655 (Resolved): ntopng fails with letsencrypt ECC certificates: Configuring ntopng to use letsencrypt certificates (via the Acme package) works with default RSA 2048 bit certificate... Howard Holm
01:05 PM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: Seems to work for me Pim Janssen
12:55 PM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: Danilo Baio wrote:
> Yes, it's missing zabbix config options for the 2.4.5 packages:
> https://github.com/pfsense/F... Danilo Baio
12:31 PM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: Pim Janssen wrote:
> Thanks, i just upgraded my zabbix-proxy on pfsense.
> Now i am getting the following error:
>... Danilo Baio
11:55 AM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: Thanks, i just upgraded my zabbix-proxy on pfsense.
Now i am getting the following error:
`connection to database '... Pim Janssen
11:04 AM Bug #10654 (Resolved): Whitelisted domains starting with a dot are ignored: https://forum.netgate.com/topic/153933/solved-squid-0-4-44_25-assertion-failed-http-cc-1533-comm-monitorsread-serverc... Viktor Gurov
09:58 AM Bug #10146 (Resolved): squid4 obsolete options: OK - no NO_SSLv2 option in squid pkg 0.4.44_26 Viktor Gurov
04:38 AM Feature #9874 (Resolved): safesearch enforcing: link is ok now Viktor Gurov
04:37 AM Feature #10627 (Resolved): add Yandex Site Checker link: works as expected on the latest pfBlockerNG-devel Viktor Gurov
01:21 AM Feature #10653 (New): Allow to download frr_status: Add a button on the status_frr.php page to load all the frr status output as a txt file. Viktor Gurov
01:08 AM Feature #10628 (Resolved): Allow to change url_rewrite_children options: pfSense-pkg-squidGuard-1.16.18_6 works as expected Viktor Gurov

06/10/2020

05:28 PM Bug #10642: ACME certificate renewal with DNS-Gandi method fails when using multiple Gandi keys: I don't have SSH access to the router, so unfortunately I cannot run acme.sh outside pfSense. I suppose the answer li... Oriane Tury
12:56 PM Bug #10649: OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: Jim Pingle wrote:
> That particular document is outdated, the Cert Manager supports forming chains on its own now. I... Dennis Adler
12:15 PM Bug #10649: OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: That particular document is outdated, the Cert Manager supports forming chains on its own now. I have a setup with in... Jim Pingle
12:10 PM Bug #10649: OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: > Either your CA/Cert subjects are not unique and it formed an incorrect internal association on import, or you impor... Dennis Adler
08:42 AM Bug #10649 (Not a Bug): OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: Either your CA/Cert subjects are not unique and it formed an incorrect internal association on import, or you importe... Jim Pingle
04:07 AM Bug #10649: OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: Note: I posted this initially on the Netgate forums. Several views but no feedback. Perhaps not many people set up a ... Dennis Adler
04:05 AM Bug #10649 (Not a Bug): OpenVPN Cllient Export Wizard Using Wrong Root CA Certificate: This occurs using pfSense 2.4.5-RELEASE (arm) on an SG-3100. OpenVPN CE Wizard v1.4.23.
I had two Root CAs in pfSe... Dennis Adler
11:04 AM Feature #10557 (Feedback): Add Zabbix 5.0 LTS (agent and proxy) packages: PR has been merged. Thanks! Renato Botelho
11:01 AM Feature #9874 (Feedback): safesearch enforcing: PR has been merged. Thanks! Renato Botelho
10:53 AM Feature #10628 (Feedback): Allow to change url_rewrite_children options: PR has been merged. Thanks! Renato Botelho
10:53 AM Feature #10627 (Feedback): add Yandex Site Checker link: PR has been merged. Thanks! Renato Botelho
10:52 AM Feature #10618 (Feedback): Set sysDescr the same as bsnmpd unless overriden with net-snmp: PR has been merged. Thanks! Renato Botelho
10:51 AM Bug #10146 (Feedback): squid4 obsolete options: PR has been merged. Thanks! Renato Botelho
10:50 AM Bug #5168 (Feedback): squid doesn't function during/after HA failover: PR has been merged. Thanks! Renato Botelho
10:49 AM Feature #9793 (Feedback): Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: PR has been merged. Thanks! Renato Botelho
10:48 AM Feature #8727 (Feedback): Clone button in cron pkg: PR has been merged. Thanks! Renato Botelho
10:11 AM Bug #10647 (Feedback): FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets: PR has been merged. Thanks! Renato Botelho
09:19 AM Bug #10647 (Pull Request Review): FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets: Jim Pingle
01:48 AM Bug #10647: FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets: Fix:
https://github.com/pfsense/FreeBSD-ports/pull/877 Viktor Gurov
06:13 AM Feature #10599: Add support for hitless-reloads of HAproxy config: Thanks and sorry, missed it DRago_Angel [InV@DER]
05:40 AM Feature #10599 (Rejected): Add support for hitless-reloads of HAproxy config: Already supported:
see https://github.com/pfsense/FreeBSD-ports/blob/76396719e6e1b7c0c54dc70c2bb91c127a7ff8c4/net/... Viktor Gurov

06/09/2020

02:36 PM Bug #10647 (Resolved): FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets: The php script generating the bgp.conf file only writes out the configuration if the subnet is an ipv4 subnet: https:... Max Maton
11:49 AM Bug #10646 (Resolved): Reinstall package process stalls at pfBlockerNG when restoring a config: The package install process for pfBlockerNG completes but the processes do not close out preventing subsequent packag... Steve Wheeler
07:55 AM Bug #10642: ACME certificate renewal with DNS-Gandi method fails when using multiple Gandi keys: Have you tried doing this with acme.sh on its own (not through pfSense)? It may be a problem in the Gandi script, it ... Jim Pingle

06/08/2020

03:17 PM Bug #10642 (Duplicate): ACME certificate renewal with DNS-Gandi method fails when using multiple Gandi keys: With the ACME service, when trying to issue/renew a certificate on 2 domain names (or more) using the DNS-Gandi Live ... Oriane Tury
09:11 AM Feature #10640 (Rejected): Request addition of ZNC to Package Manager available packages: In my opinion, that kind of service is a poor fit for a firewall. Especially given its "poor security history":https:... Jim Pingle
08:41 AM Feature #10557 (Pull Request Review): Add Zabbix 5.0 LTS (agent and proxy) packages: Jim Pingle

06/06/2020

02:40 PM Feature #10640 (Rejected): Request addition of ZNC to Package Manager available packages: I would like to request the addition of the ZNC package for installation via the pfSense Package Manager, pfSense rel... Murray Williams

05/30/2020

08:47 AM Bug #10146: squid4 obsolete options: https://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit#Troubleshooting:
_NO_SSLv2 is relevant only fo... Viktor Gurov
06:43 AM Bug #5168: squid doesn't function during/after HA failover: https://github.com/pfsense/FreeBSD-ports/pull/867
This is mainly for Transparent mode and IPv6 squid configuration... Viktor Gurov

05/29/2020

11:31 PM Feature #10612 (Resolved): Add pfSense package for Zeek (formerly Bro) Network Security Monitor: PR: https://github.com/pfsense/FreeBSD-ports/pull/866 Prosper Doko
01:00 PM Bug #10611 (Resolved): FRR applies file permissions to missing files: When FRR starts it tries to apply file permissions to all the conf files for it's daemons. Including those that are n... Steve Wheeler
11:49 AM Bug #10444 (Resolved): FRR will not start in 2.4.5 aarch64: Same here on SG-1100, services start and I am seeing neighbors and routes exchanged. Jim Pingle
11:47 AM Bug #10444: FRR will not start in 2.4.5 aarch64: This looks good in 0.6.5. Service starts as expected.
Tested an SG-1100 running 2.4.5p1. Steve Wheeler
10:37 AM Bug #10444: FRR will not start in 2.4.5 aarch64: Please re-test with pfSense-pkg-frr 0.6.5 / frr7-7.3.1 to make sure problem persists Renato Botelho
11:06 AM Bug #10573 (Resolved): Netgate_Coreboot_Upgrade cannot write to flash in 2.4.5: Jim Pingle
11:04 AM Bug #10573: Netgate_Coreboot_Upgrade cannot write to flash in 2.4.5: This works correctly in the 0.28 package.
Tested on an SG-4860 in a 2.4.5p1 snapshot.
!Selection_849.png!
Steve Wheeler
05:07 AM Bug #10502: LLDP spamming errors on Netgate XG-7100: So maybe we can track this issue https://github.com/vincentbernat/lldpd/issues/394 and till it (or if it will not) fi... DRago_Angel [InV@DER]
04:53 AM Bug #10502: LLDP spamming errors on Netgate XG-7100: DRago_Angel [InV@DER] wrote:
> Additionally LLDPd with active NDP (enabled and forced) throw errors if chosen interf... Viktor Gurov
12:43 AM Bug #10608 (Closed): Update squid port to 4.11-p2: Current pfSense ports squid version 4.10 contains a bug that may cause a crash when users navigate the Internet,
See... Viktor Gurov

05/28/2020

10:06 AM Bug #10606: Snort Inline stopped working after upgrade to FreeBSD 12.1 (network traffic blocked after heavy load randomly): You might post on the IDS/IPS category of the forum to catch the snort developer's attention there. Similar issues ha... Jim Pingle
10:02 AM Bug #10606 (New): Snort Inline stopped working after upgrade to FreeBSD 12.1 (network traffic blocked after heavy load randomly): Snort Inline stopped working after upgrade to FreeBSD 12.1 (network traffic blocked after heavy load randomly).
Ne... David Rupprechter
10:01 AM Feature #10605 (Resolved): Add certificates from Trusted Store to Squid cert store: PfSense 2.5 has the 'add to Trust Store' feature #4068, which allows you to add pfSense certificates to /etc/ssl/cert... Viktor Gurov

05/27/2020

07:44 PM Bug #10602 (Resolved): Dashboard->Traffic Graphs bandwidth designations on hover pop-ups: The scales are reporting Mbytes/sec but the pop-up is using the Mbits/sec designation: Mb/s. Needs to be corrected ... Randall Barth
07:42 PM Bug #10601 (New): Dashboard->Traffic Graphs Scale is capped for outbound: The WAN out and LAN in scales are capped at 1 Mbyte/sec. They should adjust scale range as do the WAN in and LAN out. Randall Barth
03:08 PM Feature #10600: Add support for pfBlockerNG "Action list" feature: It would be cool if you add both flows. Thank you guys. And about HAproxy Reload Integration it better to be done as ... DRago_Angel [InV@DER]
03:04 PM Feature #10600 (New): Add support for pfBlockerNG "Action list" feature: Some other plugins that can use pfBlockerNG native aliases can need additional reload/restart action to load new IPs ... DRago_Angel [InV@DER]
02:48 PM Feature #9793 (Pull Request Review): Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Jim Pingle
01:24 PM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Ok, thanks DRago_Angel [InV@DER]
12:15 PM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: it would be nice to use "hitless-reloads" with 'action list'
Please create a new redmine issue for this
Viktor Gurov
11:43 AM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Tested this patch, it works as expected, thanks!
Could you please advice what the best|correct way(command) to recre... DRago_Angel [InV@DER]
11:24 AM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Yep, this fine. And yes, I understand what this commit adds, thanks =)
Will try to test it now. DRago_Angel [InV@DER]
11:04 AM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: This PR adds support for the URL Table alias type, and it can be not only the pfBlockerNG URL, but also a list on you... Viktor Gurov
10:39 AM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Hi Viktor,
I speak with @bbcan177 about this initially and tested changing files on filesystem. Reloading of SrcIPs ... DRago_Angel [InV@DER]
03:30 AM Feature #9793: Add support for HAProxy ACLs "src -f /ipalias.lst" to use pfBlockerNG IP Alias Native: Allows to use URL Table type alias:
https://github.com/pfsense/FreeBSD-ports/pull/865 Viktor Gurov
01:34 PM Feature #10599 (Rejected): Add support for hitless-reloads of HAproxy config: HAproxy allows reload configs without restart of service via socket command: https://www.haproxy.com/blog/hitless-rel... DRago_Angel [InV@DER]

05/25/2020

03:56 PM Bug #10476 (Resolved): Services - Acme - Certificates using loopia API: resolved in the latest acme pkg 0.6.8:... Viktor Gurov

05/24/2020

02:44 PM Bug #10502: LLDP spamming errors on Netgate XG-7100: Additionally LLDPd with active NDP (enabled and forced) throw errors if chosen interfaces are parent or child of VLAN... DRago_Angel [InV@DER]
04:27 AM Bug #10502: LLDP spamming errors on Netgate XG-7100: From github:
Sorry for late reply,
Yep, I have lagg on SPF+ ix0 & ix1 for reductant connection.
In the UI I select... DRago_Angel [InV@DER]
10:16 AM Bug #10590 (Closed): pfBlockerNG: Invalid argument supplied for foreach(): Dear
I received this crash report today on my router. Maybe this should be checked.... Kevin Holvoet

05/23/2020

05:12 AM Feature #9315: Add Package: dnscrypt-proxy: And Nginx can be used as DoH server with common DNS server as upstream which can be localhost unbound server. One min... DRago_Angel [InV@DER]

05/22/2020

12:08 PM Bug #10573 (Feedback): Netgate_Coreboot_Upgrade cannot write to flash in 2.4.5: New flashrom fails with `-p internal:ich_spi_force=yes`. It should be fixed on version 0.28 Renato Botelho
10:14 AM Feature #8727 (Pull Request Review): Clone button in cron pkg: Jim Pingle
09:11 AM Feature #8727: Clone button in cron pkg: https://github.com/pfsense/FreeBSD-ports/pull/864 Viktor Gurov
09:35 AM Feature #9874 (Pull Request Review): safesearch enforcing: Jim Pingle

05/21/2020

04:23 PM Bug #9139: telegraf: add ping for default gateway(s): The current ping plugin works well for pinging external IPs, but it would be really nice if the local gateway(s) were... Ryan Jaeb
09:33 AM Bug #10444: FRR will not start in 2.4.5 aarch64: Jim Pingle wrote:
> Luiz told me he'd work on this
Any news on this? Really looking forward to getting my bgp ba... Zachary McGibbon
03:38 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: If someone need how-to, I wrote it here: https://www.reddit.com/r/PFSENSE/comments/gns3qr/haproxy_20_prometheus_monit... DRago_Angel [InV@DER]
03:10 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: OK:... Viktor Gurov
03:17 AM Bug #9635 (Resolved): lldpd (and probably ladvd) doesn't work on units with an integrated switch: tested on SG-1100 and XG-7100 - works as expected, lldpd uses the correct interfaces for integrated switches instead ... Viktor Gurov
01:29 AM Feature #9874: safesearch enforcing: Minor WebGUI fix:
https://github.com/pfsense/FreeBSD-ports/pull/863 Viktor Gurov

05/20/2020

12:41 PM Bug #10579 (Rejected): Blinkled segfaults with SEGV_MAPERR: Hello,
blinkled seem to segfault on my pfSense.... Kacper Boström
10:45 AM Feature #10500 (Resolved): Build HAProxy Package with buildin Prometheus exporter: Jim Pingle
10:30 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: Tested, build-in exporter works. Thank you. DRago_Angel [InV@DER]
07:41 AM Feature #10500 (Feedback): Build HAProxy Package with buildin Prometheus exporter: PR has been merged. Thanks! Renato Botelho
07:44 AM Bug #10572 (Feedback): STARTTLS option is ignored: PR has been merged. Thanks! Renato Botelho

05/19/2020

11:52 AM Bug #10573 (Resolved): Netgate_Coreboot_Upgrade cannot write to flash in 2.4.5: The adi_flash_util binary appears to be handing bad parameters to flashrom in pfSense 2.4.5.
It can read the flash... Steve Wheeler
10:16 AM Bug #10572 (Pull Request Review): STARTTLS option is ignored: Jim Pingle
08:46 AM Bug #10572: STARTTLS option is ignored: https://github.com/pfsense/FreeBSD-ports/pull/862 Viktor Gurov
08:44 AM Bug #10572 (Feedback): STARTTLS option is ignored: STARTTLS option ($usetls or "-ZZ") is never used as arg for _basic_ldap_auth_ Viktor Gurov
10:12 AM Feature #10570: OpenVPN Export for iOS should use .ovpn12 for certs and private key: If we change anything at all, it should only affect the Viscosity bundle export format. Nothing else.
If Apple uti... Jim Pingle
03:04 AM Feature #10570 (New): OpenVPN Export for iOS should use .ovpn12 for certs and private key: https://forum.netgate.com/topic/144204/openvpn-export-for-ios-should-use-ovpn12-for-certs-and-private-key:
Have a ... Viktor Gurov
08:39 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: Kilian Ries wrote:
> I'm also interested in the haproxy prometheus exporter - if you need a tester just let me know.... DRago_Angel [InV@DER]
07:34 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: I'm also interested in the haproxy prometheus exporter - if you need a tester just let me know... Kilian Ries
04:06 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: Hi @Viktor can I test it on my pfsense 2.4.5? And if yes - then how? I have System Patcher but doesn't know if it can... DRago_Angel [InV@DER]
03:57 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: https://github.com/pfsense/pfsense/pull/4320 Viktor Gurov
04:26 AM Feature #10571: Add zabbix-proxy50 and zabbix-agent50 packages: sorry, tried search before create ticket and doesn't saw this one. DRago_Angel [InV@DER]
04:15 AM Feature #10571 (Rejected): Add zabbix-proxy50 and zabbix-agent50 packages: duplicate of #10557 Viktor Gurov
04:09 AM Feature #10571 (Rejected): Add zabbix-proxy50 and zabbix-agent50 packages: Hi, there is some days ago was been released new version of Zabbix LTS 5.0, could you please add packages for it to p... DRago_Angel [InV@DER]
04:18 AM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246447 Viktor Gurov

05/18/2020

09:56 AM Feature #10479 (Feedback): Keep settings after deinstall option: PR has been merged. Thanks! Renato Botelho
09:56 AM Bug #9635 (Feedback): lldpd (and probably ladvd) doesn't work on units with an integrated switch: PR has been merged. Thanks! Renato Botelho

05/15/2020

01:52 PM Bug #7654 (Resolved): Can't use a LDAP search filter containing an accent: Supplied string is saved as expected and without error. Jim Pingle
11:11 AM Feature #10500 (Pull Request Review): Build HAProxy Package with buildin Prometheus exporter: Jim Pingle
10:57 AM Feature #10500: Build HAProxy Package with buildin Prometheus exporter: https://github.com/pfsense/FreeBSD-ports/pull/861 Viktor Gurov
08:35 AM Bug #9635 (Pull Request Review): lldpd (and probably ladvd) doesn't work on units with an integrated switch: Jim Pingle
08:34 AM Bug #10502 (Pull Request Review): LLDP spamming errors on Netgate XG-7100: Jim Pingle

05/14/2020

10:15 AM Bug #4497 (Resolved): Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!: Field is CDATA escaped in the config. Password @W!f!4c3ss.@ was saved without error and present in the config after. Jim Pingle
08:40 AM Bug #10502: LLDP spamming errors on Netgate XG-7100: https://github.com/pfsense/FreeBSD-ports/pull/860 Viktor Gurov
08:39 AM Bug #9635: lldpd (and probably ladvd) doesn't work on units with an integrated switch: https://github.com/pfsense/FreeBSD-ports/pull/860 Viktor Gurov
05:17 AM Bug #9635 (New): lldpd (and probably ladvd) doesn't work on units with an integrated switch: After I manually changed it to:
>
> After I manually changed it to:
> /usr/local/sbin/lldpd -l -I 'lagg0.4089' -C... Viktor Gurov
06:45 AM Feature #10557: Add Zabbix 5.0 LTS (agent and proxy) packages: The latest FreeBSD ports version is 4.4.7:
http://pkg.freebsd.org/freebsd:12:x86:64/latest/All/zabbix44-agent-4.4.7.... Viktor Gurov
05:31 AM Feature #10557 (Resolved): Add Zabbix 5.0 LTS (agent and proxy) packages: New release from zabbix. Please add this new version.
https://www.zabbix.com/rn/rn5.0.0 Pim Janssen

Also available in: Atom

Project

General

Profile

pfSense » pfSense Packages

Activity

Activity

06/11/2020

06/10/2020

06/09/2020

06/08/2020

06/06/2020

06/05/2020

06/04/2020

06/03/2020

06/01/2020

05/30/2020

05/29/2020

05/28/2020

05/27/2020

05/25/2020

05/24/2020

05/23/2020

05/22/2020

05/21/2020

05/20/2020

05/19/2020

05/18/2020

05/15/2020

05/14/2020