Activity
From 12/06/2023 to 01/04/2024
01/04/2024
-
08:51 AM Bug #15100: Tailscale IPv6 Exit Node uses first LAN interface when WAN is set to Only Request Prefix
- This, or the broader issue of exit node gateway affects me with IPv4.
The seeming lack of configuration ability to s...
01/03/2024
-
11:17 PM Bug #15132: bind-tools 9.18 pkg moved dnssec-* tools from sbin to bin
- I'm working on the fix. The docs say to bump the version number in the makefile.
"When updating a package is it i... -
- In bind.inc, the path to dnssec-keygen and dnssec-dsfromkey are hard coded to the /user/local/sbin/ directory. In bin...
01/02/2024
-
06:41 PM Bug #15131: OpenVPN client export issues with iPhone and IPV6 connections
- https://forums.openvpn.net/viewtopic.php?p=119902 (lists fix)
https://forums.openvpn.net/viewtopic.php?p=119904 (my ... -
- I have researched and found an issue within the OpenVPN's client export config file for iPhones (OpenVPN Connect (iOS...
-
05:04 PM Todo #15119 (Feedback): Update nut-devel version and update startup script
- Merged into devel branches, should be in snapshots for testing tomorrow.
01/01/2024
-
01:30 PM Bug #14058: Update vendor=on triggers installation failure
- I just ran into this with arpwatch on 23.09.1...
12/27/2023
-
09:37 PM Bug #15120 (Not a Bug): Suricata upgrade/install adds default rulesets
-
09:21 PM Bug #15120: Suricata upgrade/install adds default rulesets
- Suricata upstream periodically adds new built-in rules with upgrades. The new QUIC rules are one recent example, but ...
-
08:12 PM Bug #15120 (Not a Bug): Suricata upgrade/install adds default rulesets
- We had traditionally disabled stream-events.rules because of false positives. I have noticed a couple times lately it...
-
08:00 PM Todo #15119: Update nut-devel version and update startup script
- The startup script change is contained in PR https://github.com/pfsense/FreeBSD-ports/pull/1340.
The nut-devel upd... -
- * Update nut startup script to avoid ups failure notifications on nut restart following interface changes.
* Updat...
12/26/2023
-
06:14 AM Bug #15115 (Closed): NUT Package Functionality
- I read online that updating the OS version from 2.7 to 2.7.2 should fix some security bugs and I have also followed t...
-
- I read online that updating the OS version from 2.7 to 2.7.2 should fix some security bugs and I have followed the in...
12/25/2023
-
07:38 PM Bug #13421: Stunnel certificate does not refresh
- Tested, had to add 2 lines to /usr/local/etc/stunnel at the begining so now it looks like:...
12/24/2023
-
12:03 AM Bug #15027 (Confirmed): Bind DNS Server cannot reorder zones
-
- Can confirm with Bind 9.17 on pfSense Plus 23.09.1.
To reproduce:
1. Create two zones.
2. On the Zones tab, drag...
12/23/2023
-
04:21 PM Feature #9833: ACME: add ability to use custom ACME server
- +1 also
there is a FreeBSD port of step-ca
https://www.freshports.org/security/step-certificates/
12/21/2023
-
- Pretty Please ...
Maybe a Christmas package.. -
09:38 AM Todo #14073: Shalla block list is offline but still available in pfBlocker
- Mike Moore wrote in #note-3:
> Can we get this package cleaned up at least with the removal of the list.
> Its cau...
12/20/2023
-
07:29 PM Regression #14452: Prometheus node_exporter generates errors with the default config
- I'm still seeing this on CE 2.7.2 with node_exporter 0.18.1_3 (upstream node_exporter-1.6.1) installed. Note that the...
-
- PR merged, thanks!
-
- Additional update for this issue for a complete history:
Two additional heap memory buffer overflow bugs were rece... -
- PR merged, thanks!
-
- Additional update for this issue for a complete history:
Two additional heap memory buffer overflow bugs were rece... -
05:02 AM Feature #15107 (New): An option to disable routes
- When using Wireguard with FRR (dynamic routing) there needs to be an option to select 'Disable routes'
This will pre...
12/19/2023
-
- I can't replicate this. I created a fresh EC cert using that curve and all export formats contain the certificate and...
12/18/2023
-
- This happens during any update we do, no need for a separate issue to track it.
12/17/2023
-
03:04 AM Bug #15100 (New): Tailscale IPv6 Exit Node uses first LAN interface when WAN is set to Only Request Prefix
- When Tailscale on pfSense Plus is being used as an exit node for IPv6 connectivity and the WAN interface is set to "O...
-
- Any update on this?
The workaround is to go into the pfsense shell, go into the FRR cli <vtysh> and examine the pref...
12/16/2023
-
02:49 PM Feature #15099 (Closed): ACME: please update GUI to include recently added DNSapi providers.
- Please update GUI to include DNS API providers like DnsExit.com that was recently added to acme.sh.
https://github...
12/14/2023
-
10:44 AM Feature #15091 (New): FRR, add the ability to change the order of BGP neighbours
- Hi!
I currently have over 20 bgp peers, and it's getting awkward to add new peers to an existing group as they app...
12/13/2023
-
06:52 PM Feature #9833: ACME: add ability to use custom ACME server
- +1 also.
12/12/2023
-
- Steps:
# Fresh install of pfSense+ 23.09.1
# Install bind package
# Restore a config backup with bind configuratio... -
01:22 PM Bug #15086 (Rejected): openvpn-client-export 1.9.2 | Viscosity Bundle | ECDSA cert missing key
- Export VPN cert/settings as viscosity bundle do not include the key.key if the cert is ECDSA / secp521r1.
If the c... -
- CE 2.7.2, FRR 2.0.2_1 (frr9-9.0.2), WireGuard 0.2.1 - still the same.
-
09:10 AM Feature #14878: Integrated syslog support
- Unfortunately I cannot code myself, so I have to ask for changes in detail instead. I think the solution should be ma...
12/11/2023
-
- Jordan G wrote in #note-3:
> user reporting fw upgrade failing on 7100 @ 23.09.1 (ref # 2156023693)
>
> [...]
... -
- PRs merged, thanks!
-
- PRs merged, thanks!
-
- PRs merged, thanks!
-
- comparing:
https://github.com/pfsense/FreeBSD-ports/blob/734989ab5809fe5c7bde23a240e717da656775ac/net/pfSense-pkg-pf...
12/10/2023
-
10:11 PM Bug #11970: Netgate Firmware Upgrade Doesn't Work on XG-2758 (ADI/coreboot)
- user reporting fw upgrade failing on 7100 @ 23.09.1 (ref # 2156023693)...
-
- A fix for this issue has been submitted via this pull request against the RELENG_2_7_2 branch: https://redmine.pfsens...
-
- I completely agree. The lack of integrated SYSLOG support (independent of local pfBlockerNG logging) is a MAJOR drawb...
-
- Pull request 1333 for the RELENG_2_7_2 branch of FreeBSD-ports has been submitted to address this issue.
https://git... -
- Mike Moore wrote in #note-10:
> Found a use case for AgentX and ran into the frr start.
>
> Jim - i see the targe... -
- Found a use case for AgentX and ran into the frr start.
Jim - i see the target versions have been deleted. Does th... -
- Pull request 1333 for the RELENG_2_7_2 branch of FreeBSD-ports has been submitted to address this issue.
https://git... -
- Several users on the Netgate Forum are reporting random issues with Suricata failing due to the following Hyperscan e...
-
- This is an issue on the pfSense Plus 23.09.X branch still.
-
- Marking this as Rejected since Squid is being deprecated and removed in a future version of pfSense CE and Plus.
-
- Marking this as resolved. pfSense Plus 23.09 and 23.09.1 both have haproxy 2.8.2 for the backend on stable.
12/08/2023
-
04:37 PM Todo #15058 (Feedback): Remove Zabbix 4 Agent and Proxy
- Zabbix 4 is EoL upstream
-
- Done in 23.09.1 and 2.7.2
12/07/2023
-
06:52 PM Feature #15072: [pfBlockerNG] RFE: Add ability to disable reverse DNS lookup for log entries
- I've filed some initial work here: https://github.com/pfsense/FreeBSD-ports/pull/1331
-
- Currently pfBlockerNG logs the result of a reverse DNS lookup for a block IP address to ip_block.log and unified.log....
12/06/2023
-
- Is there a reason for it to be removed?
Also available in: Atom