Activity
From 06/29/2023 to 07/28/2023
07/28/2023
-
08:46 PM Bug #14606 (Resolved): Deleting Last BFD Profile in FRR Package Causes PHP Fatal Error
-
08:30 PM Bug #14606: Deleting Last BFD Profile in FRR Package Causes PHP Fatal Error
- Jim Pingle wrote in #note-4:
> Fixed in FRR Package v1.3, which is building now and will be available shortly.
I ... -
- Fixed in FRR Package v1.3, which is building now and will be available shortly.
-
- This should be fixed in FRR Package v1.3, which is building now and will be available shortly.
-
- Fixed in FRR Package v1.3, which is building now and will be available shortly.
-
- Fixed in FRR Package v1.3, which is building now and will be available shortly.
-
- Fixed in FRR Package v1.3, which is building now and will be available shortly.
-
- Fixed in FRR Package v1.3, which is building now and will be available shortly.
07/26/2023
-
- The FRR package is built with SNMP support but it doesn't appear to be loading the module somehow.
The vtysh CLI l... -
12:22 PM Bug #14491: FRR not starting with AgentX enabled
- Jim Pingle wrote in #note-3:
> For those hitting this error, do you have the NET-SNMP package installed and active?
... -
- For those hitting this error, do you have the NET-SNMP package installed and active?
The AgentX integration is int... -
10:15 AM Bug #14491 (Confirmed): FRR not starting with AgentX enabled
- I can confirm this behavior.
Tested against:... -
- I added screens for both APCUPSD and NUT to LCDProc. The option only appears (and will only work) when the correspond...
-
- I pushed a fix, it is building now and will be available shortly in lldpd pkg version 0.9.11_2 on Plus 23.05.1 and CE...
-
06:41 AM Bug #14484 (Confirmed): lldpd php error on saving with no interface selected
-
- I can reproduce it on 23.05.1, probably the "No interface selected" warning message is needed here....
-
- Perhaps this issue is related to the https://redmine.pfsense.org/issues/14592
I couldn't recreate any of the repo... -
-
- I can reproduce it on 23.05.1, error doesn't come if the BFD daemon is disabled, but occurs immediately when you enab...
07/24/2023
-
- To reproduce:
1. Enable BFD in FRR.
2. Create a BFD profile (only requires a profile name).
3. Delete the BFD pr...
07/23/2023
-
02:04 AM Bug #14504 (Incomplete): FTP_Client_Proxy package doesn't create firewall rule
- Hello,
Do you mean it doesn't create a rule from the inside interface outbound for FTP traffic? If so, typically ... -
01:27 AM Bug #10502: LLDP spamming errors on Netgate XG-7100
- still seeing this on 7100 running 23.05.1 lldpd 0.9.11_1 - set all protocol support to active, save...
-
12:55 AM Bug #14498: php errors when looking at snort active rules
- Jonathan Lee wrote in #note-16:
> @Christopher Cope
> I wanted to also take the time to message you and say I am so...
07/22/2023
-
-
- I couldn't reproduce any of the listed issues on the 0.7.5 Acme package.
I am marking this case resolved. -
- I can confirm this behavior.
Tested on:... -
06:57 AM Feature #14602: squidguard log search
- Not sure if its possible to do with the package but if multiple categories are selected and the action is blocked, th...
-
- Package > SquidGuard > Logs
The ability to search through the logs in the GUI. Right now there is no ability to do...
07/21/2023
-
- For the record, I now have an LCD with buttons and the fix I committed last week did correct the errors.
-
02:31 PM Bug #14596: FreeRADIUS falsely shows its default is to save data during package reinstall
- Stated differently, it is not possible to restore FreeRADIUS settings unless one has at some point clicked the Save b...
-
- forum thread: https://forum.netgate.com/topic/181594/restore-missing-freeradius-config
A new install of FreeRADIUS... -
02:03 PM Bug #14315 (Resolved): Routes are not exposed on Tailscale when an empty route entry exists in the GUI
-
11:57 AM Bug #14315: Routes are not exposed on Tailscale when an empty route entry exists in the GUI
- Tested on 23.05.1 and CE 2.7.0, looks like it has been fixed, I could not reproduce.
23.05.1-RELEASE (amd64)
built ...
07/20/2023
-
04:08 PM Feature #14529: eBPFShield
- https://github.com/generic-ebpf/generic-ebpf
should do the job adds kernel/user space tools
Generic eBPF run... -
-
Tested package 4.1 on ...-
09:12 AM Bug #14554: PHP Fatal error: Uncaught TypeError: Cannot access offset of type string on string
- I do have some customizations in unbound, but they're not connected with dhcp (private-domain, local-zone, forward-zo...
-
- I set up DHCP Static Mappings in the DHCP server but couldn't replicate the issue with a fresh pfBlocker installation...
-
- I can confirm this behavior.
This seems to be a duplicate of https://redmine.pfsense.org/issues/14493
-
- Tested on the:...
07/19/2023
-
- Commit: https://github.com/pfsense/FreeBSD-ports/commit/2b3c7e925fed1d53763e6d2eee5e5ab2289b4116
Packages are buil... -
- There are some problems with private key handling in the ACME package that appear to have been ongoing for a while.
... -
- Looking at the PHP code blocks you showed above, something must not have updated in your setup. Lines were added to i...
-
-
12:51 PM Feature #10462: CPU Temp Screen
- Works well! Thank you very much!
-
- I didn't merge the original PR since other work on the package caused conflicts and made a lot of the changes unneces...
-
- This report is quite old and the package has had significant work done to it since then. Please try it again on pfSen...
-
- It should be OK to add that in, but it would need to be made conditional. By that I mean the option for the screen sh...
-
- The error as originally stated in this issue is solved. If you still have problems starting LCDProc, please post a ne...
-
02:26 AM Feature #14588 (Resolved): Add FRR diagnostic status output plugin
- Since FRR is a package and the status output does not generate information for packages, it would be really helpful f...
07/18/2023
-
07:15 PM Bug #14585: Fatal error editing acme certificates
- I just edited config.xml and added actions to my items.
It worked. I immediately got access to those items in pfS... -
- Thanks. I'm going to try this tonight.
Perfect. -
- Phil Tull wrote in #note-6:
> ok one more question please.
> Is it possible for me to edit the live config.xml and ... -
- ok one more question please.
Is it possible for me to edit the live config.xml and put in the actions (presumable to... -
- Phil Tull wrote in #note-4:
> I'm considering your suggestion to reinstall acme.
In this case I doubt it would ma... -
- I'm considering your suggestion to reinstall acme.
Would that require me to rebuild all my acme settings?
I wonder ... -
- OK, you mean no actions defined in the list in the cert entry -- I thought you meant they showed no action icons in t...
-
- Yes, I'm in the config.xml and it looks perfectly normal to me. I'll attach an example entry.
Consider this...
<p... -
- Sounds like you have a corrupted/incomplete certificate entry in the configuration that is leading to the errors, but...
-
- After updating pfSense from 2.6.0 to 2.7.0, cannot manage acme certificates IF the certificate has NO actions.
Acme ... -
- Request merged.
-
- In my opinion, I don't believe this package, essentially being a video conference server, is a good fit for running o...
-
07/17/2023
-
- Soren Pedersen wrote in #note-7:
> @Jim Pringle:
>
> I installed the updated version of LCDProc on PFsense 2.7.0 ... -
04:33 PM Bug #14571: PHP Error prevents LCDProc client from working properly due to empty VIP tags in config.xml
- @Jim Pringle:
I installed the updated version of LCDProc on PFsense 2.7.0 and the service still refuses to start. Re... -
03:14 PM Feature #14583: Add LiveKit package
- PR link => https://github.com/pfsense/FreeBSD-ports/pull/1273
-
- This is to add the LiveKit server as a pfSense package and configuration UI.
I created a pull request in GitHub wi... -
02:45 PM Regression #14445: HAProxy PHP error /usr/local/www/haproxy/haproxy_global.php:138
- I'm experiencing this regression on CE 2.7 when trying to de-activate HA Proxy. If I then refresh the browser, I am a...
-
02:27 AM Bug #14532: Error is logged every time a domain in the DNSBL is temporarily unlocked or re-locked
- After doing some more testing on this, I also get the results you reported, i.e., nothing gets logged to py_errors.lo...
07/16/2023
-
02:04 AM Bug #14562: PHP error when trying to run OSPF and BGP in the same time
is there a specific configuration in OSPF/BGP?-
- Thank you for the bug report. I have tested and confirmed the issue. A merge request is created so this fix will be a...
07/15/2023
-
- the package is added .
23.05.1-RELEASE (amd64)
built on Wed Jun 28 03:57:27 UTC 2023
FreeBSD 14.0-CURRENT -
06:39 PM Bug #14532 (Not a Bug): Error is logged every time a domain in the DNSBL is temporarily unlocked or re-locked
- What pfSense and pfBlocker versions are you using?
I'm unable to replicate this on pfSense Plus 23.05.1 with pfBlo... -
07/14/2023
-
- This should be fixed now. I don't have a panel with buttons to test it (yet, it's on the way) but I see why it was fa...
-
- I have some ideas on why the button calls are hitting that error, I'll work on it some more.
Good to know the othe... -
02:51 AM Bug #14571: PHP Error prevents LCDProc client from working properly due to empty VIP tags in config.xml
- I've updated to the newest package and life is good again. thank you
-
-
05:51 AM Bug #13343: HAproxy cookie protection syntax needs updated
- Hello,
it works now together with the haproxy version 0.61_11.
Thanks!
-
01:02 AM Feature #14032: Neighbor Discovery Proxy (NDproxy)
- There is a growing need for this with more providers sticking us with /64. It's understandable that this wouldn't be ...
07/13/2023
-
10:45 PM Bug #14571: PHP Error prevents LCDProc client from working properly due to empty VIP tags in config.xml
- Seeing some errors when trying to use the Reboot or Shutdown functions from the LCD buttons:...
-
- Fixed in the new version of the package I just committed. Will be available once the package builds finish.
-
07:54 PM Bug #14406: Squid Proxy version 0.4.46 Missing Error subfolder and files for "en" or "en-usa" and all other languages.
- Hello,
I wanted to add an issue I am experiencing with Squid plugin version 0.4.46.
I am not sure if this iss... -
- PR merged, thanks!
Packages are building for Plus 23.05.1 and CE 2.7.0, they will be available shortly.
-
- This has been available for Plus 23.05.1 and CE 2.7.0 for several days with no reports of trouble.
We can open new... -
- This has been available for Plus 23.05.1 and CE 2.7.0 for several days with no reports of trouble.
We can open new... -
- This has been available for Plus 23.05.1 and CE 2.7.0 for several days with no reports of trouble.
We can open new... -
- Geo Rou wrote:
> Hi,
>
> I'd like to add a new screen to LCDproc that reads the UPS information from NUT.
Jus...
07/12/2023
-
04:30 PM Bug #14572 (Resolved): Unused DNSBL files may not be removed
- Hi,
I get the following crash report:... -
- Updated package committed on devel branches and also to RELENG_2_7_0, should be available soon on CE 2.7.0 and in dev...
-
- Some care will be needed here since CE 2.7.0 apparently has the OS package nrpe-4.1.0 while Plus 23.05.1 has nrpe3-3....
-
- Since the latest pfSense update, the LCDproc client is unable to connect to the LCDproc server. I can confirm LCDproc...
-
- Confirmed this also affects the 2.7 package:
https://forum.netgate.com/topic/180575/node_exporter-is-not-working-pr...
07/11/2023
-
- We are up to Tailscale v1.44.
> Tailscale 1.30.1 has been released which includes the fix for this issue. The upda... -
- I am still seeing this error in 2.7.0-RELEASE....
-
09:10 AM Bug #14554: PHP Fatal error: Uncaught TypeError: Cannot access offset of type string on string
- By reading /usr/local/pkg/pfblockerng/pfblockerng.inc it seems a few more lines down this part might be affected as w...
07/10/2023
-
08:13 PM Bug #14560: NRPE does not function properly on Plus 23.09 / CE 2.7.0
- Thank you all!
> So to re-summarize, these -5- 6 changes appear to restore 100% functionality from the previous rele... -
05:25 PM Bug #14560: NRPE does not function properly on Plus 23.09 / CE 2.7.0
- @TomTheOne: I'd suggest rebooting after making the five changes I listed above. nrpe3.sh definitely seems to get gene...
-
- Ok, I think I've got this figured out... nrpe3.sh gets automatically generated, so disregard my previous comment rega...
-
- In my case, nrpe is already running by manually starting the service via start-script in /usr/local/etc/rc.d/nrpe.
I... -
- Sorry for the confusion Tom. Those changes do indeed fix it on my system, but after seeing your comment I just did so...
-
- Thank you
> So in summary, these 4 changes appear to restore 100% functionality from the previous release:
>
> /... -
- Two more notes:
(1) At least on my system, the command="/usr/local/sbin/nrpe" change had to be made to /usr/local/... -
- In addition to the daemon name being changed from nrpe3 to nrpe, I've noticed that the associated check command has a...
-
07:27 PM Bug #14566 (Confirmed): Softlflowd package don't send ICMP flows
- I am using the softflowd package v.1.2.6_1 on pfsense v.2.7.0
Apparently icmp traffic is not sent from the sensor to... -
07/09/2023
-
08:03 AM Bug #14364: APCUPSD unable to process date string
- Perfect, thanks Kris :-)
-
- Yeah we should add a date format option to the widget so that it properly displayed depending on user input.
-
- pfSense Plus 23.09 has the latest ClamAV 1.1.0, which is not vulnerable:
/usr/local/sbin/clamd --version
ClamAV 1... -
- The project appears to be primarily written for Debian-based Linux and the Summer of Code project from 2020 doesn't a...
-
- Tested on 23.09. Confirmed this behavior.
Editing /usr/local/etc/rc.d/nrpe to change this allows the service to...
07/08/2023
-
- The following PHP error is thrown when you enable OSPF while the BGP service is already running....
-
- Steps to reproduce:
1. Install FRR.
2. Create a BGP neighbor without staring FRR.
3. Delete the neighbor.
4. Atte... -
- I can confirm this behavior.
Tested against:... -
- I can confirm this behavior.
Tested against:... -
- To be deleted, i posted in the wrong category.
Correct one here: https://redmine.pfsense.org/issues/14560 -
- nrpe 3.1_5 works smooth on pfSense 2.7.0, after the upgrade to nrpe 3.1_6 the service can not be controled anymore vi...
-
- nrpe 3.1_5 works smooth on pfSense 2.7.0, after the upgrade to nrpe 3.1_6 the service can not be controled anymore vi...
-
- Done, and it's fixed the problem and the widget is working again, but apctest expects the format in DD/MM/YY and the ...
-
- Are you able to try with the month and then day in the first and second numbers respectively when entering the date? ...
07/07/2023
-
-
09:37 PM Bug #14557: SSL Offloading configuration settings missing from frontends
- Andrew Cz wrote:
> The SSL Offloading section of any and all frontends are missing.
>
> I was expecting to see the s... -
- The SSL Offloading section of any and all frontends are missing.
I was expecting to see the section that can be fo... -
- Included in OpenVPN client export package 1.9. Will be in snapshots for testing, then release branches if it tests OK.
-
- Included in OpenVPN client export package 1.9. Will be in snapshots for testing, then release branches if it tests OK.
-
-
- Included in OpenVPN client export package 1.9. Will be in snapshots for testing, then release branches if it tests OK.
-
- The change from "ios" to "connect" would be good.
The change from "config" to "archive" is not needed, it is a con... -
06:15 PM Bug #14426: PHP errors in Lightsquid
- This occurs with 23.05.1 also
Attached is logs -
- Installation has several tailscale nodes. The problematic node is a 6100. Some of the other nodes are 2100s.
At so... -
01:17 PM Feature #14101 (Feedback): Add Zabbix 6.4 packages
07/06/2023
-
-
03:00 PM Bug #13343: HAproxy cookie protection syntax needs updated
- Sorry for the duplicate report; for some reason I missed this one.
I've now prepared a pull request https://github... -
- ...
-
- https://forum.netgate.com/topic/180220/filer-package-xmlrpc-sync-error
-
- https://forum.netgate.com/topic/180950/error-on-pfblockerng-inc-5310-pfblockerng-devel-3-2-0_5...
-
07:06 AM Bug #13432: ups driver will not start
- The root cause appears to be the kernel not recognizing some UPS models as a UPS. See discussion here:
https://fo...
07/05/2023
-
05:51 PM Bug #14406: Squid Proxy version 0.4.46 Missing Error subfolder and files for "en" or "en-usa" and all other languages.
- @jonathanlee and @pete-wright I wanted to confirm that I had not seen this thread and had performed similar steps to ...
-
- With the accept DNS option enabled (default):...
-
- https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/commit/543e81ef566acdd95d4c13f04f3535c62e1e9ac4
Done. -
- Duplicate of #13343
-
07/04/2023
-
04:45 AM Feature #14539 (New): Add support for Oracle Cloud Infrastructure (OCI) vNIC management to work with unicast CARP
- Add the ability to invoke OCI APIs to relocate secondary IPs (i.e. CARP VIPs) on vNICs when CARP VIP events occur in ...
-
01:27 AM Feature #14538 (Resolved): Add switch for Tailscale DNS
- from cmacdonald on Reddit - Add a simple knob to the Tailscale section of the pfSense Web UI to toggle whether pfSens...
07/03/2023
-
11:00 PM Regression #14452: Prometheus node_exporter generates errors with the default config
- I stumbled upon this today. This PR [[https://github.com/prometheus/node_exporter/pull/2584]] may provide additional ...
-
- On PFSense 2.7.0, with haproxy 0.61_10 package installed.
Create a haproxy backend, edit it and enable the "Cookie... -
02:56 AM Bug #14498: php errors when looking at snort active rules
- In the interest of coming to a resolution on this ticket...
The issue identified here is more of a generic problem w... -
- @Christopher Cope
I wanted to also take the time to message you and say I am sorry for the reply with, "If you do no... -
- @Ryan Coleman
Can you mark my open TAC ticket #1731574435 as closed as it is confirmed this is a code/software is... -
- Hello fellow Redmine members,
I do understand that adding my ISP issued IP address to the pass list and or suppres... -
- @Kris Phillips
Thanks for looking into this -
- @Marcos
Thanks for looking into this. -
- @Pete Wright thanks for confirming this issue.
07/02/2023
-
- @Bill Meeks
Thank you for confirming the code issue. As you quoted,
"No matter how much RAM is in the firewall,... -
11:48 PM Bug #14498: php errors when looking at snort active rules
- _How were you attempting to implement a paged output? Was it images that you created and or just accessing sections o...
-
- I would just make a buffered image and save it everytime that method was called on. It would save the file and open i...
-
- Thanks for your reply and looking into this at a granular level.
I noticed you said " _I've toyed around with tryi... -
- This is a consequence of the PHP process itself running out of memory. Because the output is being buffered in an att...
-
- The truth is, I really want to fix this PHP software issue, again I am still a student and rather overzealous when I ...
-
- Your ticket number is: 1731574435
-
- TAC ticket open with this referenced copy of config is loaded with my serial number. I hope that provides everything ...
-
- Also attached is *proof* that the custom rules I have in Snort are in use and functional within this regard.
_S... -
- After sometime I still show no memory errors inside of the SG-2100MAX for this timestamp.
Please let me know if y... -
- Per your request in 23.05.1
See attached system goes to blank screen error occurs and no errors in system logs tha... -
- I do also have custom rules active inside snort. I do not know if that causes it. As custom rules are pasted in and l...
-
- Hello thanks for the reply. This PHP error occurs when I attempt to view the active rules in snort. I only have 20 pe...
-
- We can confirm this also on our 2.7 Upgrade which broke FRR from starting (although I think its somthing to do with t...
07/01/2023
-
- confirming, same thing as above with 23.05.1 and pimd 0.0.3_6
-
- We'll need more information to confirm if this is actually a bug. It is possible you are hitting the memory limit in ...
06/30/2023
-
- From the Reports > Alerts tab, when I click the red lock icon to temporarily unlock a domain listed under the DNSBL P...
-
-
03:47 PM Bug #14530 (Resolved): Suricata 6.0.13 package interface settings
- Hello,
The text label at _Services / Suricata / Interfaces / <IF>(Edit) / <IF>Flow/Stream / Stream Memory Cap_ say... -
- Also can send alerts to SIEM ie call outs to "ransomware_.com" or other nastyware infected machines calling out to c...
-
- https://github.com/sagarbhure/eBPFShield
Advanced host monitoring and threat detection with eBPF 🛡️
eBPFShield ... -
- Tested on: ...
06/29/2023
-
- To understand the set up then.
nodeA and nodeB will have sepearate routing neighbors probably exchanging the same ... -
- This can be achieved through Advanced pass-thru.
I am only advocating having a GUI option available to create users/... -
03:05 PM Feature #9833: ACME: add ability to use custom ACME server
- +1 as well. Also a shout out to Step CA. There are more and more options for ACME endpoints hosted privately, this ...
-
06:45 AM Bug #14460: PHP Fatal error: Uncaught TypeError: Cannot access offset of type string on string in /usr/local/pkg/haproxy/haproxy.inc:2158
- I have the exact same block of three lines on another appliance. So this might be some result of upgrades and changes...
-
- I can confirm that after removing the lines, there are no PHP errors, and the service starts successfully.
-
12:38 AM Bug #14523 (Resolved): PHP error when using an unsupported alias type in Advanced Rule Settings
- Confirmed on both 2.6, 2.7-RC and 23.05 using pfBlockerNG-Devel 3.2.0_5 and 3.2.0_4. Removing pfBlockerNG-devel packa...
Also available in: Atom