Project

General

Profile

Activity

From 06/12/2020 to 07/11/2020

07/11/2020

04:53 PM Bug #10760: pfSense BIND 9.14.12 server terminates due to assertion failure
Secondary question, is there is method to configure pfSense to auto-restart named on failure? Jeffrey Altman
04:34 PM Bug #10760: pfSense BIND 9.14.12 server terminates due to assertion failure
The assertion failure is in ns_client_error() which means that its impossible to file a reasonable report upstream wi... Jeffrey Altman
04:02 PM Bug #10760 (New): pfSense BIND 9.14.12 server terminates due to assertion failure
BIND is periodically terminating and not automatically restarted. The system log shows:
Jul 6 13:13:21 named 6... Jeffrey Altman
12:51 PM Feature #6831: Snort does not support aliases containing FQDN
It can be a one-time name resolution, like HAproxy ACL (network/url/urltable aliases),
see #9793 for example Viktor Gurov
12:33 PM Bug #10647 (Resolved): FRR BGP Advanced > Aggregated Addresses ignores ipv6 subnets
works as expected:... Viktor Gurov
12:24 PM Feature #10618 (Resolved): Set sysDescr the same as bsnmpd unless overriden with net-snmp
works as expected:... Viktor Gurov
07:46 AM Bug #10749: squid + captive portal authentication not working
I have same problem (WPAD + explicit Squid with Captive Portal authentication) since I update pfSense to 2.4.5 and sq... Christophe PLUMEL

07/10/2020

02:12 PM Bug #10330 (Feedback): BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
PR has been merged. Thanks! Renato Botelho
02:12 PM Bug #10445 (Feedback): BIND crashed when added RPZ. rpz is not a master or slave zone.
PR has been merged. Thanks! Renato Botelho
02:12 PM Bug #10506 (Feedback): Recursion not working on fresh BIND install
PR has been merged. Thanks! Renato Botelho
02:12 PM Bug #7271 (Feedback): Co-existence of unbound and BIND/named
PR has been merged. Thanks! Renato Botelho
02:04 PM Bug #10692 (Feedback): PIMD starts twice at boot
PR has been merged. Thanks! Renato Botelho
02:02 PM Feature #10725 (Feedback): Squid disable multiple login sessions
PR has been merged. Thanks! Renato Botelho
02:01 PM Bug #10737 (Feedback): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
PR has been merged. Thanks! Renato Botelho
02:00 PM Bug #10656 (Feedback): Acme letsencrypt doesn't change private key type
PR has been merged. Thanks! Renato Botelho
01:36 PM Feature #10753: Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Thanks for the insight. I've opened https://github.com/acmesh-official/acme.sh/issues/3038 which will hopefully lead... Howard Holm
12:55 PM Feature #10753: Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Has the new method been updated in acme.sh upstream? ( https://github.com/acmesh-official/acme.sh ) -- If not, it mus... Jim Pingle
12:48 PM Feature #10753 (Closed): Acme DNS-01 for Hurricane Electric needs to be updated for new dynamic update methods
Hurricane Electric has added (as of two days ago - see http://dns.he.net) dynamic DNS support for TXT records allow f... Howard Holm
10:11 AM Bug #10751: Incorrect syslog() params on Suricata 5 pkg
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/899 Viktor Gurov
09:58 AM Bug #10751 (Resolved): Incorrect syslog() params on Suricata 5 pkg
If you don't select any rules for the interface and click the "Save" button:... Viktor Gurov
07:45 AM Feature #10746 (Rejected): FRR OSPF network
What you describe is already possible in the current FRR GUI.
This site is not for support or diagnostic discussio... Jim Pingle
06:35 AM Bug #10749 (Resolved): squid + captive portal authentication not working
https://forum.netgate.com/topic/155148/squid-captive-portal-authentication:
Since the last update (2.4.5-RELEASE-p1)... Viktor Gurov

07/09/2020

11:54 PM Feature #10746 (Rejected): FRR OSPF network
Add feature to specify which network should be adverting to OSPF .
if I choose Route Redistribution (such as Conne... Alhusein Zawi
10:49 AM Bug #10741: Fails with CARP VIP Status - SQUID
Viktor Gurov wrote:
> squid pkg 0.4.44_28 on 2.4.5-p1 (clean install) - no such issue, HA works as expected
> it se... Thiago Orico
05:09 AM Bug #10741: Fails with CARP VIP Status - SQUID
squid pkg 0.4.44_28 on 2.4.5-p1 (clean install) - no such issue, HA works as expected
it seems something incorrect i... Viktor Gurov
07:59 AM Bug #10737 (Pull Request Review): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
Jim Pingle
01:29 AM Bug #10737: FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/897 Viktor Gurov
07:55 AM Todo #10419 (Closed): Update haproxy ports
Jim Pingle
03:07 AM Todo #10419: Update haproxy ports
All works fine on 2.0.14 DRago_Angel [InV@DER]

07/08/2020

10:12 PM Bug #10741 (Closed): Fails with CARP VIP Status - SQUID
Tests with CARP protocol, using CARP VIP option Squid status activated, the CARP IP type does not assume in the secon... Thiago Orico
05:04 AM Feature #10739 (Feedback): Update HAproxy-devel package to 2.2 and HAproxy to 2.0
Announced new stable version of HAproxy 2.2: https://www.haproxy.com/blog/announcing-haproxy-2-2/
There is bunch of ... DRago_Angel [InV@DER]

07/07/2020

11:51 PM Bug #10738 (Duplicate): ipsec apply issue
Duplicate of #10737 (and #10736) Jim Pingle
08:28 PM Bug #10738 (Duplicate): ipsec apply issue
Note: I suspect this is related to the fix for bug #10351 or related to the bug itself however it is marked resolved.... Andrew Johnson
02:43 PM Bug #10737 (Resolved): FRR attempts to cycle IPsec VTI interfaces even when disabled/not running
If FRR is installed but disabled or otherwise not running, @frr_ipsec_reload()@ will still attempt to send an FRR con... Jim Pingle
01:20 PM Bug #7271 (Pull Request Review): Co-existence of unbound and BIND/named
Jim Pingle
01:12 PM Bug #10507 (Pull Request Review): Unable to use forwarders
Jim Pingle
01:07 PM Bug #10506 (Pull Request Review): Recursion not working on fresh BIND install
Jim Pingle
12:57 PM Bug #10445 (Pull Request Review): BIND crashed when added RPZ. rpz is not a master or slave zone.
Jim Pingle
12:56 PM Bug #10330 (Pull Request Review): BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
Jim Pingle
12:43 PM Feature #10725 (Pull Request Review): Squid disable multiple login sessions
Jim Pingle
12:29 PM Bug #10692 (Pull Request Review): PIMD starts twice at boot
Jim Pingle

07/06/2020

02:39 PM Bug #10003: Visiting VPN > Apple IPsec Profile renders the navigation dropdown buttons useless
FYI- This is now moot on IPsec Profile Wizard pkg v 1.0, since it has been changed to use a traditional GUI page and ... Jim Pingle

07/05/2020

11:04 AM Bug #10688 (Resolved): Remove Zabbix 4.2 ports
removed from 2.4 and 2.5 repo Viktor Gurov
10:59 AM Bug #9813 (Resolved): Fails saving accountkeys if name contains non-English characters
Fixed in #10442 Viktor Gurov
10:55 AM Bug #7271: Co-existence of unbound and BIND/named
https://github.com/pfsense/FreeBSD-ports/pull/896 Viktor Gurov
10:40 AM Bug #8254 (Resolved): BIND, Register DHCP static mappings and Subzones
no such issue with 9.16_1, https://github.com/pfsense/FreeBSD-ports/blob/devel/dns/pfSense-pkg-bind/files/usr/local/p... Viktor Gurov
10:14 AM Bug #10507: Unable to use forwarders
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/895 Viktor Gurov
06:55 AM Bug #10506: Recursion not working on fresh BIND install
fix:
https://github.com/pfsense/FreeBSD-ports/pull/894 Viktor Gurov
06:10 AM Bug #10445: BIND crashed when added RPZ. rpz is not a master or slave zone.
Fixes:
https://github.com/pfsense/FreeBSD-ports/pull/893 Viktor Gurov
02:52 AM Bug #10330: BIND zone configuration displays wrong DS resource record with inline DNSSEC signing enabled
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/892 Viktor Gurov

07/04/2020

12:11 PM Bug #10693: pfSense Bind Zone Editor UI does not update zone serial number when a change is made
Viktor Gurov wrote:
> > The broken behavior is observed with Bind package 9.14_4
>
> did it work differently befo... Jeffrey Altman
11:47 AM Bug #10693: pfSense Bind Zone Editor UI does not update zone serial number when a change is made
> The broken behavior is observed with Bind package 9.14_4
did it work differently before?
you need to manually c... Viktor Gurov
12:06 PM Feature #8188 (Resolved): Support response policy zones in bind package
merged in 9.12 Viktor Gurov
04:28 AM Feature #10725: Squid disable multiple login sessions
https://github.com/pfsense/FreeBSD-ports/pull/891 Viktor Gurov
12:27 AM Feature #10725 (Resolved): Squid disable multiple login sessions
https://forum.netgate.com/topic/154741/squid-disable-multiple-sessions:
Hello, I want to set a server running pfsens... Viktor Gurov
04:04 AM Bug #10692: PIMD starts twice at boot
Viktor,
"many thanks!!"
I did install PIMD again and will test it as soon as the fix is in the snapshots
... Louis B
02:50 AM Bug #10692: PIMD starts twice at boot
Louis van Breda wrote:
> Hello,
>
> I just discoverd a critical error in the pfSense boot sequence.
> - Indepen... Viktor Gurov

07/03/2020

03:20 AM Feature #9852: show File-Store directory listing
+ https://www.joesandbox.com/
+ https://opentip.kaspersky.com/ Viktor Gurov

07/02/2020

09:15 AM Bug #10721 (Rejected): PHP Startup: Unable to load dynamic library 'readline.so'
That is not a bug, but a problem with your installation.
This site is not for support or diagnostic discussion.
... Jim Pingle
09:14 AM Bug #10721 (Rejected): PHP Startup: Unable to load dynamic library 'readline.so'
Crash report begins. Anonymous machine information:
amd64
11.2-RELEASE-p10
FreeBSD 11.2-RELEASE-p10 #9 4a2bfdce... Vincenzo Pace

06/29/2020

02:48 AM Bug #10700: not all VPN IPs added with vpnaddresses option
Suricata 4 PR:
https://github.com/pfsense/FreeBSD-ports/pull/889 Viktor Gurov

06/26/2020

01:29 PM Bug #10697 (Feedback): Missing New Line After NCP Parameter in Client Config
PR has been merged. Thanks! Renato Botelho
11:34 AM Bug #8688 (Feedback): Pass List Snort
PR has been merged. Thanks! Renato Botelho
11:32 AM Bug #10700 (Feedback): not all VPN IPs added with vpnaddresses option
PR has been merged. Thanks! Renato Botelho
11:30 AM Bug #10552 (Feedback): Typo in OpenBGPD's settings page
PR has been merged. Thanks! Renato Botelho

06/25/2020

01:11 PM Bug #10692: PIMD starts twice at boot
With "the patch emulated" (by stopping pimd, disabling and anabling interfaced, stating pimd again) it is working mor... Louis B
07:46 AM Bug #10700 (Pull Request Review): not all VPN IPs added with vpnaddresses option
Jim Pingle
05:19 AM Bug #10700: not all VPN IPs added with vpnaddresses option
https://github.com/pfsense/FreeBSD-ports/pull/888 Viktor Gurov
05:05 AM Bug #10700 (Resolved): not all VPN IPs added with vpnaddresses option
Suricata uses filter_get_vpns_list() to get vpnaddresses list
filter_get_vpns_list() returns only:
IPsec Mobile I... Viktor Gurov
07:45 AM Bug #10552 (Pull Request Review): Typo in OpenBGPD's settings page
Jim Pingle
05:00 AM Bug #10552: Typo in OpenBGPD's settings page
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/887 Viktor Gurov
07:40 AM Bug #10697 (Pull Request Review): Missing New Line After NCP Parameter in Client Config
Jim Pingle
01:31 AM Bug #10697: Missing New Line After NCP Parameter in Client Config
https://github.com/pfsense/FreeBSD-ports/pull/809 Viktor Gurov
01:31 AM Bug #10697 (Resolved): Missing New Line After NCP Parameter in Client Config
"auth alg" digest algorithm client config parameter is erroneously merged into the same config line as the "ncp-disab... Viktor Gurov
03:14 AM Bug #8688: Pass List Snort
Snort 3.x (pfSense 2.4.5) PR:
https://github.com/pfsense/FreeBSD-ports/pull/886 Viktor Gurov
02:56 AM Bug #10679 (Resolved): Squid reverse proxy CA cert without prv key
squid pkg 0.4.44_28 shows CA without private key on the Squid Reverse Proxy configuration page Viktor Gurov

06/24/2020

09:34 AM Feature #10689 (Feedback): Squid Reverse proxy IPv6 and HA support
PR has been merged. Thanks! Renato Botelho
09:34 AM Bug #10679 (Feedback): Squid reverse proxy CA cert without prv key
PR has been merged. Thanks! Renato Botelho
09:29 AM Bug #10688 (Feedback): Remove Zabbix 4.2 ports
PR has been merged. Thanks! Renato Botelho
09:23 AM Bug #10692: PIMD starts twice at boot
I solved the "no enabled vifs" issue by changing in menu pimd/interfaces/interface binding from default to "Always bi... Louis B
04:49 AM Bug #10692: PIMD starts twice at boot
Hello,
I did some tests in advance of this patch. I could do that by forcing a reread of the vifs by disabling and... Louis B
04:49 AM Bug #10695 (New): FreeRadius Accounting skipping MBs after reboot due to power down
I am running 2.4.5-RELEASE (amd64) version.
I am setting up Captive Portal with FreeRadius to limit users monthly qo... AbdElrahman Eid

06/23/2020

03:24 PM Bug #10693 (New): pfSense Bind Zone Editor UI does not update zone serial number when a change is made
/pkg_edit.php?xml=bind_zones.xml&act=edit&id=0
populates the "Serial" field with the serial number of the current... Jeffrey Altman
12:57 PM Bug #10692 (Confirmed): PIMD starts twice at boot
Hello,
I just discoverd a critical error in the pfSense boot sequence.
- Independed if you have enabled the PIMD... Louis B

06/22/2020

12:21 PM Feature #10689 (Pull Request Review): Squid Reverse proxy IPv6 and HA support
Jim Pingle
10:53 AM Feature #10689: Squid Reverse proxy IPv6 and HA support
https://github.com/pfsense/FreeBSD-ports/pull/885 Viktor Gurov
03:22 AM Feature #10689 (Resolved): Squid Reverse proxy IPv6 and HA support
allow to listen on IPv4/IPv6/IPv4+IPv6 interfaces, see #8887
and add ability to select CARP interfaces, see #5168 Viktor Gurov
07:29 AM Bug #10688 (Pull Request Review): Remove Zabbix 4.2 ports
Jim Pingle
07:11 AM Bug #10654 (Resolved): Whitelisted domains starting with a dot are ignored
pfSense-pkg-squid 0.4.44_27 - work as expected Viktor Gurov

06/21/2020

02:45 PM Bug #10688: Remove Zabbix 4.2 ports
https://github.com/pfsense/pfsense/pull/4365
https://github.com/pfsense/FreeBSD-ports/pull/884 Danilo Baio
02:42 PM Bug #10688 (Resolved): Remove Zabbix 4.2 ports
- Remove Zabbix 4.2 ports.
- Fix typos, reported on https://github.com/pfsense/FreeBSD-ports/pull/876
Zabbix 4.2 ... Danilo Baio

06/19/2020

09:10 AM Bug #10679 (Pull Request Review): Squid reverse proxy CA cert without prv key
Jim Pingle
09:05 AM Bug #10679: Squid reverse proxy CA cert without prv key
https://github.com/pfsense/FreeBSD-ports/pull/883 Viktor Gurov
08:55 AM Bug #10679 (Resolved): Squid reverse proxy CA cert without prv key
from https://forum.netgate.com/topic/154504/squid-0-4-44_26-cannot-select-external-ca-s
Currently is not possible to... Viktor Gurov
03:46 AM Feature #8727 (Resolved): Clone button in cron pkg
Cron 0.3.7_4 - works as expected Viktor Gurov
01:18 AM Feature #9765 (Resolved): Update iperf package to iperf3
pfSense 2.4.5 and 2.5 use iperf3
see also #10357 Viktor Gurov
01:12 AM Bug #10611 (Resolved): FRR applies file permissions to missing files
resolved in frr 0.6.6 Viktor Gurov
01:11 AM Bug #10657 (Resolved): FRR: AS-Path Filter doesn't work anymore
frr 0.6.6 generates a configuration with the correct as-path:... Viktor Gurov

06/18/2020

11:26 AM Bug #10673 (Rejected): Avahi interface list is missing interfaces
Avahi already shows all enabled interfaces
all you need to do is assign and enable the OpenVPN interface Viktor Gurov
10:23 AM Bug #10673 (Rejected): Avahi interface list is missing interfaces
In avahi_settings.php, there is a list of network interfaces. Mine shows LAN, DMZ, WAN2. The list is missing my "WA... Jeremy  99
09:00 AM Feature #10441 (Feedback): Integration of bfd daemon
PR has been merged. Thanks! Renato Botelho
08:45 AM Bug #10654 (Feedback): Whitelisted domains starting with a dot are ignored
PR has been merged. Thanks! Renato Botelho
08:42 AM Bug #10611 (Feedback): FRR applies file permissions to missing files
PR has been merged. Thanks! Renato Botelho
08:42 AM Bug #10657 (Feedback): FRR: AS-Path Filter doesn't work anymore
PR has been merged. Thanks! Renato Botelho

06/15/2020

10:00 AM Feature #10665 (Resolved): Manual OSPF neighbor definitions
OSPF interface modes "non-broadcast" and "point-to-miltipoint" rely on being able to manually define specific OSPF ne... Jim Pingle

06/12/2020

09:50 AM Bug #10656 (Pull Request Review): Acme letsencrypt doesn't change private key type
Jim Pingle
07:39 AM Bug #10656: Acme letsencrypt doesn't change private key type
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/881 Viktor Gurov
06:45 AM Bug #10656 (Confirmed): Acme letsencrypt doesn't change private key type
Right, got the same issue Viktor Gurov
05:56 AM Bug #10656: Acme letsencrypt doesn't change private key type
It isn't really a duplicate of that bug. The fallout of that bug sets up the conditions where you might want to chan... Howard Holm
12:23 AM Bug #10656 (Rejected): Acme letsencrypt doesn't change private key type
Duplicate of #10655
Please add any additional comments to that issue. Viktor Gurov
09:44 AM Bug #10654 (Pull Request Review): Whitelisted domains starting with a dot are ignored
Jim Pingle
06:48 AM Bug #10654: Whitelisted domains starting with a dot are ignored
Fix:
https://github.com/pfsense/FreeBSD-ports/pull/880 Viktor Gurov
09:42 AM Bug #10657 (Pull Request Review): FRR: AS-Path Filter doesn't work anymore
Jim Pingle
04:58 AM Bug #10657: FRR: AS-Path Filter doesn't work anymore
Correct, see http://docs.frrouting.org/en/latest/bgp.html#as-path-access-lists
Fix:
https://github.com/pfsense/Fr... Viktor Gurov
04:21 AM Bug #10657: FRR: AS-Path Filter doesn't work anymore
Syntax for as-path acl has changed in frr ...
Now it's ... Luki TJ
03:54 AM Bug #10657 (Resolved): FRR: AS-Path Filter doesn't work anymore
Hi,
after upgrade from 2.4.4_p3 to 2.4.5_p1 route-maps for BGP metric altering based on AS-Path match don't work a... Luki TJ
09:41 AM Bug #10655 (Resolved): ntopng fails with letsencrypt ECC certificates
If it works on the latest ntopng then it's already been fixed upstream. It may also be fixed by the newer OpenSSL on ... Jim Pingle
04:40 AM Bug #10655: ntopng fails with letsencrypt ECC certificates
It seems ntopng 3.8 issue, is the same error ERR_SSL_VERSION_OR_CIPHER_MISMATCH with EC-256 certificate
but there ... Viktor Gurov
09:40 AM Bug #8688 (Pull Request Review): Pass List Snort
Jim Pingle
01:38 AM Bug #8688: Pass List Snort
https://github.com/pfsense/FreeBSD-ports/pull/878
see also #10493 Viktor Gurov
07:12 AM Feature #10557 (Resolved): Add Zabbix 5.0 LTS (agent and proxy) packages
Renato Botelho
 

Also available in: Atom