Project

General

Profile

Activity

From 03/01/2010 to 03/30/2010

03/30/2010

02:59 PM pfSense Packages Bug #460 (Resolved): haproxy_global.php
this is already fixed in haproxy-dev and haproxy-stable, the old haproxy will go away in the near future. Chris Buechler
04:43 AM pfSense Packages Bug #460 (Resolved): haproxy_global.php
When applying global advanced passthru options, they're not being encoded properly.
Here is the patch:
--- /usr/loc... Alex Kolesnik
11:28 AM Revision d02951e9: Fix other interfaces_* pages and keep working with mlppp.
Marcus Brown
10:01 AM Bug #462 (Resolved): System Logs - Incorrect link shown for Load Balancer page
2.0-BETA1 built on Mon Mar 29 20:17:20 EDT 2010 FreeBSD 8.0-STABLE
WebGui - Status > System Logs
Hovering over ... Abdsalem Chaoui
08:36 AM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
I just tried the lastest revision and it still seems to be an issue. Static is being added to hosts file, however if ... xternal x
08:03 AM Bug #458 (Feedback): Openvpn TLS is not working for me
You're going to have to provide more information on the actual cause. Review the underlying OpenVPN configuration and... Chris Buechler
07:43 AM Revision 57b053e9: Add new menu name to other interfaces_* pages.
Marcus Brown
07:41 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Ok, I see that it is not possible to have more than one menu-entry per package. Also it seems that the xml-based conf... znerol znerol
05:46 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Ermal Luçi wrote:
> I committed part of these patches with some differences.
>
> Check them out and do your comme... znerol znerol
05:30 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Patch attached replacing @$g['varetc_path']}/etc@ with @$g['varetc_path']}@ znerol znerol
05:29 AM Revision 589f92bb: mlppp implementation starts
Marcus Brown
04:57 AM pfSense Packages Bug #461 (Closed): cannot start haproxy
Chris Buechler
04:52 AM pfSense Packages Bug #461: cannot start haproxy
sorry, looks like it's not a pidfile issue. ticket may be closed Alex Kolesnik
04:48 AM pfSense Packages Bug #461 (Closed): cannot start haproxy
# /usr/local/etc/rc.d/haproxy.sh start
Starting haproxy.
cat: /var/run/haproxy.pid: No such file or... Alex Kolesnik
03:34 AM Revision b1bde547: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline
Conflicts:
etc/inc/util.inc Marcus Brown

03/29/2010

09:52 PM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
It is the latest snapshot and it is untampered with. Which system log, "System"? Adam Stylinski
07:32 PM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
Do you have any log entry in system logs about dhcpleases?
It should be running so the leases work.
Either you are ... Ermal Luçi
05:35 PM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
# ps -ax | grep dhcp
13215 ?? Ss 0:00.01 /usr/local/sbin/dhcpd -user dhcpd -group _dhcp -chroot /var/dhcpd -cf... Adam Stylinski
04:57 PM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
Can you provide a little debugging here.
ps -ax |grep dhcp
content of dhcpd.leases
contents of /var/etc/hosts file. Ermal Luçi
04:32 PM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
Still no difference as of BETA1-20100329-1141, DHCP leases are not in there. I'm resulting to running that script th... Adam Stylinski
08:31 AM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
There were problems solved lately. Please test with new snapshots. Ermal Luçi
02:46 AM Bug #374 (New): "Register DHCP leases in DNS forwarder" doesn't work
Chris Buechler
01:44 AM Bug #374: "Register DHCP leases in DNS forwarder" doesn't work
Doesn't work with DHCP leases at all. Adam Stylinski
08:05 PM Bug #459 (Closed): ip2long (and possibly others) return bogus values on 64 bit
As described in this post.
http://forum.pfsense.org/index.php/topic,23519.msg122849.html#msg122849 Chris Buechler
07:01 PM Revision b97d85c0: Fix hosts file generation.
Ermal LUÇI
05:46 PM Bug #458: Openvpn TLS is not working for me
I should add that the reason I'm not traversing the git branches myself is because I'm not very familiar with git. Adam Stylinski
05:45 PM Bug #458 (Closed): Openvpn TLS is not working for me
I'm getting the HMAC TLS Authentication error in the server's logs characteristic of a bad static key. I did an md5 ... Adam Stylinski
05:28 PM Revision 547340c4: This is of no use. Disable until its writer shows up.
Ermal LUÇI
05:22 PM Revision c7f60193: Ticket #449. Teach OpenVPN to reload only tunnels for the specified interface. Use this is rc.newwanip script to reload only these tunnels.
Ermal LUÇI
04:48 PM Revision 9a985f9e: Simplify code.
Ermal LUÇI
04:08 PM Revision 62e74b42: Remove PPP tab these all go to the system log now.
Ermal LUÇI
04:00 PM Revision e18f70ea: Remove bogus char. Spotted-by:gnoahb@
Ermal LUÇI
03:44 PM Bug #395 (Resolved): Warning when create CA and Certificate
Chris Buechler
09:45 AM Bug #395: Warning when create CA and Certificate
Works fine No other errors Thanks!
 Oscar Francia
02:57 PM Revision 1d4aca27: Restore tun interface because it is still used by openvpn.
Ermal LUÇI
02:45 PM Revision c64d5028: Do not enable fastforwarding with ipsec. Silence command because default gw might not exist yet.
Ermal LUÇI
02:38 PM Revision 6c21caee: Restore tun interface because it is still used by openvpn.
Ermal LUÇI
02:38 PM Revision 0afcfd7a: Do not enable fastforwarding with ipsec. Silence command because default gw might not exist yet.
Ermal LUÇI
02:38 PM Revision ee562e8b: Revert "Don't delete the "tun" check in is_interface_mismatch function."
This reverts commit 877845373eb74950367f3d43fcbf6090602be6e0. Marcus Brown
02:38 PM Revision db4428fc: Don't delete the "tun" check in is_interface_mismatch function.
Marcus Brown
01:56 PM Feature #73 (Feedback): Log failed PPTP vpn logins to PPTP log
On 2.0 it should be ok. Ermal Luçi
01:15 PM Revision 68465fab: Merge remote branch 'mainline/master'
Marcus Brown
01:03 PM Revision c90f2471: Changes to make PPP work again. mpd5 fails to establish a ppp link without
*some* username and password, so defaults are set if user enters nothing.
Removed interface_ppp_configure call from i... Marcus Brown
12:27 PM Bug #449 (Feedback): OpenVPN died when PPPOE link came up with a different IP.
Ermal Luçi
11:59 AM Bug #456 (Feedback): Problems when add gateway from interface page
Please provide logs when these things happen beause i cannot reproduce. Ermal Luçi
11:10 AM Revision 3da49dc3: Fix file names.
Ermal LUÇI
11:00 AM Revision 051b178a: Be more strict on validations.
Ermal LUÇI
10:52 AM Revision 92dd6a83: Make sure we do not error out and silence some errors.
Ermal LUÇI
09:38 AM Feature #403 (Feedback): tinydns/dnscache drop in replacement for dnsmasq in pfSense
I committed part of these patches with some differences.
Check them out and do your comments.
Thanks. Ermal Luçi
07:29 AM Revision a216a03a: Fix a few small bugs in new PPP code, and one type in pfsense-utils.inc
Marcus Brown

03/28/2010

09:49 PM Revision a728d6f9: Remove bougs (.
Ermal LUÇI
09:13 PM Revision b28e0842: Propperly choose interface name from correct variable.
Ermal LUÇI
09:11 PM Revision c107a2ac: Forgot re-editing.
Ermal LUÇI
09:11 PM Revision da75413d: Fix interface assignment and re-edit
Ermal LUÇI
08:10 PM Revision 822263b7: Fix displaying ppp ports.
Ermal LUÇI
08:05 PM Revision 8dac2d1b: Fix PPP assignment.
Ermal LUÇI
03:04 PM Revision 5ca41f8b: Don't need the rm -f statement when using > redirect to overwrite the
file, and add the "then" to the if statements Marcus Brown
03:00 PM Revision 158b5cc3: Fix mistakes (now using "call" instead of "goto") and add check to SIM PIN setting routine
so we don't have to set the pin every time if it's already set. Marcus Brown
08:41 AM pfSense Packages Bug #310: Nut needs changes for latest version
I got the recognition of the serial ports to work.... Marcus van Dam

03/27/2010

06:53 PM Bug #23: Links broken on sub-folders due to relative paths
Here's a good way to come up with a prefix, I think:... Jim Pingle
06:08 PM Bug #23: Links broken on sub-folders due to relative paths
Issue: upper left logo of pfsense does not go to home when package files are not in the root folder. Example /usr/loc... robert zelaya
05:43 PM Bug #23: Links broken on sub-folders due to relative paths
There could be something that calculates a relative path that goes to the web site's root directory and stores it in ... Erik Fonnesbeck
12:44 PM Bug #444: All mounts should be noatime
First of all, I can confirm that @noatime@ helps to prevent corruption of filesystems.
Further, @sync@ on @/@ and @/... Henrik Kaare Poulsen
08:45 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Could someone please review/apply those patches in order that I can continue the work on the new basis? Thanks. znerol znerol
08:42 AM Bug #434: xmlparse.inc should not call die
Ok, I'm willing and able to put together a patch which solves this issue properly and with minimal changes. I'm unsur... znerol znerol
08:17 AM Revision 29533e50: Be safer use the remote-ip address for adding route.
Ermal LUÇI
08:09 AM Revision 1f0ddd30: Explicitly set the exit status of the script to not make mpd fail.
Ermal LUÇI
08:02 AM Revision 8f4f1e30: Use full patch to command and fix route add command parameter is -iface and not -if.
Ermal LUÇI
07:32 AM Bug #456: Problems when add gateway from interface page
This is the error: /system_gateways.php: The command '/sbin/route delete default '192.168.0.254'' returned exit code ... Oscar Francia
06:40 AM Bug #456 (Resolved): Problems when add gateway from interface page
- Adding new gateway from interface page, but you need to go to routing page for applying changes. ( my tests in on 2... Oscar Francia
07:30 AM Bug #419: Always new version on firmware upgrade!
The http://snapshots.pfsense.org/FreeBSD_RELENG_8_1/i386/pfSense_HEAD/.updaters/version file is generated from last b... Oscar Francia
07:30 AM Bug #457 (Resolved): Upgrade failed, "Something went wrong when trying to update the fstab entry".
I tested 1Gb image 26 Mar.( 512Mb have disk full problem )
php: : New alert found: Something went wrong when trying ... Oscar Francia
07:18 AM Revision 9a4147d4: Tell that the interface is down.
Ermal LUÇI
07:10 AM Revision 877fb374: Ticket #447. Handle multiple instances propperly.
Ermal LUÇI
07:07 AM Revision f1123765: Ticket #447. Allow multiple innstances to be run.
Ermal LUÇI
06:46 AM Bug #455: On initial wizard reload button do not put browser on new assigned ip.
When I was looking at the code when trying to fix the issue with showing the IP address twice in the image link at th... Erik Fonnesbeck
06:26 AM Bug #455 (Closed): On initial wizard reload button do not put browser on new assigned ip.
On initial wizard reload button do not put browser on new ip. Oscar Francia
06:23 AM Bug #454 (Closed): Cosmetic error on initial wizard.
On wizard the text is over the image of the pencil. Oscar Francia
05:43 AM Feature #447: patch for PPP links with mpd5
Yes, that is the one thing I didn't do yet, and I'm not sure how to do it either. I spent about 20 minutes testing di... Marcus Brown
03:36 AM Feature #447: patch for PPP links with mpd5
Should be ok now.
The only thing i am not understanding is in ppp_accumulated_time where do you write this file? Ermal Luçi
05:02 AM Revision b13efb03: Only sync on the wireless clones that were reassigned.
Erik Fonnesbeck
03:25 AM Revision 003c0512: A location where the shared wireless configuration should have been synced had been missed (reassigning interfaces).
Erik Fonnesbeck
02:55 AM Revision b5582f49: Kill hostapd and wpa_supplicant when bringing the interface down.
Erik Fonnesbeck
02:12 AM Revision c8178bb7: Always kill both hostapd and wpa_supplicant, or they may stay running when WPA is disabled or even both can end up running when switching between AP and station modes.
Erik Fonnesbeck
02:05 AM Revision 9c4d33a1: Fix whitespace.
Erik Fonnesbeck
02:00 AM Revision 0beab3f4: Enable WAN and LAN in the default configuration.
Erik Fonnesbeck
01:10 AM Revision c8b19dd3: Fix killing mpd process for ppp.
Ermal LUÇI
01:01 AM Revision 65125e11: Add enable bits.
Ermal LUÇI
12:28 AM Revision 6a688547: Make lan/wan behave as all other interfaces.
Ermal LUÇI
12:08 AM Revision 65a82e32: Close console and web services for mpd.
Ermal LUÇI
12:05 AM Revision 611ae852: Redo most of the ppp interface handling to be consistent with the other mpd5 configurations. This way there is no more special handling for ppp around.
Ermal LUÇI

03/26/2010

10:19 PM Revision 3ad5fd63: Remove nonsense.
Ermal LUÇI
10:12 PM Revision 1fc02dad: Trivial change in position of counter.
Marcus Brown
10:12 PM Revision 1a904779: Fixed error in command to send the PIN to the SIM card. Missing double quotes.
Marcus Brown
10:12 PM Revision 9ebe7028: I have PPP with mpd5 working really well now, including setting the APN and APN
Number, and the SIM PIN and wait time for the SIM to settle after the PIN is
entered.
Still no work on multilink PPP... Marcus Brown
10:07 PM Feature #447: patch for PPP links with mpd5
Ha!. Never mind. It's trivial to set a different console port for different instances of mpd. Right now, if users add... Marcus Brown
10:02 PM Feature #447: patch for PPP links with mpd5
I realized there is one downside to the current scheme of launching a separate mpd instance for every configured inte... Marcus Brown
08:37 PM Feature #447 (Feedback): patch for PPP links with mpd5
This has been committed to the repo, though some modification are done on top of it.
Test and report. Ermal Luçi
09:43 PM Revision a01d8d8b: Send signal to the dhcpleases daemon using its pidfile if it is running to reload.
Ermal LUÇI
09:29 PM Bug #79 (Feedback): DNSMasq removed ISC-DHCP Log parsing. Need to write a replacement
Replacement done. Ermal Luçi
09:26 PM Bug #438 (Feedback): Using HSPA/GSM modems with pfSense 2.x
Changes has gone in the latest snapshots try with that. Ermal Luçi
09:23 PM Revision 2b5f6a7e: Correct MATCH name.
Ermal LUÇI
08:41 PM Bug #374 (Feedback): "Register DHCP leases in DNS forwarder" doesn't work
A completely different solution is in place in new snapshots.
Please test. Ermal Luçi
08:39 PM Bug #419 (Feedback): Always new version on firmware upgrade!
It should work ok.
You can use snapshots too if you allow it from Updater Settings. Ermal Luçi
08:36 PM Bug #358 (Feedback): PPP connects when interface is disabled
With the latest ppp this should not happen. Ermal Luçi
06:00 PM Revision 0261381a: Actually pass the parameter to the dnsmasq where to read its hosts file from.
Ermal LUÇI
05:57 PM Revision 5656777b: Fix parameters
Ermal LUÇI
05:38 PM Revision 2ccd8499: Use the new tool to monitor active leases.
Ermal LUÇI
03:07 PM pfSense Packages Bug #442 (Resolved): [PATCH] After reinstall of TinyDNS package, dnscache does not work anymore
Chris Buechler
12:37 PM pfSense Packages Bug #442: [PATCH] After reinstall of TinyDNS package, dnscache does not work anymore
I can confirm that this is solved!
*Thank you very much*! Henrik Kaare Poulsen
03:06 PM pfSense Packages Bug #439 (Resolved): TinyDNS: dnscache fails if LAN has no address assigned
Chris Buechler
12:41 PM pfSense Packages Bug #439: TinyDNS: dnscache fails if LAN has no address assigned
I can confirm that this is now solved - *thank you*! Henrik Kaare Poulsen
12:39 PM pfSense Packages Bug #440: TinyDNS: dnscache goes into infinite loop when reconfigured
Unfortunately it still does not work.
This patch works for me:... Henrik Kaare Poulsen

03/25/2010

05:30 PM pfSense Packages Bug #450: Some packages do not use authentication for their web interface
Martin Hronek wrote:
> So its not in the interest that no unauthorized can read information about the system? Or sho... Martin Hronek
05:29 PM pfSense Packages Bug #450: Some packages do not use authentication for their web interface
So its not in the interest that no unauthorized can read information about the system? Or should i post that in the F... Martin Hronek
05:28 PM pfSense Packages Bug #450: Some packages do not use authentication for their web interface
It's just how it works, and there isn't any ability to add htaccess for packages (the web interface doesn't use htacc... Chris Buechler
05:17 PM pfSense Packages Bug #450: Some packages do not use authentication for their web interface
Invalid bug. FYI you will also see that with some of the other package. Perry Mason
12:24 PM pfSense Packages Bug #450 (Closed): Some packages do not use authentication for their web interface
Hello just found out that if you have installed the Package and you haven't logged in to the web-interface yet but di... Martin Hronek
05:16 PM Revision 4b798102: Fix code to show warnings properly.
Ermal LUÇI
04:38 PM Bug #452 (Feedback): DHCP Hostname can't use periods
Yeah that's right, you did fix that Pierre. Setting to feedback for more info if it's still somehow possible to run i... Chris Buechler
04:35 PM Bug #452: DHCP Hostname can't use periods
In 2.0, you cannot enter hostname with "." (periods), it is already fixed.
 Pierre POMES
04:18 PM Bug #452 (Resolved): DHCP Hostname can't use periods
I wasn't sure if I should update my previous bug(Bug #427) or add a new one. Since you guys committed the changes to ... Koaps Freeman
03:10 PM Bug #451: [PATCH] DNS resolving is broken
I am very sorry if I have broken some unwritten rules, or have not yet found the written rules.
I am new to pfSense,... Henrik Kaare Poulsen
02:44 PM Bug #451 (Closed): [PATCH] DNS resolving is broken
https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/ae9617ae8cecac4ece0f95f12af8b3fb3dfd185d
Do not as... Ermal Luçi
12:53 PM Bug #451 (Closed): [PATCH] DNS resolving is broken
DNS resolving is broken since https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/1033de7481dacd83ee5a1a1... Henrik Kaare Poulsen
03:01 PM Revision c71f5fcd: Catch up with php5
Ermal LUÇI
11:09 AM Revision bedd946f: Fix typo.
Ermal LUÇI

03/24/2010

09:57 PM Bug #449: OpenVPN died when PPPOE link came up with a different IP.
that should say "restarted when the IP changes" Chris Buechler
09:47 PM Bug #449: OpenVPN died when PPPOE link came up with a different IP.
Any servers or clients bound to a dynamic interface must be restarted as the 'local ...' specification for binding wi... Chris Buechler
09:20 PM Bug #449 (Resolved): OpenVPN died when PPPOE link came up with a different IP.
I have both a OpenVPN client configuration (connecting to a server on the net with a static IP), and an OpenVPN serve... Deon George
09:23 PM Revision ae9617ae: Upps use correct variable. Reported-by: kaarposoft(forum)
Ermal LUÇI
07:00 PM Revision 05855d1d: Fix checks. Reported-by: Efonne
Ermal LUÇI
06:40 PM Bug #444: All mounts should be noatime
I have tried this, which seems reasonable to me:... Henrik Kaare Poulsen
06:20 PM pfSense Packages Bug #448 (Feedback): dnscache is not starting
Slightly different patch committed.
Thank you. Ermal Luçi
06:11 PM pfSense Packages Bug #448 (Resolved): dnscache is not starting
snapshot 20100324-0246
After configuring TinyDNS from GUI, dnscache is not starting.
h1. patch... Henrik Kaare Poulsen
06:16 PM pfSense Packages Bug #440: TinyDNS: dnscache goes into infinite loop when reconfigured
Try reinstalling again. Ermal Luçi
05:30 PM pfSense Packages Bug #440: TinyDNS: dnscache goes into infinite loop when reconfigured
With the latest @tinydns.inc@ the patch is:... Henrik Kaare Poulsen
04:28 PM pfSense Packages Bug #440: TinyDNS: dnscache goes into infinite loop when reconfigured
I am sorry, but the TinyDNS package version 1.0.6.6 does *not* solve the problem.
Please see previously offered patc... Henrik Kaare Poulsen
10:41 AM pfSense Packages Bug #440 (Feedback): TinyDNS: dnscache goes into infinite loop when reconfigured
This should be fixed on latest versions. Ermal Luçi
06:11 PM pfSense Packages Bug #439: TinyDNS: dnscache fails if LAN has no address assigned
Committed thanks. Ermal Luçi
04:41 PM pfSense Packages Bug #439: TinyDNS: dnscache fails if LAN has no address assigned
The GUI looks OK now, but it still does not work.
The problem seems to be in @tinydns.inc@ function @tinydns_custo... Henrik Kaare Poulsen
11:00 AM pfSense Packages Bug #439 (Feedback): TinyDNS: dnscache fails if LAN has no address assigned
Ermal Luçi
05:28 PM Revision e27d0494: Catch up with php5. Reported-by: http://forum.pfsense.org/index.php/topic,23860.0.html
Ermal LUÇI
05:00 PM Revision a0116247: Ticket #318. Add an option to updater settings to allow updates for images with no signature. This makes auto-updater work and will not display an confirmation message during manual update.
Ermal LUÇI
04:11 PM Revision 7554ab8c: Prevent upgrade/spurious errors from happening.
Ermal LUÇI
03:54 PM Revision f38f8062: Generate hosts entries for all ips configured.
Ermal LUÇI
02:21 PM Revision 6f02633d: '@' Is also a valid PPPoE username character.
Jim Pingle
01:05 PM Todo #407 (Resolved): Transport mode IPsec needs finishing
done Chris Buechler
12:07 PM Bug #318: gzsig returning wrong exit code
Relevant commit to gzsig https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/7e5bd4fa37980d8329f30b... Ermal Luçi
12:06 PM Bug #318 (Feedback): gzsig returning wrong exit code
Ermal Luçi
10:48 AM pfSense Packages Bug #442 (Feedback): [PATCH] After reinstall of TinyDNS package, dnscache does not work anymore
Ermal Luçi
09:48 AM Bug #341 (Closed): Changing PPP configuration doesn't update ppp.conf
Ermal Luçi
09:24 AM Bug #341: Changing PPP configuration doesn't update ppp.conf
I think this can be closed. Marcus Brown
09:28 AM Bug #358: PPP connects when interface is disabled
I can't even disable an interface that has a PPP link assigned to it in snapshot from March 20th. The checkbox isn't ... Marcus Brown
09:19 AM Feature #447: patch for PPP links with mpd5
Here's a second pfsense-utils.inc patch. Run previous patch attached to original post first. This implements uptime c... Marcus Brown
08:28 AM Feature #447: patch for PPP links with mpd5
Here's a better mpd.script file.
G. Marcus Brown
08:16 AM Feature #447 (Resolved): patch for PPP links with mpd5
I have PPP with mpd5 working really well now, including setting the APN and APN Number. Your patched mpd5 (for avoidi... Marcus Brown
07:43 AM Revision 25f36aaf: Redirect to the correct page after deleting an item.
Erik Fonnesbeck
04:47 AM Feature #446: Enable ether interface to be reused (when used for PPPOE), like wireless clone
This is doable only if you move PPPoE/PPTP to the interfaces->assign tabs.
This way there will be no problems doing ... Ermal Luçi
03:01 AM Feature #446: Enable ether interface to be reused (when used for PPPOE), like wireless clone
Not sure it should be like wireless clone, but we do need some way to accommodate this in the future. It's also usefu... Chris Buechler
02:25 AM Feature #446 (Resolved): Enable ether interface to be reused (when used for PPPOE), like wireless clone
With ADSL modems with multiple ethernet ports (ie: switch and modem), it would be nice if the pfsense ethernet interf... Deon George
12:54 AM Bug #281: Traffic initiated by PPTP clients not passed
I experienced the same issue where a client could establish a PPTP session, but no traffic seemed to make it onto the... Steve Weiss

03/23/2010

10:40 PM Revision 1f559885: Actually its dns2 for the second entry.
Ermal LUÇI
10:21 PM Revision 90680a1e: backup_config() does not need to be wrapped with conf_mount_rw().
Ermal LUÇI
10:17 PM Revision f2087c85: Unbreak ACB
Scott Ullrich
10:17 PM Revision 578224fe: Unbreak ACB
Scott Ullrich
10:13 PM Revision 328efaba: Use the -s ident option of mpd to send the logs for the PPPoE/PPTP/L2TP servers to syslogs appropriate files. Create the files for these vpn's as for the others. Logs can be viewed in the VPN tab of the system log.
Ermal LUÇI
09:13 PM Revision 1033de74: Resolve problems with dns server setup when allow override is set. Also add static routes for all nameservers to be friendly with multiwan.
Ermal LUÇI
07:55 PM Bug #445 (Closed): Problem with CIDR on network aliases
that's been fixed since then. Chris Buechler
07:54 PM Bug #445 (Closed): Problem with CIDR on network aliases
With the build Fri Mar 19 network aliases does not work!
 Oscar Francia
05:41 PM Bug #444 (Closed): All mounts should be noatime
To limit disk writes, and it apparently prevents corruption:
http://forum.pfsense.org/index.php/topic,23634.0.html
 Chris Buechler
03:56 PM pfSense Packages Bug #300 (Feedback): Siproxd and portsentry not installing properly
Fixed Ermal Luçi
03:17 AM pfSense Packages Bug #300: Siproxd and portsentry not installing properly
I just tried to install sipproxyd on 2.0 (nanobsd) - and get a similiar error:
The last part of the log goes:
@... Deon George
03:06 PM Revision d5dbdd41: Remove duplicate proxy entry
Ermal LUÇI
02:56 PM Revision 573c9548: The user owner of /dev/pf is root the group will be left to proxy to allow packages to become member of this group to modify firewall.
Ermal LUÇI
01:18 PM Bug #443: Notifications HELO uses IP rather than FQDN
That's a problem with your mail server, it's rejecting the connection.
If we can easily send the FQDN of the syst... Chris Buechler
06:42 AM Bug #443 (Resolved): Notifications HELO uses IP rather than FQDN
php: /system_advanced_notifications.php: Could not send the message to mail@mail.xyz -- Error: 504 5.5.2 <192.168.1.x... Oscar Francia
11:23 AM Bug #438: Using HSPA/GSM modems with pfSense 2.x
Hi,
I just submitted patches to convert PPP links from using the FreeBSD userland ppp program to now use mpd5. I did... Marcus Brown
10:02 AM pfSense Packages Bug #439: TinyDNS: dnscache fails if LAN has no address assigned
Dear all,
I would not mind digging into the pfSense code and propose a patch.
However, being a complete newbee to... Henrik Kaare Poulsen
04:56 AM Bug #434: xmlparse.inc should not call die
Ermal Luçi wrote:
> I think for packages is not neccessary to do this.
> For config.xml i committed some fixes.
... znerol znerol
04:17 AM Feature #13: wireless page to have option to select transmit and receive antennas
what i noticed with the latest snapshot was that dev.ath.0.txantenna , dev.ath.0.rxantenna , and dev.ath.0.diversity ... Bipin Chandra
02:49 AM Bug #357 (New): Captive portal does not work on VLANs
still a problem in latest snapshots. Chris Buechler

03/22/2010

02:57 PM Bug #417 (Resolved): Packages don't install on embedded
Chris Buechler
01:49 PM Bug #417: Packages don't install on embedded
On last build ( tested on pfSense-2.0-BETA1-1g-20100322-0920-nanobsd ) works!
Tnx Oscar Francia
02:09 PM pfSense Packages Bug #442 (Resolved): [PATCH] After reinstall of TinyDNS package, dnscache does not work anymore
BETA 2 snapshot 20100321-0116
If the TinyDNS package is re-installed, either manually or due to a new snapshot, @d... Henrik Kaare Poulsen
02:03 PM pfSense Packages Bug #440: TinyDNS: dnscache goes into infinite loop when reconfigured
h1. PATCH
In @tinydns.inc@ change the function @tinydns_dnscache_forwarding_servers@ to... Henrik Kaare Poulsen
11:20 AM Bug #313 (Resolved): wizard: faulty ip addresse when icon pressed for faster reload
Chris Buechler
10:43 AM Bug #313: wizard: faulty ip addresse when icon pressed for faster reload
Works. Ticket can be closed Perry Mason
04:03 AM Revision 07336d48: fix text
Chris Buechler
04:01 AM Revision dc95bd08: fix text
Chris Buechler

03/21/2010

02:30 PM Bug #441 (Resolved): Can't set loss rate in limiter
Defining a loss rate in the limiter results in: ... Chris Buechler
11:10 AM pfSense Packages Bug #440 (Resolved): TinyDNS: dnscache goes into infinite loop when reconfigured
BETA 2 snapshot 20100321-0116
When dnscache in the TinyDNS package is configured, it will read "/etc/resolv.conf" ... Henrik Kaare Poulsen
11:00 AM pfSense Packages Bug #439 (Resolved): TinyDNS: dnscache fails if LAN has no address assigned
BETA snapshot 20100321-0116
If you create a bridge for several LAN interfaces, you assign the bridge an address, b... Henrik Kaare Poulsen
12:42 AM Bug #438 (Resolved): Using HSPA/GSM modems with pfSense 2.x
Hi, I've noticed two problems with using a HSPA modem - having done some digging around I think my be problems.
1)... Deon George

03/20/2010

06:33 PM Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurations
Ermal, thanks for the quick fix.
I tested this with March 19th snap. It does produce correct SA configuration now
... Paul K
05:53 PM Revision 27f9c8b4: Rename import to bulk import. Suggested-by: Chris Horn
Scott Ullrich
01:43 PM Revision 3f394d09: Ticket #313. Use $myurl when calling fixup_string to get the URL for the image link.
Erik Fonnesbeck
01:17 PM Revision 01fdb2d3: To pick the starting tab on Services: DHCP server, use the same logic as used for creating tabs to make sure the first tab really gets selected.
Erik Fonnesbeck
10:11 AM Bug #313 (Feedback): wizard: faulty ip addresse when icon pressed for faster reload
Erik Fonnesbeck
12:46 AM Revision 9d537f9f: Adding alias updater
Scott Ullrich
12:32 AM Revision 6c5bb502: Use url consistently
Scott Ullrich
12:27 AM Revision 10189b2a: Add unzip support if unzip binary exists
Scott Ullrich
12:19 AM Revision 63e8a8ab: Fix text
Scott Ullrich
12:09 AM Revision a0fc25ae: Disable update freqency
Scott Ullrich
12:04 AM Revision 2aed5121: Use URL
Scott Ullrich

03/19/2010

11:54 PM Revision f6ba4bd1: Add alias data url option. This code existed but lacked a backend daemon to update the data every 24 hours. Adding this as well.
Scott Ullrich
07:27 PM Revision f973148e: Add needed includes.
Ermal LUÇI
07:27 PM Bug #437 (Resolved): Y2K38 bug in user manager expiration
If you put an expiration date past 20380119, such as 02/01/2038, validation fails with:
"Invalid expiration date ... Chris Buechler
07:11 PM Revision 3329071a: Do not output twice the same text
Ermal LUÇI
05:57 PM Revision 9e98e1cb: Unbreak aliases generation in the ruleset. Yesterday fixing large aliases broke shorter ones.
Ermal LUÇI
05:49 PM Revision bef6cb99: Fix parsign of packages xml.
Ermal LUÇI
05:35 PM Revision 40050fab: Use alias style when creating aliases in wizards.
Ermal LUÇI
04:45 PM Bug #431 (Resolved): [PATCH] Modify get_pkg_depends to return whole paths
Chris Buechler
03:27 AM Bug #431: [PATCH] Modify get_pkg_depends to return whole paths
Tested with pfSense-2.0-BETA1-20100317-2238.iso and tinydns pkg. It works, thanks. znerol znerol
03:55 PM Revision 541989d5: Ticket #434. Do not die when parsing config since we know how to recover. Only die during packages.
Ermal LUÇI
03:34 PM Revision 773c99bc: Fix auto update checking and showing always there is an update available.
Ermal LUÇI
01:06 PM Bug #355: syslog should not bind on *
Paul Mansfield wrote:
> I was the original proposer..
>
> I have syslogd bound only to localhost and I successful... Paul Mansfield
01:05 PM Bug #355: syslog should not bind on *
I was the original proposer..
I have syslogd bound only to localhost and I successfully get it to repeat the syslo... Paul Mansfield
12:53 PM Revision f3b000b2: Ticket #435. Correct command.
Ermal LUÇI
12:41 PM pfSense Packages Bug #436 (Resolved): [PATCH] rewrite of tinydns_add_active_leases
This is a rewrite of the function tinydns_add_active_leases. It now handles multiple entries for one ip in the dhcpd.... znerol znerol
11:00 AM Bug #434 (Feedback): xmlparse.inc should not call die
I think for packages is not neccessary to do this.
For config.xml i committed some fixes. Ermal Luçi
10:14 AM Bug #435: The command '/bin/pkill -f 'updaterrd.sh'' returned exit code '1', the output was ''
The fix hasnt worked, Ive also tried to run the command from console manually with no luck, adding the -f parameter s... Abdsalem Chaoui
07:58 AM Bug #435 (Feedback): The command '/bin/pkill -f 'updaterrd.sh'' returned exit code '1', the output was ''
Ermal Luçi
09:46 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Ok, here is a first bunch of patches. The changes contain:
* Move /etc/{tinydns,axfrdns,dnscache} to /var/etc and ... znerol znerol
08:29 AM Bug #414: Setup wizard broken
Oscar Francia wrote:
> In the last build same error on the top :(
>
> / Enable Dial-On-Demand mode/ Enable Dial-O... Oscar Francia
08:19 AM Bug #414: Setup wizard broken
In the last build same error on the top :(
/ Enable Dial-On-Demand mode/ Enable Dial-On-Demand modeBlock private n... Oscar Francia

03/18/2010

11:21 PM Revision a8e61346: Fix editing large aliases. Suhosin patch has by default a limit of 64 variables.
Ermal LUÇI
11:12 PM Revision 9ae9a7fc: Unbreak ranges.
Ermal LUÇI
08:35 PM Bug #435: The command '/bin/pkill -f 'updaterrd.sh'' returned exit code '1', the output was ''
I forgot to mention I am running: 2.0-BETA1 built on Thu Mar 18 14:21:12 EDT 2010 FreeBSD 8.0-STABLE Abdsalem Chaoui
08:32 PM Bug #435 (Resolved): The command '/bin/pkill -f 'updaterrd.sh'' returned exit code '1', the output was ''
Ive come across the following in my logs... Abdsalem Chaoui
07:58 PM Revision 6c33fb4b: Improve aliases a little bit to show large aliases.
Ermal LUÇI
06:22 PM Revision 72823d7d: Support ranges during alias imports.
Ermal LUÇI
06:05 PM Revision 6b487ec6: Allow editing aliases. Pointyhat-to: ?!
Ermal LUÇI
06:00 PM Revision cf895854: Propperly handle large aliases and properly generate it on the config file so it does not error out.
Ermal LUÇI
05:56 PM Revision 30d98ad3: Default to on for address pools.
Ermal LUÇI
05:38 PM Revision f9fa5d10: Add some descriptions. Default to local port 1194 when no other server is configured.
Ermal LUÇI
05:20 PM Revision 979fb419: Correctly show cipher list
Ermal LUÇI
05:04 PM Revision 8eae944e: Enable shmop module now that is needed.
Ermal LUÇI
05:04 PM Revision 1ae55320: Add the counterpart of enablefields.
Ermal LUÇI
03:56 PM Revision a314bebc: Actually get values from the CA based on what was choosen during wizard.
Ermal LUÇI
01:08 PM Revision 3b4b9ff3: Default to 2048 bits.
Ermal LUÇI
01:05 PM Revision bd4d0f89: Try to prefill values if creating a certificate.
Ermal LUÇI
12:49 PM Revision 47aa4fc4: Merge common name fields with descriptive name. Default to 3650 days of lifetime and 2048 bits key length.
Ermal LUÇI
06:24 AM Feature #13: wireless page to have option to select transmit and receive antennas
im also using the atheros based Compex WLM54SAG23 and pfsense used to default it to 2 for tx and rx and i used to not... Bipin Chandra
01:12 AM Feature #13: wireless page to have option to select transmit and receive antennas
I'm not sure whether the information lsf gave was correct. Based on the defaults I've seen on various cards I have, ... Erik Fonnesbeck
01:01 AM Revision db67053a: Colorize config diff, fix wrapping (should still copy/paste as a single line). Add diff button at the top which doubles as a column header.
Jim Pingle

03/17/2010

08:48 PM Bug #433 (Feedback): layer7 not blocking anything
Ermal Luçi
08:48 PM Bug #433: layer7 not blocking anything
Try with latest snapshot should be ok for your test case.
Patches committed. Ermal Luçi
12:01 PM Bug #433: layer7 not blocking anything
João Seabra wrote:
> Going to Firewall -> Traffic shaper -> Layer7 and then creating a new l7 rules group where I:
... João Seabra
11:46 AM Bug #433 (Closed): layer7 not blocking anything
Going to Firewall -> Traffic shaper -> Layer7 and then creating a new l7 rules group where I:
-Enable layer7 Contain... João Seabra
03:46 PM Revision 40a721c0: get_pkg_depends must return the whole paths of dependency files in order
to enable sync_package to check for files which are not installed in the
standard pkg location (i.e. outside of /usr/... Scott Ullrich
02:17 PM Revision a45e27ba: Ticket #417. Fix installation on embedded by using a refcount system for the mount command.
Ermal LUÇI
01:56 PM Revision 2ae24c22: Generalize.
Ermal LUÇI
12:42 PM Bug #434: xmlparse.inc should not call die
Ok, then we need a function which can check if a specified root-tag is contained in a file. E.g:... znerol znerol
12:19 PM Bug #434: xmlparse.inc should not call die
I am on the fence concerning this one. Once you reach an error condition in the xml parser just allowing it to cont... Scott Ullrich
12:14 PM Bug #434 (Resolved): xmlparse.inc should not call die
In pfsense-mainline:... znerol znerol
11:48 AM Bug #431 (Feedback): [PATCH] Modify get_pkg_depends to return whole paths
Commited, thanks! Please let us know if it is resolved on the next snapshot. Scott Ullrich
09:20 AM Bug #431 (Resolved): [PATCH] Modify get_pkg_depends to return whole paths
The function sync_package from /etc/inc/pkg-utils.inc ensures that all required files from a particular package are p... znerol znerol
11:25 AM Bug #432 (Rejected): Layer7 not working?
Provide more details next time. Ermal Luçi
11:14 AM Bug #432 (Rejected): Layer7 not working?
using layer7 container and then setting up a rule for bittorrent protocol with action block doesnt seem to be working... João Seabra
10:54 AM Bug #426: DNS server list not overriden by DHCP/PPP on WAN with PPPoE
I still need to add NS.This is what shows up in the logs:
Mar 17 14:39:29 dnsmasq[21922]: using nameserver 212.55... João Seabra
10:48 AM Revision f19651d1: Get up to improvements.
Ermal LUÇI
09:21 AM Bug #417 (Feedback): Packages don't install on embedded
Ermal Luçi
05:38 AM Bug #417: Packages don't install on embedded
I figured out you need another conf_mount_rw(); if you install as example OpenVPN Export Utility. This Package instal... Peter Baumann
12:59 AM Bug #417: Packages don't install on embedded
Yes, after the install the disk gets remounted in a read-only state. Dave Sanderson
12:15 AM Bug #417: Packages don't install on embedded
Does it get remounted in the proper read-only state afterward? Erik Fonnesbeck
05:31 AM Feature #13: wireless page to have option to select transmit and receive antennas
the madwifi page says:
0-auto
1-antenna 1
2-antenna 2
but in the pfsense wireless forum others listed the below... Bipin Chandra
01:44 AM Feature #13: wireless page to have option to select transmit and receive antennas
For now, in 2.0 I think it could be done by adding settings in System: Advanced: System Tunables to adjust these opti... Erik Fonnesbeck
05:13 AM Revision 071d63b9: Restore attribute support, but with some extra checks in the function that uses it.
Erik Fonnesbeck
04:12 AM Revision 441e6007: Needs a little more testing; revert attribute support in xmlparse.inc for now.
This reverts commit 2843a3ec5d4a160646e496f3922266415151902a. Erik Fonnesbeck
02:59 AM Revision 2843a3ec: Add optional support for reading attributes to xmlparse.inc and move regdomain.xml parsing from regdomain.inc to xmlparse.inc.
Erik Fonnesbeck
12:51 AM Revision 2f27dffd: Use the ipfw(4) list functionality to reduce rules even more. Add allow rules for accessing pfSense webgui to not lock out operators behind the CP. Remove redundant rule regarding dns. Probably every dns request should be forwarded to the local dns server to not force clients to use the pfSense forwarder!
Ermal LUÇI
12:19 AM Feature #411 (Feedback): Regulatory domain and country settings for wireless
Erik Fonnesbeck

03/16/2010

10:36 PM Revision bbfc810e: Add code for applying wireless regulatory configuration and some extra notes about the regulatory settings.
Erik Fonnesbeck
10:30 PM Revision 20f09b3b: Add configuration options for wireless regulatory settings. Still needs code for applying the settings.
Erik Fonnesbeck
08:37 PM Bug #417: Packages don't install on embedded
I looked into this again after Andy had it failed. It appears my loop of mount -o rw /dev/ufs/pfsense0 / only worked... Dave Sanderson
08:31 PM Bug #357 (Feedback): Captive portal does not work on VLANs
Ermal Luçi
05:39 PM Revision 66534ba5: Include DHCP hostname. Ticket #427
Scott Ullrich
05:35 PM Revision e2bee3fe: Enable tso now that pf(4) problems with it are solved. Remove duplicate icmplim entry created by myself in a previous commit.
Ermal LUÇI
05:35 PM Revision 1bda7d81: Set net.inet.icmp.icmplim=0
Ticket #20 Scott Ullrich
01:41 PM Bug #427: DHCP Hostname Not Sent
While it is true we are not fixing 1.2 going forward officially this looked handy enough to commit. Committed.
 Scott Ullrich
01:40 PM Revision 3816479c: Ticket #20. Disable icmp limiting.
Ermal LUÇI
01:33 PM Revision cb045957: Since 0 is not allowed clarify comment.
Ermal LUÇI
01:18 PM Revision 4ef606fb: Resolves #401. Fix the ... display on aliases description.
Ermal LUÇI
01:08 PM Revision 63017a73: Ticket #430. Give a none option to allow for roadwarriors configs.
Ermal Luçi
08:44 AM Bug #20 (Feedback): net.inet.icmp.icmplim affects traffic passing
Ermal Luçi
08:25 AM Bug #401 (Resolved): Description Values on Aliases not >10
Applied in changeset commit:"4ef606fbb83c7394311a294e423a565a1e44a0d8". Ermal Luçi
08:24 AM Bug #398 (Feedback): Button error in Firewall: Schedules: Edit
Please provide more input and a test case. Ermal Luçi
08:12 AM Bug #430 (Feedback): Cannot configure IPSec SA without local id for Roadwarrior configurations
Please test the committed changes.
I am not sure this is enough though try it on your side an we will see. Ermal Luçi
08:02 AM Revision 0b6ab3ec: Add note about the auto channel setting.
Erik Fonnesbeck

03/15/2010

11:36 PM Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurations
Ah sorry, 2.0. I am running 20100304 snapshot. Paul K
11:19 PM Bug #430: Cannot configure IPSec SA without local id for Roadwarrior configurations
what version? Chris Buechler
11:17 PM Bug #430 (Resolved): Cannot configure IPSec SA without local id for Roadwarrior configurations
Right now there is no way to leave 'Local Network' blank when configuring IPsec Phase 2. This results in the racoon.c... Paul K
10:31 PM Revision 89c52814: We need mpd5.
Ermal LUÇI
09:23 PM Bug #429: Upgrade failed from console disk full!
I use the 512 MB image on an Alix 2c3 and see the same type of thing when attempting an upgrade from the web gui in 2.0. Erik Fonnesbeck
07:49 PM Bug #429: Upgrade failed from console disk full!
I's embedded image 512Mb
df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/ufs/pfsense0 ... Oscar Francia
07:47 PM Bug #429 (Resolved): Upgrade failed from console disk full!
/root/firmware.tgz 76% of 81 MB 135 kBps 02m26s
/: write failed, filesystem is full
... Oscar Francia
08:03 PM Revision ce387866: Ticket #428. Remove double included include.
Ermal LUÇI
07:54 PM Revision 8984dc5e: Ticket #414. Fix wizard framework to properly display this. Not sure how it actually worked before!
Ermal LUÇI
07:13 PM Revision a69c0036: Ticket #423. Remove priv.inc/priv.defs.inc from files. They used require() instead of required once so produced errors or redefinitions of functions. These includes are now included on authgui.inc.
Ermal LUÇI
06:47 PM Revision 263080b2: Remove uneeded line because openssl module will be already loaded.
Ermal LUÇI
06:46 PM Revision ae4dbded: Ticket #161. Fix creation of certificates and the webgui one. This was a problem on php API docs.
Ermal LUÇI
06:31 PM Feature #425: SSH Daemon in v1.2.3+ (including 2.0-Beta1) - Please add 3des-cbc cipher
I have used it often enough both from my Blackberry and on my iPhone. I have most often needed to remotely reconfigur... Pho Bia
04:03 PM Feature #425: SSH Daemon in v1.2.3+ (including 2.0-Beta1) - Please add 3des-cbc cipher
I think most people probably don't bother SSHing from mobile devices, or at least I don't as it's impractical. Today ... Chris Buechler
09:15 AM Feature #425: SSH Daemon in v1.2.3+ (including 2.0-Beta1) - Please add 3des-cbc cipher
Chris,
Thanks for your response. Just so you know MIDPSSH (and now the newer BBSSH which is still in development)... Pho Bia
05:28 PM Revision e7ee3bfe: Create resolv.conf whenever a new ip comes in to have it ready for vpn reloads. Also restart packages in background.
Ermal LUÇI
05:23 PM Bug #406: OpenVPN tunnel network should be automatically added for Outbound NAT
What other services aren't added? Chris Buechler
04:17 PM Bug #406 (Feedback): OpenVPN tunnel network should be automatically added for Outbound NAT
Well the other services are not added as well.
So if this get added all the others should too, no? Ermal Luçi
05:22 PM Bug #414 (Resolved): Setup wizard broken
Chris Buechler
04:18 PM Bug #414: Setup wizard broken
Now all is ok, tnx. Oscar Francia
04:03 PM Bug #414 (Feedback): Setup wizard broken
Ermal Luçi
05:22 PM Bug #428 (Resolved): Error on Console setup option 13) Upgrade from console
Chris Buechler
04:21 PM Bug #428: Error on Console setup option 13) Upgrade from console
Works tnx. Oscar Francia
04:11 PM Bug #428 (Feedback): Error on Console setup option 13) Upgrade from console
Ermal Luçi
03:15 PM Bug #428 (Resolved): Error on Console setup option 13) Upgrade from console
Fatal error: Cannot redeclare killbypid() (previously declared in /etc/inc/util.inc:40) in /etc/inc/util.inc on line ... Oscar Francia
05:22 PM Bug #418 (Closed): option host-name for static dhcp mappings
this is in 2.0 Chris Buechler
04:31 PM Bug #418 (Feedback): option host-name for static dhcp mappings
2.0 already has this afaik. Ermal Luçi
05:20 PM Bug #427 (Closed): DHCP Hostname Not Sent
won't fix in 1_2 Chris Buechler
04:23 PM Bug #427: DHCP Hostname Not Sent
In 2.0 this is present. Ermal Luçi
02:20 PM Bug #427 (Closed): DHCP Hostname Not Sent
I'm listing this as a bug but cause I think the name should be sent but I guess it could be a feature to some.
Whe... Koaps Freeman
03:57 PM Bug #423 (Resolved): Error in User Manager
Chris Buechler
03:55 PM Bug #423: Error in User Manager
I've tested and now it works fine! tnx! Oscar Francia
03:20 PM Bug #423 (Feedback): Error in User Manager
Ermal Luçi
02:54 PM Bug #161 (Feedback): HTTPS certificates invalid - duplicate serial
Ermal Luçi
01:46 PM Bug #426 (Feedback): DNS server list not overriden by DHCP/PPP on WAN with PPPoE
Please update to newer snapshot and tell me if your logs containing entries:
rc.newwanip: Informational is starting ... Ermal Luçi
06:58 AM Bug #426 (Resolved): DNS server list not overriden by DHCP/PPP on WAN with PPPoE
I'm using PPPoE on WAN and the only way to get access to the ISP DNS servers is by setting the servers manually on th... João Seabra
01:43 PM Revision 13646069: Default to 3650 days. Requested-by: cmb@
Ermal LUÇI

03/14/2010

11:55 PM Feature #425 (Rejected): SSH Daemon in v1.2.3+ (including 2.0-Beta1) - Please add 3des-cbc cipher
The current list is as it is because of this:
http://www.openssh.com/txt/cbc.adv
This is the first client I've h... Chris Buechler
10:42 PM Feature #425 (Rejected): SSH Daemon in v1.2.3+ (including 2.0-Beta1) - Please add 3des-cbc cipher
Hello,
I discovered that my java SSH client (MIDPSSH) for my Blackberry could no longer connect to any pfSense box... Pho Bia
09:29 PM Revision e97d0e42: Fix permissions.
jim-p
09:16 PM Revision 865ff9b4: Refactor the Easy Rule code a bit. Add a CLI version.
Jim Pingle
03:07 PM Bug #417: Packages don't install on embedded
Dave Sanderson wrote:
> It appears to be a read-only mount issue on the embedded image.
>
> I tested this using L... Andy L
12:11 AM Bug #417: Packages don't install on embedded
It appears to be a read-only mount issue on the embedded image.
I tested this using LCDProc and I was able to get ... Dave Sanderson
03:29 AM Revision ec5c695d: fix text
Chris Buechler

03/13/2010

08:36 PM Revision ee3fe1e2: fix text
Chris Buechler
08:34 PM Revision 0ac19c1d: fix text
Chris Buechler
08:31 PM Revision 95feeb92: fix text
Chris Buechler
08:30 PM Revision ad627cee: fix text
Chris Buechler
08:22 PM Revision 095a63da: fix text
Chris Buechler
01:03 PM Bug #424 (Rejected): PPTP with Radius does not work
Yes it does work. You have a configuration issue of some sort, post to the forum or list. Chris Buechler
09:58 AM Bug #424 (Rejected): PPTP with Radius does not work
Environment:
-LAN IP Subnet 192.168.1.0/24 (gateway 192.168.1.1)
-PPTP server address 192.168.1.253
-PPTP remote ... Max Jos
01:07 AM Revision 57bbd532: Combine "802.11g only" and "802.11n only" into a single option.
Erik Fonnesbeck

03/12/2010

11:09 PM Revision 5db9498d: Fix local and nobind for client settings
Ermal LUÇI
10:01 PM Revision 28fcddcd: Fix alias importing. Resolves #422
Jim Pingle
09:15 PM Revision 335f296f: fix text
Chris Buechler
06:05 PM Bug #308: Multiple wireless cards no longer work
I've tested with 2 different wireless card and it's works fine! Oscar Francia
05:59 PM Bug #394: Backup / Restore does not work
On embedded, just change lan ip, save config, edit xml config file ( change lan ip only for test result ) and restore... Oscar Francia
05:40 PM Bug #423 (Resolved): Error in User Manager
Fatal error: Cannot redeclare get_priv_files() (previously declared in /etc/inc/priv.inc:50) in /etc/inc/priv.inc on ... Oscar Francia
05:38 PM Bug #414 (New): Setup wizard broken
Chris Buechler
05:30 PM Bug #414: Setup wizard broken
Works snapshot 12-03-2010
But:
- on page Wan is an error on the top (view image attached) Oscar Francia
05:24 PM Bug #420 (Resolved): Error when setting ips from serial or console on embedded
Chris Buechler
05:21 PM Bug #420: Error when setting ips from serial or console on embedded
Works on snapshot 12-03-2010 Oscar Francia
05:12 PM Bug #406 (New): OpenVPN tunnel network should be automatically added for Outbound NAT
Yeah it needs to add them upon switching to manual as well. Chris Buechler
05:02 PM Bug #406: OpenVPN tunnel network should be automatically added for Outbound NAT
Ok works, but when switch from "Automatic outbound NAT rule generation" to "Manual Outbound NAT rule generation" Open... Oscar Francia
05:05 PM Bug #422 (Resolved): Bulk alias import seems to break with >64 CIDR networks
Applied in changeset commit:"28fcddcdd68cf6c72119305462696a1bb6dae0b8". Anonymous
04:50 PM Bug #422: Bulk alias import seems to break with >64 CIDR networks
The number may not be as important as the format, it seems. Here is what the config looks like, obviously these ^M's ... Jim Pingle
04:48 PM Bug #422 (Resolved): Bulk alias import seems to break with >64 CIDR networks
When trying to import large numbers of CIDR nets it seems to break at around 64. I tried to import about 200. When tr... Jim Pingle
04:49 PM Bug #396 (Resolved): Packages don't install on embedded
Chris Buechler
04:40 PM Bug #396: Packages don't install on embedded
This error is corrected, but packages does not install! :)
I've opened another ticket...(417)
Sorry. Oscar Francia
04:31 PM Revision a2ec5a41: Remove debugging leftover
Ermal LUÇI
04:27 PM Revision 08784417: Enable loading extension.
Ermal LUÇI
04:23 PM Bug #393 (Resolved): system_advanced_notifications.php error
Chris Buechler
04:23 PM Bug #393: system_advanced_notifications.php error
Now works! Thanks! Oscar Francia
04:23 PM Revision 6e815096: Add includes needed. Fix typo.
Ermal LUÇI
04:17 PM Revision aa530bf4: Show radius too.
Ermal LUÇI
03:33 PM Revision d004635c: Remove whitespce and do less concat operations.
Ermal LUÇI
03:24 PM Revision eb438fac: Only fetch inet family routes.
Ermal LUÇI
02:48 PM Revision d0412d85: Make the certificate table look better.
Ermal LUÇI
02:46 PM Revision c9794c06: Allow user certificate to be created with the user.
Ermal LUÇI
01:43 PM Revision 5217b018: Disable incoming pppoe requests.
Ermal LUÇI
01:03 PM Revision 69677d62: Do not require the caller to define getNasIP explicitly, intead try to gracefully handle the case.
Ermal LUÇI
02:25 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
I think its necessary to change the way the configuration is handled beforehand. In my opinion its not acceptable tha... znerol znerol
01:14 AM Revision 6f76920c: Use pgrep/pkill to save a bit of cpu.
Andrew Thompson
12:28 AM Revision 6661ea25: Use procatat instead of ps as the latter always prints a header, also
use full paths. Andrew Thompson
12:18 AM Revision cae1b7db: '\b' is not the word boundary on BSD, its actually '[[:<:]]' and '[[:>:]]',
change these functions to use better syntax and not grep at all. Andrew Thompson
12:16 AM Bug #404 (Resolved): Wifi does not start when configured to use RADIUS if WPA passhprase is left empty
Chris Buechler
12:13 AM Bug #404: Wifi does not start when configured to use RADIUS if WPA passhprase is left empty
Tested using 20100311-1612 and it's working fine now. Thanks for the quick fix. Paul K
12:00 AM Revision a3db8d75: Add my copyright.
Ermal LUÇI

03/11/2010

11:55 PM Revision 599438d2: The Openvpn rule does not need proto.
Ermal LUÇI
11:52 PM Revision bd2eed56: Fix rule creation.
Ermal LUÇI
11:41 PM Revision 2465ff5b: Add a function that allows to show/hide fields. Also correct the enable/disable function.
Ermal LUÇI
07:22 PM Revision df2beeb1: Remove the special char from the name it makes the xml parser bail.
Ermal LUÇI
07:19 PM Revision f05a603f: Fix my name
Ermal LUÇI
07:18 PM Revision 1e99f2ea: Add my copyright
Ermal LUÇI
07:11 PM Revision e7df76d2: This may break booting so try only 100 times and fail gracely in case of error.
Ermal Luçi
07:06 PM Revision 5f81609a: Fix console auto-login.
Erik Fonnesbeck
06:03 PM Revision 998f77a8: Fix EasyRule port check so it is only tested when the protocol is TCP or UDP. Resolves #412
While I'm here, make EasyRule put a description in when writing the config so it shows up properly in the config hist... Jim Pingle
05:25 PM Revision cd6a4b1d: Correct field name.
Ermal Luçi
05:20 PM Revision e6fba3b4: Fix index.
Ermal Luçi
05:10 PM Revision e8a89def: Fix rule creation.
Ermal Luçi
05:10 PM Revision 7a2ec71b: Final touches.
Ermal Luçi
04:58 PM Revision 019e6c3f: Fix bug where user wasn't being removed from groups upon deletion.
Jim Pingle
04:56 PM Revision 65d6d7fc: Correct check.
Ermal Luçi
04:53 PM Revision 30e86d57: Correct logic.
Ermal Luçi
04:50 PM Revision fff3d2b9: Add myself to the copyright
Jim Pingle
04:49 PM Revision 7a288dc9: Add some verbage to the on-screen message stating that IP ranges are available for use as well as CIDR networks in aliases.
Jim Pingle
04:47 PM Revision 19142256: Add globals vars.
Ermal Luçi
04:42 PM Revision 59ca0954: More improvements.
Ermal Luçi
04:18 PM Revision 5540aee6: Show wizard tab for openvpn.
Ermal Luçi
04:14 PM Revision dba6bcbf: Improve wizard.
Ermal Luçi
01:05 PM Bug #412 (Resolved): EasyRule doesn't work for non-TCP/UDP protocols
Applied in changeset commit:"998f77a81fd256a78f21e2af9a91be9bac1eb35e". Anonymous
12:55 PM Bug #412: EasyRule doesn't work for non-TCP/UDP protocols
Yeah that sounds best Jim, there are quite a few protocols without ports, and only two with. ddp and divert from serv... Chris Buechler
12:45 PM Bug #412: EasyRule doesn't work for non-TCP/UDP protocols
I explicitly test for ICMP and bypass that check. I wonder if it would be better to reverse that practice and only ch... Jim Pingle
12:39 PM Revision 2ca50c87: Improve wizard by adding more steps and cleaness.
Ermal Luçi
11:16 AM Revision 69d2ad77: Ticket #421. Do not allow blank alias names in firewall_aliases_edit.php
Erik Fonnesbeck
09:39 AM Revision 992ff4c2: Sort opt10+ and wlan10+ more like the way that would be expected.
Erik Fonnesbeck
07:07 AM Bug #421 (Resolved): Can create Alias without Name
Erik Fonnesbeck
06:38 AM Bug #421: Can create Alias without Name
Yes fixed! Oscar Francia
06:20 AM Bug #421 (Feedback): Can create Alias without Name
Should be fixed now. Erik Fonnesbeck
05:04 AM Bug #421 (Resolved): Can create Alias without Name
This is the error:
There were error(s) loading the rules: /tmp/rules.debug:17: syntax error
pfctl: Syntax error i... Oscar Francia
02:31 AM Revision 0e3aa71c: Fix sorting issues that were introduced in an old commit, resulting in the incorrect item sometimes being shown when clicking edit buttons.
Erik Fonnesbeck
01:36 AM Revision eb20f3c5: Improve the wizard. Make it produce a correct openvpn server config.
Ermal Luçi
12:25 AM Revision bb9689bd: Ticket #343. Move sorting of DHCP static mappings to after the item is set. Previous behavior caused the wrong entry to get overwritten.
Erik Fonnesbeck
12:08 AM Revision f595d4ae: Allow overriding latencylow, latencyhigh, losslow and losshigh by seting config['gateways']['settings'] which is also available in 2.0
Scott Ullrich

03/10/2010

11:57 PM Revision 20252ff5: Make sure <dhcpd><wan> exists before blindly unsetting.
Scott Ullrich
10:57 PM Revision 9b4e659a: More fixes.
Ermal Luçi
10:57 PM Revision 72a5f424: Mostly style fixes.
Ermal Luçi
10:13 PM Revision b7bb1711: Make the wizard ressemble the style as on other pages. Use switch instead of if else to make code more readble.
Ermal Luçi
10:02 PM Revision 1e3c34b0: Fix name of input.
Ermal Luçi
09:26 PM Revision b2442bfa: Ensure we prompt for services changed after editing a domain forward entry
Scott Ullrich
09:05 PM Revision 3207b4e3: Set the correct name for the protocol field.
Ermal Luçi
08:03 PM Revision 81d3be1f: More fixes.
Ermal Luçi
07:51 PM Revision 4cd437f2: Add openvpn server wizard.
Ermal Luçi
07:51 PM Revision 66f773b4: Improve a lot the wizard.php page to be more userfriendly and add control types for certificates.
Ermal Luçi
07:41 PM Bug #417: Packages don't install on embedded
Same error with clean image :( Oscar Francia
06:55 PM Bug #417: Packages don't install on embedded
Scott Ullrich wrote:
> Try again in about 15 minutes. I just committed a fix for the openvpn-client-export case but... Andy L
06:32 PM Bug #417: Packages don't install on embedded
Try again in about 15 minutes. I just committed a fix for the openvpn-client-export case but there are surely more p... Scott Ullrich
06:20 PM Bug #417: Packages don't install on embedded
Yes, only embedded, iso works fine Oscar Francia
06:14 PM Bug #417 (New): Packages don't install on embedded
Probably a mount ro/rw issue on embedded, though I haven't confirmed. Chris Buechler
06:08 PM Bug #417: Packages don't install on embedded
I've tested package installation for 2-3 days in 2 different adsl line and 3 different alix board...
Now I've only l... Oscar Francia
05:45 PM Bug #417 (Feedback): Packages don't install on embedded
They all work for me including the client export, on a gitsync as of 10 minutes ago. Maybe a connectivity issue on yo... Chris Buechler
05:27 PM Bug #417: Packages don't install on embedded
All packages fail to install! :( Oscar Francia
05:11 PM Bug #417 (Resolved): Packages don't install on embedded
Downloading package configuration file... done.
Saving updated package information... done.
Downloading OpenVPN Cli... Oscar Francia
07:22 PM Bug #343: DHCP Server static map edits wrong entry
Fixed for real now. Erik Fonnesbeck
07:12 PM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
This sounds good. Let me know if you get the registration of DHCP leases working.
We also need to add the other ... Scott Ullrich
07:11 PM Bug #419: Always new version on firmware upgrade!
That's just a function of how it works, it won't work with snapshots. It should be addressed at some point but it's n... Chris Buechler
06:29 PM Bug #419 (Resolved): Always new version on firmware upgrade!
with http://snapshots.pfsense.org/FreeBSD_RELENG_8_1/i386/pfSense_HEAD/.updaters/
and http://snapshots.pfsense.org/F... Oscar Francia
07:01 PM Bug #420: Error when setting ips from serial or console on embedded
Fix comitted. Please try next available snapshot. Scott Ullrich
06:53 PM Bug #420 (Resolved): Error when setting ips from serial or console on embedded
Fatal error: Cannot unset string offsets in /etc/rc.initial.setlanip on line 202 Oscar Francia
05:45 PM Bug #418 (Closed): option host-name for static dhcp mappings
Hi,
I was using 1.2.3-RC1 and wanted the client hostname to be provided by the dchp-server as given in a static dh... Jim Svensson
05:15 PM Bug #416 (Resolved): NAT's not working in current snapshot (3-10-2010)
Chris Buechler
05:11 PM Bug #416 (Feedback): NAT's not working in current snapshot (3-10-2010)
Just tested the updated file and it seems to fix it. Erik Fonnesbeck
05:05 PM Bug #416: NAT's not working in current snapshot (3-10-2010)
commit:3207b4e36ac3d0b3c555f5e7bb856f23a32cc36f is applicable to this. Erik Fonnesbeck
04:24 PM Bug #416 (Resolved): NAT's not working in current snapshot (3-10-2010)
Auto nat's do not seem to be applying.
Configuring manual nat's will not let me submit the form. It says:
The f... orangepeel beef
04:59 PM Bug #413 (Resolved): Error when create an OpenVPN server
Chris Buechler
04:58 PM Bug #413: Error when create an OpenVPN server
Works on snapshot 10-03-2010 Oscar Francia
04:45 AM Bug #413 (Feedback): Error when create an OpenVPN server
Ermal Luçi
04:51 PM Bug #414: Setup wizard broken
Wizard works fine no snapshot 10-03-2010 Oscar Francia
04:13 AM Bug #414: Setup wizard broken
The change from that commit seems to fix it. Erik Fonnesbeck
04:05 AM Bug #414 (Feedback): Setup wizard broken
Ermal Luçi
03:20 AM Bug #414: Setup wizard broken
Just checked it out again. Specifically, it is making an entry that looks like this:... Erik Fonnesbeck
02:53 AM Bug #414: Setup wizard broken
This issue was introduced by the change in commit:f39fe79edfc4d45ba0c94efd90f19b5a49dabae6
I'm currently trying to f... Erik Fonnesbeck
02:17 PM Bug #415 (Closed): DNS forwarder domain override add doesn't restart dnsmasq
When adding a domain override, dnsmasq needs to be restarted (without clicking Save). Pretty sure this is fixed in 2.... Chris Buechler
12:28 PM Revision 2f550b96: Add another needed file.
Ermal Luçi
11:30 AM Revision ecf5aa39: Include necessary files.
Ermal Luçi
10:40 AM Revision 8a47c190: Ticket #413. Hanlde cases when no authentication is specified.
Ermal Luçi
10:14 AM Revision 5a8a69b3: Only extract timezone info if we have a field type 'timezone_select'
Ermal Luçi
10:00 AM Revision ba9e9bbf: Correctly set variable values during each iteration. Ticket #414. Spotted-by: irc(Efonne)
Ermal Luçi
04:09 AM Feature #410: Eliminate the interface mismatch prompt and try to do the right thing automatically
This sounds like over-engineered.
What is needed is just to make sure that the interface at boot matches the one bef... Ermal Luçi

03/09/2010

11:56 PM Revision 1c38875e: Ticket #386. Add all possible proxy arp to the external ip when it is defined as network even on outbound NAT.
Ermal Luçi
11:10 PM Revision d3ab36dc: If field type is interface show them with the descriptive name.
Ermal Luçi
09:18 PM Revision c9204896: Ticket #386. Add all possible proxy arp to the external ip when it is defined as network.
Ermal Luçi
08:48 PM Bug #414 (Resolved): Setup wizard broken
Going through the setup wizard results in a broken system. After the NTP server configuration page, it goes to "No pa... Chris Buechler
08:34 PM Revision c0f5182c: Correctly configure the default route addition when interfaces are configured for pppoe/pptp. Handle in system routing configure dynamic interfaces. Also when chaning or configuring the defaultgw reconfigure the underlying interface, this helps when this interfaces are dynamics one.
Ermal Luçi
07:54 PM Bug #397 (Resolved): Warning on Status: OpenVPN
Pierre POMES
05:54 PM Bug #397: Warning on Status: OpenVPN
Pierre POMES wrote:
> Hi Oscar,
>
> This should be fixed now. Could you test again and confirm it is ok ? (either... Oscar Francia
07:45 PM Revision 68ff67b3: Implement the protocol functionality on nat rules. This i based on a port that provides this functionality but with a lot more reduced patchset.
Ermal Luçi
07:40 PM Revision 800ae412: Fix a slight bug. This would have caused an empty description in some cases.
Jim Pingle
07:07 PM Revision 101ce09a: Ticket #406. Add openvpn tunnel networks to the auto generated nat rules.
Ermal Luçi
06:58 PM Revision 329db705: Remove legacy code.
Ermal Luçi
06:16 PM Revision 18315b0d: Upps use mpd5.
Ermal Luçi
06:12 PM Feature #410: Eliminate the interface mismatch prompt and try to do the right thing automatically
I probably shouldn't have set a target version.
Anyway, some additional ideas I had:
For the unassigned interfa... Erik Fonnesbeck
11:20 AM Feature #410: Eliminate the interface mismatch prompt and try to do the right thing automatically
There is already something along these lines that will auto-assign interfaces if there is a mismatch. I believe it wa... Chris Buechler
02:49 AM Feature #410: Eliminate the interface mismatch prompt and try to do the right thing automatically
I'm considering maybe implementing this myself for 2.0, though probably in my own fork/branch until it is approved. Erik Fonnesbeck
02:36 AM Feature #410 (Resolved): Eliminate the interface mismatch prompt and try to do the right thing automatically
Especially for embedded platforms, I think it would be useful to completely do away with the interface mismatch scree... Erik Fonnesbeck
06:01 PM Bug #395: Warning when create CA and Certificate
Same error
For CA:
Warning: openssl_pkey_new(): unable to write random state in /etc/inc/certs.inc on line 148
... Oscar Francia
05:54 PM Revision fb0f22c0: Add a function to get user groups based on authentication server. Use this function to show the groups the user i member of on Diag Authentication.
Ermal Luçi
05:52 PM Revision 61bda182: Correct assignment.
Ermal Luçi
05:52 PM Bug #413 (Resolved): Error when create an OpenVPN server
Warning: implode(): Invalid arguments passed in /usr/local/www/vpn_openvpn_server.php on line 271 Warning: Cannot mod... Oscar Francia
05:22 PM Revision f2f0a748: Return the data after unreference, it might be needed.
Ermal Luçi
05:22 PM Revision be934aad: Make this work as it is supposed.
Ermal Luçi
04:18 PM Bug #386 (Feedback): Proxy ARP range does not show all usable IPs
Ermal Luçi
04:10 PM Bug #412 (Resolved): EasyRule doesn't work for non-TCP/UDP protocols
Example, trying to add a rule for OSPF: ... Chris Buechler
04:06 PM Bug #231 (New): carp_input: packet received on non-carp interface log flooding
This is happening again. Chris Buechler
03:59 PM Revision 3f0357fc: Add a diag page for authentication.
Ermal Luçi
02:07 PM Bug #406 (Feedback): OpenVPN tunnel network should be automatically added for Outbound NAT
Ermal Luçi
12:45 PM Revision 575a42f5: Add some more error checking to not have issues as reported on http://forum.pfsense.org/index.php/topic,23435.0.html
Ermal Luçi
07:32 AM Revision 62150088: Revert "Catch up with php changes."
This reverts commit 907b435ac8559c4e353dbdd4fb969c465973d142. Ermal Luçi
03:06 AM Feature #411: Regulatory domain and country settings for wireless
The indoor, outdoor, and anywhere options also can affect some of the same parameters as these options. They could a... Erik Fonnesbeck
03:04 AM Feature #411 (Resolved): Regulatory domain and country settings for wireless
Sometimes it may be desirable to change the settings for the regulatory domain and country for a wireless interface. ... Erik Fonnesbeck
02:20 AM Revision cf1ced6d: Handle empty OVPN client array correctly. Ticket #397
Pierre POMES
02:06 AM Bug #233: Config upgrade should change theme
If nervecenter does not get fixed and is removed from 2.0, I can see that as being a valid reason to change the theme... Erik Fonnesbeck
01:51 AM Bug #233: Config upgrade should change theme
The check to change nervecenter only would ensure it never gets hit for anyone who has selected another theme.
ne... Chris Buechler
01:42 AM Bug #233: Config upgrade should change theme
Personally, I don't think it should be done unless there is some way to detect that the user has not ever configured ... Erik Fonnesbeck
12:35 AM Bug #233 (New): Config upgrade should change theme
There is a default theme, it's nervecenter. If <theme>nervecenter</theme>, s/nervecenter/pfsense_ng/
 Chris Buechler
01:06 AM Bug #409 (Closed): Quality RRD graphs on embedded not working
File permissions prevent it from working. Problem described here:
http://forum.pfsense.org/index.php/topic,22437.ms... Chris Buechler
12:43 AM Bug #408 (Resolved): Static routes are not converted properly on upgrade
On upgrade from 1.2.x, static routes are not properly converted. The gateway isn't added as a gateway entry. Needs mo... Chris Buechler

03/08/2010

11:17 PM Revision bd96ff65: Actually put it to background.
Ermal Luçi
11:15 PM Revision 98d269af: Put this on background to avoid delays.
Ermal Luçi
11:12 PM Revision 9f695b0f: Add skip white space. To avoid erroring out on accidental blank space.
Ermal Luçi
11:03 PM Revision b48a82c9: Check against proper value. Spotted-by: cmb
Ermal Luçi
09:23 PM Bug #397 (Feedback): Warning on Status: OpenVPN
Hi Oscar,
This should be fixed now. Could you test again and confirm it is ok ? (either manually update your box u... Pierre POMES
08:04 PM Todo #407 (Resolved): Transport mode IPsec needs finishing
All the back end code should be there, GUI needs to accommodate transport. Chris Buechler
07:58 PM Revision 768f4c0e: Enable mpd5 for pppoe/pptp client connections. It brings improvements with it.
Ermal Luçi
07:27 PM Revision 23f0ca50: Move check upper to suit the platforms not needing it better.
Ermal Luçi
07:25 PM Revision db98c8b9: Ticket #395. Add the path to the openssl.cnf to avoid errors. /etc/ssl/openssl.cnf needs to be tuned more to suit pfSense.
Ermal Luçi
07:04 PM Revision b2f626b2: Add missing unmount calls.
Ermal Luçi
06:58 PM Revision 6d6bca27: Do not test for booting in here for mount points.
Ermal Luçi
06:51 PM Revision 6346595c: Match conf_mount_rw with conf_mount_ro call.
Ermal Luçi
06:43 PM Revision ef3af02e: Use shmop module to implement reference count calls.
Ermal Luçi
06:34 PM Revision 3339fac0: Place conf_mount_ro() calls where supposed too.
Ermal Luçi
05:43 PM Revision dc7c57ac: Reinstall packages even on nanobsd.
Ermal Luçi
05:32 PM Revision 68347742: Close before unmounting.
Ermal Luçi
05:19 PM Revision e296b183: Move call up to where it belongs.
Ermal Luçi
05:18 PM Revision 07070c72: Remove bogus call.
Ermal Luçi
05:15 PM Bug #405 (Closed): OpenVPN option redirect-gateway does not work.
It works fine. You're probably missing rules or outbound NAT (see #406). Chris Buechler
04:27 PM Bug #405 (Closed): OpenVPN option redirect-gateway does not work.
I've tested on OpenVPN Remote Access Tunnel, the webinterface option and set the option on the client config file, bu... Oscar Francia
05:14 PM Bug #406 (Resolved): OpenVPN tunnel network should be automatically added for Outbound NAT
All the configured OpenVPN tunnel networks should be added automatically for outbound NAT, the same as directly conne... Chris Buechler
04:53 PM Revision a46e450c: Do not spread checking for value accross code. Do it in the function that is supposed to do it.
Ermal Luçi
02:29 PM Revision 0c331f1e: Catch up with php5.
Ermal Luçi
01:34 PM Bug #395 (Feedback): Warning when create CA and Certificate
Ermal Luçi
12:29 PM Revision e54626e2: Fix rowhelper size usage.
Ermal Luçi
10:27 AM Revision 6ee34f4d: Silence errors.
Ermal Luçi
09:34 AM Revision 1ae54336: Make sure the channel list for a mode does not get cleared if it already exists.
Erik Fonnesbeck

03/07/2010

11:54 PM Revision 9be20928: Fixes for 11g Turbo and 11a Turbo modes.
Erik Fonnesbeck
11:53 PM Revision 7222ad41: Add space between class
Scott Ullrich
11:13 PM Revision 5030b5eb: Disable ampdu for now on mwl when running in 11n mode to prevent massive packet loss under certain conditions.
Erik Fonnesbeck
11:13 PM Revision c39ca3e2: AES is recommended due to Toshihiro Ohigashi and Masakatu Morii attacks
Scott Ullrich
10:53 PM Revision d6050c47: Move description into listtopic area
Scott Ullrich
09:37 PM Revision ecd1f2d9: Adding support for using IP ranges aliases. If you input an IP Range such as 192.168.0.1-192.168.0.254, it will instead turn that into a number of CIDR networks which will completely fill the range.
Jim Pingle
07:45 PM Revision abfd0c9b: Ensure string is cleared out if needed
Scott Ullrich
07:45 PM Revision 7eadaa9c: Only include wpa_passphrase= line if a string has been entered. Ticket #404
Scott Ullrich
09:27 AM Feature #403: tinydns/dnscache drop in replacement for dnsmasq in pfSense
Reply to myself... I see that allmost anything is already done in the tinydns package. Registration of DHCP leases do... znerol znerol
09:07 AM Revision ed459692: Add 802.11n-only option. Hide options specific to 802.11g or 802.11n when those modes aren't available.
Erik Fonnesbeck
07:28 AM Revision a8f58287: Revert "Add temporary note that changing the wireless standard may require a reboot. To be reverted when the extra work is in place to get it to change when multiple wireless clones exist."
This reverts commit b383e88b59366143d69c2b50aa8e000d4a6c83e5. Erik Fonnesbeck
06:57 AM Revision 23fdc06e: The mode must be specified in a separate command before ifconfig will allow the mode and channel to be changed.
Erik Fonnesbeck
06:40 AM Revision 39c1349c: Add support for 802.11n in get_wireless_modes and the channels list.
Erik Fonnesbeck
01:41 AM Bug #404 (Resolved): Wifi does not start when configured to use RADIUS if WPA passhprase is left empty
If 'Enable IEEE802.1X Authentication' is checked and external RADIUS server info is provided pfSense generates hostap... Paul K

03/06/2010

11:10 PM Revision 017d381c: Ensure prefix directory exists before downloading and installing additional file
Scott Ullrich
05:22 AM Feature #403 (Resolved): tinydns/dnscache drop in replacement for dnsmasq in pfSense
I'm taking one more time on an older ticket back from last year:
http://redmine.pfsense.org/issues/show/129#note-1... znerol znerol

03/05/2010

09:59 PM Revision 6b605c97: Till the flock issue is fixed open the races doors, place your bets please!
Ermal Luçi
06:16 PM Revision 3de94477: Do not allow changing the name of the auth server. Resolves #399.
Ermal Luçi
05:12 PM Revision eb0f4fc6: Default to http.
Ermal Luçi
04:28 PM Revision 06f61915: Propperly initialize variables so they function is as expected.
Ermal Luçi
04:19 PM Revision 01ba0a72: Fixed variable definition.
Ermal Luçi
03:44 PM Revision 3435dc35: Make sure we have initialized vars.
Ermal Luçi
03:40 PM Revision 907b435a: Catch up with php changes.
Ermal Luçi
02:56 PM Revision 5db11366: Fix RIP code to be compliant with 2.0.
Ermal Luçi
02:56 PM Revision ba8ec112: Do not try to load radius extension through PEAR because it will fail.
Ermal Luçi
02:14 PM Bug #355: syslog should not bind on *

Only thing I can think of is that it somehow was invoking syslogd with the '-ss' flag to prevent any network usage.... Dan Swartzendruber
02:07 PM Bug #355: syslog should not bind on *
Jim P wrote:
> When I add this change, I am then unable to then redirect the logs to a remote host from the GUI as n... Dan Swartzendruber
01:20 PM Bug #399 (Resolved): In-use authentication servers can be renamed
Applied in changeset commit:"3de9447703621867c59667161aeadabd20ef5de0". Ermal Luçi
10:19 AM Revision 7dbaa205: Catch up with php5 changes on array.
Ermal Luçi
03:59 AM Revision 9c2e9c13: Fixing the condition for the enable checkbox broke saving on wan and lan. Add a hidden enable field for wan and lan to fix any code that expects it to be there.
Erik Fonnesbeck
02:40 AM Revision 2993dcc2: Ticket #402. Check for external address of "any" on port forwards, since alias_expand only returns null in that case, and the port forward code would then use the IP address as the fallback.
Erik Fonnesbeck
01:31 AM Feature #56 (Feedback): VAP code
Implemented and functional; some parts still need a little work. Erik Fonnesbeck
12:15 AM Revision 27c0c7c6: Do not show pppoe/pptp/l2tp interfaces for assignment.
Ermal Luçi

03/04/2010

11:43 PM Bug #402 (Resolved): External address "any" doesn't set "any" in rdr
fixed Chris Buechler
10:02 PM Bug #402: External address "any" doesn't set "any" in rdr
Committed a fix. Erik Fonnesbeck
09:21 PM Bug #402 (Resolved): External address "any" doesn't set "any" in rdr
For instance, this config: ... Chris Buechler
04:37 PM Revision 7f9a1300: Remove specific ppp fields if the interface is not a ppp anymore this unbreaks the GUI in certain cases.
Ermal Luçi
04:35 PM Bug #399: In-use authentication servers can be renamed
that's fine to just not allow renaming Chris Buechler
10:18 AM Bug #399: In-use authentication servers can be renamed
There is no easy way around this.
Better do not allow rename at all and allow the user to create a new one through c... Ermal Luçi
03:57 AM Bug #399 (Resolved): In-use authentication servers can be renamed
Authentication servers on system_authservers.php can be renamed when in use, breaking the component using the server.... Chris Buechler
04:11 PM Revision 26586f7a: Ticket #400. Commit partial patch from this ticket.
Ermal Luçi
03:55 PM Revision 864336aa: Remove the authentication fallback it does not have any meaning now.
Ermal Luçi
03:41 PM Revision bb2e8e89: Remove test code.
Ermal Luçi
03:38 PM Revision a1bed51b: Fix double include.
Ermal Luçi
12:15 PM Revision 6f27412f: Ignore chmod errors for files that do not exist.
Ermal Luçi
10:17 AM Bug #400 (Feedback): rfc2136 brokenness
Partial patch committed.
RFC2136 updates will be called from rc.newwanip. Ermal Luçi
05:23 AM Bug #400: rfc2136 brokenness
attached patch.
This affected 1.2.3 in http://redmine.pfsense.org/issues/show/106, which probably can be closed now.... Aarno Aukia
05:18 AM Bug #400 (Resolved): rfc2136 brokenness
rfc2136 does not work in 2.0 out of the box. please see the attached patches.
--- /etc/rc.dyndns.update.bak 2010... Aarno Aukia
08:38 AM Bug #401: Description Values on Aliases not >10
Sorry for all this quote...
I attach the diff file. Oscar Francia
08:20 AM Bug #401: Description Values on Aliases not >10
188c188
< if(count($addresses) < 10) {
---
> if(count(array_slice(explode(" ", $alias['address']), 0, 10)) < 10)... Oscar Francia
07:15 AM Bug #401: Description Values on Aliases not >10
Oscar Francia wrote:
> The description values on aliases show up to 10 items!
> This is not a bug but an enhancemen... Oscar Francia
06:30 AM Bug #401 (Resolved): Description Values on Aliases not >10
The description values on aliases show up to 10 items!
This is not a bug but an enhancement :)
Test with change in ... Oscar Francia
02:03 AM Revision 957e2f1f: Add a config diff option to the backup history, so you can view changes between revisions.
Jim Pingle

03/03/2010

11:41 PM Revision e327021d: Fix distance setting for ath and add it to the wireless settings that are synced and listed as shared.
Erik Fonnesbeck
11:22 PM Revision 39163f72: Ticket #393. Require once.
Ermal Luçi
11:18 PM Revision 43ad432c: Ticket #396. Try to fix issues with missing include files or filesystem being in ro mode during operations.
Ermal Luçi
10:29 PM Bug #397 (Assigned): Warning on Status: OpenVPN
Problem identified, I'm on it. Pierre POMES
07:46 PM Bug #397 (Resolved): Warning on Status: OpenVPN
Warning on Status: OpenVPN on version built on Mon Mar 1 21:21:57 EST 2010
After "OpenVPN client instances statis... Oscar Francia
09:58 PM Revision dfc7ab8c: Remove mentioning of the well gone ftp helper.
Ermal Luçi
08:33 PM Bug #314 (Resolved): wizard: Gateway not set for DNS servers
this is good Chris Buechler
01:44 PM Bug #314 (Feedback): wizard: Gateway not set for DNS servers
Committed with better appearance.
Thanks. Ermal Luçi
08:01 PM Bug #398 (Closed): Button error in Firewall: Schedules: Edit
Button error in Firewall: Schedules: Edit
In Configured Ranges button edit does not work ( I think you can remove it... Oscar Francia
06:43 PM Revision f39fe79e: Ticket #314. Commit somewhat variant of patch provided on ticket to allow checking allow dns override.
Ermal Luçi
06:33 PM Revision 2702fbaf: Resolves #392. Remove unused igmpproxy_import and its .gif reference.
Ermal Luçi
06:23 PM Bug #393 (Feedback): system_advanced_notifications.php error
Possibly cache.
A simple patch committed. Ermal Luçi
06:10 PM Bug #393: system_advanced_notifications.php error
Not seeing this, how exactly can you replicate this? Chris Buechler
04:50 AM Bug #393 (Resolved): system_advanced_notifications.php error
Fatal error: Cannot redeclare file_notice() (previously declared in /etc/inc/notices.inc:55) in /etc/inc/notices.inc ... Oscar Francia
06:20 PM Revision eda9b2b8: Ticket #340. Remove obsolete file on upgrade.
Ermal Luçi
06:18 PM Bug #396 (Feedback): Packages don't install on embedded
A shot at this Ermal Luçi
05:36 PM Bug #396 (Resolved): Packages don't install on embedded
End up with a bunch of errors at the bottom of pkg_mgr_install.php like the following: ... Chris Buechler
06:16 PM Revision 79d3a7cf: Ticket #259. Retrun only the first pid from the list that might be found. This should fix not killed dhclient processes.
Ermal Luçi
06:03 PM Bug #394 (Rejected): Backup / Restore does not work
Can't replicate, not specific enough to be a legit bug report. Please post to the 2.0 board on the forum with more in... Chris Buechler
04:51 AM Bug #394 (Rejected): Backup / Restore does not work
Backup ok, but I can't restore!
No complete restore
No only Aliases restore
No only Rules restore
... Oscar Francia
06:00 PM Revision 9c6db17a: Remove the gateway even from the interface if it is used by it. Resolves #304.
Ermal Luçi
05:21 PM Revision 409105ec: Remove dead code.
Ermal Luçi
05:20 PM Revision ddd42db3: Put safe_write_file to the include it belongs to.
Ermal Luçi
05:17 PM Revision 6280b10e: Do not try to upgrade from m0n0 config to pfSense config on every invocation of config.inc but only during bootup, basically this gives a lot of speed up in GUI.
Ermal Luçi
05:13 PM Revision 8cd27a98: Do not allow negative numbers in session timeout. Ticket #378.
Ermal Luçi
04:17 PM Revision 6306b5dd: Overhaul the user login system to use the Servers tab as its base.
Fix quite a few problems down the way. Ermal Luçi
04:17 PM Revision f700f8da: Unly try to reload carps after bootup is complete.
Ermal Luçi
03:29 PM Bug #304 (Feedback): Deleting a static gateway results in an auto-added dynamic gateway
needs testing Chris Buechler
01:05 PM Bug #304 (Resolved): Deleting a static gateway results in an auto-added dynamic gateway
Applied in changeset commit:"9c6db17a5d3199bbb38956e1b213872eabca2091". Ermal Luçi
01:35 PM Bug #392 (Resolved): IGMP import issues
Applied in changeset commit:"2702fbaf2ac2e1c44a423516e356392df4467ced". Ermal Luçi
01:21 PM Bug #340 (Feedback): EasyRule call to undefined function
The include was moved to /etc/inc though the /usr/local/www one was forgotten to be added to obsoleted list.
On the ... Ermal Luçi
01:16 PM Bug #259 (Feedback): When disabling a dhcp interface, dhclient is not stopped
More fixes. Ermal Luçi
01:05 PM Bug #387 (Rejected): Limiter appears to cause kernel panics
I will reject this because that is mostly a FreeBSD issue rather than pfSense one.
 Ermal Luçi
01:03 PM Bug #389 (Feedback): "LDAP Authentication container" Select doesn't work until after Save
Solved by today commits. Ermal Luçi
12:14 PM Bug #384 (Resolved): kern.maxfiles exceeded
The fix is good. Ermal Luçi
12:13 PM Bug #378 (Feedback): session timeout in user manager
Try latest snapshots which have improvements. Ermal Luçi
09:52 AM Revision 333addaf: Add interfaces_wireless.php and interfaces_wireless_edit.php to priv.defs.inc
Erik Fonnesbeck
09:33 AM Revision f98bfed2: Remove the windows LF on this file to be usable on vi.
Ermal Luçi
06:36 AM Revision b383e88b: Add temporary note that changing the wireless standard may require a reboot. To be reverted when the extra work is in place to get it to change when multiple wireless clones exist.
Erik Fonnesbeck
06:17 AM Revision 651fff4f: Add more descriptive mode names to the error messages.
Erik Fonnesbeck
06:05 AM Bug #395 (Resolved): Warning when create CA and Certificate
Warning: openssl_pkey_new(): unable to write random state in /etc/inc/certs.inc on line 202 Oscar Francia
05:35 AM Revision 597330aa: When more than a single wireless clone exists, verify that it is possible to change the mode.
Erik Fonnesbeck
03:29 AM Revision 6ba138b0: Don't need to bring the interface down twice -- let apply be the one to take care of it, since that appears to be the intention.
Erik Fonnesbeck
03:26 AM Revision 3f23b74d: Only create the clone here if it does not exist, to prevent inadvertently destroying the clone before apply has been clicked.
Erik Fonnesbeck
03:12 AM Revision cccdc09f: Fix conditions for disable.
Erik Fonnesbeck
12:56 AM Revision e62e2f8b: Add tls-auth to server even when authenticating in user/pass mode.
Ermal Luçi
12:41 AM Revision 7c52ac05: Remove unused var and stale comment.
Ermal Luçi
12:27 AM Revision f9ac3784: Do not include tls-auth on authentication based only on user/pass.
Ermal Luçi
12:24 AM Revision 94ca29a9: Use wireless_regex instead, because is_interface_wireless appears to be intended for assigned interfaces only.
Erik Fonnesbeck
12:10 AM Revision c5e2d1c3: Fix text and add more descriptive names to the modes.
Erik Fonnesbeck
12:03 AM Revision 867d444b: Unset variable.
Erik Fonnesbeck

03/02/2010

11:41 PM Revision 263e2b7e: Sync the mode of an assigned wireless clone with the mode on the page for creating them.
Erik Fonnesbeck
08:48 PM Revision 54b9de56: Allow openvpn server to authenticate only based on username/password credentials.
Ermal Luçi
08:27 PM Revision acee624f: Do not allow same names on different auth servers. While here correct radius default ports.
Ermal Luçi
08:19 PM Revision cc686d98: Add the neccesary foo for radius.inc to work.
Ermal Luçi
07:41 PM Revision f4a4d91e: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/efonne-wireless_clones
Approved-By: sullrich/cmb Erik Fonnesbeck
05:23 PM Revision 8a6b0fbe: Add copyrights of myself.
Ermal Luçi
05:10 PM Revision 006a162f: Take care of local authentication. Also when the user authenticates do not serach on other authentication sources.
Ermal Luçi
05:07 PM Revision c61e4626: Allow the GUI auth API to be used for doing authentication against authentication servers specified. Teach Openvpn to use this API. Allow openvpn to authenticate against multiple servers that can be selected on the server configuration page.
Ermal Luçi
10:21 AM Revision a13ce628: Do not allow login for expired and disabled users. Fix this even in openvpn authentication script. While here clean up the code quite a bit.
Ermal Luçi
12:27 AM Revision d91f8b8c: User _ instead of </> so browser does not interpret it as html.
Ermal Luçi
12:21 AM Revision c345f265: Do not show the passwd used to logon on logs. Also change the replace from $username to <username> so php does not try to do clever stuff.
Ermal Luçi
12:14 AM Revision 366d0323: Allow the authentication scripts to detect configuration changes. Allow multiple OUs to be specified on basedn.
Ermal Luçi
12:13 AM Revision d427154a: fix text
Chris Buechler

03/01/2010

11:11 PM Revision 96d7b761: use local-ttl 1. No reason not to, and it works around issue with Snow Leopard
Chris Buechler
10:46 PM Revision 1e52f18c: Merge commit 'mainline/master'
Erik Fonnesbeck
10:42 PM Bug #259 (New): When disabling a dhcp interface, dhclient is not stopped
No change, still leaves it running. Chris Buechler
10:37 PM Todo #65 (Resolved): Ability to disable accounts
works as it should Chris Buechler
10:24 PM Bug #199 (Closed): Deleting an unused VLAN ID removes IP addresses from all active VLAN interfaces
Chris Buechler
10:23 PM Todo #5 (Resolved): Don't sync on every filter reload
fixed Chris Buechler
10:15 PM Bug #340 (New): EasyRule call to undefined function
Still the same error, the last commit fixed /etc/inc/easyrule.inc while the error is pointing to /usr/local/www/easyr... Chris Buechler
10:13 PM Bug #313 (New): wizard: faulty ip addresse when icon pressed for faster reload
no change Chris Buechler
10:09 PM Bug #366 (Resolved): The check in interfaces_bridge.php to prevent deleting an assigned bridge does not work.
fixed Chris Buechler
10:08 PM Bug #62 (Resolved): Check vlan 1.2 -> 2.0 upgrade code and interface naming.
Chris Buechler
10:08 PM Bug #373 (Closed): Package Manager not available in menus
Everything is fine then apparently. No idea what you're seeing but this isn't enough info to be a legit, actionable b... Chris Buechler
10:04 PM Bug #375 (Resolved): RRD data included in partial backups
fixed Chris Buechler
09:46 PM Revision 0c1b9688: The filter expects * and not a php variable.
Ermal Luçi
09:33 PM Revision 81899dab: Its and and not an or.
Ermal Luçi
09:11 PM Revision da3da9db: Some directories does not work with the prepended @basedn on the username take account of this.
Ermal Luçi
09:04 PM Revision db746ce2: Use 0 when configuring tls-auth in server.
Ermal Luçi
08:50 PM Bug #12 (Resolved): Editing DNS forwarder overrides does not trigger sync to secondary
fixed Chris Buechler
08:24 PM Bug #288 (Resolved): Deleting IGMP proxy entry / editing upstream entry result in errors
fixed Chris Buechler
08:24 PM Bug #392 (Resolved): IGMP import issues
The edit icon (themes/pfsense_ng/images/icons/icon_import_igmpentry.gif) and page (services_igmpproxy_import.php) are... Chris Buechler
08:18 PM Bug #304 (New): Deleting a static gateway results in an auto-added dynamic gateway
This has regressed since my last update. At that point, it only showed the dynamic gateway until changes were applied... Chris Buechler
08:15 PM Bug #137 (Resolved): Change of IPsec remote gateway doesn't trigger SPD reload
fixed Chris Buechler
08:15 PM Bug #360 (Resolved): Editing P2 leaves old SPD entry
fixed Chris Buechler
08:01 PM Bug #391 (Closed): 1.2.3 (and others?) Deleting multiple opt interfaces results in a corrupt config.xml
That was fixed in 1.2.3 (with a clean config, could be problems with a config that had optxxxx inserted previously), ... Chris Buechler
07:58 PM Bug #391 (Closed): 1.2.3 (and others?) Deleting multiple opt interfaces results in a corrupt config.xml
I only noticed this on 1.2.3, I don't know if prior versions are effected, or if this is a carry over from a prior ve... Andrew Stuart
07:42 PM Bug #390 (Closed): WebGUI - SSH Port change doesn't take effect
Verified this isn't the case in 2.0. We're not fixing 1_2 issues as there likely won't be any more releases. Chris Buechler
07:37 PM Bug #390 (Closed): WebGUI - SSH Port change doesn't take effect
Changing the SSH Port and clicking save does not take effect. It may work on a reboot but I haven't tried. I just unc... Andrew Stuart
07:26 PM Revision b6d0c86f: Correct script used for OpenVPN authentication to actually work.
Ermal Luçi
07:16 PM Bug #356 (Resolved): Unassigned interfaces retain IP configuration
fixed Chris Buechler
07:08 PM Bug #352 (Resolved): Editing P2 /0 mask fills in wrong value
fixed Chris Buechler
07:03 PM Bug #389 (Resolved): "LDAP Authentication container" Select doesn't work until after Save
Upon initially filling in the fields appropriately on system_usermanager_settings.php for LDAP, and clicking the Sele... Chris Buechler
06:41 PM Revision 3198b8d3: Convert to int so the keylength is respected during sign.
Ermal Luçi
12:36 PM Revision e4749e66: Correct typo in function name
Seth Mos
11:00 AM Revision 84d07e67: Mute route delete message, regenerate resolv.conf as this also corrects static routes to the DNS servers.
Seth Mos
10:35 AM Revision c6e1b0f5: Add intermmediate certificate support to CP config page.
Ermal Luçi
02:15 AM Revision ceccec87: it's 2010
Chris Buechler
 

Also available in: Atom