Activity
From 03/28/2023 to 04/26/2023
04/26/2023
-
12:50 PM Bug #14315 (Resolved): Routes are not exposed on Tailscale when an empty route entry exists in the GUI
- In the Tailscale package settings, if an empty entry exists for @Advertised Routes@, no routes will be exposed to the...
-
07:32 AM Feature #14311 (Rejected): Widget for System -> Patches
- Given the personal and custom nature of patches this is not viable. Not everyone will apply every patch, since not ev...
-
06:13 AM Feature #14314 (Pull Request Review): Keep DDNS entries on config change
- Each time the BIND config is changed, all DDNS entries in all master zones are lost because the zone.db is overwritte...
04/25/2023
-
05:39 PM Feature #14311 (Rejected): Widget for System -> Patches
- I have the System_Patches package installed. There is no notification of updates.
It would be nice to have a notifi... -
12:45 PM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks
- Correction, I applied the patch at https://redmine.pfsense.org/issues/14230 and it didn't help. I know it's a differ...
04/24/2023
-
- The package is now available for dev snapshots (currently 23.05/2.7).
-
07:16 AM Bug #14299: pfBlockerNG does not honor the cURL source interface setting for DNSBL lists
- This morning I noticed the following:...
04/23/2023
-
12:58 PM Bug #14179: FreeRadius is active but in an inoperable state, switches to a generated freeradius-temp certificate upon restart
- Hi Chris,
thanks for looking into this.
Yes I upgraded from 2.6.0 and the original version was probably somethi... -
- Related https://redmine.pfsense.org/issues/13817
-
10:02 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks
- Looks like a pfSense PHP 8 code issue.
{main} thrown in /etc/inc/config.lib.inc on line 928
PHP ERROR: Type: 1, Fi... -
- Note that System Patches 2.2.1 is installed with all recommended patches applied.
-
- Error when removing 3.2.0_4:...
04/22/2023
-
09:48 PM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks
- If you update to the latest pfBlockerNG and then uninstall it with Keep Settings unchecked, does this still leave orp...
-
09:07 PM Bug #14179: FreeRadius is active but in an inoperable state, switches to a generated freeradius-temp certificate upon restart
- Steps taken to reproduce:
1. Install FreeRadius package into a virtual machine of 23.01
2. Configure FreeRadius with... -
05:33 PM Bug #13632: tailscale does not survive reboot on pfsense with ram disk in use
- tailscale v0.1.3 on 23.05.a.20230421.0022 in the package's settings provides a configurable field for state directory...
-
04:02 AM Bug #13632: tailscale does not survive reboot on pfsense with ram disk in use
- The latest Tailscale version under available packages is 0.1.2.
v0.1.3 is not listed yet. Please check. -
- Tested against:...
-
- The References.7z file initially included indicates that the issue was with allocated PHP memory. ...
-
- haproxy 0.61_9
Still has the lb-agent-chk listed as the check method. The needs to be removed.
-
01:37 AM Bug #13985: Telegraf error After Update PFSense to 23.01
- @aleksei prokofiev, what dependent Telefraf Package have you?
-
01:18 AM Bug #13985: Telegraf error After Update PFSense to 23.01
- Can't reproduce,
Installed 2.6 CE
Installed and configure Telegraf with influx DB
Upgraded to 23.01
no errors oc...
04/21/2023
-
- More details:
https://redmine.pfsense.org/issues/12882#change-59903
The cURL interface can be specified via the... -
- Pull request: https://github.com/pfsense/FreeBSD-ports/pull/1251
-
- Pull request to fix the problem is on its way.
-
06:38 AM Bug #13985: Telegraf error After Update PFSense to 23.01
- I've tested on
23.01-RELEASE (amd64)
built on Fri Feb 10 20:06:33 UTC 2023
FreeBSD 14.0-CURRENT
I can't repro...
04/20/2023
-
- New knowledge, have installed the community version virtually.
The Telegraf Package Dependencies are different.
Comm...
04/18/2023
-
03:57 PM Bug #13632: tailscale does not survive reboot on pfsense with ram disk in use
- And as promised:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270921 -
- @v0.1.3@ includes migration code that will move the state file from @/var/db/tailscale/tailscale.state@ to a location...
-
- Looking at this.
First I need to expose the --statedir tailscaled option to the rc script (and upstream it). I'm t... -
- UNchecking "keep config" and then trying to remove the 3.2.0_3 package results in PHP error.
Other user reports th...
04/17/2023
-
06:55 PM Bug #11054: Check Client Certificate CN not working as described
- pfSense CE @2.6.0@
FreeRADIUS package version @0.15.7_33@
As of April 2023, I was able to recreate this issue on acc... -
02:04 PM Bug #14284 (Incomplete): Wen changing frontend type, there will be invissible leftovers, disturbing defining the new type
- During my trails to setup HA-proxy, I irregularly met a situation where I did not know which frontend type to use.
S...
04/16/2023
-
11:47 AM Bug #14153: default whitelist is not created
- I was using pfBlockerNG-devel 3.2.0_3 but upgraded to pfBlockerNG-devel 3.2.0_4 and then checked my findings.
h2. ... -
- So after reading through the source code I found something that I thought was strange to even exist:...
-
- Okay, now I've run into it again and discovered the following:
If the firewall has internet connectivity during co... -
* *Based on the text above this line, this is simply moving the rules from the one interface to a floating rule for...-
- I'm experiencing this as well in pfSense @2.6.0 CE@ and Status_Traffic_Totals @2.3.2_2@ as of April 2023. Upon reboo...
04/15/2023
-
10:30 PM Bug #14021: Squid ClamAV showing bytecode errors for version 334
- This has resolved on its own and updates again.
-
- double starting again with pfSense Plus 23.05.a.20230414.0600 and PIMD 0.0.3_6, at least it's self aware...
-
- Based on the text above this line, this is simply moving the rules from the one interface to a floating rule for mult...
-
- What version of pfBlocker are you using?
I'm unable to reproduce this with a fresh install of pfBlockerNG-devel 3.... -
- I'm not seeing any PHP errors in 3.2.0_4 of pfBlockerNG. Was there any particular steps to reproduce this problem?
-
-
- Closing this out since 3.2.0_4 is now available in System > Package Manager.
-
06:05 PM Bug #14275: Deleting a route map that is assigned to an active neighbor causes crash
it shows an error if the route map was deleted..
the configuration shows the route map is not deleted while it w...-
- Tested against:...
-
09:31 AM Bug #11797 (Confirmed): Traffic Totals lost upon reboot when using a ramdisk for /var and /tmp
04/14/2023
-
06:57 PM Bug #13654: Wireguard does not fail back failover WAN setup.
- Still has this problem. Are there any progress on this?
-
-
04/13/2023
-
06:36 AM Bug #14275 (Resolved): Deleting a route map that is assigned to an active neighbor causes crash
- Steps to reproduce:
2.7.0.a.20230405.0015 / FRR 7.5.1.
1) Establish BGP session to a neighbor and announce a p...
04/12/2023
-
- Attached a picture from another situation where the IPV6-addresses are not properly extracted / handover from the GUI...
-
07:21 AM Bug #13969 (Resolved): Status_Monitoring ignores NAT states
- Tested on 23.05-DEV (built on Fri Apr 07 01:20:44 UTC 2023) and on 2.7-DEV (built on Wed Apr 12 06:05:24 UTC 2023)
... -
05:44 AM Bug #14199: ACME - Issue with corrupted cert
- Attached PHP error log
04/11/2023
-
- Just for future reference these types of issues are best addressed first on the Forums before opening a Redmine issue...
-
10:36 PM Bug #14271: WireGuard does not work
- It's working, thanks!
-
- Did you enable WireGuard on the settings page?
-
- WireGuard0.1.6_2
!clipboard-202304121052-budas.png!
-
- My WireGuard does not have a start/restart button after installation.
After going to the WireGuard configuration pag... -
- This apparently was fixed upstream and we brought it in during a recent ports merge. It's working on current snapshot...
04/10/2023
-
02:58 PM Bug #14228: pfBlockerNG might not support new Maxmind license keys
- This was fixed in the 3.2.0_4 which is live.
-
- Sergei Shablovsky wrote in #note-2:
> Jim Pingle wrote in #note-1:
> > Green and Red are also not great choices bec... -
- MR merged
04/09/2023
-
04:22 PM Feature #13195: Dedicated website for Feed mangement - Community Driven
- Jon Brown wrote in #note-1:
> or the website could be website where end users (me and others) can add feeds and repo... -
- Jim Pingle wrote in #note-1:
> Green and Red are also not great choices because some people are red/green color blin... -
- I am setting up HA-proxy using IPV4 and IPV6. When trying to define an IPV6 frontend, there is a prolbem
When e.g.... -
- I can confirm this issue.
I used a workaround on Reddit and it worked.
https://www.reddit.com/r/pfBlockerNG/comment...
04/08/2023
-
- Confirmed in 23.01 and 2.7:
UPDATE PROCESS START [ v3.2.0_4 ] [ 04/9/23 01:34:56 ]
===[ DNSBL Process ]=====... -
- Unable to confirm this. Here are my logs:
ClamAV - freshclam Logs
Message
bytecode.cvd database is up-to-date (v... -
- This doesn't appear to be a bug with the file not being downloaded. The file at http://database.clamav.net/main.cvd ...
-
- I can confirm this behavior in 3.2.0_3 on 23.01 of pfSense Plus.
04/07/2023
-
06:02 PM Regression #14024: PHP error in HAProxy Widget with Show Client Traffic enabled
- Sebastian Wagner wrote in #note-7:
> As a workaround, I change the file like this:
> [...]
> I don't know if the d... -
- It may have worked by accident, but it wasn't supposed to have worked that way. The interfaces were only intended to ...
-
- Jim Pingle wrote in #note-4:
> Can't reproduce this, it's working fine here as it has for quite some time. Even on 23... -
- Can't reproduce this, it's working fine here as it has for quite some time. Even on 23.05 snapshots. Has to be a conf...
-
10:02 AM Feature #14241 (New): The Abiility to Configure FreeRadius Proxy servers from the GUI
- Currently adding radius proxy servers via the GUI is not supported. When a proxy listener is configured freeradius st...
04/06/2023
-
to work around it (tested)
Add an IP(VIP) to the Localhost Firewall>Virtual IPs. (both sides, non used IPs)
ad...-
- Additional troubleshooting:
We re-saved the interfaces, restarted the FRR Zebra and OSPF service several times, dr... -
- Customer upgraded from 22.05 to 23.01 and FRR no longer showed a neighbor for a VTI tunnel with a /30 to an OSPF neig...
-
12:10 PM Bug #14199: ACME - Issue with corrupted cert
- I'm running pfSense+ 23.01 on a Netgate 2100.
This morning I was removing HAProxy (I've migrated to Nginx Proxy Ma... -
11:23 AM Regression #14024: PHP error in HAProxy Widget with Show Client Traffic enabled
- As a workaround, I change the file like this:...
04/05/2023
-
12:45 AM Feature #12889: FRR GUI add set ipv6 next-hop global
- !https://i.imgur.com/ewwRoTm.jpg!
04/04/2023
-
07:12 AM Regression #13958: Snort exits with signal 10 on arm32
- Mateusz Guzik wrote in #note-2:
> Hi Bill, that was me.
>
> What changed is that there was a compiler update and ... -
06:54 AM Regression #13958: Snort exits with signal 10 on arm32
- Hi Bill, that was me.
What changed is that there was a compiler update and then it turned out some of the files *d...
04/03/2023
-
04:46 PM Regression #14232 (New): ntopng no longer tracks top talkers
- ntopng version that now comes with pfsnese plus 23.01 no longer tracks top talkers across time(no historical tracking...
-
-
- This issue has existed for some time unfortunately. It's covered by the following reports:
https://redmine.pfsense.or... -
- Hello Marcos,
sadly this is not the same bug, because for me on pfSense+ 23.01 no update option worked, not even "... -
- Duplicate of #14189
-
- MR merged
-
04/02/2023
-
- As a workaround, use the @System Patches@ package to apply the following patch (set @Path Strip Count@ to @0@)....
-
- On @pfBlockerNG-3.2.0_3@ and @pfSense-23.01@....
-
- The original report was from a customer's system, however I have not been able to reproduce this either on 23.01 nor ...
-
- https://dev.maxmind.com/geoip/release-notes/2023?lang=en#changes-to-maxmind-license-keys
* New license keys will b... -
- or the website could be website where end users (me and others) can add feeds and report dead feeds that would then b...
-
- duplicate of #13195 - close this one
04/01/2023
-
- >>http is insecure because your password will be transmitted in plain text so use https
Not sure it's relevant to ... -
- This inline notes on the sync page (Firewall --> pfBlockerNG --> Sync) need improving.
* *Add: Allow Sync Pushes*
... -
- A diff of the merge request fixes the problem when applied as a system patch. Deleting a shellcmd job doesn't give an...
-
10:08 AM Bug #14218 (Pull Request Review): Deleting a shellcmd entry results in a PHP error and crash report
- https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/334
-
not exist
frr 1.2_3
pfsense 23.01-
- The description on the options 'Block Offenders' is incorrect for 'inline mode' but still valid for 'Legacy Mode'
... -
10:55 AM Bug #14220: pfBlockerNG does not sync to HA secondary
- Apparently my search for "sync" wasn't good enough. Apologies for the dupe.
-
- I alreay created a bug for it, see https://redmine.pfsense.org/issues/14189 .
No feedback yet, if someone is even ...
03/31/2023
-
- After making changes they are not replicated to the secondary. E.g. on /pfblockerng/pfblockerng_ip.php check "kill s...
-
1. Install the shellcmd package from System > Package Manager.
2. Services > shellcmd >
Command: ...
03/30/2023
-
- Additionally:...
-
- The package installs fine (both agent and proxy) so whatever problem you are encountering is likely unique to your se...
-
04:19 AM Bug #14203 (Rejected): Zabbix Agent 6.2 installation fails
- I see that this issue is reported a couple of times, i.e. https://redmine.pfsense.org/issues/13587 however it still p...
03/29/2023
-
- Hi Jim .
My bad, I said HAProxy by mistake, I am using ACME for this, attached screenshot
-
- The attached configuration snippet isn't a valid configuration for ACME. I'm not sure how it ended up in that state, ...
-
- Some of the files have names that are not following the same rules as the rest. I have made corrections to some of th...
-
10:02 AM Bug #14200 (New): WireGuard reply-to without NAT
- I have discovered that the WireGuard package requires the interface to have the gateway set for the reply-to rules to...
03/28/2023
-
05:34 PM Bug #14199: ACME - Issue with corrupted cert
- Attaching the Acme section of my config.xml backup which had this issue after upgrading to the new release on Feb 17 ...
-
- Hi team
After creating a new cert in HAProxy i got an timeout on the webui interface then receive this error:
P... -
- Green and Red are also not great choices because some people are red/green color blind, so ideally whatever colors ar...
-
- on the page Firewall --> pfBlockerNG --> Reports --> unified (and others)
pfBlocker uses
* 'Red' for traffic st... -
- Firewall --> pfBlockerNG --> DNSBL --> DNSBL Configuration --> Permit Firewall Rules
Can you add some additional i... -
- Currently when a DNSBL is Blocked you get one of 2 pages depending what was looked up. Most lookups will end up beeb ...
-
- I would like to see a website where end users (me and others) can add feeds and report dead feeds that would then be ...
-
- Hello Fellow Netgate Community Members,
I wanted to share some topics for discussion and possibly create a communi... -
- I understand, but I don't know what is "not" happening.
There are two choices when configuring Sync for pfBlockerN...
Also available in: Atom