Project

General

Profile

Activity

From 02/01/2022 to 03/02/2022

03/02/2022

04:56 PM Bug #12891 (Resolved): Trailing space in Acme Account Keys "name" breaks UI functions
If any ACME account key is entered into the UI with a trailing space in the name, the pfSense UI becomes unable to ha... Karl Fife
02:05 PM Bug #10656 (Closed): Acme letsencrypt doesn't change private key type
Jim Pingle
02:05 PM Feature #11948 (Closed): ACME: Support specifying non-default port for nsupdate DNS validation method
Jim Pingle
02:03 PM Feature #11879 (Feedback): Add support for SSL.com ACME server
The latest version of the ACME package now includes the new CAs.
 Jim Pingle
02:02 PM Bug #12623 (Feedback): acme.sh package | DNS-ISPConfig settings
The fix for this is now in the latest ACME package. Please update and test it again to see if it works. Jim Pingle
02:01 PM Todo #12886 (Closed): Update acme.sh from upstream
No problems I can find so far. I picked it back to 22.01/2.6.0 for wider testing. Can tackle new issues as they come. Jim Pingle
08:37 AM Feature #12882: Add the option to specify CURLOPT_INTERFACE in pfBlockerNG IPv4/IPv6 lists
Sure thing! I'll close the other pull request, thanks! Charles Hamilton
06:10 AM Feature #12889 (New): FRR GUI add set ipv6 next-hop global
i need setup this. but frr webgui cant add
https://team-cymru.com/community-services/bogon-reference/bogon-refer... yon Liu

03/01/2022

08:56 PM Feature #12882: Add the option to specify CURLOPT_INTERFACE in pfBlockerNG IPv4/IPv6 lists
Thanks for the PR!
There isn't much development in "pfBlockerNG" as everything is taking place in "pfBlockerNG-devel... BBcan177 .
04:19 PM Todo #12886 (Feedback): Update acme.sh from upstream
Merged to devel and plus-devel for testing in snapshots. If it's OK there, can pick back to 22.01/2.6.0 Jim Pingle
09:58 AM Todo #12886 (Closed): Update acme.sh from upstream
It's been a while since the last upstream sync of acme.sh code and bringing in new providers. Need to sync up the for... Jim Pingle
12:45 PM Bug #12742 (Feedback): freeRADIUS virtual-server-default: modules dailycounter, monthlycounter, noresetcounter, expire_on_login in authorize section prevent virtual server from loading
Thank You!
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/4497706f404be238cdfc41dacc00678ab329e575
http... Viktor Gurov
07:20 AM Bug #12742: freeRADIUS virtual-server-default: modules dailycounter, monthlycounter, noresetcounter, expire_on_login in authorize section prevent virtual server from loading
For future reference:
https://github.com/FreeRADIUS/freeradius-server/blob/master/doc/antora/modules/raddb/pages/m... Jim Pingle
02:42 AM Bug #12844 (Feedback): Invalid title link in the apcupsd package dashboard widget
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/086e17ae29cf61d1c09e88167ae73df7877fcae4 Viktor Gurov

02/28/2022

01:53 PM Feature #12882 (Resolved): Add the option to specify CURLOPT_INTERFACE in pfBlockerNG IPv4/IPv6 lists
Sometimes it is desirable to tell cURL to use a specific interface when downloading IPv4/IPv6 pass/block lists. For e... Charles Hamilton

02/27/2022

10:47 PM Bug #11530: ntopng 4.2 needs to be updated to 4.3, Bug when accessing a host for details
I can reproduce this in VMs for both 2.5.2 and 2.6. I don't think the new 5.0 package for ntopng solved this and I th... Sish Kitane

02/25/2022

12:59 PM Bug #12802 (Resolved): OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
Tested on the:... Danilo Zrenjanin
10:49 AM Feature #12246 (Closed): Load a file into patch textarea
Works well, closing. Jim Pingle
07:43 AM Bug #12869 (Pull Request Review): Bind DNS Package AAAA filtering Broken on new ZFS Installs
Jim Pingle
05:52 AM Bug #12869: Bind DNS Package AAAA filtering Broken on new ZFS Installs
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/188 Viktor Gurov

02/24/2022

10:58 AM Bug #12869: Bind DNS Package AAAA filtering Broken on new ZFS Installs
Thread that discusses this is here
https://forum.netgate.com/topic/169742/bind-dns-package-aaaa-filtering-problem
 JohnPoz _
10:06 AM Bug #12869 (Resolved): Bind DNS Package AAAA filtering Broken on new ZFS Installs
Reference this older bug for some background (#10413)
This breaks again in newer installs with zfs file systems du... Dean Weimer
07:34 AM Todo #12865 (Pull Request Review): RRD Summary improvements
Jim Pingle
03:14 AM Todo #12865: RRD Summary improvements
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/187 Viktor Gurov
03:01 AM Todo #12865 (Resolved): RRD Summary improvements
1) Wrong period, mirror date displayed:... Viktor Gurov
07:18 AM Feature #12860: add mmc-utils package to all images
We already build @mmc-utils@ for Plus and it can be installed manually from the CLI. Trying to build a GUI around it ... Jim Pingle

02/23/2022

05:35 PM Feature #12860: add mmc-utils package to all images
This would be helpful/useful now that ZFS is the new default, and/or for folks who don't realize some packages are "r... Steve Y
04:44 PM Feature #12860 (New): add mmc-utils package to all images
Both Netgate & 3rd party hardware integrators are increasingly using eMMC components.
SATA (& historically SCSI) d... David Burns
11:51 AM Feature #12658: Adding prometheus metrics to darkstat
I see that the package made it to FreeBSD version 13:
https://freebsd.pkgs.org/13/freebsd-amd64/darkstat-3.0.721.p... Karim Elatov
07:11 AM Feature #12859 (Resolved): Add Zabbix 6.0 LTS (agent and proxy) packages
New LTS release from zabbix. Please add this new version.
https://www.zabbix.com/rn/rn6.0.0
Zabbix 3.0 is out of ... Pim Janssen

02/22/2022

07:46 AM Bug #12844 (Pull Request Review): Invalid title link in the apcupsd package dashboard widget
Jim Pingle

02/21/2022

10:40 AM Bug #12845: softflowd wrong vlan tag
similar to #9486 Viktor Gurov
10:13 AM Bug #12845 (New): softflowd wrong vlan tag
When I try to send information about the vlan through IPFIX or Netflow v9, the vlan tag is incorrectly entered in the... Semyon Poklad
03:03 AM Bug #12623: acme.sh package | DNS-ISPConfig settings
Still an issue after updating to Acme 0.6.10_1 Morten Trab
12:11 AM Bug #12844: Invalid title link in the apcupsd package dashboard widget
fix:
https://github.com/pfsense/FreeBSD-ports/pull/1110 Viktor Gurov
12:11 AM Bug #12844 (Resolved): Invalid title link in the apcupsd package dashboard widget
clicking on the widget title results in an error:
https://192.168.1.1/apcupsd.widget.php - 404 not found
 Viktor Gurov

02/18/2022

10:47 AM Bug #12822: IPv4 Source ASN format not working
Thanks for the report.
I think the issue is prefixing the input selection with with "AS" or "as".
The ASN list... BBcan177 .
04:09 AM Bug #12822 (Confirmed): IPv4 Source ASN format not working
On the new pfSense release 2.6 / 22.01 pfBlockerNG devel (3.1.0_1), the web page hangs when defining ASN with the cho... Danilo Zrenjanin
10:25 AM Bug #12815 (Resolved): invalid IPv6 ACCEPTFILTER prefix-list
Viktor Gurov
10:18 AM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
Will do when/if i need it, for now I consider the issue resolved =) beermount beermount
10:12 AM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
beermount beermount wrote in #note-9:
> This patch works for me, mainly because it removes the ipv6 protocol lines. ... Viktor Gurov
10:02 AM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
This patch works for me, mainly because it removes the ipv6 protocol lines. The commit does seem to cover if Accept F... beermount beermount
08:27 AM Bug #12815 (Feedback): invalid IPv6 ACCEPTFILTER prefix-list
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/57918af9a19a9bec4ea8ca080f46c16517eeda7a Viktor Gurov
07:48 AM Bug #12815 (Pull Request Review): invalid IPv6 ACCEPTFILTER prefix-list
Jim Pingle
10:08 AM Bug #12820 (Resolved): Global Route Handling should use ipv6 route
Viktor Gurov
09:55 AM Bug #12820: Global Route Handling should use ipv6 route
Verified frr now produces the expected configuration. beermount beermount
08:27 AM Bug #12820 (Feedback): Global Route Handling should use ipv6 route
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/1bc9946a6ceb2430bf28d141fd98f20dd46a979a Viktor Gurov
07:49 AM Bug #12820 (Pull Request Review): Global Route Handling should use ipv6 route
Jim Pingle

02/17/2022

11:58 PM Bug #12820: Global Route Handling should use ipv6 route
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/185 Viktor Gurov
01:25 PM Bug #12820 (Resolved): Global Route Handling should use ipv6 route
When adding static routes in Global Settings -> Route Handling. IPv6 routes are added with "ip route" I believe this ... beermount beermount
11:43 PM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
beermount beermount wrote in #note-5:
> Viktor Gurov wrote in #note-4:
> > Merged:
> > https://github.com/pfsense/... Viktor Gurov
02:01 PM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
Viktor Gurov wrote in #note-4:
> Merged:
> https://github.com/pfsense/FreeBSD-ports/commit/a787a92965fb73f4d9625182... beermount beermount
10:00 AM Bug #12815 (Feedback): invalid IPv6 ACCEPTFILTER prefix-list
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/a787a92965fb73f4d9625182238f79cd960b06c2 Viktor Gurov
07:56 AM Bug #12815 (Pull Request Review): invalid IPv6 ACCEPTFILTER prefix-list
Jim Pingle
07:04 AM Bug #12815: invalid IPv6 ACCEPTFILTER prefix-list
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/182 Viktor Gurov
06:41 AM Bug #12815 (Resolved): invalid IPv6 ACCEPTFILTER prefix-list
frr code does not create correct IPv6 prefix-list for IPv6 ACCEPTFILTER entries and does not have explicit 'permit an... Viktor Gurov
10:01 AM Bug #12818 (Resolved): IP block logging not working
On the new pfSense release 2.6 / 22.01 pfBlockerNG isn't logging.
The developer has released a patch below
https:... Christopher Cope
08:24 AM Bug #12475: OpenVPN Client Export does not show certificate without private key
This change has caused yet another problem with exporting certificates from server_tls_user mode.
Two things I not... Jonathan Herlin
07:56 AM Bug #12814 (Pull Request Review): OpenVPN Client Import does not populate 'remote_cert_tls' option
Jim Pingle
06:01 AM Bug #12814: OpenVPN Client Import does not populate 'remote_cert_tls' option
fix:
https://gitlab.netgate.com/pfSense/factory-ports/-/merge_requests/48 Viktor Gurov
05:50 AM Bug #12814 (Resolved): OpenVPN Client Import does not populate 'remote_cert_tls' option
https://redmine.pfsense.org/issues/11865 introduced 'remote_cert_tls' option,
and if the imported .ovpn file contain... Viktor Gurov

02/16/2022

06:09 PM Feature #12812 (New): Would it be helpful if the FreeBSD net-mgmt/arpwatch port had an option to use mail/dma for mail delivery?
Currently arpwatch under pfsense uses a php script to emulate /usr/sbin/sendmail. If I added a port option to use mai... Craig Leres
09:28 AM Bug #12808: Wireguard Gateways disabled when Wireguard Service is Manually Restarted
I'm not able to reproduce this either. Can you post some redacted screenshots of your exact configuration? Christian McDonald
08:55 AM Bug #12808: Wireguard Gateways disabled when Wireguard Service is Manually Restarted
was testing done with multiple WG gateway groups like in aforementioned setup? Just FYI, WG tunnels had monitor IPs t... RED SKULL
08:51 AM Bug #12808 (Feedback): Wireguard Gateways disabled when Wireguard Service is Manually Restarted
Viktor Gurov
08:51 AM Bug #12808: Wireguard Gateways disabled when Wireguard Service is Manually Restarted
Unable to reproduce -
wireguard gateways works as expected after:
1) Restarting the Wireguard service on the Status... Viktor Gurov
04:46 AM Bug #12808: Wireguard Gateways disabled when Wireguard Service is Manually Restarted
This issue specifically occurs on PfSense 2.6 CE final release.
Once gateways are manually re-enabled, you can see t... RED SKULL
04:45 AM Bug #12808 (Resolved): Wireguard Gateways disabled when Wireguard Service is Manually Restarted
If the wireguard service is manually restarted at any time after boot, Wireguard gateways are automatically disabled ... RED SKULL
08:32 AM Bug #12802 (Feedback): OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
Merged
fixed in OpenVPN Client Export 1.0 Viktor Gurov
07:21 AM Bug #12802 (Pull Request Review): OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
MR: https://gitlab.netgate.com/pfSense/factory-ports/-/merge_requests/47 Jim Pingle
12:54 AM Bug #12802: OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
from man openvpn(5):... Viktor Gurov
06:51 AM Bug #12758 (Resolved): Route Handling Subnet field Input check
Tested on:... Danilo Zrenjanin

02/15/2022

08:15 PM Bug #12802: OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
Jim Pingle wrote in #note-1:
> Without seeing the configuration you imported it's hard to say what might have happene... cromo cromo
02:43 PM Bug #12802: OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
If you go to Diagnostics > Backup/Restore on the Config History tab and do a diff on the config entries before/after ... Jim Pingle
01:34 PM Bug #12802 (Resolved): OpenVPN client imported using Client Import works until first time editing and saving settings (SHA1 replaced with SHA256)
_*Disclaimer: You don't have a "OpenVPN Client Importer" category in your tracker, so I used OpenVPN Client Export*_
... cromo cromo
05:26 PM Todo #12806 (Closed): Update node_exporter to 1.3.1
Sorry if this isn't the right place to ask. I wasn't sure if pfSense published package updates separate from their ba... Logan Marchione
10:48 AM Feature #12718 (Feedback): add igc(4) to the list of INLINE mode (iflib/netmap) supported cards
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/e2470a23ca412103588c3c969d843311e0ef522a Viktor Gurov
10:47 AM Feature #12719 (Feedback): add igc(4) to the list of INLINE mode (iflib/netmap) supported cards
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/eaec5586b141176f90836135899eac5fb95e6013 Viktor Gurov
10:47 AM Bug #12739 (Feedback): Passlist generates invalid Virtual IP subnets
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/fec9c89964c53672bc930479209a8fdb24beeff9 Viktor Gurov
10:47 AM Bug #12683 (Feedback): snort_get_vpns_list() does not include OpenVPN CSO
Merged:
https://github.com/pfsense/FreeBSD-ports/commit/bf49577abfb4dac2d3bd73e0371ded9341ce1b93 Viktor Gurov
03:18 AM Feature #11931 (New): Add support for validating a domain's ownership via Google Cloud Cloud DNS
Viktor Gurov
03:10 AM Feature #11931 (Duplicate): Add support for validating a domain's ownership via Google Cloud Cloud DNS
see also #9200 Viktor Gurov
03:16 AM Todo #9200: Add DNS support for Google domain to Acme manager
Kyle Klouzal wrote in #note-6:
> Google DNS is different from Google Domains. +1 for Google Domain support here..
se... Viktor Gurov
03:10 AM Bug #12799 (Duplicate): Missing ACME DNS Providers
Duplicate of #11931 Viktor Gurov
03:00 AM Feature #12795: Add *.pfsense.org and *.netgate.com to the default DNSBL whitelist
https://github.com/pfsense/FreeBSD-ports/pull/1143 Viktor Gurov

02/14/2022

09:31 PM Bug #12799 (Duplicate): Missing ACME DNS Providers
Looking through the source I noticed there is support for some DNS providers that don't appear in the UI.
For exam... Robert Accettura
10:39 AM Bug #12777 (Feedback): STunnel writes config.xml on each start
Merged to devel:
https://github.com/pfsense/FreeBSD-ports/commit/f27121710f8e501abe88e18bd3d59093b7b8d99b Viktor Gurov
10:39 AM Bug #12772 (Feedback): Syslog-ng writes config.xml on each start
Merged to devel:
https://github.com/pfsense/FreeBSD-ports/commit/b3ed6fd6dfff4033f72b23894f9d700cb21ff08e Viktor Gurov
10:39 AM Bug #12765 (Feedback): AutoConfigBackup should ignore Lightsquid/lightparser cron changes
Merged to devel:
https://github.com/pfsense/FreeBSD-ports/commit/f8656656e3971935fb69f09813574f4aa2fd0537 Viktor Gurov
10:38 AM Bug #12758 (Feedback): Route Handling Subnet field Input check
Merged to devel:
https://github.com/pfsense/FreeBSD-ports/commit/d9e9265677cc33267a889452ef3bd6e8ac5dd960 Viktor Gurov
10:38 AM Bug #11686: FRR generated ACCEPTFILTER permit statement broken
Merged to devel:
https://github.com/pfsense/FreeBSD-ports/commit/220928e87798109137caee263c4cb60338298576 Viktor Gurov
03:07 AM Bug #11686 (Resolved): FRR generated ACCEPTFILTER permit statement broken
Tested on 22.01-RELEASE (built on Mon Feb 07 16:37:59 UTC 2022) with patch applied.
I see correct ACL sequence now... Azamat Khakimyanov
09:37 AM Feature #12795 (Resolved): Add *.pfsense.org and *.netgate.com to the default DNSBL whitelist
To prevent blocking the system update/pkg install if for some reason these domains are in DNSBL feeds Viktor Gurov
09:20 AM Feature #12789: Show expiration date of certificates in the ACME package list
The GUI shows the expiration date in the cert manager but the ACME package always shows the last renewal time which i... Jim Pingle
07:20 AM Bug #11836: FRR ACCEPTFILTER shows out of order prefix-list
It looks to me like, with the patch, the "seq xx" numbering has been corrected so that the "permit any" is always the... Matthew D
06:11 AM Bug #11836 (Assigned): FRR ACCEPTFILTER shows out of order prefix-list
Tested on 22.01-RELEASE (built on Mon Feb 07 16:37:59 UTC 2022) with patch from Bug #11686 applied.
I still see th... Azamat Khakimyanov

02/12/2022

05:14 PM Feature #12789 (Resolved): Show expiration date of certificates in the ACME package list
Acme certificates shows when a cert was issued. It would be far more useful if it displayed when a cert is going to ... adam felson
11:26 AM Bug #12386 (Resolved): ```bgp as-path``` and ```bgp community-list``` are present in configuration even when BGP daemon is not enabled
Tested:... Danilo Zrenjanin
01:57 AM Bug #12670 (Resolved): ACME package writes credentials to system log
Tested against:... Danilo Zrenjanin

02/11/2022

03:30 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
I guess we'll just have to agree to disagree. I don't think it should be there and I don't think there is a way to co... Aaron Shaffer
03:20 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
It's there because for most use cases of the package users cannot login to the GUI to set their own MFA information. ... Jim Pingle
03:11 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
Security by obscurity is not security. I totally agree with you and I read the link before replying to you.
What ... Aaron Shaffer
02:57 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
Security by obscurity is not security. See my previous link. Jim Pingle
02:53 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
I think you're missing the point. I am not concerned with config.xml nor with password fields, nor did I mention them... Aaron Shaffer
02:18 PM Bug #12786 (Not a Bug): MFA auth allows reveal of other admins PIN and INIT-SECRET
Password field content is already hidden from the GUI when the fields are defined as a password type, but if the admi... Jim Pingle
02:05 PM Bug #12786: MFA auth allows reveal of other admins PIN and INIT-SECRET
Relevant: https://forum.netgate.com/topic/135424/solved-two-factor-authentication-for-admin-login/6 Aaron Shaffer
02:00 PM Bug #12786 (Not a Bug): MFA auth allows reveal of other admins PIN and INIT-SECRET
I have MFA working in pfSense with Google Authenticator but I just noticed what I consider to me a major security fla... Aaron Shaffer
11:27 AM Bug #11036: HAproxy ACL
related to https://github.com/pfsense/FreeBSD-ports/blob/devel/net/pfSense-pkg-haproxy-devel/files/usr/local/www/hapr... Viktor Gurov
08:09 AM Bug #12777 (Pull Request Review): STunnel writes config.xml on each start
Jim Pingle

02/10/2022

05:32 AM Bug #10436: softflowd no longer sends flow data after upgrade (v0.9.9_1 -> v1.0.0)
Tested on the SG-3100 (21.05.2). I got the same results.... Danilo Zrenjanin
03:01 AM Bug #12777: STunnel writes config.xml on each start
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/180 Viktor Gurov

02/09/2022

05:52 PM Feature #10818: UDP Broadcast Relay
Hello Viktor Gurov, is there any ETA for this package to be merged into pfSense? It seems the GitLab linked does not ... James M
04:43 PM Feature #12329: Add optional floating firewall rules for IPv4 and IPv6
Offstage Roller wrote in #note-1:
> Update to the original description, the destination for IPv4 would be better if ... Alan Wilson
12:26 PM Bug #12777 (Resolved): STunnel writes config.xml on each start
This can flood ACB:... Viktor Gurov
09:34 AM Bug #12772 (Pull Request Review): Syslog-ng writes config.xml on each start
Jim Pingle
09:30 AM Bug #12772: Syslog-ng writes config.xml on each start
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/179 Viktor Gurov
08:20 AM Bug #12772 (Resolved): Syslog-ng writes config.xml on each start
This can flood ACB:... Viktor Gurov

02/08/2022

04:02 PM Bug #11836: FRR ACCEPTFILTER shows out of order prefix-list
Regarding ACCEPTFILTER, you can test the patch here listed on #11686 Marcos M
04:01 PM Bug #11686: FRR generated ACCEPTFILTER permit statement broken
This can be applied using the System Patches package. Marcos M
12:56 PM Todo #11574 (Duplicate): Add "nobind" to exported OpenVPN configurations by default
Duplicate of #11575 Viktor Gurov
07:35 AM Bug #12758 (Pull Request Review): Route Handling Subnet field Input check
Jim Pingle
04:16 AM Bug #12758: Route Handling Subnet field Input check
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/178 Viktor Gurov

02/07/2022

02:13 PM Bug #12742 (Pull Request Review): freeRADIUS virtual-server-default: modules dailycounter, monthlycounter, noresetcounter, expire_on_login in authorize section prevent virtual server from loading
Christopher Cope
12:39 PM Bug #12403 (Resolved): WireGuard tunnel and peer edit pages do not prevent browser auto-fill
Fixed in 0.1.6:
https://github.com/pfsense/FreeBSD-ports/commit/49a79c01aa50cbf3da4dd28eca8b9d8e563e67e7#diff-384b8b... Viktor Gurov
11:28 AM Bug #12767 (New): ```Package radavahi-daemon does does not exist in current pfSense version and it has been removed``` message on pfSense 2.7 restore
After restoring pfSense 2.7 (2.7.0.a.20220207.0600) from the backup:... Viktor Gurov
10:57 AM Bug #11686 (Pull Request Review): FRR generated ACCEPTFILTER permit statement broken
Jim Pingle
10:54 AM Bug #11686: FRR generated ACCEPTFILTER permit statement broken
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/177 Viktor Gurov
10:50 AM Feature #11798 (Duplicate): HA Sync for FRR config
Duplicate of #9141 Viktor Gurov
10:36 AM Bug #12765 (Pull Request Review): AutoConfigBackup should ignore Lightsquid/lightparser cron changes
Jim Pingle
10:21 AM Bug #12765: AutoConfigBackup should ignore Lightsquid/lightparser cron changes
fix:
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/176 Viktor Gurov
05:55 AM Bug #12765 (Resolved): AutoConfigBackup should ignore Lightsquid/lightparser cron changes
Dear,
I went to check the "Auto Configuration Backup" and I came across a serious problem that can cause the loss ... Marcelo Gondim
03:50 AM Bug #12760: Link-local addresses disallowed on Wireguard interfaces
It's not possible on the Interface Assignments page, but you can configure the link-local address on the WireGuard / ... Viktor Gurov
03:19 AM Bug #11461 (Resolved): zeek package - Web Interface does not display any log content Package/Zeek/Alerts/Real Time Inspection
Viktor Gurov

02/06/2022

11:01 PM Bug #12751: Improve FRR route restoration after gateway events
Further testing with 22.01-REL:
VTI gateway with default settings *OR* with option checked: @Disable Gateway Monit... Marcos M
12:46 AM Bug #12760 (New): Link-local addresses disallowed on Wireguard interfaces
Wireguard supports link-local IPv6, however adding a static link-local to interfaces is not allowed, even for interfa... Alex Chang-Lam

02/05/2022

07:25 PM Bug #11461: zeek package - Web Interface does not display any log content Package/Zeek/Alerts/Real Time Inspection

the web interface shows Logs.
2.6.0-RELEASE (amd64)
built on Tue Jan 25 19:18:35 UTC 2022
FreeBSD 12.3-STABLE
 Alhusein Zawi
10:26 AM Bug #12738 (Resolved): Squid ignores CA Trust Store
Danilo Zrenjanin
10:26 AM Bug #12738: Squid ignores CA Trust Store
Tested against:... Danilo Zrenjanin
09:56 AM Bug #12758 (Resolved): Route Handling Subnet field Input check
If a subnet mask is not defined under the Services/FRR/Global Settings - Route Handling - Routes - Subnet field, the ... Danilo Zrenjanin

02/04/2022

03:19 PM Bug #10937 (Resolved): HAProxy frontend and backend entry limit
Christopher Cope
03:19 PM Bug #10937: HAProxy frontend and backend entry limit
Tested on... Christopher Cope
02:29 PM Todo #12351: Remove non-functional feeds
pfBlockerNG-devel 3.1.0_1 has https://isc.sans.edu/feeds/suspiciousdomains_Medium.txt, https://isc.sans.edu/feeds/sus... Christopher Cope
05:26 AM Bug #12623: acme.sh package | DNS-ISPConfig settings
Do we have an ETA on when the merge will be available in a release? Morten Trab
05:08 AM Bug #12755 (Duplicate): Acme package dns_ispconfig not working.
Duplicate of #12623 Viktor Gurov
04:18 AM Bug #12755: Acme package dns_ispconfig not working.
Found this in the acme_issuecert.log:
[Fri Feb 4 10:52:40 CET 2022] You haven't specified the ISPConfig Login dat... Morten Trab
04:15 AM Bug #12755 (Duplicate): Acme package dns_ispconfig not working.
When trying to use ISPConfig for DNS verification in Acme Certificate, I get this output but no TXT records added to ... Morten Trab

02/03/2022

08:14 AM Bug #12205 (Resolved): Certificate Manager page doesn't show Squid used certificates
Tested against:... Danilo Zrenjanin
05:19 AM Bug #11766 (Resolved): Certificate no more pointed "in use" by haproxy
Tested against:... Danilo Zrenjanin
04:57 AM Bug #12258: Copy key buttons only work in HTTPS mode
Tested against:... Danilo Zrenjanin
04:11 AM Bug #12339 (Resolved): SyslogNG PHP errors after starting the service
Tested:... Danilo Zrenjanin

02/02/2022

09:48 PM Bug #12751 (New): Improve FRR route restoration after gateway events
SETUP:
* FRR BGP over IPsec VTI using a localhost interface as update source.
* Check @Diagnostics / Routes@ for ro... Marcos M
06:04 PM Feature #10466: Add checkbox to Suricata blocked host view to resolve all resolvable IP's automatically
Bill Meeks wrote in #note-2:
> I am hesitant about adding this feature. If there are lots of blocked IP entries (whi... tasty ratz
04:27 PM Feature #10466: Add checkbox to Suricata blocked host view to resolve all resolvable IP's automatically
I am hesitant about adding this feature. If there are lots of blocked IP entries (which you reference in a different ... Bill Meeks

02/01/2022

12:08 PM Feature #10466: Add checkbox to Suricata blocked host view to resolve all resolvable IP's automatically
Wanted to bump this one up since it hasn't had any activity in the last few years. tasty ratz
12:06 PM Feature #12748 (Resolved): Suricata blocked page timestamp breakout to it's own sortable column
It's nearly impossible to fish through the blocked page and find something new right now. The only way is to look thr... tasty ratz
 

Also available in: Atom