Project

General

Profile

Activity

From 04/25/2021 to 05/24/2021

05/24/2021

07:40 AM Bug #11886 (Feedback): WireGuard: PHP error in vpn_wg_peers_edit.php
Jim Pingle
07:40 AM Bug #11892 (Feedback): WireGuard: dpinger does not start correctly on a WireGuard gateway at boot
Jim Pingle
07:35 AM Feature #11948 (Pull Request Review): ACME: Support specifying non-default port for nsupdate DNS validation method
Jim Pingle
07:34 AM Feature #11186 (Closed): Allow lo0/Loopback as a valid interface in OSPF/OSPF6
Jim Pingle
07:18 AM Bug #11950: Wireguard Package Errors and DNS problem
Christian McDonald wrote:
> I'm not able to replicate the DNS issue, but I might not be completely understanding you... RED SKULL
07:14 AM Bug #11950: Wireguard Package Errors and DNS problem
I'm not able to replicate the DNS issue, but I might not be completely understanding your configuration.
Can you t... Christian McDonald

05/23/2021

12:05 PM Bug #11950: Wireguard Package Errors and DNS problem
I actually caught the flock and fclose bugs last night and have them resolved. I will be submitting a PR tonight or t... Christian McDonald
08:22 AM Bug #11950 (Resolved): Wireguard Package Errors and DNS problem
Updated from Wireguard Package version 0.0.8 to 0.1.1 and receive the following error after every reboot:
@
Crash r... RED SKULL
08:19 AM Bug #11886: WireGuard: PHP error in vpn_wg_peers_edit.php
Fixed in https://github.com/pfsense/FreeBSD-ports/pull/1064 Christian McDonald
08:18 AM Bug #11892: WireGuard: dpinger does not start correctly on a WireGuard gateway at boot
Fixed in https://github.com/pfsense/FreeBSD-ports/pull/1064 Christian McDonald

05/22/2021

11:04 AM Bug #11525: pfsense 2.5.0 release version for vlan issue to suricata
# Does this happen only on VLAN interfaces; have you tried non-vlan interfaces?
# Are you using vmxnet3 or something... Marcos M

05/21/2021

09:56 PM Feature #11948 (Closed): ACME: Support specifying non-default port for nsupdate DNS validation method
Hi,
I've just submitted a new PR (https://github.com/pfsense/FreeBSD-ports/pull/1067) adding support for non-defau... Pablo Ruiz
09:43 PM Feature #11186: Allow lo0/Loopback as a valid interface in OSPF/OSPF6
lo0/Loopback is added as interface in OSPF Alhusein Zawi
05:30 AM Feature #11186 (Feedback): Allow lo0/Loopback as a valid interface in OSPF/OSPF6
Merged four month ago Viktor Gurov
11:56 AM Bug #11680 (Resolved): Saving HAProxy FrontEnd description with umlauts causes configuration restore
Tested on the latest development release.
haproxy-devel 0.62_3
All characters can be used in the description ... Danilo Zrenjanin
08:04 AM Feature #10739 (Pull Request Review): Update HAproxy-devel package to 2.2 and HAproxy to 2.0
Jim Pingle
05:04 AM Feature #10739: Update HAproxy-devel package to 2.2 and HAproxy to 2.0
http-after-response and http-request_replace-path actions support:
https://github.com/pfsense/FreeBSD-ports/pull/1070 Viktor Gurov
08:03 AM Bug #11491 (Pull Request Review): haproxy-devel v0.62_2 - startup error 'httpchk'
Jim Pingle
03:24 AM Bug #11491: haproxy-devel v0.62_2 - startup error 'httpchk'
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1069 Viktor Gurov
07:58 AM Feature #10779 (Pull Request Review): HAProxy SSL/TLS Compatibility Mode
Jim Pingle
12:21 AM Feature #10779 (New): HAProxy SSL/TLS Compatibility Mode
DRago_Angel [InV@DER] wrote:
> [...]
> Hi, need update to use ssl-min-ver & ssl-max-ver as mentioned at https://red... Viktor Gurov
05:28 AM Bug #11094 (Not a Bug): HAProxy Stick on SSL-Session-ID Doesn't Work
The Frontend type must be "ssl / https(TCP mode)" for this feature to work. Viktor Gurov

05/20/2021

01:44 PM Bug #11838: FRR ospf6d consumes all available memory+swap after an interface event
I reported this upstream to FRR: https://github.com/FRRouting/frr/issues/8711 Jim Pingle
11:29 AM Bug #11937 (Pull Request Review): HAproxy "Use Client-IP" option breaks Captive Portal
Jim Pingle
11:21 AM Bug #11937: HAproxy "Use Client-IP" option breaks Captive Portal
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1066 Viktor Gurov
07:19 AM Bug #11937: HAproxy "Use Client-IP" option breaks Captive Portal
That option is almost certainly incompatible with Captive Portal, but if there is a way to make it work, it would hav... Jim Pingle

05/19/2021

06:29 PM Bug #11937 (Feedback): HAproxy "Use Client-IP" option breaks Captive Portal
Devices can access https sites without authenticating via Captive portal.
Enabling 'Use Client-IP to connect to back... David Quinn
01:58 PM Bug #11822 (Feedback): Upgrade ClamAV to 0.103.2
clam-av is on the required version in pfSense Plus 21.05. This is expected to be the same in 2.5.2.
On 21.05:
... Kris Phillips
08:12 AM Bug #11936 (Incomplete): FRR does not connect BGP when using password
There isn't nearly enough information here to speculate about a cause. "It doesn't work" is not a complete bug report... Jim Pingle
08:09 AM Bug #11936 (Incomplete): FRR does not connect BGP when using password
Unsecured BGP sessions work fine, however password protected BGP sessions which previously worked fine no longer work... Clint Guillot
04:05 AM Bug #11575: OpenVPN clients cannot pass traffic when reconnecting using the same source port
Combined with the duplicate-cn option, this problem is actually pretty bad. (At least I suspect we're having the sam... Harm V

05/18/2021

01:39 PM Bug #10937: HAProxy frontend and backend entry limit
Error still present on 21.02.2 using haproxy-devel.
Tested on 21.09.a.20210517.0100 and the issue persists, but ph... Marcos M

05/17/2021

01:58 PM Feature #9238: Add support for Zerotier
Amy Nagle wrote:
> The pfSense-pkg-zerotier package's uninstall action removes zerotier from the rc.conf.local, so i... Gregory Moore
12:48 PM Feature #9238: Add support for Zerotier
The pfSense-pkg-zerotier package's uninstall action removes zerotier from the rc.conf.local, so it won't start automa... Amy Nagle
10:30 AM Feature #9238: Add support for Zerotier
Amy Nagle wrote:
> Just a warning to anyone doing an update from 2.4 to 2.5: make sure you don't have an interface a... Gregory Moore
08:11 AM Feature #9238: Add support for Zerotier
Just a warning to anyone doing an update from 2.4 to 2.5: make sure you don't have an interface assigned to any zerot... Amy Nagle
08:09 AM Feature #11931 (New): Add support for validating a domain's ownership via Google Cloud Cloud DNS
Add support for validating a domain's ownership via Google Cloud Cloud DNS.
Support for Google Cloud Cloud DNS is ... Alex Cazacu
07:40 AM Bug #11930 (Needs Patch): DHCPV6 does not work with L3 Interfaces (tun_wg)
Last I saw, WireGuard on FreeBSD did not support broadcast/multicast traffic yet. DHCPv6 may work on L3 interfaces bu... Jim Pingle
07:37 AM Bug #11618 (Closed): WireGuard using incorrect IPv6 tunnel address prefix length
Can be reopened if it still applies to the package. Jim Pingle
07:37 AM Bug #11585 (Closed): WireGuard kernel panic when changing peer port on assigned WireGuard interface
Can always be reopened if it's still a problem. Jim Pingle

05/16/2021

04:24 PM Bug #11930 (Needs Patch): DHCPV6 does not work with L3 Interfaces (tun_wg)
If i use the tun_wg interface with DHCPV6 to push prefixes to peers DHPCV6 stops:
@/services_dhcpv6.php: The comma... Dirk Steingäßer

05/15/2021

09:59 PM Bug #11618: WireGuard using incorrect IPv6 tunnel address prefix length
If still relevant, should be moved to the package support for the WG package in 2.6.0. This is no longer relevant fo... Kris Phillips
09:58 PM Bug #11585: WireGuard kernel panic when changing peer port on assigned WireGuard interface
This should be closed out or moved to the packages section for 2.6.0, if it is still reproducible with the package. ... Kris Phillips

05/10/2021

04:18 AM Bug #11802: FreeRADIUS sync
Hello,
as an idea to solve the different wishes of pfSense users, one could make the sections configurable per syn... Cullen Trey

05/09/2021

12:40 AM Bug #10933 (Resolved): Retired / Invalid IPv4 lists in pfBlockerNG
all these feeds are fixed in the latest versions of pfBlockerNG-devel Viktor Gurov

05/07/2021

09:12 AM Bug #11898 (Resolved): PHP error from apcupsd dashboard widget when battery is charging
Not clear exactly what led to this, but one of my systems running apcupsd had the following PHP error in its log:
... Jim Pingle

05/06/2021

07:23 AM Bug #11515 (Pull Request Review): node_exporter 0.18.1_1 - Unable to interact or start the service from web ui
Jim Pingle
12:34 AM Bug #11515: node_exporter 0.18.1_1 - Unable to interact or start the service from web ui
Joel Holveck wrote:
> I note at least two issues remaining.
>
> First, the config file is in @/usr/local/etc/rc.c... Viktor Gurov

05/05/2021

06:27 PM Bug #11892: WireGuard: dpinger does not start correctly on a WireGuard gateway at boot
Fixed internally, fix will be in next PR Christian McDonald
12:55 PM Bug #11892 (Resolved): WireGuard: dpinger does not start correctly on a WireGuard gateway at boot
With a WireGuard interface assigned and with a gateway set dpinger does not start correctly at boot. Instead it shows... Steve Wheeler
07:31 AM Bug #11887 (Pull Request Review): Squid service starts twice by /etc/rc.start_packages
Jim Pingle
02:05 AM Bug #11887: Squid service starts twice by /etc/rc.start_packages
caused by disabled SquidGuard service
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/89 Viktor Gurov
01:04 AM Bug #11887 (Resolved): Squid service starts twice by /etc/rc.start_packages
/etc/rc.start_packages starts squid twice:... Viktor Gurov
07:31 AM Bug #11889 (Pull Request Review): BIND starts twice by /etc/rc.start_packages
Jim Pingle
01:32 AM Bug #11889: BIND starts twice by /etc/rc.start_packages
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/88 Viktor Gurov
01:28 AM Bug #11889 (Resolved): BIND starts twice by /etc/rc.start_packages
/etc/rc.start_packages:... Viktor Gurov
07:30 AM Bug #11888 (Pull Request Review): FreeRADIUS starts twice by /etc/rc.start_packages
Jim Pingle
01:22 AM Bug #11888: FreeRADIUS starts twice by /etc/rc.start_packages
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/87 Viktor Gurov
01:08 AM Bug #11888 (Resolved): FreeRADIUS starts twice by /etc/rc.start_packages
/etc/rc.start_packages:... Viktor Gurov
07:26 AM Feature #11890: Browser-based "clientless" VPN
Unless something new has come up recently there aren't any reliable and actively developed open source browser-based ... Jim Pingle
05:51 AM Feature #11890 (New): Browser-based "clientless" VPN
I wanted to ask for a feature for a Web Browser clientless based VPN Portal, where I can activate a VPN with credenti... Tu Thach

05/04/2021

12:52 PM Bug #11886: WireGuard: PHP error in vpn_wg_peers_edit.php
This was resolved after the initial PR. Should be fixed in the next revision Christian McDonald
10:20 AM Bug #11886 (Resolved): WireGuard: PHP error in vpn_wg_peers_edit.php
When setting the allowed IPs on a peer as 0.0.0.0/0 only the following error is generated:... Steve Wheeler

05/03/2021

08:09 AM Bug #11878 (Pull Request Review): squidguard dependencies missing
Jim Pingle
06:56 AM Bug #11878: squidguard dependencies missing
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/85 Danilo Zrenjanin
12:31 AM Bug #11878 (Resolved): squidguard dependencies missing
pfSense-pkg-squidGuard must depend on pfSense-pkg-squid
https://forum.netgate.com/topic/158288/squidguard-dependen... Viktor Gurov
08:05 AM Bug #11173 (Pull Request Review): Status>Monitoring parameters are hidden by the interactive graph
Jim Pingle
07:48 AM Bug #11874 (Not a Bug): Squid allows entering an invalid IP address into the Bypass Proxy for These Source IPs field
Jim Pingle
07:48 AM Bug #11711 (Pull Request Review): New Squid Status Page Non-Functional
Jim Pingle
03:16 AM Feature #11879 (Closed): Add support for SSL.com ACME server
Read more:
https://www.ssl.com/blogs/sslcom-supports-acme-protocol-ssl-tls-certificate-automation/
https://www.ssl.... Viktor Gurov

05/02/2021

06:41 PM Bug #11173: Status>Monitoring parameters are hidden by the interactive graph
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/84 Marcos M
03:31 AM Bug #11874: Squid allows entering an invalid IP address into the Bypass Proxy for These Source IPs field
works as expected -
192168.44.aa or 888.88.888.8 - is invalid IP, but valid hostname Viktor Gurov
02:08 AM Bug #11711: New Squid Status Page Non-Functional
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/83 Viktor Gurov
12:13 AM Bug #11445 (Resolved): bgp as-path in wrong position
Viktor Gurov

05/01/2021

07:31 PM Bug #11532 (Resolved): LCDproc service is not disabled
Tested on 0.10.8_9. Once LCDProc is disabled, the file at /usr/local/etc/rc.d/lcdproc.sh is removed as expected. Mark... Max Leighton
04:41 PM Bug #11874: Squid allows entering an invalid IP address into the Bypass Proxy for These Source IPs field
That field also accepts aliases and (though it's not recommended) hostnames, so it isn't quite that simple. Jim Pingle
04:40 PM Bug #11874 (Not a Bug): Squid allows entering an invalid IP address into the Bypass Proxy for These Source IPs field
In Transparent Mode, Squid will allow entering an invalid IP address into the Bypass Proxy for These Source IPs field... Danilo Zrenjanin
03:02 PM Bug #11763: Traffic graphs refresh issue
Unable to reproduce on 21.02.2 Michael Spears
03:00 PM Bug #11445: bgp as-path in wrong position
fixed
router bgp 61000
no bgp network import-check
neighbor 192.168.1.99 remote-as 61000
neighbor 192.168.1.... Alhusein Zawi

04/30/2021

03:24 PM Bug #11543: SquidGuard 1.16.18_15 - returning wrong page
I´ve tested and when i try acess some page blocked , when i look to url is wrong
if i change this , its work.
So i´... Robson Ferreira

04/29/2021

11:14 AM Bug #11173: Status>Monitoring parameters are hidden by the interactive graph
Looks like it's due to the height property on `.svg.nvd3-svg`. Though some extra styling needs to be done to make it ... Marcos M
12:03 AM Feature #11295 (Pull Request Review): DNSBL IDN support
Viktor Gurov

04/27/2021

11:17 AM Todo #11845 (Resolved): Update OpenVPN client export installers to 2.5.2
Jim Pingle
11:12 AM Todo #11845: Update OpenVPN client export installers to 2.5.2
Jim Pingle wrote:
> Need to test that the Windows installer export buttons download a working executable installer w... Viktor Gurov
09:16 AM Bug #10436: softflowd no longer sends flow data after upgrade (v0.9.9_1 -> v1.0.0)
see:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=255206
https://github.com/irino/softflowd/issues/38
 Viktor Gurov
08:32 AM Bug #11756 (Pull Request Review): HaProxy does not transfer backend states during reload
Jim Pingle
05:19 AM Bug #11756: HaProxy does not transfer backend states during reload
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/82 Viktor Gurov
08:28 AM Bug #11847 (Pull Request Review): Filters not applied to PEER Groups
Jim Pingle
02:44 AM Bug #11847: Filters not applied to PEER Groups
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/81 Viktor Gurov
08:01 AM Bug #11853 (Duplicate): softflowd not sending flow data
Duplicate of #10436 Jim Pingle

04/26/2021

10:36 PM Bug #11853 (Duplicate): softflowd not sending flow data
No flows being exported from the firewall (as reported by capture on the firewall) and hence no flows being collected... Nigel Smith
07:53 AM Todo #11845: Update OpenVPN client export installers to 2.5.2
Need to test that the Windows installer export buttons download a working executable installer which installs the exp... Jim Pingle
 

Also available in: Atom