Project

General

Profile

Activity

From 05/31/2022 to 06/29/2022

06/29/2022

02:03 PM Bug #13320: IP aliases with a CARP VIP parent are not available as VIP choices for gateway groups
Looks like it's because the group drop-downs filter based on the VIP interface and it sees the CARP VIP as the interf... Jim Pingle
01:47 PM Bug #13320 (Resolved): IP aliases with a CARP VIP parent are not available as VIP choices for gateway groups
Configuration is an HA pair of 6100's with a failover gateway group, one ISP per gateway.
The intention is for IPs... Chris W

06/28/2022

12:04 PM Todo #13189 (Resolved): Input validation should reject the combination of DCO and P2P mode
Jim Pingle
12:04 PM Regression #13183 (Resolved): ZFS module is loaded on systems without ZFS
Jim Pingle

06/27/2022

07:23 AM Bug #11626: Google LDAP connections fail due to lack of SNI for TLS 1.3
Not up to me, it'll need to be handled by Luiz or Brad once things start moving for 22.09 but it's already on the radar. Jim Pingle

06/25/2022

05:34 PM Bug #11626: Google LDAP connections fail due to lack of SNI for TLS 1.3
Jim Pingle wrote in #note-15:
> Nudge this ahead so we have more time to ensure there aren't any regressions from th... Kris Phillips
05:30 PM Feature #12546: Add 2FA Support to pfSense Plus Local Database Authentication
Further expounding on this, it appears that Viscosity has native capability to add prompts in the client config.
... Kris Phillips

06/19/2022

06:42 PM Bug #13283 (Not a Bug): PBR forcing traffic out one WAN and back into another WAN with NAT Reflection Fails
Tested this.
With that PBR in place, even traffic that is being NAT'ed from the NAT Reflection rule will be caught... Marcos M

06/18/2022

05:48 PM Bug #13283 (Not a Bug): PBR forcing traffic out one WAN and back into another WAN with NAT Reflection Fails
Assuming the following configuration:
2 WAN interfaces WAN1 and WAN2
One LAN interface with Host A and Host B.
H... Kris Phillips

06/12/2022

11:14 AM Bug #13074: AES-GCM with SafeXcel on Netgate 2100 causes MBUF overload
I believe I have hit this as well, 2100 to 7100 GCM tunnel. Is there an upstream FreeBSD bugreport? I believe the fac... → luckman212

06/11/2022

07:01 PM Bug #13206: SG-3100 LED GPIO hangs
Daniel Subert wrote in #note-2:
> Hi Jim,
>
> Thanks for the update.
>
> As this issue is already being tracked int... Kris Phillips

06/05/2022

04:10 PM Bug #12974: Typing anything into 1100/2100 recovery installer causes process to stop
Marcos Mendoza wrote in #note-6:
> The wording has been addressed with NG 7431. This issue can be left open to track... Ryan Coleman

05/31/2022

03:39 PM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512
We have tested internally here and can't reproduce any problems with SHA384 or SHA512. In each case so long as both s... Jim Pingle
08:00 AM Bug #13233: OpenVPN DCO connection fails with Auth Digest Algorithm set to SHA512
That isn't what the P2P limitation is. The GUI selection for "peer-to-peer SSL/TLS" is fine, it's OpenVPN's internal ... Jim Pingle
 

Also available in: Atom