Activity

30 days up to

User

Subprojects

Activity

From 07/14/2025 to 08/12/2025

Today

01:34 AM Bug #15956: Kea DHCP static mappings requires lease expiry before taking effect: Experienced an issue adjacent to this that I'm not 100% convinced is really a bug but it was enough to make me scratc... Raku Smith

08/11/2025

11:15 PM pfSense Docs Todo #16365 (New): Update Squid/SquidGuard/Lightqsuid warning in packages documentation or remove the packages: The page https://docs.netgate.com/pfsense/en/latest/packages/list.html contains a big red warning about using Squid/S... Andrew Almond
11:04 PM pfSense Plus Bug #16364: pfSense SG-4100 stops sending logs to Graylog server after NUT server reboot: Just clicked Save to solve the problem as mentioned above, and these new logs were delivered to Graylog:
2025-08-1... Marcelo Cury
11:02 PM pfSense Plus Bug #16364 (New): pfSense SG-4100 stops sending logs to Graylog server after NUT server reboot: *Description:*
The pfSense SG-4100 stops sending logs to a Graylog server after the device hosting both the Graylo... Marcelo Cury
10:10 PM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: It relies on a change to the main tree hence the updated package will be available starting with 25.11. Marcos M
09:38 PM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: @mmendoza Thanks for taking care of this so quickly!
Will a patch or updated HAProxy package be released for 25.07, o... Andrew Almond
08:07 PM pfSense Packages Bug #15274 (Feedback): HAProxy Configuration Changes Require pfSense Reboot to Take Effect: Should be fixed with "8f42801da587bd79dbe736228ebe9fe63b362cc8":https://github.com/pfsense/FreeBSD-ports/commit/8f428... Marcos M
07:36 AM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: Looking through older Redmine issues for HAProxy and I found Issue #11756 which is asking for HAProxy to keep backend... Andrew Almond
10:05 PM Todo #16322 (Feedback): dpinger can use a CARP VIP as the source IP address: Applied in changeset commit:600736884b916e4d549104a3958039d2d143f792. Marcos M
10:00 PM Revision 60073688: Update find_interface_ip() to match the behavior of find_interface_ipv6(). Fix #16322: Using the file for the IP address can result in an incorrect or outdated
address even with $flush. Additionally using... Marcos M
09:09 PM pfSense Docs Todo #16363: Feedback on Services — UPnP IGD: Other potential suggestions are listed "here":https://github.com/Self-Hosting-Group/pfsense/commit/662f24eb582c28f498... Marcos M
09:08 PM pfSense Docs Todo #16363 (New): Feedback on Services — UPnP IGD: *Page:* https://docs.netgate.com/pfsense/en/latest/services/upnp.html
*Feedback:*
* Update list of compatible STU... Marcos M
08:19 PM pfSense Packages Bug #15182 (Feedback): Changing backend port - status remains down: Marcos M
07:31 AM pfSense Packages Bug #15182: Changing backend port - status remains down: This is probably caused by the same issue as Issue #15274.
Andrew Almond
08:17 PM pfSense Packages Bug #16361 (Feedback): Update mDNS-Bridge to 2.1: Marcos M
08:03 PM pfSense Packages Bug #16225 (Feedback): Telegraf service does not restart after change of settings: Should be fixed with "448f354244343c1ebe15a10e14da85772f38dd26":https://github.com/pfsense/FreeBSD-ports/commit/448f3... Marcos M
08:01 PM pfSense Packages Bug #16211 (Feedback): Python errors in Cellular: Should be fixed with "fb5c8ce9c911899c0360e1b80a21a19861d3c4a2":https://github.com/pfsense/FreeBSD-ports/commit/fb5c8... Marcos M
07:38 PM pfSense Packages Bug #16195 (In Progress): Remove deprecated OCSP stapling functionality: Jim Pingle
07:38 PM pfSense Packages Bug #16294 (In Progress): Cert Creation/Renewal DNS-Gandi LiveDNS not working with PAT Token: Jim Pingle
03:02 PM pfSense Packages Bug #16294: Cert Creation/Renewal DNS-Gandi LiveDNS not working with PAT Token: Looks like the actual script has an option for @GANDI_LIVEDNS_TOKEN@ but the comment header on the script doesn't lis... Jim Pingle
07:38 PM pfSense Packages Bug #15061 (In Progress): acme.sh nsupdate with challengealias is failing in certain cases: Jim Pingle
07:37 PM pfSense Packages Feature #9833 (In Progress): ACME: add ability to use custom ACME server: Jim Pingle
07:16 PM Revision e34087d0: Add option to wait for process termination when restarting a service: Marcos M
04:16 PM Regression #16362 (New): syslogd can die if a remote syslog server refuses connection: When a remote syslog server is configured for logging but that host replies to syslog traffic with 'connection refuse... Steve Wheeler
03:48 PM Bug #15825 (Waiting on Merge): KEA server ignores DHCPREQUEST containing an invalid FQDN: Christian McDonald
02:48 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: It looks like this is fixed in Kea 3.0:
https://gitlab.isc.org/isc-projects/kea/-/wikis/Release-Notes/release-notes-... Marcos M
02:34 PM pfSense Packages Todo #16190 (Closed): Update mDNS-Bridge to 2.0: Marcos M
12:43 PM Regression #16282 (Resolved): Firewall rules are not performing source tracking when Sticky Connections option is enabled: Jim Pingle
12:22 PM Bug #16359: Cannot (re)install a configuration where WAN is a VLAN defined on a LAGG using the new Netgate installer: Hello Kris,
Thank you for your prompt reply. LACP is not used in this configuration.
Unfortunately, the Netgate... Serge Caron
01:40 AM pfSense Plus Bug #16275 (Incomplete): Removing Limiters can leave unconnected queues behind: thanks for the update, we'll mark this incomplete, in case you encounter anything further Jordan G

08/10/2025

09:38 PM Regression #16282: Firewall rules are not performing source tracking when Sticky Connections option is enabled: source tracking appears functional in 25.07 with sticky connections enabled when viewing diagnostics>states>source tr... Jordan G
08:57 PM pfSense Packages Todo #16190: Update mDNS-Bridge to 2.0: Close in favor of #16361. Denny Page
08:50 PM pfSense Packages Bug #16361: Update mDNS-Bridge to 2.1: PR https://github.com/pfsense/FreeBSD-ports/pull/1422 Denny Page
08:43 PM pfSense Packages Bug #16361 (Feedback): Update mDNS-Bridge to 2.1: This update address an issue with mdns-bridge rejecting mDNS packets containing zero length records.
Details here:... Denny Page
01:23 AM Bug #16360 (Not a Bug): OpenVPN Custom Options Lack Carriage Returns on config.xml Restore: Newlines are not meant to be preserved. You separate statements with a semicolon, not a newline, as it says in the de... Jim Pingle
01:20 AM Bug #16360 (Not a Bug): OpenVPN Custom Options Lack Carriage Returns on config.xml Restore: When restoring a config that has OpenVPN custom options, all line items will be "mashed together" on one line without... Kris Phillips
01:17 AM Todo #16322 (Confirmed): dpinger can use a CARP VIP as the source IP address: I can confirm this behavior, as I've seen the CARP VIP get "stuck" as if it's the primary interface's IP.
Markin... Kris Phillips
12:36 AM Bug #16359 (Confirmed): Cannot (re)install a configuration where WAN is a VLAN defined on a LAGG using the new Netgate installer: I can confirm that LAGG interfaces are not supported in the Netgate Installer at this time.
However, with most L... Kris Phillips

08/09/2025

08:04 PM Bug #16359 (Confirmed): Cannot (re)install a configuration where WAN is a VLAN defined on a LAGG using the new Netgate installer: We have severall installations in failover mode where both WAN and LAN are protected using a LAGG.
Their configurati... Serge Caron
06:57 PM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: Adding
@load-server-state-from-file none@
to the Advanced Settings > Backend pass thru section of each backend overr... Andrew Almond
08:03 AM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: The line... Andrew Almond
07:33 AM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: @kphillips I found what is adding these directives to the config file!
The behavior is hard-coded in @/usr/local/p... Andrew Almond
06:05 PM pfSense Packages Feature #8547: fwknop Port Knocking Package: upvote ++ Ashish Dev
04:22 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: No luck with the KEA server under "2.8.0-RELEASE (amd64) built on Mon Aug 4 17:45:00 EDT 2025".
The offending pack... Serge Caron
04:09 PM pfSense Plus Feature #16357 (New): Allow 'variable width' in class='container fixed': Is it possible to make the class='container fixed' user defined?
The script that determines the width/ratio of the m... Andrew Rojek
12:40 PM pfSense Packages Bug #12286: Add support for ntlm_auth in LDAP: Any news about this?
Would be great to have ntlm_auth in pfsense, i want to migrate my radius servers to pfsense, ... Ricardo Esteves

08/08/2025

08:44 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: Serge Caron wrote in #note-15:
> Hello Christian,
>
> I have several devices with no VGA interface and I need to ... Christian McDonald
07:35 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: Hello Christian,
I have several devices with no VGA interface and I need to download pfSense-CE-memstick-serial-2... Serge Caron
04:09 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: Serge Caron wrote in #note-13:
> Yes, at the end of the month or early September.
>
> Regards,
Thanks Christian McDonald
04:08 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: Yes, at the end of the month or early September.
Regards, Serge Caron
02:49 PM Bug #15825: KEA server ignores DHCPREQUEST containing an invalid FQDN: Can we retest this on 2.8 which includes Kea 2.6.2? Christian McDonald
02:45 PM Bug #14983 (Feedback): Upgrade can fail when unexpected EFI partitions are present.: The new `install-boot` code should do the correct thing here. Christian McDonald
10:03 AM Regression #16330 (Resolved): Changing a firewall rule protocol always toggles the display of advanced option: reproduced, patch fixes the issue
tested on
25.11-DEVELOPMENT (amd64)
built on Fri Aug 8 6:00:00 UTC 2025
FreeBSD... Georgiy Tyutyunnik
07:11 AM pfSense Packages Bug #15274: HAProxy Configuration Changes Require pfSense Reboot to Take Effect: @kphillips Were you able to reproduce this issue? This issue is still occurring and myself or others can provide exam... Andrew Almond

08/07/2025

10:06 PM Bug #16356 (Duplicate): Incorrect timestamp in Auto Configuration Backup log UI: Duplicate of #16209 -- already fixed in 2.8.1 Jim Pingle
09:28 PM Bug #16356 (Duplicate): Incorrect timestamp in Auto Configuration Backup log UI: pfSense Version: CE 2.8.0)
Summary:
The timestamp shown in the Auto Configuration Backup log (Services > Auto Con... Manuel Atencia
07:12 PM pfSense Plus Bug #16355 (Closed): Update the installer copyright date to 2025: This is already changed in the development version (1.1) currently being tested. Jim Pingle
06:50 PM pfSense Plus Bug #16355 (Closed): Update the installer copyright date to 2025: The pfSense installer's copyright is still for 2024. Update it to 2025 Sayed Mohammad Badiezadegan
03:20 PM pfSense Packages Feature #15619 (Closed): Upgrade CE to Tailscale 1.68.2: We are well past Tailscale 1.68.2 Christian McDonald
03:06 AM pfSense Packages Todo #14073: Shalla block list is offline but still available in pfBlocker: Pretty confident the maintainer is either not seeing these redmines tickets or is no longer maintaining this package…... Mike Moore
12:04 AM Regression #16331: 25.07 RC - no default gateway being set if default route is set to a gateway group and the Tier 1 member interface is down: There's a knock-on bug that I believe is related to this, I'll open a separate redmine for it as I was at work all da... → luckman212

08/06/2025

06:49 PM Regression #16331 (Not a Bug): 25.07 RC - no default gateway being set if default route is set to a gateway group and the Tier 1 member interface is down: I've done some troubleshooting on this and there doesn't appear to be a bug here. The issue ultimately stems from usi... Marcos M
06:06 PM Bug #15702: IPv4 DHCP client responses may be routed unexpectedly out unrelated WANs: The rules that tag the packets with "dhcpin" are only present on interfaces acting as DHCP clients themselves. Bridge... Jim Pingle
06:01 PM Bug #15702: IPv4 DHCP client responses may be routed unexpectedly out unrelated WANs: Please correct me if I'm wrong, to me it seems like the rules above tag any package from port 67 to 68 with "dhcpin",... Stefan Fleischmann
03:36 PM Bug #15702: IPv4 DHCP client responses may be routed unexpectedly out unrelated WANs: This issue is closed and has been for quite some time. That should go into a new issue if it's actually a bug. Howeve... Jim Pingle
02:04 PM Bug #15702: IPv4 DHCP client responses may be routed unexpectedly out unrelated WANs: I have noticed a problem with this approach, should I open a new bug report?
I have recently upgraded from 2.7.2 t... Stefan Fleischmann

08/05/2025

10:30 PM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: I'll have a look at this for 24.11, I imagine the scripted loader config introduced a bug here. Reid Linnemann
08:46 PM Bug #16194: IPv6 ICMP firewall log entries marked with protocol "Options" instead of ICMPv6: I am also seeing this on an 1100 after updating from 24.11 to 25.07 (released Aug 4). My /var/log/filterlog lines lo... Jeff Earickson
04:44 PM Revision 78bbf6b5: Don't clobber rules list: Marcos M
03:47 PM Bug #16216 (Feedback): [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra): This should be resolved by: https://github.com/pfsense/FreeBSD-src/commit/7a623f854217be1dc7a04ce0b3f47303ea2ce7a9 Steve Wheeler
03:01 PM Bug #16216: [BUG?] New PPPoE module (if_pppoe) causes high "Errors Out" on WAN (Vivo Fibra): Same issue seen here. I'm using a HFSC traffic shaper on the WAN interface in case that is relevant. Phil Lee
03:42 PM Regression #16354 (Not a Bug): Routing issue with BGP MultiPath Site-to-site VPN, only using OpenVPN and with the new "Interface Bound States" state policy: This is not a bug, it's working like it should for OpenVPN and the "workaround" is exactly what should be done in thi... Jim Pingle
03:38 PM Regression #16354 (Not a Bug): Routing issue with BGP MultiPath Site-to-site VPN, only using OpenVPN and with the new "Interface Bound States" state policy: Recently upgraded from pfSense CE 2.7.2 to 2.8.0.
All seems fine, except for some problems with multipath BGP routin... Edoardo Federici
03:35 PM pfSense Packages Bug #16353 (New): failed to dynamically load plugin '/usr/local/lib/named/filter-aaaa.so': plugin API version mismatch: 1/2: Infamous ( #12869 , #10413 ) filter-aaaa.so plugin issue is back in a new twist, this time the error says it cannot l... Ivars Strazdins
10:43 AM Bug #16128: if_pppoe: PHP password handling: Additional examples have been found. Still an issue in 25.07. Steve Wheeler

08/04/2025

07:49 PM pfSense Plus Bug #16304 (Resolved): Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-9:
> I'm not able to replicate what you've seen, can you describe the setup that you p... Sayed Mohammad Badiezadegan
02:41 PM pfSense Plus Feature #13740 (Closed): Feature Request: Mark Boot Environments with different properties. I.e "No boot", "No Delete" etc etc: 1. Seems very niche. Not sure the value proposition is there.
2. Is already implemented. Christian McDonald
12:32 PM Bug #16352 (Rejected): TimeStemp ServicesAuto Configuration BackupRevision Information: The timestamp for an ACB entry is only recorded on the server and displayed in the local timezone (both are the same ... Jim Pingle
08:38 AM Bug #16352 (Rejected): TimeStemp ServicesAuto Configuration BackupRevision Information: As for now the revision Timestamp is rather confussing / messing up than helpful. In my opinion it should write down ... Thomas Santinelli
12:28 PM Bug #16350 (Rejected): Adoption of changes: There isn't enough detail here to make sense of what the problem might be. Please post on the forum and if there is a... Jim Pingle
12:26 PM Bug #16349 (Not a Bug): Gateway and Gatewaygroups: None of those are bugs.
Gateway types must match the group, for example, the UI hides IPv6 gateways when a group h... Jim Pingle
12:23 PM Bug #16347 (Closed): Memory leak in ``pftop``: Jim Pingle
06:26 AM Bug #16351 (New): OpenVPN Gateway creation - incorrect IPv6 address: When using the "gateway creation" option of OpenVPN, the legacy IP gateway is set to the address of the firewall, whi... Bert Smith
01:49 AM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: tested with a 5100 installed booting BIOS with 25.07 and the serial speed setting is retained in the web interface bu... Jordan G

08/03/2025

05:28 PM Bug #16347: Memory leak in ``pftop``: not seeing this either so far with 25.07 and an existing config Jordan G
04:23 PM pfSense Packages Feature #9833: ACME: add ability to use custom ACME server: +1 I'm already using step-ca with caddy to get short lived certificates for other web interfaces and it works brillia... Liam Riley
12:11 PM Bug #16350 (Rejected): Adoption of changes: - sometimes saving/adopting made changes result in an error message (changes in interfaces) even though adoption (wir... Thomas Santinelli
12:06 PM Bug #16349 (Not a Bug): Gateway and Gatewaygroups: * Not all active gateways are available when creating a new gateway group.
* In the backup XML, gateway groups still... Thomas Santinelli
05:08 AM Bug #16343: HA: routes not removed from secondary when syncing static route that uses alias as destination: I can confirm that behavior, tested with out HA.
Even I completely delete static route created with Alias, the IPs ... aleksei prokofiev
12:26 AM pfSense Packages Todo #14073: Shalla block list is offline but still available in pfBlocker: Bumping this redmine again to the top. Testing on both 25.07 and 24.11 both have this issue still present. Kris Phillips
12:21 AM pfSense Packages Feature #14423 (Confirmed): Add HTTP/3 and QUIC support to HAProxy webConfigurator GUI: Updating status to Confirmed and updating title to reflect the goal.
I can confirm that there are no GUI options... Kris Phillips
12:14 AM pfSense Packages Bug #14489: FRR Needs VPN Linkup Initialization Detection: Updating title Kris Phillips
12:12 AM pfSense Packages Bug #14489 (Confirmed): FRR Needs VPN Linkup Initialization Detection: Updating affected version for both CE and Plus and marking Confirmed, as I've also seen this behavior.
Rather than... Kris Phillips
12:09 AM pfSense Packages Bug #16206: Package apcupsd starts even when disabled: Re-tested this on the 25.07-RELEASE builds. This issue is still present. Kris Phillips
12:08 AM pfSense Packages Todo #16346 (Confirmed): haproxy - Update description text for setting "Number of threads to start per process": I can confirm this.
Additionally, reading HAProxy's documentation, since HAProxy 2.4, multithreading is enabled ... Kris Phillips
12:04 AM pfSense Packages Feature #11837 (Confirmed): Increase field length of FRR Networks in Access Lists and Prefix Lists: Tested and can confirm this is still an issue.
Marking redmine as Confirmed. Kris Phillips
12:00 AM pfSense Packages Feature #16089: Add packages for Zabbix 7.2 and 7.4 agent and proxy: Checked latest 25.07-RELEASE builds. These packages are not present.
Updating title to reflect additional 7.4 p... Kris Phillips

08/02/2025

11:57 PM pfSense Packages Bug #16336 (Confirmed): AWS VPC Wizard has Green Color Banner for Failures: Kris Phillips
11:57 PM pfSense Packages Bug #16301 (Incomplete): Telegraf stops service over night: Changing the status of this redmine to Incomplete for now until more details are provided, per the previous reply. Kris Phillips
11:56 PM pfSense Packages Bug #16337 (Confirmed): Zabbix Agent 7 Spawning Too Many Instances of Itself: Marking as Confirmed, since testing was done by another. Kris Phillips
05:29 PM pfSense Packages Bug #16348 (New): HAProxy adds wrong SSL filename prefix in the configuration file for ssl crt-list ca-file (SSL Offloading): After the Update to the Netgate Releases BETA of pfSense Plus Software Version 25.03 HAProxy DEV and stable generated... Daniel van der Wal
03:35 PM Revision 0cd07609: Fix regression with easyrule and speed up rule list generation.: Followup to 2bdfe606826b9f232f47d676948de175445b29b3. Marcos M
05:24 AM Bug #16347: Memory leak in ``pftop``: Jim Pingle wrote in #note-1:
> Can you reproduce this on a system running CE 2.8.0, Plus 25.07, or later? There was ... Lev Prokofev
12:03 AM Revision 2bdfe606: Refactor config rule sorting: Refactor how configuration rules are sorted to allow easier and more
granular control of where the ruels are placed.
... Marcos M
12:03 AM Revision 554a9bde: Update PFConfig and rule label constants: - Create a new constant for all categories for ease of use.
- Move constants to util.inc which allows their use in fi... Marcos M

08/01/2025

06:26 PM pfSense Packages Bug #15909 (Resolved): Prevent tailscale interface from being assignable: patch fixes the issue
tested on:
25.07-RELEASE (amd64)
built on Tue Jul 22 22:24:00 CEST 2025
FreeBSD 15.0-CURRENT Georgiy Tyutyunnik
04:05 PM pfSense Packages Bug #15909: Prevent tailscale interface from being assignable: Applied in changeset pfsense:commit:10b8d429c42de77013cc6a3d393e8c7ef7b5e495. Christian McDonald
03:51 PM pfSense Packages Bug #15909: Prevent tailscale interface from being assignable: Addressed with https://gitlab.netgate.com/pfSense/factory/-/commit/10b8d429c42de77013cc6a3d393e8c7ef7b5e495 Christian McDonald
03:50 PM pfSense Packages Bug #15909 (Feedback): Prevent tailscale interface from being assignable: Christian McDonald
06:20 PM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist: As far as I can tell with the code currently committed it appears to be OK everywhere by inspecting the headers (even... Jim Pingle
05:30 PM pfSense Packages Todo #12354 (Closed): Update haproxy-devel to mitigate CVE-2021-40346: It was marked as "Feedback" -- so waiting on someone to check and confirm that it properly addressed. Nobody ever com... Jim Pingle
05:20 PM pfSense Packages Todo #12354: Update haproxy-devel to mitigate CVE-2021-40346: Can this issue be closed now? It's been 3 years and the haproxy package is on version 2.9 as of pfSense 24.11. Andrew Almond
05:08 PM pfSense Plus Bug #15597 (Feedback): Panic during upgrade may leave a ZFS Boot Environment in an unusual state: Addressed in https://gitlab.netgate.com/pfSense/factory/-/commit/8ff0c81516b5502565e014238b3784e63b02f097 Christian McDonald
04:39 PM pfSense Plus Bug #15613 (Feedback): rc.savecore errors prevent boot in ZFS: Addressed in https://gitlab.netgate.com/pfSense/factory/-/commit/10b8d429c42de77013cc6a3d393e8c7ef7b5e495 Christian McDonald
03:50 PM Revision 10b8d429: Prevent tailscale interface from being assignable. Fixes #15909: Christian McDonald
12:57 PM Bug #16124: Kernel Panic on PCI WiFi Passthrough (AC7265): Need to see the backtrace but I'd bet it's this: https://redmine.pfsense.org/issues/16237 Steve Wheeler
12:28 PM Bug #16347 (Feedback): Memory leak in ``pftop``: Can you reproduce this on a system running CE 2.8.0, Plus 25.07, or later? There was an "upstream fix in pftop for a ... Jim Pingle
09:25 AM Bug #16347 (Closed): Memory leak in ``pftop``: Leaving `pftop` running in an interactive session for an extended period (several hours to days) causes **continuous ... Danilo Zrenjanin

07/31/2025

11:41 PM pfSense Packages Bug #16345: Bind9 TLS auth failure: I also tested by editing the keys and changing permissions, but without success
So, basically, in current pfsense re... Phil Wardt
11:13 PM pfSense Packages Bug #16345 (New): Bind9 TLS auth failure: When using bind920 installed from GUI package manager, if we configure the forwarder to use upstream name servers wit... Phil Wardt
11:29 PM pfSense Packages Todo #16346 (Confirmed): haproxy - Update description text for setting "Number of threads to start per process": On @haproxy_global.php@ , the description for the setting @Number of threads to start per process@ says: ... Andrew Almond
10:46 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: I'm not able to replicate what you've seen, can you describe the setup that you performed on the console? Reid Linnemann
09:03 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-7:
> Is this the dhcp configuration as originally generated on first boot? The domain-... Sayed Mohammad Badiezadegan
08:48 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Is this the dhcp configuration as originally generated on first boot? The domain-name-servers option is present as I ... Reid Linnemann
09:28 PM pfSense Packages Bug #15909: Prevent tailscale interface from being assignable: If it's true that "assigning the tailscale interface is not a valid setup", it should be straightforward to prevent a... → luckman212
07:05 PM pfSense Plus Bug #15499: Manually verifying the boot environment makes config changes: Applied in changeset pfsense:commit:891b161d2bd54390ed972ac82971d8b46971d4ae. Christian McDonald
07:02 PM pfSense Plus Bug #15499 (Feedback): Manually verifying the boot environment makes config changes: Fixed with https://gitlab.netgate.com/pfSense/pfSense/-/commit/891b161d2bd54390ed972ac82971d8b46971d4ae Christian McDonald
06:59 PM Revision 891b161d: Don't POST traffic graph widget settings on manual BE Verification. Fixes #15499: Christian McDonald
06:37 PM Feature #16321 (Closed): Support 2.5G SGMII (SFP GPON ONT) in ``bxe`` driver (QLogic NetXtreme II BCM57810): Jim Pingle
06:36 PM Regression #16317 (Resolved): ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: Jim Pingle
06:06 PM pfSense Packages Bug #16342: Incorrect behavior of logout button in Tailscale: I'm seeing different behavior here.
When using a reusable preauth key, if I click `Logout and Clean`, the local Tail... Christian McDonald
07:15 AM pfSense Packages Bug #16342: Incorrect behavior of logout button in Tailscale: This issue is not limited to clicking the log out button in Tailscale.
In my case, I’m experiencing the same problem... Per Otto Opstad
05:20 PM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: Jim Pingle wrote in #note-4:
> Has anyone tried this on a non-EFI device to see if it works there?
>
> This may o... Sayed Mohammad Badiezadegan
01:27 PM pfSense Docs New Content #16344 (Rejected): Apcupsd help link: There are no docs for the apcupsd package, so there is no viable target for a help link. Jim Pingle
03:25 AM pfSense Docs New Content #16344 (Rejected): Apcupsd help link: Installed Apcupsd package does not include a help link for configuration when click on "?" Alhusein Zawi
03:16 AM Bug #16339 (Resolved): Captive Portal ``backwardsyncpassword`` value not sanitized in status output: Backup file: <radmac_secret>test123345</radmac_secret>
config.xml of status.php: <radmac_secret>xxxxx</radm... Alhusein Zawi

07/30/2025

08:48 PM Bug #15795: Removing a route from the High Availability primary node does not remove the entry from the routing table on the secondary node: Added #16343 to track the issue reported by Azamat. Craig Coonrad
05:40 PM Bug #15795 (Closed): Removing a route from the High Availability primary node does not remove the entry from the routing table on the secondary node: That needs a separate issue report since it's more related to the alias/static route implementation rather than the s... Marcos M
05:06 PM Bug #15795 (Assigned): Removing a route from the High Availability primary node does not remove the entry from the routing table on the secondary node: Tested on 24.11
I'm afraid this bug wasn't fixed completely.
There is a still an issue with syncing of static rou... Azamat Khakimyanov
08:47 PM Bug #16343 (Confirmed): HA: routes not removed from secondary when syncing static route that uses alias as destination: Tested on 25.07-RELEASE. Confirmed. Craig Coonrad
08:47 PM Bug #16343: HA: routes not removed from secondary when syncing static route that uses alias as destination: user note:
> I'd also like to add that on the primary firewall, even after saving the alias linked to a static rou... Craig Coonrad
08:46 PM Bug #16343 (Confirmed): HA: routes not removed from secondary when syncing static route that uses alias as destination: (copied this over from #15795)
Tested on 24.11
There is a an issue with syncing of static routes in case we use... Craig Coonrad
05:09 PM pfSense Packages Bug #16342 (Confirmed): Incorrect behavior of logout button in Tailscale: Can confirm this issue in latest pfSense development versions dylan mendez
04:14 PM pfSense Packages Bug #16342: Incorrect behavior of logout button in Tailscale: Also, if change working key to different, save changes and then put working key back it won't connect and key will be... aleksei prokofiev
04:00 PM pfSense Packages Bug #16342 (Confirmed): Incorrect behavior of logout button in Tailscale: Tailscale after press "Logout and Clean" button and then try to start connection again, it will produce error in the ... aleksei prokofiev
04:10 PM Todo #16291 (Closed): Relocate Kea control socket and lease database: Christian McDonald
02:56 PM Bug #15973 (Rejected): Kea DHCP server crashes on 3100 (32bit ARM) every 10 days or so post 24.11 upgrade: Christian McDonald
02:56 PM Bug #16299 (Closed): Remove unsupported "Drop Old UDP Queries" option from DNS Resolver settings: Christian McDonald

07/29/2025

11:33 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-5:
> Sayed Mohammad Badiezadegan wrote in #note-4:
> > Reid Linnemann wrote in #note-... Sayed Mohammad Badiezadegan
06:50 PM pfSense Docs New Content #16315 (Resolved): Feedback on Configuration — Advanced Configuration Options — Miscellaneous: Added (along with other recent changes): https://gitlab.netgate.com/docs/pfSense-docs/-/commit/f18e5cab3a5014d60c10ba... Jim Pingle
06:37 PM Bug #16341 (Confirmed): Error notification and log message ``"Updating repositories metadata" returned error code 1`` at boot: There are certain environments where users see an error notification when logging in after (re)booting which reads:
... Jim Pingle
04:39 PM pfSense Docs Correction #16340: Routed IPsec Tunnels (VTI) Don't Allow For ANY Policy Routing: Jim Pingle wrote in #note-2:
> There are some other scenarios out there which can work but are rare enough to not wo... Ethan Word
02:57 PM pfSense Docs Correction #16340 (Rejected): Routed IPsec Tunnels (VTI) Don't Allow For ANY Policy Routing: There are some other scenarios out there which can work but are rare enough to not worth detailing, but we can't unil... Jim Pingle
02:37 AM pfSense Docs Correction #16340: Routed IPsec Tunnels (VTI) Don't Allow For ANY Policy Routing: Sorry, I meant to include one more note, if I am wrong about this and the word "may" is being used intentionally, I t... Ethan Word
02:36 AM pfSense Docs Correction #16340 (Rejected): Routed IPsec Tunnels (VTI) Don't Allow For ANY Policy Routing: I wanted to suggest a change on the docs to make something a little more clear than it currently is.
On the page ... Ethan Word
12:05 PM Regression #16282 (Feedback): Firewall rules are not performing source tracking when Sticky Connections option is enabled: This is now fixed in 25.07 and should be in the next 2.8.1-beta build.
https://gitlab.netgate.com/pfSense/FreeBSD-... Steve Wheeler

07/28/2025

09:49 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Sayed Mohammad Badiezadegan wrote in #note-4:
> Reid Linnemann wrote in #note-3:
> > Nothing in that config seems o... Reid Linnemann
07:30 PM pfSense Docs New Content #16245 (Rejected): Add VIP and Firewall Rules References to 1:1 NAT Configuration Example: I don't think there are any changes here that are necessary at the moment.
A virtual IP address is not required fo... Jim Pingle
07:06 PM pfSense Docs Correction #16207 (Closed): System --> Advanced --> Netgate Nexus. Help link lands on docs main page.: Craig Coonrad
07:06 PM pfSense Docs Correction #16207 (Resolved): System --> Advanced --> Netgate Nexus. Help link lands on docs main page.: pfSense = 25.07-RELEASE
Help link now goes to Nexus options page: https://docs.netgate.com/pfsense/en/latest/nexus... Craig Coonrad
06:35 PM Todo #6727 (Feedback): Apple TouchID/FaceID probes for site icon files that do not exist: Applied in changeset commit:80a9bb2ea1b0b4bd03960b10ad7784710ad76e9c. Jim Pingle
06:32 PM Todo #6727: Apple TouchID/FaceID probes for site icon files that do not exist: I tested it on a few more devices (CE and Plus) and it seems to be working OK. Good enough to merge in for the next d... Jim Pingle
03:58 PM Todo #6727 (In Progress): Apple TouchID/FaceID probes for site icon files that do not exist: MR with a more complete fix: https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/1240
Attached is a diff o... Jim Pingle
06:05 PM Bug #16339 (Feedback): Captive Portal ``backwardsyncpassword`` value not sanitized in status output: Applied in changeset commit:22a5e18fbfdabc5b9c7324302217a5d56208fcd1. Jim Pingle
06:02 PM Bug #16339 (Resolved): Captive Portal ``backwardsyncpassword`` value not sanitized in status output: The value of the @backwardsyncpassword@ is not sanitized in the @config.xml@ copy included in the output generated by... Jim Pingle
06:03 PM Revision 80a9bb2e: Browser icon header revamp. Implements #6727: Jim Pingle
05:58 PM Revision 22a5e18f: Sanitize backwardsyncpassword in status output. Fixes #16339: Jim Pingle
02:55 PM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: Has anyone tried this on a non-EFI device to see if it works there?
This may only affect EFI consoles as they are ... Jim Pingle
12:48 PM pfSense Docs Todo #16335 (Rejected): Feedback on pfSense® software Configuration Recipes — WireGuard Site-to-Site VPN Configuration Example: The linked example is for exactly two sites, not multiple peers.
The example for multiple peers is https://docs.ne... Jim Pingle
12:43 PM Regression #16285 (Resolved): ``syslogd`` does not respect the configured IP address binding: Jim Pingle
12:42 PM Regression #16209 (Resolved): AutoConfigBackup entries show incorrect timestamps: Jim Pingle
03:37 AM Regression #16331: 25.07 RC - no default gateway being set if default route is set to a gateway group and the Tier 1 member interface is down: Forum link with much more discussion: https://forum.netgate.com/topic/198256/25-07-rc-no-default-gateway-being-set-if... → luckman212

07/27/2025

06:47 PM Regression #16209: AutoConfigBackup entries show incorrect timestamps: my backups appear using the correct tz and schedule set in the configuration page
!clipboard-202507271345-tbdiu.png... Jordan G
06:40 PM Regression #16285: ``syslogd`` does not respect the configured IP address binding: syslogd appears to be respecting the interface binding once enabled in 25.07 Jordan G
01:52 PM Regression #16282 (Confirmed): Firewall rules are not performing source tracking when Sticky Connections option is enabled: This also affects 25.07 and 2.8.1. Steve Wheeler
05:21 AM pfSense Packages Bug #16337: Zabbix Agent 7 Spawning Too Many Instances of Itself: Can confirm this behavior on 25.07-RC
I see
zabbix_agentd [75544]: Is this process already running? Could not lock ... aleksei prokofiev
05:02 AM pfSense Packages Bug #16336: AWS VPC Wizard has Green Color Banner for Failures: Can confirm this behavior on 25.07-RC aleksei prokofiev
01:06 AM pfSense Packages Bug #16229: Snort cannot run on if_pppoe interfaces: Steve Wheeler wrote:
> Snort will fail to start if enabled on a PPPoE interfaces using the new if_pppoe module:
>
... Andrew Bruce

07/26/2025

11:39 PM pfSense Packages Bug #16301: Telegraf stops service over night: What is the output of "ps aux | grep telegraf" when it's in this state? Kris Phillips
11:37 PM pfSense Packages Bug #16328 (Duplicate): openvpn-client-export 1.9.5 | Viscosity Bundle | ECDSA cert missing key when Password Protect Certificate is ticked: Closing out Duplicate. Kris Phillips
05:42 PM pfSense Packages Bug #16337 (Confirmed): Zabbix Agent 7 Spawning Too Many Instances of Itself: When rebooting the appliance, the Zabbix Agent 7 package tries to launch itself multiple times erroneously. This app... Kris Phillips
05:29 PM pfSense Packages Bug #16336 (Confirmed): AWS VPC Wizard has Green Color Banner for Failures: The Amazon AWS Wizard is incorrectly using a green banner for warning of missing information, instead of a red failur... Kris Phillips
06:50 AM pfSense Docs Todo #16335 (Rejected): Feedback on pfSense® software Configuration Recipes — WireGuard Site-to-Site VPN Configuration Example: *Page:* https://docs.netgate.com/pfsense/en/latest/recipes/wireguard-s2s.html
*Feedback:*
Allowed ip for tunnel i... Mojtaba Ghahari

07/25/2025

10:06 PM Feature #16068: Allow disabling logging of packets blocked due to unmatched IP options: @mmendoza Thanks for implementing this!
Andrew Almond
05:56 PM Feature #16334 (New): Automate removal of default IPv6 Configuration: There should be a way to remove the default IPv6 configuration efficiently.
Probably a pfSsh.php playback script o... Chris Linstruth
03:48 PM Bug #8100: pfsync deletes states on primary for connections established through secondary: This defect still exists in pfSense Plus 25.07. States created when the secondary is the MASTER node are removed from... Chris Linstruth

07/24/2025

09:38 PM Regression #16331: 25.07 RC - no default gateway being set if default route is set to a gateway group and the Tier 1 member interface is down: Here's a screenshot I took of the System > Routing > Gateways after booting up and experiencing this bug
!clipboar... → luckman212
03:24 AM pfSense Packages Bug #16332 (Confirmed): Avahi Fails to Restart on 25.07 Reliably: Confirmed on 25.07 Release no able to reliably start service Bryan Allen
01:22 AM pfSense Packages Bug #16332 (Confirmed): Avahi Fails to Restart on 25.07 Reliably: Avahi service does not appear to reliably start when the restart command is issued.
Around 1 in 4 times it will ... Kris Phillips

07/23/2025

11:13 PM Revision 26bc3f3e: Fix rule labels for user rules in firewall log GUI: Previously the firewall log page checked for "USER_RULE: " in rule labels
to add a user icon to appropriate rules. No... Marcos M
10:53 PM Revision 56cae8a3: Improve rule labels code: Remove redundant code, add more validation, and update comments.
Followup to 82db67f6a2e09658892f1f68c3c18e5621ff5c9f. Marcos M
05:41 PM Regression #16331 (Not a Bug): 25.07 RC - no default gateway being set if default route is set to a gateway group and the Tier 1 member interface is down: With 25.07 so close I wanted to get this issue opened ASAP. Sorry for being a bit light on details—I'm collecting inf... → luckman212
05:05 PM Regression #16330 (Feedback): Changing a firewall rule protocol always toggles the display of advanced option: Applied in changeset commit:ed1bb9030fabac07a01cac587d901f311ef71ba3. Marcos M
04:07 PM Regression #16330 (Resolved): Changing a firewall rule protocol always toggles the display of advanced option: When editing a firewall rule the Advanced Options are toggled any time the protocol selection changes. Marcos M
04:08 PM Revision ed1bb903: Don't always toggle display of advanced options. Fix #16330: Marcos M
04:06 PM Regression #16317: ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: Marcos M wrote in #note-4:
> This will be in the next public build.
I just updated to 2.8.1.b.20250723.1400 and e... Grimson Gretzleburg
03:38 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: I am not sure on this Marcos but I believe it might be because my ISP cycles the PPP once after it first gets establi... Chris Collins
03:33 PM pfSense Packages Bug #16328: openvpn-client-export 1.9.5 | Viscosity Bundle | ECDSA cert missing key when Password Protect Certificate is ticked: Sorry, I some how messed up the formatting of this ticket.
I have created it again correctly under #16329
Please c... Steve Scotter
03:29 PM pfSense Packages Bug #16328 (Duplicate): openvpn-client-export 1.9.5 | Viscosity Bundle | ECDSA cert missing key when Password Protect Certificate is ticked: In the same vain as #15086, today I had cause to export a OpenVPN client profile. As an extra layer of protection I t... Steve Scotter
03:31 PM pfSense Packages Bug #16329 (New): openvpn-client-export 1.9.5 | Viscosity Bundle | ECDSA cert missing key when Password Protect Certificate is ticked: In the same vain as #15086, today I had cause to export a OpenVPN client profile. As an extra layer of protection I t... Steve Scotter
02:31 PM Feature #16068 (Feedback): Allow disabling logging of packets blocked due to unmatched IP options: Implemented with commit:89cbbbb635e742a845e344bd54613689227b684d. Marcos M
10:40 AM pfSense Docs Correction #16207: System --> Advanced --> Netgate Nexus. Help link lands on docs main page.: Still redirects to the main page in 25.07-RC. Steve Wheeler

07/22/2025

10:37 PM Revision 89cbbbb6: Allow disabling logging of packets blocked due to unmatched IP options. Implement #460345: Marcos M
10:35 PM Feature #16068 (In Progress): Allow disabling logging of packets blocked due to unmatched IP options: This is now possible with an update to filterlog:
https://github.com/pfsense/FreeBSD-ports/commit/5e5a1253371c559dd3... Marcos M
06:44 PM Revision 6950bae4: Ignore link-local IPv6 address from PPPoE DEVD events: Returns the behavior of ignoring LL addresses. The LL fallback is no
longer needed since the IPv6 peer address is now... Marcos M
06:02 PM Revision 65355849: Always include the IPv6 peer address if available: Also include the scope with LL addresses for the IPv6 peer address.
Followup to 7948ab35f8becd96ee15cc06f60bf51339e7... Marcos M
03:23 PM Revision 5fb9eb8e: Fix negated rules again: Followup to c8e1e75d56a3c01628c535f49f556b6242ee4712 Marcos M
03:03 PM Revision c8e1e75d: Fix negated rules: Regression from 82db67f6a2e09658892f1f68c3c18e5621ff5c9f Marcos M
12:07 PM Regression #16326: Dynamic DNS does not use preferred VIP in Gateway Group: No it would be included in 2.9.0. It could be a system patch in 2.8.1 and 25.07. Steve Wheeler
07:06 AM Regression #16326: Dynamic DNS does not use preferred VIP in Gateway Group: Marcos M wrote in #note-1:
> It's likely too late for a fix in the upcoming release of CE/Plus however it could be i... Lionel Beard

07/21/2025

06:05 PM Regression #16317 (Feedback): ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: This will be in the next public build. Marcos M
05:50 PM Regression #16326 (Feedback): Dynamic DNS does not use preferred VIP in Gateway Group: Applied in changeset commit:691852a2b79e60d06313538cb3910e98725034dd. Marcos M
05:39 PM Regression #16326 (In Progress): Dynamic DNS does not use preferred VIP in Gateway Group: It's likely too late for a fix in the upcoming release of CE/Plus however it could be included as part of a system pa... Marcos M
03:35 PM Regression #16326 (Feedback): Dynamic DNS does not use preferred VIP in Gateway Group: Since pfsense CE 2.8.0, Dynamic DNS only uses interface address to update remote DNS server, even if Virtual IP is se... Lionel Beard
05:46 PM Revision 691852a2: Consider gateway group VIP preference with DDNS. Fix #16326: Marcos M

07/20/2025

04:41 PM Regression #16317 (In Progress): ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: Marcos M
01:33 AM Regression #16317 (Confirmed): ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: Not much to test here, since this has a clear system message stating it's unsupported. Might be something we can imp... Kris Phillips
02:32 AM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: confirmed serial speed is not respected once changed, XG-7100 on 25.07.r.20250715.1733 Jordan G
01:31 AM Bug #16246 (In Progress): `cxgbev` driver is missing in pfSense, but present in FreeBSD: I can confirm this driver is not present for virtual Chelsio NICs using SRIOV.
This should be included in pfSense ... Kris Phillips
01:05 AM Bug #16299: Remove unsupported "Drop Old UDP Queries" option from DNS Resolver settings: following application of above changeset, the option is no longer present in the dns resolver/advanced configuration Jordan G

07/19/2025

11:47 PM pfSense Plus Bug #16309 (Confirmed): status_interfaces.php includes VLAN switchport information even when no physical switch is present on the platform (the config.xml was imported from platform with switch): confirmed on 8200 VLAN interfaces display switch port configuration on platforms without a hardware switch. Bryan Allen
11:13 PM pfSense Plus Bug #16323 (Confirmed): Serial/Console Baud Rate Cannot Be Changed: Confirmed this on 6100 25.07.r.20250715.1733.1500029
changed serial speed to 57600 > restarted firewall > attempted... Bryan Allen
04:26 AM Bug #16246: `cxgbev` driver is missing in pfSense, but present in FreeBSD: Here is a potential fix: https://github.com/pfsense/FreeBSD-src/pull/57
Though I have no idea how to build and test ... Nazar Mokrynskyi

07/18/2025

11:50 PM Feature #16325 (Feedback): Add support for labels in configuration rules: Applied in changeset commit:82db67f6a2e09658892f1f68c3c18e5621ff5c9f. Marcos M
11:22 PM Feature #16325 (Feedback): Add support for labels in configuration rules: Rules in config.xml are currently identified by their rule ID (uniqueness is not enforced) and description. These are... Marcos M
11:36 PM Revision 82db67f6: Refactor rule labels. Implement #16325: - Define labels as key/value pairs.
- Add new functions to handle labels defined in config.xml rules.
- Support gener... Marcos M
11:03 PM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: That's the intended behavior, and indeed the option to force IPv4 for IPv6 updates is available for such cases. There... Marcos M
10:38 AM Regression #16249: Dynamic DNS fails to update AAAA record for Route53 and No-IP services: Hi, I'm not sure if this is the proper place to post this, but it seems like https://redmine.pfsense.org/issues/16251... Joshua M
10:16 PM Revision ac89aed3: Also check the pf config file when checking if a filter reload is needed: This serves to keep the pf config file in an expected state in case it was
modified by some other method.
Followup t... Marcos M
07:07 PM pfSense Plus Bug #16323: Serial/Console Baud Rate Cannot Be Changed: Alex Ellington wrote:
> Despite whatever baud rate is set in the settings (System->Advanced->Admin Access), successfu... Sayed Mohammad Badiezadegan
06:25 PM pfSense Plus Bug #16323 (Confirmed): Serial/Console Baud Rate Cannot Be Changed: Despite whatever baud rate is set in the settings (System->Advanced->Admin Access), successful serial connections onl... Alex Ellington
06:43 PM Feature #16324 (New): If AAA Server Used - Disable Local Account: If a AAA server (e.g., Radius) is the main authentication method, and someone gains access to local account credentia... Alex Ellington
05:03 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-3:
> Nothing in that config seems out of place, the dhcpd and resolver conf are the sa... Sayed Mohammad Badiezadegan
03:53 AM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Nothing in that config seems out of place, the dhcpd and resolver conf are the same as any other install. What are th... Reid Linnemann
04:33 PM Todo #16322 (Feedback): dpinger can use a CARP VIP as the source IP address: find_interface_ip() in /etc/inc/interfaces.inc has a flush parameter, but that only seems to ignore the $interface_ip... Christopher Cope
04:18 PM Revision 876c32bc: Remove unneeded core repo since we pkg add them directly: Brad Davis
03:45 PM Bug #16274: UPnP IGD & PCP status page does not show "disabled" message after the service has been enabled then disabled: Fixing target, commit was already in Plus 25.07 and CE 2.8.1 branches. Jim Pingle
03:44 PM Bug #16265: PPPoE IPv6 gateways are unavailable without Router Advertisements when using ``if_pppoe``: Fixing target, commit was already in Plus 25.07 and CE 2.8.1 branches. Jim Pingle
03:41 PM Feature #16321 (Closed): Support 2.5G SGMII (SFP GPON ONT) in ``bxe`` driver (QLogic NetXtreme II BCM57810): Enables support for 2.5Gbps with GPON SFP on QLogic NetXtreme II BCM57810.
Adding for tracking, relevant commit is... Jim Pingle
03:38 PM Bug #16320 (Resolved): Multiple removable filesystem panics: Several fixes went in for panics from removable filesystems, this is just for tracking purposes as the commits are al... Jim Pingle
03:31 PM Bug #16319 (Resolved): Kernel panic in OpenVPN ``if_ovpn`` due to use-after-free of mbuf: Fix is already merged, this is for tracking purposes.
Relevant src commits:... Jim Pingle
03:24 PM Bug #16318 (Resolved): Panic in ``pf`` if the declared packet length is longer than the actual packet: Fix is already merged, this is just for tracking.
Relevant src commit:... Jim Pingle
03:15 PM Bug #16101 (Resolved): Kernel Panic in ``if_qlnxe`` kernel module when loaded via ``kldload``: The commit for this was merged into Plus 25.07 (@a61e724cd35ec027584e7a03fdc36edb740b7415@) and CE 2.8.1 (@780a99fddd... Jim Pingle
03:08 PM Bug #16276: The ``ng_etf(4)`` kernel module is missing from CE installations: Relevant src commits:... Jim Pingle
03:05 PM Bug #16299 (Feedback): Remove unsupported "Drop Old UDP Queries" option from DNS Resolver settings: Applied in changeset commit:7b9907f18adc7bc6d83ab1652674a6e5059555d7. Christian McDonald
02:58 PM Regression #16285 (Feedback): ``syslogd`` does not respect the configured IP address binding: The commit that fixes this is in the Plus 25.07 and CE 2.8.1 branches, so it should be ready for testing. Jim Pingle
02:55 PM Revision 7b9907f1: unbound: remove sock-queue-timeout until supported upstream. Fixes #16299: Christian McDonald
02:25 PM Bug #12947 (Resolved): Old IPv6 addresses may continue to be used after DHCP or RA changes: Jim Pingle
02:25 PM Regression #16196 (Resolved): System update page shows version string with extra parts: Jim Pingle
02:25 PM Bug #16103 (Resolved): PPPoE WAN loses IPv4 addresses on ``IPV6CP`` ``LayerDown`` events: Jim Pingle
02:24 PM pfSense Packages Bug #16094 (Resolved): pfBlocker-NG null blocking SERVFAIL: Jim Pingle
02:24 PM Bug #16081 (Resolved): Panic accessing ``sysctl`` OID ``net.inet.ip.nhdispatch`` with an INVARIANTS kernel: Jim Pingle
02:24 PM Bug #16011 (Resolved): AutoConfigBackup remote revision timestamps may not be unique due to batch uploads: Jim Pingle
02:23 PM Bug #12249 (Resolved): Long configuration revision reasons can cause AutoConfigBackup upload to fail: Jim Pingle
02:04 PM Regression #16317: ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: Edit: I am on 2.8.1.b.20250717.1752 Grimson Gretzleburg
02:01 PM Regression #16317 (Resolved): ``if_pppoe`` driver missing ALTQ support in CE 2.8.1 snapshots: I just updated to 2.8.1 beta and had to switch back to mpd5 as the firewall rules refused to load with the following ... Grimson Gretzleburg
01:56 PM Bug #16232: Swap fails to activate on updated pfSense 2.8.0 when multiple swap partitions exist: This bug still exists on the 2.8.1 beta. Grimson Gretzleburg
08:28 AM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: My comment #2 might stem from a misunderstanding of how the limiters are implemented. I have done some more testing... Patrik Stahlman
02:00 AM Bug #16316 (New): Issue with multi-language support for the configuration interface: As the notes in services_ntpd_gps.php suggest, you can modify it to support multi-language display:
Before modific... opn wall

07/17/2025

10:41 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Thanks for the troubleshooting. Before a fix is implemented it's best to understand what's happening and how the adde... Marcos M
09:36 PM Bug #16300: unable to use DHCP6 with if_pppoe, seems seperate issue to the looping bug.: Here is the final patch which so far is working clean, the earlier patch left me with duplicate dhcp6c processes, but... Chris Collins
09:23 PM pfSense Docs New Content #16315 (Confirmed): Feedback on Configuration — Advanced Configuration Options — Miscellaneous: Marking confirmed. It would be good to update the docs to reflect this option. Christopher Cope
06:47 PM pfSense Docs New Content #16315 (Resolved): Feedback on Configuration — Advanced Configuration Options — Miscellaneous: *Page:* https://docs.netgate.com/pfsense/en/latest/config/advanced-misc.html
*Feedback:*
Page seems to be missing... Steve Y
05:21 PM pfSense Packages Bug #15410: cache_object://URL Scheme is removed in Squid-6: This is the same with version 2.8.0 release for CE everything works but the status page.....This is tested in UTM vir... Jonathan Lee
03:50 PM Revision 9b0429de: A zero prefix length is invalid and really means /32: Brad Davis
02:19 PM Bug #16248 (Waiting on Merge): QLink/Marvell 41000 NIC bug: This looks to be fixed by this: https://reviews.freebsd.org/D51351
Local test builds look good. Steve Wheeler

07/16/2025

09:26 PM Revision a0baea95: pppoe_handler: Remove ipv6 router workaround: With changes to if_pppoe, we not have an associated destination address for the
p2p address and the workaround is no ... Reid Linnemann
08:14 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: I re-ran the test with this sequence:
# disabled all four limiters (LAN/WAN)
# reset the firewall state table
# ... Patrik Stahlman
07:57 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: True, I might not have done that for this test as I didn't consider any connection being involed in the manual deacti... Patrik Stahlman
07:18 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: Technically speaking, you're supposed to reset the state table after any change to limiters/shaper queues otherwise e... Jim Pingle
07:00 PM pfSense Plus Bug #16275: Removing Limiters can leave unconnected queues behind: I'm not sure if there's been any work on this for the RC (25.07.r.20250709.2036) but I noticed something else today... Patrik Stahlman
08:05 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: Reid Linnemann wrote in #note-1:
> I'll need to know a little more about the configuration, can you submit a config.... Sayed Mohammad Badiezadegan
07:38 PM pfSense Plus Bug #16304: Did not set DNS server on the LAN clients automatically if Netgate 2100 setup with Serial console only.: I'll need to know a little more about the configuration, can you submit a config.xml with any specifics that are priv... Reid Linnemann
06:54 PM Revision ea7273ac: pkg: disable FreeBSD-kmods repo: Christian McDonald
06:09 PM Revision bb26a4ce: VIP corrections: Validate IPv4 for proxyarp and respect saved vip type: Reid Linnemann

07/15/2025

11:11 PM Feature #16311 (New): Authentication Server and Group Configuration: It would be good if the authentication server was specified for the group. System > User Manager > Groups
In som... Alhusein Zawi
06:33 PM pfSense Docs Correction #16310 (Closed): Placeholder name in Instance Registration docs: Fixed: https://gitlab.netgate.com/docs/pfSense-docs/-/commit/ba4b8c4efd9d4fc0aab2ae1b8254173ded49e499 Jim Pingle

07/14/2025

06:57 PM pfSense Docs Correction #16310 (Closed): Placeholder name in Instance Registration docs: The page at https://docs.netgate.com/pfsense/en/latest/nexus/mim/registration.html#register-instance-with-controller ... Max Leighton

« Previous

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

Today

08/11/2025

08/10/2025

08/09/2025

08/08/2025

08/07/2025

08/06/2025

08/05/2025

08/04/2025

08/03/2025

08/02/2025

08/01/2025

07/31/2025

07/30/2025

07/29/2025

07/28/2025

07/27/2025

07/26/2025

07/25/2025

07/24/2025

07/23/2025

07/22/2025

07/21/2025

07/20/2025

07/19/2025

07/18/2025

07/17/2025

07/16/2025

07/15/2025

07/14/2025