Project

General

Profile

Activity

From 05/28/2024 to 06/26/2024

06/26/2024

06:51 PM Bug #15574: Stunnel: Error resolving "r11.o.lencr.org": Address family for nodename not supported (EAI_ADDRFAMILY)
Hi, I went through several rounds of testing and I beleive that this is a bug somewhere in pfsense, stunnel.
Curr... A Schnee
05:59 PM Bug #15457 (Resolved): HAproxy disable zero copy forwarding
Jim Pingle
05:56 PM Bug #15457: HAproxy disable zero copy forwarding
The forum comments indicate that the new version, 2.9.7, addresses the issue that was raised in this Redmine. We can ... Danilo Zrenjanin
03:19 PM Bug #13405: Wireguard: The webgui becomes excessively slow to respond with a large number of peers
Hello,
any updates?
I notice that the culprit is this line:
https://github.com/pfsense/FreeBSD-ports/blob/08d3... Federico Foschini
03:12 PM Bug #15580 (New): Squidguard ACL order issue
If you edit either Target Categories or Group ACL entries they are put on top of the list after saving the entry.
... Jonathan Lee
12:31 PM Regression #15540: Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
The fetch button is working properly here as well on the same system where it failed previously, so that issue does a... Jim Pingle
08:08 AM Regression #15540 (Resolved): Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
Tested against:... Danilo Zrenjanin

06/24/2024

09:26 PM Bug #14523 (Resolved): PHP error when using an unsupported alias type in Advanced Rule Settings
Typo is now fixed. Marcos M
07:52 PM Todo #15281: Upgrade Tailscale to 1.6.0
Matt Keys wrote in #note-6:
> I reported a TS routing issue here 3 months ago: https://redmine.pfsense.org/issues/14... Elvis Impersonator
11:01 AM Todo #15281: Upgrade Tailscale to 1.6.0
Elvis Impersonator wrote in #note-5:
> So I updated CE 2.7.2 to tailscale 1.68.1
> Seems to be working.
I repo... Matt Keys
07:23 PM Feature #14453: Expand prefix list entry window
https://forum.netgate.com/topic/188850/gui-frr?_=1719256774819
Is it possible to get this rendered correctly on pf... Mike Moore
02:48 PM Bug #15574: Stunnel: Error resolving "r11.o.lencr.org": Address family for nodename not supported (EAI_ADDRFAMILY)
Thank you for the quick reply.
I opened this bug after doing a full clean install of pfsense 2.7.2 and experienced t... A Schnee
02:10 PM Bug #15574 (Not a Bug): Stunnel: Error resolving "r11.o.lencr.org": Address family for nodename not supported (EAI_ADDRFAMILY)
Seems more like a local cert issue than a bug in stunnel. The usual way to fix such things is to delete the stale CA ... Jim Pingle
02:06 PM Bug #15574 (Not a Bug): Stunnel: Error resolving "r11.o.lencr.org": Address family for nodename not supported (EAI_ADDRFAMILY)
I have an issue with the stunnel package in pfsense 2.7.2. Since my certificate renewed a few days ago, I cannot conn... A Schnee

06/23/2024

10:45 AM Feature #15573 (New): Enable tmpfs when ramdisk is used.
The Telegraf package config disables tmpfs which prevents the ramdisks /var and /log to be monitored.... Sebastian mzb
12:16 AM Bug #14523: PHP error when using an unsupported alias type in Advanced Rule Settings
The patch is working on:... Christopher Cope

06/22/2024

07:42 PM Todo #15281: Upgrade Tailscale to 1.6.0
1.68.1 is available with client security fixes
https://www.freshports.org/security/tailscale
https://pkgs.org/downlo... Elvis Impersonator

06/21/2024

08:42 PM Bug #15567 (New): Continent Alias Lost at Start of pfBlockerNG
I am using the pfblockerNG created continent aliases e.g. "pfB_Europe_v4" in my firewall rules.
Unfortunately they a... Sebastian mzb
03:44 PM Regression #15540 (Feedback): Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
Fixed with commit:4026d8132d10ec4702b1de6850c49b7723ec04e2. Marcos M
02:42 PM Regression #15540 (Confirmed): Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
Looks like the fetch action isn't storing anything in the patch entry, probably a similar issue to the problem creati... Jim Pingle
10:00 AM Regression #15540: Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
I tested against the version which seems to have the patch applied:... Danilo Zrenjanin
03:21 PM Todo #15563 (Resolved): Remove unsupported dh_file configuration in FreeRADIUS
Marcos M
03:14 PM Todo #15563 (In Progress): Remove unsupported dh_file configuration in FreeRADIUS
FreeRADIUS fails to start now if the configuration contains dh_file:
> /usr/local/etc/raddb/mods-enabled/eap: dh_fil... Marcos M

06/19/2024

09:09 PM Bug #15131 (Confirmed): OpenVPN client export issues with iPhone and IPV6 connections
I was able to replicate this on 24.03, removing the 4 at the end of udp4 allowed the config from the export package t... Jordan G
08:53 PM Todo #15563 (Resolved): Remove unsupported dh_file configuration in FreeRADIUS
According to "FreeRADIUS":https://github.com/FreeRADIUS/freeradius-server/blob/db3d1924d9a2e8d37c43872932621f69cfdbb0... Markus *

06/17/2024

10:54 AM Regression #11634 (Resolved): bind hangs when pfsense is reconnecting as an openvpn client to a TUN openvpn server
I was able to reproduce this issue on 2.5.0 CE (Bind 9.16_10).
With active and working Bind, so I was able to reso... Azamat Khakimyanov

06/12/2024

11:12 PM Feature #15554 (New): CARP enabled Wireguard Failover
I am writing to propose two new features for pfSense that would greatly enhance the reliability, usability, and manag... Daewon Kim

06/11/2024

11:57 PM Bug #15457 (Ready To Test): HAproxy disable zero copy forwarding
HAProxy package has been updated to 2.9.7 which includes the zero copy forwarding fix. Steve Wheeler
11:09 PM Feature #12711: Add InfluxDB V2 support
I did not encounter any issues with the Telegraf config being overwritten.
I did experience Telegraf going down. So ... Craig Coonrad
09:16 PM Feature #12711: Add InfluxDB V2 support
> [...] there is a problem when Telegraf restart so the config gets overwritten
Please open a new redmine (or fol... Marcos M
09:09 PM Bug #9138 (Closed): telegraf: add section for custom config lines
Custom configuration can already be added in current versions. Marcos M
09:09 PM Feature #8099 (Closed): Add more configuration flexibility to Telegraf
Custom configuration can already be added in current versions. Marcos M
09:01 PM Bug #9337 (Closed): Telegraf ping input fails
Current available version is 1.30.3 Marcos M
08:57 PM Bug #14861 (Feedback): PHP error when pings are enabled but no ping hosts are defined
Marcos M
05:19 PM Bug #14523 (Feedback): PHP error when using an unsupported alias type in Advanced Rule Settings
Marcos M
05:19 PM Bug #14572 (Resolved): Unused DNSBL files may not be removed
Marcos M
12:59 PM Bug #11563 (Confirmed): BIND GUI writes TXT records > 255 characters
I tested it on 24.03-RELEASE (Bind 9.17) and on 24.08-DEVELOPMENT (Bind 9.18)
When I added some text with more than ... Azamat Khakimyanov

06/10/2024

07:38 PM Feature #12711: Add InfluxDB V2 support
Hi mmendoza / marcos-ng
It would be nice if you can update to the latest Telegraf version and update the package and... Marc Walter
05:44 PM Feature #15527 (New): IPSec Profile Wizard/Windows: Filter User Certificate by Issuer
Marcos M
04:55 PM Feature #15527: IPSec Profile Wizard/Windows: Filter User Certificate by Issuer
Marcos M wrote in #note-1:
> Try applying the following patch using the "System Patches":https://docs.netgate.com/pfs... Alex Bryant
12:56 PM Feature #15549 (Rejected): Sending E-mail about system processes
That is way out of scope. This package doesn't monitor logs for strings and notify like that, and the items you menti... Jim Pingle
12:50 PM Regression #15540: Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
Without the patch from the PR it happens on all of mine, but all of mine had existing patch entries. It's possible it... Jim Pingle

06/09/2024

05:15 PM Bug #15088: BIND does not start after a config restore
Tested on 23.05.1 Bind 9.17 (Bind916-9.16.39), on 23.09.1 Bind 9.17 (Bind916-9.16.42)
and on 24.08-DEV Bind 9.18 (Bi... Azamat Khakimyanov
10:04 AM Feature #15549 (Rejected): Sending E-mail about system processes
It would be nice to add the ability to send e-mails about hardware statuses and other system processes. Ene As
12:46 AM Feature #15548 (Confirmed): Add packages for Zabbix 7.0 Agent and Proxy
Confirmed not available in 24.03 or 24.08. Kris Phillips
12:36 AM Bug #15529: The path on the AWS High Availability page doesen't show the current tab
Also confirmed on 24.03. Kris Phillips

06/08/2024

08:21 PM Bug #15027 (Feedback): Bind DNS Server cannot reorder zones
Azamat Khakimyanov
08:20 PM Bug #15027: Bind DNS Server cannot reorder zones
Tested on 24.08-DEV (built on Mon Jun 3 6:00:00 UTC 2024) with Bind 9.18
Reordering zones works as it should: after ... Azamat Khakimyanov
07:58 PM Regression #15540: Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
I'm not seeing this issue on the following version, which doesn't have the pull request above merged yet.... Christopher Cope
07:13 PM Feature #15548 (Resolved): Add packages for Zabbix 7.0 Agent and Proxy
Zabbix 7.0 has been released. https://www.zabbix.com/rn/rn7.0.0
This might be a good opportunity to address the Za... Andrew Almond

06/06/2024

03:48 PM Bug #15457: HAproxy disable zero copy forwarding
I'm not sure this kernel panic is related to the zero-copy-forwarding issue in HAProxy 2.9.1. Steve Wheeler
02:04 PM Bug #15457: HAproxy disable zero copy forwarding
Backtrace:... Steve Wheeler
03:44 PM Regression #15540 (Pull Request Review): Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/397 Marcos M

06/05/2024

05:18 PM Feature #15542 (Not a Bug): Default route withdrawal
This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the "Net... Jim Pingle
05:12 PM Feature #15542 (Not a Bug): Default route withdrawal
I am running a PFSense FW with one WAN interface and one LAN interface. The WAN is our internet connection and the L... Chuck Slayton

06/04/2024

07:41 PM Feature #15541 (New): CRON: option to enable/disable task
Check the possibility of creating an option to activate/deactivate tasks in cron.
!clipboard-202406041639-qmd5p.pn... Fabio Rafael Kochhann
07:14 PM Regression #15540 (Resolved): Cannot create new System Patches package custom entry on Plus 24.08/CE 2.8.0 Snapshots
At some point between May 14th snapshots and June 2nd snapshots, something broke the ability to create new System Pat... Jim Pingle

06/03/2024

10:34 PM Regression #13970: PHP error in apcupsd widget from UTF-8 string handling
Further feedback/issues would be best left to separate redmine reports with steps to reproduce. Marcos M
10:32 PM Regression #13970 (Resolved): PHP error in apcupsd widget from UTF-8 string handling
Marcos M
10:32 PM Regression #13970 (Closed): PHP error in apcupsd widget from UTF-8 string handling
Marcos M
10:30 PM Bug #13985 (Duplicate): Telegraf error After Update PFSense to 23.01
Marcos M
10:21 PM Bug #14419 (Closed): PHP error when trying to access pfBlockerNG configuration
With the move to pfBlockerNG v3 (from v2), pfblockerng.xml is no longer used to define the package GUI. The error is ... Marcos M
10:03 PM Bug #14523 (Pull Request Review): PHP error when using an unsupported alias type in Advanced Rule Settings
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/400
This adds input validation to make sure the ... Marcos M
09:28 PM Bug #14572 (Pull Request Review): Unused DNSBL files may not be removed
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/400
The error is related to removing unused DNSB... Marcos M
06:45 PM Regression #14850 (Pull Request Review): Unreadable alerts file results in PHP error
This indicates that the Snort UUID alert file exists but was not readable for some reason. The root cause of that can... Marcos M
06:30 PM Bug #14861 (Pull Request Review): PHP error when pings are enabled but no ping hosts are defined
This happens when pings are enabled but no ping hosts are defined - simply disable pings to work around the PHP error... Marcos M
01:07 AM Feature #9833: ACME: add ability to use custom ACME server
+1 for this as well. Javier Ramirez

06/02/2024

05:38 PM Bug #15296: WAN Interface cannot added to ntopng if offline-packet loss
Kris Phillips wrote in #note-2:
> Sergei Shablovsky wrote in #note-1:
> > Sergei Shablovsky wrote:
> > >
> > >
... Sergei Shablovsky

06/01/2024

09:07 PM Regression #15469: RRD Graphs height is smaller than expected
confirmed, resetting RRD data does not seem to provide any change in display scale Jordan G
07:49 PM Bug #15529 (Confirmed): The path on the AWS High Availability page doesen't show the current tab
Confirmed on:... Christopher Cope
06:59 PM Regression #14764 (Confirmed): HAProxy local syslog not working
I can confirm that logging into the local syslog is not functioning as expected.
The recommended workaround has re... Danilo Zrenjanin
01:21 AM Bug #15313: Zabbix server 6.4.12 requires Zabbix proxies to be version 6.4.12
Checked in 24.03 release. Zabbix is still at 6.4.10. Kris Phillips
12:26 AM Feature #15527 (Ready To Test): IPSec Profile Wizard/Windows: Filter User Certificate by Issuer
-Try applying the following patch using the "System Patches":https://docs.netgate.com/pfsense/en/latest/development/s... Marcos M
12:23 AM Bug #15385 (Pull Request Review): PHP crash when exporting Apple profile, while IPsec P1 authentication method set to "Mutual Certificate"
https://gitlab.netgate.com/pfSense/factory-ports/-/merge_requests/104 Marcos M

05/31/2024

06:40 PM Feature #15532: Update NUT status widget
Implemented in pull request 1374 (https://github.com/pfsense/FreeBSD-ports/pull/1374). Denny Page
06:37 PM Feature #15532 (Resolved): Update NUT status widget
Update usability of the NUT status widget as follows:
* Add color coded icon for Summary status.
* Add line voltage... Denny Page
09:28 AM Bug #15530 (New): pfBlockerNG Sync Tab helptext
Under *Firewall/pfBlockerNG/Sync*, the help text under the *Enable Sync* dropdown menu is unclear. ... Danilo Zrenjanin
09:09 AM Regression #14189: pfBlocker-NG: HA-Sync is not working
!clipboard-202405311108-n6kth.png!
 Danilo Zrenjanin
09:06 AM Regression #14189 (Confirmed): pfBlocker-NG: HA-Sync is not working
Danilo Zrenjanin
09:06 AM Regression #14189: pfBlocker-NG: HA-Sync is not working
I defined GeoIP IPv4 entry for France on the Primary.
I can confirm that the configuration doesn't get replicated f... Danilo Zrenjanin
07:50 AM Bug #15529 (Confirmed): The path on the AWS High Availability page doesen't show the current tab
No matter which tab you select (IPs, Routes, or Elastic IPs) the path at the top left corner remains *Package/AWS Hig... Danilo Zrenjanin

05/30/2024

08:16 PM Feature #15528 (Pull Request Review): Add fix for #15430 to pfSense+ 24.03
Marcos M
08:15 PM Feature #15528: Add fix for #15430 to pfSense+ 24.03
https://gitlab.netgate.com/pfSense/FreeBSD-ports/-/merge_requests/397 Marcos M
06:51 PM Feature #15528 (Resolved): Add fix for #15430 to pfSense+ 24.03
Having this available in 24.03 should mitigate state policy issues when upgrading to 24.03 (for those that use this p... Marcos M
06:15 PM Feature #15527 (New): IPSec Profile Wizard/Windows: Filter User Certificate by Issuer
Windows EAP config has an option to filter which user certificates can be used by their issuer, so only these certifi... Alex Bryant

05/28/2024

12:51 PM Bug #15517 (Rejected): WireGuard not responding to the handshake from the same port
This is almost certainly due to a misconfiguration such as applying outbound NAT on traffic generated from the firewa... Jim Pingle
 

Also available in: Atom