Activity

30 days up to

User

From 05/02/2022 to 05/31/2022

03:39 PM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: We have tested internally here and can't reproduce any problems with SHA384 or SHA512. In each case so long as both s... Jim Pingle
08:00 AM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: That isn't what the P2P limitation is. The GUI selection for "peer-to-peer SSL/TLS" is fine, it's OpenVPN's internal ... Jim Pingle

03:54 PM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: Thanks for pointing out the RA-only restriction. I see that stephenw10 has replied in the original forum string that... Steve Wilson
09:32 AM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: Try to reproduce it with OpenVPN Server in Remote Access mode, Peer-to-Peer is not supported - see https://redmine.pf... Marcos M
12:28 PM Bug #13074: AES-GCM with SafeXcel on Netgate 2100 causes MBUF overload: I mean to say it's not a SafeXcel issue specifically. Thank you for confirming it's only on the 2100 (ARM) platform. Marcos M
12:15 PM Bug #13074: AES-GCM with SafeXcel on Netgate 2100 causes MBUF overload: Marcos Mendoza wrote in #note-3:
> Note that the issue may not be specific to SafeXcel - e.g. it could happen with In... Chris S
11:06 AM Bug #13074: AES-GCM with SafeXcel on Netgate 2100 causes MBUF overload: Note that the issue may not be specific to SafeXcel - e.g. it could happen with Intel QAT as well. Marcos M

07:56 PM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: Hopefully this will be reproducible:
1. Set up Non-DCO OpenVPN server and client with follwing config options: pe... Steve Wilson
06:31 PM Bug #13233 (Feedback): OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: Tested on @22.05.b.20220524.0600@.
I was unable to reproduce this issue using OpenVPN RA TLS+User auth. Taking an ... Marcos M
06:49 PM Bug #13041 (Closed): DNS resolution of internal network names when logged in via OpenVPN requires workaround: Marcos M
06:38 PM Bug #13232 (Duplicate): Restoring Config with OpenVPN Custom Options Removes Carriage Returns: This seems more like a feature than a bug, considering that the description and documentation both say to separate wi... Marcos M

07:16 PM Bug #13233 (Feedback): OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512: OpenVPN DCO configurations specifying an auth digest algorithm of SHA512 fail to connect. Changing the algorithm to ... Steve Wilson
03:19 PM Bug #13232 (Duplicate): Restoring Config with OpenVPN Custom Options Removes Carriage Returns: If you back up a config on one device and then restore it in another, if you have an OpenVPN client (potentially serv... Kris Phillips
01:47 PM Bug #12974: Typing anything into 1100/2100 recovery installer causes process to stop: The wording has been addressed with NG 7431. This issue can be left open to track the behavior issue itself, as it sh... Marcos M

10:15 AM Feature #13227: Group-based Mobile IPsec Virtual Address Pool assignment via RADIUS: I Should mention you can use my modifcation afterwards by creating the groups identifier and IP pool needed, by creat... Tue Madsen
10:09 AM Feature #13227 (Resolved): Group-based Mobile IPsec Virtual Address Pool assignment via RADIUS: Currently you cannot create additional Virtual IP Pools to assign mobile users IP addresses from, if you are using EA... Tue Madsen

08:09 PM Bug #13206: SG-3100 LED GPIO hangs: Hi Jim,
Thanks for the update.
As this issue is already being tracked internally, would you happen to know if t... Daniel Subert
07:23 AM Bug #13206: SG-3100 LED GPIO hangs: We're already tracking this internally (NG 5882) but have yet to reliably reproduce it. We've only encountered it a v... Jim Pingle
01:12 AM Bug #13206 (New): SG-3100 LED GPIO hangs: Hi,
https://forum.netgate.com/topic/165566/number-of-running-processes-increasing
We seem to be experiencing th... Daniel Subert

10:11 AM Regression #13183 (Feedback): ZFS module is loaded on systems without ZFS: Fix merged. Try again. Christian McDonald
09:02 AM Todo #13189 (Feedback): Input validation should reject the combination of DCO and P2P mode: Base of the note (for CE and Plus that doesn't mention DCO): https://gitlab.netgate.com/pfSense/pfSense/-/commit/533b... Jim Pingle
08:38 AM Todo #13189 (In Progress): Input validation should reject the combination of DCO and P2P mode: Still needs a note under the IPv4 tunnel network fields about this not being compatible. Jim Pingle
08:26 AM Todo #13189 (Feedback): Input validation should reject the combination of DCO and P2P mode: Merged: https://gitlab.netgate.com/pfSense/factory/-/commit/16c76f982b7c82d8cc89266e6fe15b3947774085 Jim Pingle

01:00 PM Todo #13189 (Resolved): Input validation should reject the combination of DCO and P2P mode: DCO has issues with OpenVPN's peer-to-peer mode (tunnel network /30-/32) and we should prevent that combination of se... Jim Pingle

11:40 AM Feature #12546: Add 2FA Support to pfSense Plus Local Database Authentication: Hello,
This would be hugely helpful. Insurance companies are starting to require we implement 2FA across the board... Michael Pace
09:52 AM Regression #13183 (Confirmed): ZFS module is loaded on systems without ZFS: The Dashboard instance is fixed, but I also found another way it can happen: During upgrade
Run @pfSense-upgrade@ ... Jim Pingle

08:47 AM Regression #13183: ZFS module is loaded on systems without ZFS: Looks good so far. Applied patch on a 1000 and 3100 and rebooted, logged back into the GUI and the module remained un... Jim Pingle
08:32 AM Regression #13183 (Feedback): ZFS module is loaded on systems without ZFS: This should do it: https://gitlab.netgate.com/pfSense/factory/-/merge_requests/61 Christian McDonald
08:15 AM Regression #13183 (Resolved): ZFS module is loaded on systems without ZFS: A recent change in behavior is leading to the ZFS module getting loaded on systems that lack ZFS. When the user logs ... Jim Pingle

Also available in: Atom

pfSense » pfSense Plus