Project

General

Profile

Activity

From 08/07/2021 to 09/05/2021

09/05/2021

07:40 AM Bug #12204: Certificate Manager page doesn't show Syslog-NG used certificates
Danilo Zrenjanin wrote in #note-4:
> Tested on the:
> [...]
>
> The Certificate Manager didn't show Syslog-NG u... Viktor Gurov
12:57 AM Bug #12339: SyslogNG PHP errors after starting the service
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/125 Viktor Gurov
12:39 AM Bug #12030: Startup Errors for Avahi Package
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/124 Viktor Gurov

09/04/2021

09:01 PM Bug #12030: Startup Errors for Avahi Package
Error is still present in 21.09 BETA. Kris Phillips
03:49 PM Bug #12204: Certificate Manager page doesn't show Syslog-NG used certificates
Tested on the:... Danilo Zrenjanin
03:47 PM Bug #12339 (Resolved): SyslogNG PHP errors after starting the service
After starting the SyslogNG service the following PHP errors appear:... Danilo Zrenjanin
12:14 PM Bug #12276 (Resolved): Incorrect OSPF/OSPF6 status links
Checked in
2.6.0-DEVELOPMENT (amd64)
built on Sat Sep 04 01:10:11 EDT 2021
FreeBSD 12.2-STABLE
Looks good. The... Max Leighton
10:28 AM Feature #8362 (Closed): Snort and Suricata Package - Allow for changing URLs, Ports, and Protocols to allow for local Repo of Signature Updates
Merged Viktor Gurov
10:25 AM Feature #10425 (Resolved): upgrade ntopng to 4.0.0
pfSense 2.5.2 uses ntopng 4.2 Viktor Gurov

09/03/2021

08:59 PM Bug #12338: RRD Summary does not report data on 3100
There are some users on the forum who report that it will begin counting after some time passes, https://forum.netgat... Max Leighton
08:12 PM Bug #12338 (Resolved): RRD Summary does not report data on 3100
RRD Summary package version 2.0_1 does not report any data on 3100. Upon installing the package, 0 GB is reported on ... Max Leighton
11:58 AM Bug #12336: Include Extra Data Description Wrong
Jim Pingle wrote in #note-1:
> Just add a comment on the old one, no need for a whole new issue for that. I pushed a... Dustin Henning
11:57 AM Bug #12336: Include Extra Data Description Wrong
Of course I accidentally submitted this as a bug instead of.a correction. I thought I was in the pfsense docs sectio... Dustin Henning
11:56 AM Bug #12336 (Rejected): Include Extra Data Description Wrong
Just add a comment on the old one, no need for a whole new issue for that. I pushed a fix already. Jim Pingle
11:55 AM Bug #12336 (Rejected): Include Extra Data Description Wrong
After correction correction #12334, the explanation for "Include Extra Data" in the *Backup Options* section of https... Dustin Henning

09/02/2021

10:02 AM Bug #12330: pfBlockerNG devel creating invalid NAT rules on boot
https://github.com/pfsense/FreeBSD-ports/pull/1105 Viktor Gurov
05:28 AM Bug #12330 (Resolved): pfBlockerNG devel creating invalid NAT rules on boot
There were error(s) loading the rules: /tmp/rules.debug:309: could not parse host specification - The line in questio... Sietse van Zanen

09/01/2021

04:39 PM Feature #12329: Add optional floating firewall rules for IPv4 and IPv6
Update to the original description, the destination for IPv4 would be better if it were set to a single address `224.... Offstage Roller
02:51 PM Feature #12329 (New): Add optional floating firewall rules for IPv4 and IPv6
See this thread for reference:
https://forum.netgate.com/topic/166210/fe80-16-not-included-in-interface-networks
... Offstage Roller
11:08 AM Bug #11742: Blocking / Unblocking is not working correctly.
The Interface Settings page doesn't clear the @snort2c@ table after disabling Blocking mode,
and there is no special... Viktor Gurov
12:51 AM Bug #10693: pfSense Bind Zone Editor UI does not update zone serial number when a change is made
I have BIND version 9.16-11 package and pfSense version 2.5.2. Serial number not changing on Save zone. Andrzej Milewski

08/31/2021

11:57 AM Bug #12322: Suricata creates invalid HOME_NET entries
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1104 Viktor Gurov
11:54 AM Bug #12322 (Resolved): Suricata creates invalid HOME_NET entries
In some cases Suricata creates invalid ("Array()") entries in the HOME_NET variable on boot:... Viktor Gurov
07:35 AM Feature #11130 (Pull Request Review): FRR RIP support
Jim Pingle
07:28 AM Feature #12246 (Pull Request Review): Load a file into patch textarea
Jim Pingle

08/30/2021

04:54 PM Todo #12317: Suricata UI improvements
+ @ftp-data@ app parser
https://github.com/pfsense/FreeBSD-ports/pull/1103 Viktor Gurov
04:53 PM Todo #12317 (Resolved): Suricata UI improvements
Fixed: Incorrect entries sort order on the FILES page
Added: Link to Snort Rule Doc for "snort_*" rules on the suric... Viktor Gurov
03:51 PM Feature #11130: FRR RIP support
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/123 Viktor Gurov
03:50 PM Feature #12246: Load a file into patch textarea
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/122 Viktor Gurov

08/27/2021

12:51 AM Feature #12308 (New): Dynamicaly Update Firewall Aliases from OpenVPN LDAP Group membership of the connected user
I would like to propose a feature of dynamically update firewall aliases tables when a users connects to the openvpn ... Dimitris Frnty

08/24/2021

03:09 AM Bug #12126: freeradius3 0.15.7_31
Hi sorry for the delay.
I've used 0.15.7_32 package version and got the same behavior:
sql nas table is read but ... Alexis Pellicier

08/23/2021

10:11 AM Feature #12297 (Feedback): Suricata: show actual GID:SID rule on click
PR has been merged into devel branches. Thanks! Renato Botelho
08:16 AM Bug #12293 (Feedback): Resolve host via Reverse DNS looks shows IDN domains as punnycode
PR has been merged into devel branches. Thanks! Renato Botelho
08:16 AM Feature #10809 (Feedback): IDS/IPS - Notifications when new rule categories are released
PR has been merged into devel branches. Thanks! Renato Botelho
08:16 AM Feature #12292 (Feedback): GeoIP look on the Alerts, Blocked and Files pages
PR has been merged into devel branches. Thanks! Renato Botelho

08/22/2021

02:40 PM Feature #12297: Suricata: show actual GID:SID rule on click
https://github.com/pfsense/FreeBSD-ports/pull/1102 Viktor Gurov
02:38 PM Feature #12297 (Resolved): Suricata: show actual GID:SID rule on click
It would be helpful to see the actual rule affecting the alert via clicking on GID:SID on the Alert page. Viktor Gurov

08/21/2021

09:46 PM Bug #12251: Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Hmm, seems like 86400 is not a valid value after all. It got silently accepted but eventually caused the tunnel to fa... → luckman212
02:58 PM Bug #12293: Resolve host via Reverse DNS looks shows IDN domains as punnycode
https://github.com/pfsense/FreeBSD-ports/pull/1101 Viktor Gurov
09:29 AM Bug #12293 (Resolved): Resolve host via Reverse DNS looks shows IDN domains as punnycode
"Resolve host via Reverse DNS" shows IDN domains as punnycode,
i.e. "xn--80a1acny.xn--p1ai" instead of "почта.рф" Viktor Gurov
08:36 AM Feature #12292: GeoIP look on the Alerts, Blocked and Files pages
https://github.com/pfsense/FreeBSD-ports/pull/1100 Viktor Gurov
04:34 AM Feature #12292 (Resolved): GeoIP look on the Alerts, Blocked and Files pages
It would be nice to add a "glob" icon near SRC/DST IP to check Country, State, City, Latitude, Longitude via GeoIP se... Viktor Gurov
05:16 AM Feature #10809: IDS/IPS - Notifications when new rule categories are released
https://github.com/pfsense/FreeBSD-ports/pull/1099 Viktor Gurov

08/20/2021

08:27 AM Bug #12286: Add support for ntlm_auth in LDAP
I don't think we want to even consider putting the samba package in even as a dependency. Too much potential for abuse. Jim Pingle
08:17 AM Bug #12286: Add support for ntlm_auth in LDAP
see also #10415 Viktor Gurov
08:11 AM Bug #12286: Add support for ntlm_auth in LDAP
The Samba package should be added to @/tools/conf/pfPorts/poudriere_bulk@ to fix this issue and implement Squid NTLM ... Viktor Gurov
07:10 AM Bug #12286 (New): Add support for ntlm_auth in LDAP
The FreeRADIUS Package currently provides LDAP Authorisation/Authentication.
Some vendors like Mikrotik uses only MS... Vladislav Kulikov
08:22 AM Feature #11531 (Feedback): Show netmap compatible cards in IPS Mode note
PR has been merged. Thanks! Renato Botelho
08:22 AM Feature #12285 (In Progress): Add more EVE Logged Traffic protocols
Reverted for now since it requires binary 6.x Renato Botelho
07:52 AM Feature #12285 (Feedback): Add more EVE Logged Traffic protocols
PR has been merged. Thanks! Renato Botelho
04:46 AM Feature #12285: Add more EVE Logged Traffic protocols
https://github.com/pfsense/FreeBSD-ports/pull/1095 Viktor Gurov
02:03 AM Feature #12285 (Resolved): Add more EVE Logged Traffic protocols
The current version of Suricata does not allow you to select the FTP, FTP_DATA, RFB and HTTP2 log types.
see https:/... Viktor Gurov
07:52 AM Bug #6964 (Feedback): Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
PR has been merged. Thanks! Renato Botelho
07:52 AM Feature #10872 (Feedback): Add adjustable notification for Severity Alert
PR has been merged. Thanks! Renato Botelho
06:04 AM Feature #10872: Add adjustable notification for Severity Alert
https://github.com/pfsense/FreeBSD-ports/pull/1096 Viktor Gurov
07:52 AM Feature #9852 (Feedback): show File-Store directory listing
PR has been merged. Thanks! Renato Botelho

08/19/2021

11:35 AM Bug #6964 (Pull Request Review): Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
Jim Pingle
10:57 AM Bug #6964: Host OS Policy Assignment broken when using "Import" or "Aliases" buttons
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1094 Viktor Gurov
09:03 AM Feature #12281 (Pull Request Review): Add support for Telegram/Pushover notifications
Jim Pingle
08:43 AM Feature #12281: Add support for Telegram/Pushover notifications
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/121 Viktor Gurov
01:04 AM Feature #12281 (New): Add support for Telegram/Pushover notifications
NUT doesn't send notifications to a Telegram/Pushover backend, even when the Telegram/Pushover configuration is set u... Viktor Gurov
09:03 AM Bug #12264 (Pull Request Review): Stray <table> line in squid_monitor.php
Jim Pingle
06:48 AM Bug #12264: Stray <table> line in squid_monitor.php
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/120 Viktor Gurov
08:01 AM Feature #9852 (Pull Request Review): show File-Store directory listing
Jim Pingle
06:31 AM Feature #9852: show File-Store directory listing
https://github.com/pfsense/FreeBSD-ports/pull/1093 Viktor Gurov
07:13 AM Bug #12157: Snort exits with Signal 10 on 32bit ARM platforms
I've cherry-picked fixed snort to 21.05.1 Renato Botelho
05:55 AM Bug #11961 (Feedback): FRR OSPF add unwanted area 0 authentication to router ospf
PR has been merged. Thanks! Renato Botelho
05:54 AM Bug #12276 (Feedback): Incorrect OSPF/OSPF6 status links
PR has been merged. Thanks! Renato Botelho
05:52 AM Regression #12278 (Feedback): Invalid plugin_certificates() function name
PR has been merged. Thanks! Renato Botelho
05:49 AM Bug #12263 (Feedback): Snort package unable to save a new or edited Pass List when Language is set for anything other than English
PR merged Renato Botelho

08/18/2021

03:00 PM Regression #12278 (Pull Request Review): Invalid plugin_certificates() function name
Jim Pingle
07:33 AM Regression #12278: Invalid plugin_certificates() function name
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/119 Viktor Gurov
07:21 AM Regression #12278 (Resolved): Invalid plugin_certificates() function name
... Viktor Gurov
02:58 PM Bug #12276 (Pull Request Review): Incorrect OSPF/OSPF6 status links
Jim Pingle
05:48 AM Bug #12276: Incorrect OSPF/OSPF6 status links
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/118 Viktor Gurov
05:40 AM Bug #12276 (Resolved): Incorrect OSPF/OSPF6 status links
frr_ospf_areas.xml and frr_ospf_interfaces.xml contain `status_frr.php` link instead of `status_frr.php?protocol=ospf... Viktor Gurov
02:57 PM Bug #11961 (Pull Request Review): FRR OSPF add unwanted area 0 authentication to router ospf
Jim Pingle
05:46 AM Bug #11961: FRR OSPF add unwanted area 0 authentication to router ospf
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/117 Viktor Gurov
01:54 PM Bug #12157 (Resolved): Snort exits with Signal 10 on 32bit ARM platforms
This appears to be fixed. I've been running it for several days now and previously it would not run for longer than a... Steve Wheeler

08/16/2021

07:13 PM Bug #11135: HAproxy OCSP reponse crontab bug
I submitted a PR to backport Viktor's changes to the haproxy package as well: https://github.com/pfsense/FreeBSD-port... Daniel Kimsey
08:18 AM Bug #12263: Snort package unable to save a new or edited Pass List when Language is set for anything other than English
Pull Request #1091, posted here: https://github.com/pfsense/FreeBSD-ports/pull/1091, has been submitted to correct t... Bill Meeks
07:09 AM Bug #12263 (Resolved): Snort package unable to save a new or edited Pass List when Language is set for anything other than English
When the language on the firewall is set for any language other than English, it is not possible to save changes to a... Bill Meeks
07:48 AM Bug #12264 (Resolved): Stray <table> line in squid_monitor.php
There's a stray <table> opening element in the C-ICAP Virus Table section of /usr/local/www/squid_monitor.php
<tab... Matthew Fearnley

08/14/2021

12:00 PM Bug #12260 (Closed): Update popup and version missmatch?
Always showing popup in the corner about the available update, every refreshed page, no setting to disable it?
A new... Tomas Tom
11:52 AM Bug #12240 (Resolved): Syslog-ng does not remove logrotate.conf after disable
Tested on Syslog-ng 1.15_11. /usr/local/etc/logrotate.conf is removed after disabling the service. Marking the ticket... Max Leighton
11:08 AM Bug #12242 (Resolved): rc file is not deleted
Tested on NET-SNMP 0.1.5_9.
/usr/local/etc/rc.d/net-snmpd.sh and /usr/local/etc/rc.d/net-snmptrapd.sh are removed ... Max Leighton

08/13/2021

08:39 PM Bug #12251: Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Thanks. I ended up setting it to a high value, e.g. 86400 → luckman212
06:40 PM Bug #12258 (Resolved): Copy key buttons only work in HTTPS mode
Yes of course everyone should be using HTTPS all the time especially now with ACME being available, but sometimes wel... → luckman212
07:43 AM Feature #11531 (Pull Request Review): Show netmap compatible cards in IPS Mode note
Jim Pingle
02:07 AM Feature #11531: Show netmap compatible cards in IPS Mode note
https://github.com/pfsense/FreeBSD-ports/pull/1090 Viktor Gurov
02:26 AM Bug #7374 (Closed): Barnyard2 package has incomplete install when installed as Suricata depedency
Barnyard2 has been removed from both the Snort and Suricata packages. Viktor Gurov

08/12/2021

10:37 PM Bug #12251 (Confirmed): Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Restarting the service will work around this in the mean time Christian McDonald
08:21 PM Bug #12251 (Resolved): Wireguard 0.1.5 - ignores "KeepAlive" parameter if empty (instead of disabling)
Wireguard pkg 0.1.5
pfSense+ 21.05.1
If "KeepAlive" is left empty, config is written as 30 seconds.
Descriptio... → luckman212
02:01 PM Todo #11033 (Closed): Update OpenVPN Client Export with OpenVPN 2.5.0 installer
Make a new issue for a new request. This was done months ago. Jim Pingle
01:58 PM Todo #11033: Update OpenVPN Client Export with OpenVPN 2.5.0 installer
Updating Subject as we need to update the OpenVPN Client Export package for 2.5.3, as it's currently on 2.5.2. Also ... Kris Phillips
08:55 AM Bug #12101: ArpWatch Suppression Mac for "flip-flop" not suppressing
I have updated to version 0.2.0_6 and still are getting flip-flop notifications. I have tried restarting the service ... Shaun Gause

08/11/2021

02:27 PM Bug #12157 (Feedback): Snort exits with Signal 10 on 32bit ARM platforms
Jim Pingle
01:37 PM Bug #12157: Snort exits with Signal 10 on 32bit ARM platforms
This should be fixed now as https://cgit.freebsd.org/ports/commit/?id=c2a4ab17ef5e44424f2b2e97e30a2fde437dcd8a hit up... Mateusz Guzik
11:39 AM Feature #12246 (Closed): Load a file into patch textarea
The only way of adding a new patch is to paste patch content on `Patch Contentx` text area. It would be useful to be... Renato Botelho
06:19 AM Bug #12242 (Feedback): rc file is not deleted
PR has been merged. Thanks! Renato Botelho
12:20 AM Bug #12242: rc file is not deleted
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/115 Viktor Gurov
12:03 AM Bug #12242 (Resolved): rc file is not deleted
After disabling the Net-SNMP and Net-SNMP trap daemon services, `/usr/local/etc/rc.d/net-snmpd.sh` and `/usr/local/et... Viktor Gurov
06:19 AM Bug #12240 (Feedback): Syslog-ng does not remove logrotate.conf after disable
PR has been merged. Thanks! Renato Botelho
06:13 AM Feature #9989 (Rejected): Add FreeBSD port and pfSense plugin for HoneyTrap
After internal discussion we decided to reject adding this to pfSense. This kind of software doesn't belong to a Fir... Renato Botelho

08/10/2021

10:55 AM Feature #11210: 3rd party rulesets
Tested fine here. Only issue I see is the @Delete@ button will remove the @Check MD5@ label as well. Also, when addin... Marcos M
09:16 AM Feature #11210 (Feedback): 3rd party rulesets
PR has been merged. Thanks! Renato Botelho
09:39 AM Bug #12240: Syslog-ng does not remove logrotate.conf after disable
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/113 Viktor Gurov
09:23 AM Bug #12240 (Resolved): Syslog-ng does not remove logrotate.conf after disable
@/usr/local/etc/logrotate.conf@ still exists after disabling Syslog-ng Viktor Gurov
09:25 AM Bug #12153 (Feedback): Incorrect Outgoing Network Interface on clean install
PR has been merged. Thanks! Renato Botelho
09:25 AM Bug #12167 (Feedback): BGP TCP setkey not set if neighbor is in peer group
PR has been merged. Thanks! Renato Botelho
09:23 AM Bug #12204 (Feedback): Certificate Manager page doesn't show Syslog-NG used certificates
PR has been merged. Thanks! Renato Botelho
09:18 AM Bug #12101 (Feedback): ArpWatch Suppression Mac for "flip-flop" not suppressing
PR has been merged. Thanks! Renato Botelho
09:16 AM Bug #7039 (Feedback): HAProxy backend configuration does not handle intermediate CAs properly
PR has been merged. Thanks! Renato Botelho

08/09/2021

05:56 PM Feature #11210: 3rd party rulesets
https://github.com/pfsense/FreeBSD-ports/pull/1089 Viktor Gurov
08:12 AM Bug #11965 (Resolved): Avahi service started twice by /etc/rc.start_package
Jim Pingle
07:53 AM Bug #11965: Avahi service started twice by /etc/rc.start_package
Solved. Thanks for looking into it. Steve Harrington

08/07/2021

08:52 PM Bug #12157 (Confirmed): Snort exits with Signal 10 on 32bit ARM platforms
I've confirmed this behavior on an SG-3100 on 21.05.1 once we fixed the Signal 11 issue in the above-linked redmine. ... Kris Phillips
03:30 PM Bug #11627 (Resolved): rc file is not deleted
Tested with arpwatch 0.2.0_5.
/usr/local/etc/rc.d/arpwatch.sh is removed after disabling the service. Marking the... Max Leighton
 

Also available in: Atom