Project

General

Profile

Activity

From 07/22/2021 to 08/20/2021

08/20/2021

08:27 AM Bug #12286: Add support for ntlm_auth in LDAP
I don't think we want to even consider putting the samba package in even as a dependency. Too much potential for abuse. Jim Pingle
08:17 AM Bug #12286: Add support for ntlm_auth in LDAP
see also #10415 Viktor Gurov
08:11 AM Bug #12286: Add support for ntlm_auth in LDAP
The Samba package should be added to @/tools/conf/pfPorts/poudriere_bulk@ to fix this issue and implement Squid NTLM ... Viktor Gurov
07:10 AM Bug #12286 (New): Add support for ntlm_auth in LDAP
The FreeRADIUS Package currently provides LDAP Authorisation/Authentication.
Some vendors like Mikrotik uses only MS... Vladislav Kulikov
08:22 AM Feature #11531 (Feedback): Show netmap compatible cards in IPS Mode note
PR has been merged. Thanks! Renato Botelho
08:22 AM Feature #12285 (In Progress): Add more EVE Logged Traffic protocols
Reverted for now since it requires binary 6.x Renato Botelho
07:52 AM Feature #12285 (Feedback): Add more EVE Logged Traffic protocols
PR has been merged. Thanks! Renato Botelho
04:46 AM Feature #12285: Add more EVE Logged Traffic protocols
https://github.com/pfsense/FreeBSD-ports/pull/1095 Viktor Gurov
02:03 AM Feature #12285 (Resolved): Add more EVE Logged Traffic protocols
The current version of Suricata does not allow you to select the FTP, FTP_DATA, RFB and HTTP2 log types.
see https:/... Viktor Gurov
07:52 AM Bug #6964 (Feedback): Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
PR has been merged. Thanks! Renato Botelho
07:52 AM Feature #10872 (Feedback): Add adjustable notification for Severity Alert
PR has been merged. Thanks! Renato Botelho
06:04 AM Feature #10872: Add adjustable notification for Severity Alert
https://github.com/pfsense/FreeBSD-ports/pull/1096 Viktor Gurov
07:52 AM Feature #9852 (Feedback): show File-Store directory listing
PR has been merged. Thanks! Renato Botelho

08/19/2021

11:35 AM Bug #6964 (Pull Request Review): Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
Jim Pingle
10:57 AM Bug #6964: Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1094 Viktor Gurov
09:03 AM Feature #12281 (Pull Request Review): Add support for Telegram/Pushover notifications
Jim Pingle
08:43 AM Feature #12281: Add support for Telegram/Pushover notifications
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/121 Viktor Gurov
01:04 AM Feature #12281 (New): Add support for Telegram/Pushover notifications
NUT doesn't send notifications to a Telegram/Pushover backend, even when the Telegram/Pushover configuration is set u... Viktor Gurov
09:03 AM Bug #12264 (Pull Request Review): Stray <table> line in squid_monitor.php
Jim Pingle
06:48 AM Bug #12264: Stray <table> line in squid_monitor.php
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/120 Viktor Gurov
08:01 AM Feature #9852 (Pull Request Review): show File-Store directory listing
Jim Pingle
06:31 AM Feature #9852: show File-Store directory listing
https://github.com/pfsense/FreeBSD-ports/pull/1093 Viktor Gurov
07:13 AM Bug #12157: Snort exits with Signal 10 on 32bit ARM platforms
I've cherry-picked fixed snort to 21.05.1 Renato Botelho
05:55 AM Bug #11961 (Feedback): FRR OSPF add unwanted area 0 authentication to router ospf
PR has been merged. Thanks! Renato Botelho
05:54 AM Bug #12276 (Feedback): Incorrect OSPF/OSPF6 status links
PR has been merged. Thanks! Renato Botelho
05:52 AM Regression #12278 (Feedback): Invalid plugin_certificates() function name
PR has been merged. Thanks! Renato Botelho
05:49 AM Bug #12263 (Feedback): Snort package unable to save a new or edited Pass List when Language is set for anything other than English
PR merged Renato Botelho

08/18/2021

03:00 PM Regression #12278 (Pull Request Review): Invalid plugin_certificates() function name
Jim Pingle
07:33 AM Regression #12278: Invalid plugin_certificates() function name
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/119 Viktor Gurov
07:21 AM Regression #12278 (Resolved): Invalid plugin_certificates() function name
... Viktor Gurov
02:58 PM Bug #12276 (Pull Request Review): Incorrect OSPF/OSPF6 status links
Jim Pingle
05:48 AM Bug #12276: Incorrect OSPF/OSPF6 status links
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/118 Viktor Gurov
05:40 AM Bug #12276 (Resolved): Incorrect OSPF/OSPF6 status links
frr_ospf_areas.xml and frr_ospf_interfaces.xml contain `status_frr.php` link instead of `status_frr.php?protocol=ospf... Viktor Gurov
02:57 PM Bug #11961 (Pull Request Review): FRR OSPF add unwanted area 0 authentication to router ospf
Jim Pingle
05:46 AM Bug #11961: FRR OSPF add unwanted area 0 authentication to router ospf
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/117 Viktor Gurov
01:54 PM Bug #12157 (Resolved): Snort exits with Signal 10 on 32bit ARM platforms
This appears to be fixed. I've been running it for several days now and previously it would not run for longer than a... Steve Wheeler

08/16/2021

07:13 PM Bug #11135: HAproxy OCSP reponse crontab bug
I submitted a PR to backport Viktor's changes to the haproxy package as well: https://github.com/pfsense/FreeBSD-port... Daniel Kimsey
08:18 AM Bug #12263: Snort package unable to save a new or edited Pass List when Language is set for anything other than English
Pull Request #1091, posted here: https://github.com/pfsense/FreeBSD-ports/pull/1091, has been submitted to correct t... Bill Meeks
07:09 AM Bug #12263 (Resolved): Snort package unable to save a new or edited Pass List when Language is set for anything other than English
When the language on the firewall is set for any language other than English, it is not possible to save changes to a... Bill Meeks
07:48 AM Bug #12264 (Resolved): Stray <table> line in squid_monitor.php
There's a stray <table> opening element in the C-ICAP Virus Table section of /usr/local/www/squid_monitor.php
<tab... Matthew Fearnley

08/14/2021

12:00 PM Bug #12260 (Closed): Update popup and version missmatch?
Always showing popup in the corner about the available update, every refreshed page, no setting to disable it?
A new... Tomas Tom
11:52 AM Bug #12240 (Resolved): Syslog-ng does not remove logrotate.conf after disable
Tested on Syslog-ng 1.15_11. /usr/local/etc/logrotate.conf is removed after disabling the service. Marking the ticket... Max Leighton
11:08 AM Bug #12242 (Resolved): rc file is not deleted
Tested on NET-SNMP 0.1.5_9.
/usr/local/etc/rc.d/net-snmpd.sh and /usr/local/etc/rc.d/net-snmptrapd.sh are removed ... Max Leighton

08/13/2021

08:39 PM Bug #12251: Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Thanks. I ended up setting it to a high value, e.g. 86400 → luckman212
06:40 PM Bug #12258 (Resolved): Copy key buttons only work in HTTPS mode
Yes of course everyone should be using HTTPS all the time especially now with ACME being available, but sometimes wel... → luckman212
07:43 AM Feature #11531 (Pull Request Review): Show netmap compatible cards in IPS Mode note
Jim Pingle
02:07 AM Feature #11531: Show netmap compatible cards in IPS Mode note
https://github.com/pfsense/FreeBSD-ports/pull/1090 Viktor Gurov
02:26 AM Bug #7374 (Closed): Barnyard2 package has incomplete install when installed as Suricata depedency
Barnyard2 has been removed from both the Snort and Suricata packages. Viktor Gurov

08/12/2021

10:37 PM Bug #12251 (Confirmed): Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Restarting the service will work around this in the mean time Christian McDonald
08:21 PM Bug #12251 (Resolved): Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Wireguard pkg 0.1.5
pfSense+ 21.05.1
If "KeepAlive" is left empty, config is written as 30 seconds.
Descriptio... → luckman212
02:01 PM Todo #11033 (Closed): Update OpenVPN Client Export with OpenVPN 2.5.0 installer
Make a new issue for a new request. This was done months ago. Jim Pingle
01:58 PM Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer
Updating Subject as we need to update the OpenVPN Client Export package for 2.5.3, as it's currently on 2.5.2. Also ... Kris Phillips
08:55 AM Bug #12101: ArpWatch Suppression Mac for "flip-flop" not suppressing
I have updated to version 0.2.0_6 and still are getting flip-flop notifications. I have tried restarting the service ... Shaun Gause

08/11/2021

02:27 PM Bug #12157 (Feedback): Snort exits with Signal 10 on 32bit ARM platforms
Jim Pingle
01:37 PM Bug #12157: Snort exits with Signal 10 on 32bit ARM platforms
This should be fixed now as https://cgit.freebsd.org/ports/commit/?id=c2a4ab17ef5e44424f2b2e97e30a2fde437dcd8a hit up... Mateusz Guzik
11:39 AM Feature #12246 (Closed): Load a file into patch textarea
The only way of adding a new patch is to paste patch content on `Patch Contentx` text area. It would be useful to be... Renato Botelho
06:19 AM Bug #12242 (Feedback): rc file is not deleted
PR has been merged. Thanks! Renato Botelho
12:20 AM Bug #12242: rc file is not deleted
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/115 Viktor Gurov
12:03 AM Bug #12242 (Resolved): rc file is not deleted
After disabling the Net-SNMP and Net-SNMP trap daemon services, `/usr/local/etc/rc.d/net-snmpd.sh` and `/usr/local/et... Viktor Gurov
06:19 AM Bug #12240 (Feedback): Syslog-ng does not remove logrotate.conf after disable
PR has been merged. Thanks! Renato Botelho
06:13 AM Feature #9989 (Rejected): Add FreeBSD port and pfSense plugin for HoneyTrap
After internal discussion we decided to reject adding this to pfSense. This kind of software doesn't belong to a Fir... Renato Botelho

08/10/2021

10:55 AM Feature #11210: 3rd party rulesets
Tested fine here. Only issue I see is the @Delete@ button will remove the @Check MD5@ label as well. Also, when addin... Marcos M
09:16 AM Feature #11210 (Feedback): 3rd party rulesets
PR has been merged. Thanks! Renato Botelho
09:39 AM Bug #12240: Syslog-ng does not remove logrotate.conf after disable
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/113 Viktor Gurov
09:23 AM Bug #12240 (Resolved): Syslog-ng does not remove logrotate.conf after disable
@/usr/local/etc/logrotate.conf@ still exists after disabling Syslog-ng Viktor Gurov
09:25 AM Bug #12153 (Feedback): Incorrect Outgoing Network Interface on clean install
PR has been merged. Thanks! Renato Botelho
09:25 AM Bug #12167 (Feedback): BGP TCP setkey not set if neighbor is in peer group
PR has been merged. Thanks! Renato Botelho
09:23 AM Bug #12204 (Feedback): Certificate Manager page doesn't show Syslog-NG used certificates
PR has been merged. Thanks! Renato Botelho
09:18 AM Bug #12101 (Feedback): ArpWatch Suppression Mac for "flip-flop" not suppressing
PR has been merged. Thanks! Renato Botelho
09:16 AM Bug #7039 (Feedback): HAProxy backend configuration does not handle intermediate CAs properly
PR has been merged. Thanks! Renato Botelho

08/09/2021

05:56 PM Feature #11210: 3rd party rulesets
https://github.com/pfsense/FreeBSD-ports/pull/1089 Viktor Gurov
08:12 AM Bug #11965 (Resolved): Avahi service started twice by /etc/rc.start_package
Jim Pingle
07:53 AM Bug #11965: Avahi service started twice by /etc/rc.start_package
Solved. Thanks for looking into it. Steve Harrington

08/07/2021

08:52 PM Bug #12157 (Confirmed): Snort exits with Signal 10 on 32bit ARM platforms
I've confirmed this behavior on an SG-3100 on 21.05.1 once we fixed the Signal 11 issue in the above-linked redmine. ... Kris Phillips
03:30 PM Bug #11627 (Resolved): rc file is not deleted
Tested with arpwatch 0.2.0_5.
/usr/local/etc/rc.d/arpwatch.sh is removed after disabling the service. Marking the... Max Leighton

08/06/2021

11:54 PM Bug #12088 (Resolved): Setting Advertise Capability to ORF leads to invalid configuration preventing frr from starting
Working well. Marking as resolved. Marcos M
10:08 AM Bug #12220 (Rejected): BIND package missing in 2.6.0-DEVELOPMENT
The package is present on current snapshots. You have some issue locally on your firewall. This site is not for suppo... Jim Pingle
07:18 AM Bug #11780: Suricata package fails to prune suricata.log
related discussion:
https://forum.netgate.com/topic/165352/suricata-log-rotation-bug Viktor Gurov

08/05/2021

04:14 PM Bug #12220 (Rejected): BIND package missing in 2.6.0-DEVELOPMENT
After upgrading to 2.6.0-DEVELOPMENT there is no BIND package anymore. Bianco Veigel
02:11 PM Bug #12101 (Pull Request Review): ArpWatch Suppression Mac for "flip-flop" not suppressing
Jim Pingle
11:45 AM Bug #12101: ArpWatch Suppression Mac for "flip-flop" not suppressing
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/112 Viktor Gurov
10:54 AM Regression #12125 (Resolved): squidguard 1.16.18_19 conguration error
PR merged. Jim Pingle
10:49 AM Regression #12125 (Feedback): squidguard 1.16.18_19 conguration error
Merged Viktor Gurov
07:58 AM Regression #12125 (Pull Request Review): squidguard 1.16.18_19 conguration error
Jim Pingle
04:34 AM Regression #12125: squidguard 1.16.18_19 conguration error
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/111 Viktor Gurov
07:57 AM Bug #12204 (Pull Request Review): Certificate Manager page doesn't show Syslog-NG used certificates
Jim Pingle
02:35 AM Bug #12204: Certificate Manager page doesn't show Syslog-NG used certificates
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/110 Viktor Gurov

08/04/2021

11:50 AM Bug #12206 (Resolved): Certificate Manager page doesn't show Net-SNMP used certificates
On the system_certmanager.php page, you can see the "In Use" column which reflects the certificates used by IPsec/Ope... Viktor Gurov
11:48 AM Bug #12205 (Resolved): Certificate Manager page doesn't show Squid used certificates
On the system_certmanager.php page, you can see the "In Use" column which reflects the certificates used by IPsec/Ope... Viktor Gurov
11:47 AM Bug #12204 (Resolved): Certificate Manager page doesn't show Syslog-NG used certificates
On the system_certmanager.php page, you can see the "In Use" column which reflects the certificates used by IPsec/Ope... Viktor Gurov

08/02/2021

09:04 AM Bug #12188: client export breaks multi remote configurations
A patch was posted:
https://sourceforge.net/p/openvpn/mailman/openvpn-devel/thread/20210802133127.25000-1-gert%40gre... Pippin MMD
08:15 AM Bug #12188: client export breaks multi remote configurations
OpenVPN devs were/are aware of this and is currently being looked at.
Maybe a solution is near :)
 Pippin MMD
05:19 AM Bug #12188 (New): client export breaks multi remote configurations
https://forum.netgate.com/topic/165560/1-2-bug-client-export-openvpn-ras-udp-server
Hi,
as stated in above foru... Jens Groh

07/31/2021

06:50 PM Bug #12030: Startup Errors for Avahi Package
Tested in 21.05.1 and this is still a present error:
WARNING: No NSS support for mDNS detected, consider installin... Kris Phillips
12:52 PM Bug #11993 (Resolved): PHP error after disabling HAProxy
The issue was on the haproxy-devel 0.62_3 version.
Tested on the haproxy-devel 0.62_4 version. There are no any err... Danilo Zrenjanin
09:06 AM Regression #12143 (Resolved): frr 1.1.0_12 package won't save OSPF settings unless entry exists in OSPF Networks
Tested on the frr 1.1.0_13 package. It works fine.
The ticket can be resolved. Danilo Zrenjanin

07/30/2021

07:45 PM Bug #11847: Filters not applied to PEER Groups
Prefix filter is not showing up in configuration file if there is no added neighbor

router bgp 61000
no bgp ne... Alhusein Zawi
09:41 AM Bug #10867: squidGuard Package Hangs on Uninstall or Upgrade
Still seeing this in 21.05. The packahe reinstall process stops at Squidguard with:... Steve Wheeler
08:02 AM Feature #12179 (Confirmed): QEMU package
Currently, the qemu-guest-agent can be installed from the console. It works fine.
https://redmine.pfsense.org/issues... Danilo Zrenjanin
06:58 AM Bug #12178: WireGuard always shows 'Configuring WireGuard tunnels...done.' message on boot
easy fix, I can get that into next release Christian McDonald
03:32 AM Bug #12178 (New): WireGuard always shows 'Configuring WireGuard tunnels...done.' message on boot
WireGuard pkg always shows "Configuring WireGuard Tunnels...done." on boot, whether any tunnels are configured or not... Viktor Gurov
12:59 AM Todo #12175: Error after enable DHCP on Wiregurd
Great ! Yuri Weinstein
12:56 AM Todo #12175: Error after enable DHCP on Wiregurd
Yuri Weinstein wrote in #note-4:
> It’d be great to make this impossible to use then
see #12176 Viktor Gurov

07/29/2021

04:47 PM Bug #12088: Setting Advertise Capability to ORF leads to invalid configuration preventing frr from starting
fixed
selecting ORF (GUI) is added to configuration file :
neighbor 172.17.99.11 capability orf prefix-list b... Alhusein Zawi
01:13 PM Todo #12175: Error after enable DHCP on Wiregurd
It’d be great to make this impossible to use then Yuri Weinstein
01:00 PM Todo #12175: Error after enable DHCP on Wiregurd
Todo: Consider this case when working on improvements to base for better handling pseudo-interface types. Christian McDonald
12:56 PM Todo #12175 (Rejected): Error after enable DHCP on Wiregurd
This is not a bug. WireGuard is a layer3 tunnel. DHCP operates at layer2. Disable DHCP on your WireGuard interfaces.
... Christian McDonald
12:37 PM Todo #12175 (Rejected): Error after enable DHCP on Wiregurd
After enabling Wireguard DHCP server, I see error loading DHCP, red status and in the log php-fpm error:... Yuri Weinstein

07/28/2021

03:20 PM Bug #12167 (Pull Request Review): BGP TCP setkey not set if neighbor is in peer group
Jim Pingle
04:56 AM Bug #12167: BGP TCP setkey not set if neighbor is in peer group
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/109 Viktor Gurov
12:13 AM Feature #12165 (Duplicate): NTPsec
Is duplicate of #8149 Viktor Gurov

07/26/2021

12:44 PM Bug #12058: pfBlockerNG / "Cannot allocate memory" from Geo blocking IP list
Just a note: this wasn't a one-off. I get this email (just about?) every time I change some firewall setting. Sean McBride
12:33 PM Feature #11410: adding bpytop (former Bashtop)
This is highly unlikely to be added by Netgate staff -- someone in the community will need to create the package and ... Jim Pingle
12:32 PM Feature #12165: NTPsec
This is a completely different NTP package than what is in base, so either the base ntpd would need to be switched (u... Jim Pingle
08:51 AM Bug #12167 (Feedback): BGP TCP setkey not set if neighbor is in peer group
When a neighbor is a member of a peer group, with *FRR and setkey Bidirectional* enabled with a password, the setkey ... Chris Linstruth

07/25/2021

08:10 PM Feature #12165 (Duplicate): NTPsec

Some basic info here https://blog.ntpsec.org/2019/01/02/starting-nts.html, https://blog.ntpsec.org/2019/01/02/start... Sergei Shablovsky
05:50 PM Feature #11410: adding bpytop (former Bashtop)
Please, any news ? Sergei Shablovsky

07/24/2021

11:52 AM Bug #12074 (Resolved): Freeradius: Additional Information field descriptions swapped
Checked in FreeRADIUS 0.15.7_32. Looks good. The descriptions match the correct fields now. Marking the ticket resolved. Max Leighton

07/23/2021

03:27 PM Regression #12160 (Feedback): An invalid configuration is generated when choosing TLS as the default protocol
PR merged. Jim Pingle
03:22 PM Regression #12160 (Pull Request Review): An invalid configuration is generated when choosing TLS as the default protocol
Jim Pingle
09:37 AM Regression #12160: An invalid configuration is generated when choosing TLS as the default protocol
A "pull request":https://github.com/pfsense/FreeBSD-ports/pull/1087 has been created. Markus *
05:11 AM Regression #12160: An invalid configuration is generated when choosing TLS as the default protocol
A solution has been proposed "here":https://github.com/pfsense/FreeBSD-ports/commit/a5b1eda67c40592e14806a4a4bbdd946f... Markus *
05:07 AM Regression #12160 (Resolved): An invalid configuration is generated when choosing TLS as the default protocol
This regression was introduced by "this":https://github.com/pfsense/FreeBSD-ports/commit/a5b1eda67c40592e14806a4a4bbd... Markus *

07/22/2021

02:28 PM Bug #8454: Arpwatch package break email notifications from other sources
Ter Ted wrote in #note-11:
> It was very annoying, I don't understand why it can't be fixed.
Agree. It is always ... Beat Siegenthaler
10:02 AM Bug #12137 (Resolved): PHP error after rulesets update
Jim Pingle
09:50 AM Bug #12137: PHP error after rulesets update
This fix has been merged into both the RELEASE and DEVEL branches via pull request: https://github.com/pfsense/FreeB... Bill Meeks
09:45 AM Bug #12157 (Resolved): Snort exits with Signal 10 on 32bit ARM platforms
After enabling Snort it fails to start or crashes shortly after logging:... Steve Wheeler
05:53 AM Bug #12083 (Resolved): Lack of OSPF network input validation causes service startup error
Tested with the frr 1.1.0_13.
Input validation works fine. Danilo Zrenjanin
05:28 AM Bug #12080 (Resolved): Setting a route-map to redistribute in BGP leads to invalid configuration preventing frr from starting
Tested on the frr 1.1.0_13.
It works fine. Danilo Zrenjanin
 

Also available in: Atom