Activity
From 09/26/2021 to 10/25/2021
10/25/2021
-
12:31 PM Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset
- Just a quick update to let you know I've tested for this issue on the latest community release of OPNsense (21.7.3_3)...
-
10:02 AM Bug #11465 (Closed): Input validation does not prevent multiple conflicting WireGuard peers on a single tunnel from attempting to act as default route
-
07:26 AM Feature #11386 (Resolved): Add WireGuard tunneled networks to vpnaddresses list
- Tested on 21.05_p1 and on 22.01-DEVELOPMENT (built on Sun Oct 24 05:22:55 UTC 2021)
I see WireGuard tunnel network i...
10/24/2021
-
- Tested on 21.05.1 and 22.01-DEVELOPMENT (built on Sun Oct 24 05:22:55 UTC 2021)
I still see this Bug on 21.05.1 but ... -
- Tested on 21.05.1 and 22.01-DEVELOPMENT (built on Sun Oct 24 05:22:55 UTC 2021)
I see FreeRADIUS certificate in 'IN ... -
- Tested on 21.05.1 and 22.01-DEVELOPMENT (Squid: 0.4.45_5).
I saw SecuriteInfo.com ID in /usr/local/pkg/squid_antivir...
10/23/2021
-
06:36 AM Bug #11465: Input validation does not prevent multiple conflicting WireGuard peers on a single tunnel from attempting to act as default route
- This ticket can now be closed as the PR has been merged
10/22/2021
-
-
08:59 AM Bug #12482: Outdated doc links
- fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/140 -
- The HAProxy-devel package (based on haproxy 2.4.x) uses outdated doc links (haproxy 1.7):...
-
12:56 PM Bug #12142 (Resolved): XMLRPC replication target configuration
- Tested on the:...
-
- It's the same as the other linked issue. Adding that feature will solve this problem as the user could choose the oth...
-
- Some client needs to remove intermediate "ISRG Root X1" CA to allow legacy clients to work,
otherwise they will get ...
10/20/2021
-
-
- fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/137 -
- suricata 6.0.3_3 - works as expected
-
- fix:
https://github.com/pfsense/FreeBSD-ports/pull/1117
10/19/2021
-
01:54 PM Regression #12476: Suricata 6.0.3_3 Pass List ignores all single IPs
- I did not try intermediate versions between 6.0.0_14 and 6.0.3_3, just installed the latest, so I can't say when this...
-
- Edit: I have a 2100/21.05.1 with the latest Snort 4.1.4_3 and it doesn't have this issue.
-
- After upgrading pfSense-pkg-suricata from 6.0.0_14 to 6.0.3_3 all Pass List entries for single IPs are ignored and no...
-
07:24 AM Bug #12475 (Resolved): OpenVPN Client Export does not show certificate without private key
- When using the page https://<server>/vpn_openvpn_export.php to export an openvpn client config package only certifica...
-
05:21 AM Feature #12447: Acme add dnsapi dns_cpanel.sh
- How can I upgrade?
10/18/2021
-
- FWIW, just wanted to share updates I've made to my bandaid script. I found that 'head -c' usage on '/dev/urandom' lik...
-
- Christian McDonald wrote in #note-13:
> Thank you for the detailed report here. This is immensely helpful. I will co... -
-
- New providers all get added when we update ACME from upstream, we don't add them manually or separately like this, so...
-
05:48 AM Todo #12456 (Resolved): Remove zabbix 5.2 packages
- Max Leighton wrote in #note-3:
> I checked in
>
> 2.6.0-DEVELOPMENT (amd64)
> built on Sat Oct 16 05:24:35 UTC...
10/17/2021
-
- https://github.com/pfsense/FreeBSD-ports/pull/1114
10/16/2021
-
10:01 PM Bug #12381 (Rejected): mOTP with RADIUS drops the VPN connection after 60 minutes
- Jim Pingle wrote in #note-1:
> I don't think that's FreeRADIUS, but OpenVPN. IIRC OpenVPN defaults to reconnecting e... -
07:35 PM Feature #12465 (New): Add forwardfor advanced usecases
- By default haproxy creates new x-forward-for header and do not touch existing one. This could be found in documentati...
-
11:16 AM Bug #11887 (Resolved): Squid service starts twice by /etc/rc.start_packages
- Tested in:
22.01-DEVELOPMENT (amd64)
built on Wed Oct 13 05:25:11 UTC 2021
FreeBSD 12.2-STABLE
Squid: 0.4.45_5 ... -
- I checked in
2.6.0-DEVELOPMENT (amd64)
built on Sat Oct 16 05:24:35 UTC 2021
FreeBSD 12.2-STABLE
And see tha...
10/15/2021
-
09:37 PM Bug #11592: Node exporter can not read system statistics
- The issue is that in "node_collector v1.0.0":https://github.com/prometheus/node_exporter/blob/master/CHANGELOG.md#100...
-
- I submitted a PR to implement this option as I found one my clients needed it for a particular cert I was issuing.
P... -
08:56 PM Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset
- Ryan Roosa wrote in #note-12:
> Samuel Hanna wrote in #note-11:
> > The problem still persist on wireguard 0.1.5_1.... -
08:55 PM Bug #12399: WireGuard v0.1.5 - Tunnel Will Never Handshake Again After WAN Reset
- Thank you for the detailed report here. This is immensely helpful. I will continue to poke at this next week and repo...
-
- Samuel Hanna wrote in #note-11:
> The problem still persist on wireguard 0.1.5_1.
> even after changing the keys and ... -
06:44 PM Feature #12462 (Pull Request Review): Telegraf: Add "devfs" to ignore_fs
- The Netgate XG-1537 has the following disk paths at 100% utilization:
* /dev
* /var/dhcpd/dev
* /var/unbound/dev
...
10/14/2021
-
- Done
-
- zabbix 5.2 were removed from FreeBSD ports because they are unsupported by upstream. Remove pfSense packages as well
-
- no such issue with pfBlockerNG-devel 3.1.0 (fixed):...
-
- actual link:
https://download.dnscrypt.net/dnscrypt-resolvers/json/public-resolvers.json -
10/13/2021
-
- → luckman212 wrote in #note-3:
> Hmm, seems like 86400 is not a valid value after all. It got silently accepted but ... -
- Created PR 150 to resolve this.
Tested on local dev instance with HTTP only access and it fallsback, does a consol... -
- fix:
https://github.com/pfsense/FreeBSD-ports/pull/1113 -
- Hello,
Please add the following feature to the acme package:
https://github.com/acmesh-official/acme.sh/blob/mast...
10/11/2021
-
12:39 PM Bug #12444: ntopng throws errors when viewing single host
- https://redmine.pfsense.org/issues/11530 - same/same?
-
08:21 AM Bug #12126: freeradius3 0.15.7_31
- Ok thanks for the info.
Any chance to have freeradius3 package update for 2.5.2 release? -
08:14 AM Bug #12126: freeradius3 0.15.7_31
- This looks to be a bug in Freeradius 3.0.22. See the 3.0.23 release notes:
https://github.com/FreeRADIUS/freeradius-... -
10/09/2021
-
- Users have reports that when navigating to Hosts>Hosts and clicking to view a single host within the ntopNG settings ...
-
- No longer able to reproduce this in 22.01 of pfSense Plus. Closing as Resolved.
-
- Moving status back to Assigned as this hasn't been confirmed as fixed in updated package.
-
- The problem still persist on wireguard 0.1.5_1.
even after changing the keys and ports nothing seems to help.
wish ... -
01:41 PM Bug #4615: /var/logs/c-icap/server.log & access.log growing without being rotated
- Hi,
so I took a look: /var/log/c-icap/access.log - 272MB
the mentioned bugfix was meant for squid, I think?
... -
- https://forum.netgate.com/topic/167094/dnsbl-catagory-bug:
"I dunno if i'm doing something wrong but under Blacklist... -
-
- on clean install of 0.4.45_5 the default outgoing network interface shows as "Default (auto)" upon first visit to Ser...
-
- Dashboard widget for APCUPSD is available after installing and configuring package. Status, line voltage, load, batte...
-
- Viktor Gurov wrote in #note-6:
> You can try to apply the attached patch
No need to add this if version of haproxy w... -
- DRago_Angel [InV@DER] wrote in #note-3:
> Hi, this is serious CVE, and still no updates? Even it possible to workaro... -
- there is no
Alhusein Zawi wrote in #note-4:
> there is no option to add Telegram in Arpwatch page.
>
> Tested...
10/07/2021
-
09:42 AM Bug #12423: Dashboard shows "SQLite database missing, Force Reload DNSBL to recover!"
- Viktor, thanks for improving the error message. Two comments:
1. putting the full path might be even better. I assu... -
- fix:
https://github.com/pfsense/FreeBSD-ports/pull/1112 -
-
- https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/136
-
-
- fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/135 -
- transparent mode on bridge works fine on pfSense 2.6.0.a.20211006.2213 with net.link.bridge.pfil_bridge=1 and net.lin...
10/06/2021
-
- No worries, thanks for following up and letting us know. Those kinds of problems can be quite frustrating to track down.
-
04:54 AM Bug #12365: PFBlockerNG - Unbound fails to start 3.1.0
- Seems this was down to a hard to find memory problem that gave random errors.
Apologies -
07:02 AM Todo #12427 (New): ha-proxy: action order in the GUI is not keeped in the resulting ha-proxy configuration
- If there are (for example) 'Use Backend' and 'http-request redirect' actions are defined in the GUI in a specific ord...
10/04/2021
-
-
01:37 PM Bug #12424: OpenVPN silent install uses incorrect parameters
- https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/133
-
- The @.exe@ and @.msi@ installers require different parameters for a silent install. Currently, the same parameter is ...
10/03/2021
-
- See screenshot. The message tells to 'force reload' which I did, yet the error persists.
There's one post on the ... -
- Hi, here many points are still undone.
-
- Hi, this is serious CVE, and still no updates? Even it possible to workaround issue by adding own check, I sure most ...
10/02/2021
-
- Based on reviewing the bug report with OpenVPN there doesn't appear to be anything that needs to be done here. They'...
-
- Completed the following tests:
1. Installed pfBlockerNG-dev
2. Ran a force update and reload
3. Monitored loggin... -
- Jim Pingle wrote in #note-11:
> It's a package, not a part of the base system, so updates are not tied to any releas... -
- Tested with FRR 1.1.0_15
Looks to be fixed. The description only matches the interface that it is actually set on... -
- Submitted PR 19 (https://github.com/theonemcdonald/pfSense-pkg-WireGuard/pull/149).
Few queries on the PR regardin... -
- /usr/local/etc/rc.d/pimd.sh file is not deleted after disabling the service
10/01/2021
-
- Indeed increasing that has eliminated the "Cannot allocate memory" messages.
Could the error message be improved t... -
- How to resolve:...
-
- see the same error on SG-3100 with pfSense-21.09.r.20210923.2242 and pfBlockerNG-3.1.0:...
-
- fix:
https://github.com/pfsense/FreeBSD-ports/pull/1111 -
- You need to enable DoH/DoT Blocking and select entries in the DoH/DoT Blocking List, otherwise you'll see:...
09/29/2021
09/27/2021
-
- It's a package, not a part of the base system, so updates are not tied to any release.
It could be updated any tim... -
- php-fpm 52285 /status_services.php: The command '/usr/local/sbin/unbound -c /var/unbound/unbound.conf' returned exi...
Also available in: Atom