Activity
From 05/19/2024 to 06/17/2024
06/17/2024
-
05:17 PM Bug #15196: AWS ena interfaces can become unstable/stop responding
- dtrace submitted based on: https://redmine.pfsense.org/issues/15196#note-21
HS# 2755313440... -
12:31 PM Bug #15196: AWS ena interfaces can become unstable/stop responding
- `can't allocate llinfo` is logged by arpresolve_full(), when lltable_alloc_entry() returns NULL. lltable_alloc_entry(...
06/14/2024
-
04:13 PM Bug #15196: AWS ena interfaces can become unstable/stop responding
- Kristof Provost wrote in #note-31:
> Are the users affected by `kernel: arpresolve: can't allocate llinfo` running a... -
- Are the users affected by `kernel: arpresolve: can't allocate llinfo` running a routing daemon (openbgpd, frr, ...)?
... -
- Kristof Provost wrote in #note-29:
> Was there a `kernel: arpresolve: can't allocate llinfo ` in HS# 2828658261?
> ... -
- Was there a `kernel: arpresolve: can't allocate llinfo ` in HS# 2828658261?
What sort of connection issues is it see... -
01:14 AM Bug #15196: AWS ena interfaces can become unstable/stop responding
- A fresh deployment of 24.03 on a t3.small. HS# 2828658261. No unusual CPU load....
06/13/2024
-
11:57 AM Feature #11920: SAML Authentication for pfSense (VPN and webConfigurator)
- That would be great, I'm changing my LOCAL AD to Microsoft Entra ID and I now need to authenticate my VPN with it.
06/11/2024
06/09/2024
-
- Still seeing the same on...
06/07/2024
-
04:26 PM Bug #15196: AWS ena interfaces can become unstable/stop responding
- fresh dtrace didn't produce meaningful results.
asked client to work with affected firewall instead of restoring it ... -
12:23 PM Bug #15545 (Incomplete): traffic shaper (Limiter) causes kernel panic -> random reboot
- Please attach the full crash dump including the backtrace. Without that information there isn't enough to go on here ...
-
07:54 AM Bug #15545: traffic shaper (Limiter) causes kernel panic -> random reboot
- Fatal trap 12: page fault while in kernel mode
-
- After update Pfsense Plus on version 24.03 random reboots appeared.
Canceling the use of a limiter in the rules so...
06/06/2024
-
07:03 PM Bug #15535: Outgoing packets with Private source IP on WAN
- I don’t use NAT in such a way that it would try to make two connections use the same conflicting information
There a...
06/05/2024
-
06:19 PM Feature #15412 (Pull Request Review): Improve error feedback from pfSense-upgrade
- It's not really practical to implement root cause tests in this case, but we can expose what part of the process fail...
06/04/2024
-
- Fixed with 91628a2ed3d32140a2ee66806504590a65e2654f.
-
-
- Something either changed in rule generation or pf that is now triggering a syntax error for rules which have the @pfl...
-
-
- I booted to the 24.08 dev build and ran IPFIX for about 8-10 hours.
No kernel panics. This appears resolved. Thanks. -
12:08 AM Bug #15538: RAM disks trigger boot failure warning when using ZFS
- This actually fails the same way if you enable RAM disks after upgrading.
-
- Upgrades from 24.03 to 24.08-dev builds fail at first boot after rebooting into the new BE for the upgrade....
06/03/2024
-
- This is fixed with the config access work in 24.08.
-
- So the log in comment 23 has "kernel: arpresolve: can't allocate llinfo for 172.21.253.1 on ena1". So I'm wondering i...
-
07:24 AM Bug #15196: AWS ena interfaces can become unstable/stop responding
- Here's dtrace from HS# 2785863048. This is the ticket Chris mentioned: https://redmine.pfsense.org/issues/15196#note-23
-
- If you use NAT in such a way that it would try to make two connections use the same conflicting information, it will ...
-
06/02/2024
-
03:59 PM Bug #15196: AWS ena interfaces can become unstable/stop responding
- They do not appear to be seeing noticeably-high CPU load.
-
- Another user is seeing similar behavior on an m5.xlarge with 24.03.
Main symptom there is pfSense static routes de...
06/01/2024
-
- After stopping and starting the SIP traffic the processing is correct:
Host is sending the same UDP packets with s... -
- Capture on the WAN interface shows, that there are some packets leaving towards the Internet with Private RFC1918 sou...
-
01:12 AM Bug #15418: Incorrect links to edit static mapping and WOL on DHCPv6 leases (status_dhcpv6_leases.php). URL parameter values missing.
- This should be marked as Incomplete until more information can be provided on how this is reproduced. I don't see a ...
05/31/2024
-
- The boot verification script for ZFS boot environments can over match against other processes and fail to run due to ...
-
- Since this bug is triggered by unloading the zfs module incorrectly on systems that do not require it also see: https...
-
09:11 PM Bug #14685 (Feedback): Kernel panic on reroot
- I fixed it, see https://gitlab.netgate.com/pfSense/FreeBSD-src/-/commit/17758247bb690c60c7e1dbdbded2f21ad61d1f82
05/30/2024
-
- Customer in ticket 2768927031 running into this issue.
05/29/2024
-
04:49 PM Feature #14743: Add Passkey/Certificate-based Authentication
- UPVOTE THIS
Nowadays with numbers of hacking attacks rapidly increasing each day, securing the access to firewall ...
05/28/2024
-
- Update from the user who provided us the dtrace outputs (HS# 2718685720)
> Hi, just an update. I changed EC2 type ... -
- It's something we may expand on in the future, the framework is in place to do it now, but it would require creating ...
-
- Already covered by internal issue 12393
05/27/2024
-
11:51 AM Feature #15523 (New): Allow to set a password policy for users in the local database
- It would be great if we can set password requirements for the local users like minimun lenght and complexity at less....
05/25/2024
-
- Confirmed. Having this automated would make the install smoother.
-
05/24/2024
-
-
04:02 PM Bug #15511 (Feedback): Factory resetting the configuration removes WireGuard
- The WireGuard package is now in the list of installed packages and won't be removed on the factory reset.
05/23/2024
-
- Okay, that would seem to indicate that we're not spending our CPU time in the ena driver. That's a bit unexpected, gi...
-
- Here's another dtrace from HS# 2718685720.
I'm not sure if this will be helpful or much different than the previou... -
08:14 AM Bug #15511: Factory resetting the configuration removes WireGuard
- I couldn't reproduce this.
Tested against:
23.09
23.09.1
24.03
Is there any other specific configuration set...
05/22/2024
-
- I looked at the status output for the same case that included the dtrace. It involves high CPU and loss of network. (...
05/21/2024
-
- This was on a VM that was manifesting the problem (i.e. elevated CPU use and loss of connectivity) at the time the dt...
05/20/2024
-
- Resetting the configuration to factory defaults removes the WireGuard package. This package should be kept given that...
-
- Sorry, was problem with network.
-
- After applying patch https://redmine.pfsense.org/issues/15440, the OpenVPN client on Debian 11 breaks the connection ...
05/19/2024
-
- Testing this on 24.03, this seems to be less of an issue since it looks like the FreeBSD-ports tree has empty/blank p...
Also available in: Atom