Project

General

Profile

Activity

From 04/22/2010 to 05/21/2010

05/21/2010

11:54 PM Revision 842878b5: Unbreak nanobsd since Ticket #444
Scott Ullrich
11:07 PM Revision ce8efd06: Unbreak nano since ticket #444
Scott Ullrich
08:54 PM Revision cb88138a: Ups remove erroneous curly.
Ermal LUÇI
08:50 PM Revision 61d54be6: Actually return to previous function code for lookup_gateway_ip_by_name() to not create recursive loops. There is still the question of how dynamic interfaces should be handled here?
Ermal LUÇI
08:45 PM Revision 962625aa: Revert "Use a global array for the most part of using the return_gateways_array() function in the backend which should lower the memory allocated/cached by php a lot."
This reverts commit e51cf5960f6718a14c07daa7b6e96337fdba1f0e. Ermal LUÇI
07:44 PM Revision e51cf596: Use a global array for the most part of using the return_gateways_array() function in the backend which should lower the memory allocated/cached by php a lot.
Ermal LUÇI
06:45 PM Bug #614: Users in groups with ssh access are not actually given shell/ssh access
For tunnels, it could probably even be a shell that just says something like "Press any key when you want to log out ... Erik Fonnesbeck
03:04 PM Bug #614: Users in groups with ssh access are not actually given shell/ssh access
Yeah that could get hairy, especially since any shell user can read the raw config which (necessarily) contains some ... Jim Pingle
02:48 PM Bug #614: Users in groups with ssh access are not actually given shell/ssh access
Related to this, we also need to look at how shell access in general should be handled for non-root users. The consol... Chris Buechler
02:23 PM Bug #614 (Resolved): Users in groups with ssh access are not actually given shell/ssh access
When you add a new user and make it a member of the any group that has ssh privileges, it does not get shell access. ... Jim Pingle
06:13 PM Bug #615 (Closed): View current page for the portal page contents does not work
works fine, it's always worked this way. Chris Buechler
06:05 PM Bug #615 (Closed): View current page for the portal page contents does not work
Results in the browser navigating to http://$IP:8000/
Clicking on the View current page for the error upload resul... Scott Ullrich
05:45 PM Revision de792e62: Fix whitespace while I'm here.
Jim Pingle
05:31 PM Revision 6d1af0e9: Preserve DHCP numbered options when there is an input error. Fixes #494
Jim Pingle
04:42 PM Revision dc4f649e: Make Firewall Optimization Options text readable
Scott Ullrich
02:58 PM Bug #548 (Resolved): Inconsistent DHCP behavior when renumbering LAN
Looks like a good fix to me, and going this route, we don't imply that the user has to open a new window/tab or navig... Jim Pingle
02:54 PM Bug #611: Firmware upgrade error: "There has been an error verifying the signature on this image."
Hi Jim, Thanks for the response. I should have mentioned. I already have "Allow to update the system with auto-upda... Michael Welter
02:28 PM Bug #611 (Rejected): Firmware upgrade error: "There has been an error verifying the signature on this image."
Jim Pingle
02:28 PM Bug #611: Firmware upgrade error: "There has been an error verifying the signature on this image."
The snapshots are not signed.
Go to the Updater Settings tab and check the box to ignore the image signing. Jim Pingle
02:14 PM Bug #611 (Rejected): Firmware upgrade error: "There has been an error verifying the signature on this image."
Whenever I attempt to upgrade the firmware I get the below error.
"There has been an error verifying the signature... Michael Welter
02:23 PM Bug #613 (Resolved): New users are not added/counted in All Users group
The "all users" group is only showing a count of 1 when there are 4 users on the system. Looking in the config, there... Jim Pingle
02:20 PM Bug #612 (Resolved): Member count of empty groups is inaccurate
If you add a new group and give it no members, the group list shows that the member count is 1 and not 0 as expected.... Jim Pingle
01:50 PM Bug #494 (Feedback): Additional DHCP options lost on input errors
Applied in changeset commit:"6d1af0e9d8e4398f71a572bb1cf2b4174ac5503b". Jim Pingle
12:29 PM Revision 61630681: Remove unecessary check.
Ermal LUÇI
10:10 AM Bug #608: Captive Portal voucher concurrent login feature not working
This is working as it should on my tests
Probably being more specific helps. Ermal Luçi
04:23 AM Revision c099a987: Add space between the and forum
Scott Ullrich
04:18 AM Bug #459 (Closed): ip2long (and possibly others) return bogus values on 64 bit
Chris Buechler
04:08 AM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
Thanks again, I've verified it is now working on my 64-bit system. Michael Welter
04:05 AM Revision d7f742c2: Do not process items in which we cannot resolve the config file
Scott Ullrich
03:41 AM Bug #88: TXCSUM forced on at boot which breaks wireless bridging
It might not be affected by this when the bridge has the IP address and the members have no IP addresses. That is my... Erik Fonnesbeck
12:14 AM Bug #88 (New): TXCSUM forced on at boot which breaks wireless bridging
Now appears to be an issue in 8.1 with some bridging scenarios and vr NICs. Probably need the same fix from 1_2 applied. Chris Buechler
02:16 AM Revision 1f06d217: Revise text
Scott Ullrich
02:15 AM Revision 6cf2e475: pipe to more
Scott Ullrich
02:14 AM Revision ea546e49: Minor fixes
Scott Ullrich
12:34 AM Revision d9e2c171: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline into mlppp
Conflicts:
usr/local/www/interfaces.php
Not sure why there was a conflict since the last change to this file ... Marcus Brown

05/20/2010

11:59 PM Revision 02bdb544: Use echo
Scott Ullrich
11:55 PM Revision 7ec0aeb1: Adding restore script for rc.create_full_backup. First argument is the restore filename
Scott Ullrich
11:09 PM Revision 30ade846: Fixing whitespace so this file is more readable. And comment out extra html tags at the end of the file.
This file was in bad shape wrt tab spaces lining up. It should be more readable now. Marcus Brown
10:16 PM Revision c0ed686f: Do not allow duplicate Roll #'s
Scott Ullrich
10:02 PM Feature #605: Upgrade to new package versions should be controlled by GUI
You can open a new ticket that is specific to TinyDNS and its reinstallation problems but please do not update this t... Jim Pingle
09:55 PM Feature #605: Upgrade to new package versions should be controlled by GUI
See however http://forum.pfsense.org/index.php/topic,24912.msg131122.html#msg131122 Henrik Kaare Poulsen
09:12 PM Feature #605: Upgrade to new package versions should be controlled by GUI
OK, I will hope for some comments on
http://forum.pfsense.org/index.php/topic,24912.0.html
and
http://redmine.pfse... Henrik Kaare Poulsen
08:56 PM Feature #605 (Rejected): Upgrade to new package versions should be controlled by GUI
Packages are updated from System > Packages on the installed packages tab. It shows there if a new version is availab... Jim Pingle
08:12 PM Feature #605: Upgrade to new package versions should be controlled by GUI
Fair enough, sorry for the noise ))-:
However, when are packages then updated?
I.e. if there is a security update... Henrik Kaare Poulsen
07:59 PM Feature #605: Upgrade to new package versions should be controlled by GUI
That is a problem specific to that one package, not a general problem with the system as a whole. Jim Pingle
07:58 PM Feature #605: Upgrade to new package versions should be controlled by GUI
Well, I might be mistaken here, but my experience is this:
- I have installed TinyDNS; and it worked like a charm.
... Henrik Kaare Poulsen
07:53 PM Feature #605: Upgrade to new package versions should be controlled by GUI
Packages are not automatically upgraded at all. They may be installed at boot if the config is present but the files ... Jim Pingle
07:43 PM Feature #605 (Rejected): Upgrade to new package versions should be controlled by GUI
Currently, as far as I can tell, pfSense checks for upgrades to packages at boot time, and automatically installs any... Henrik Kaare Poulsen
09:47 PM Feature #603: Add proxy support for internal HTTP functions
Curl on the CLI has proxy command line arguments, and the PHP module can use curl_setopt() to use proxy options. Look... Jim Pingle
09:33 PM Feature #603: Add proxy support for internal HTTP functions
We use curl or xmlrpc for important stuff so those need to have proxy support too. Ermal Luçi
03:56 AM Feature #603: Add proxy support for internal HTTP functions
Every function that makes a remote HTTP/HTTPS call (file_get_contents, fopen, etc) can take a context parameter with ... Jim Pingle
03:46 AM Feature #603 (Resolved): Add proxy support for internal HTTP functions
In some environments it's difficult to pull packages, auto update, etc. because you need to hit a proxy for outbound ... Chris Buechler
09:36 PM Revision 79f9b9bc: Fixes #610. Do not use the value of mtu blindly test it is set or use 1500 as default.
Ermal LUÇI
09:24 PM Bug #609 (Feedback): Captive Portal voucher information not being backed up
Scott Ullrich
08:59 PM Bug #609 (Resolved): Captive Portal voucher information not being backed up
When you backup the Captive Portal configuration area via Backup/Restore the Voucher configuration should be included... Scott Ullrich
09:24 PM Revision fdb085fa: Add captive portal voucher configuration backup area option Ticket #609
Scott Ullrich
09:04 PM Bug #610 (Resolved): max-mss -39
I don't know how the following is getting into rules.debug:
"scrub in on $WAN all max-mss -39 fragment reassemble"... Brett Burley
05:40 PM Bug #610 (Feedback): max-mss -39
Applied in changeset commit:"79f9b9bcdd6f684ff3fc629047609579ed0f1da4". Ermal Luçi
08:59 PM Bug #608 (Resolved): Captive Portal voucher concurrent login feature not working
When using the Captive Portal vouchers in addition to the disable concurrent login feature the Captive Portal allows ... Scott Ullrich
08:42 PM Bug #607 (Rejected): Creating a 2nd or 3rd voucher roll on captive portal does not download correctly
Pilot error. Scott Ullrich
08:37 PM Bug #607 (Rejected): Creating a 2nd or 3rd voucher roll on captive portal does not download correctly
When creating the 2nd or 3rd+ voucher clicking the blue download icon will result in the 1st roll being downloaded on... Scott Ullrich
07:45 PM Feature #606 (Rejected): Alert administrator on new pfSense versions or package versions
I would suggest a possibility to have pfSense send an email to a pre-configured address whenever a new pfSense versio... Henrik Kaare Poulsen
07:38 PM Revision 02611466: Do not aritificially add spaces around values on CDATA fields. Tested-by: Jim
Ermal LUÇI
07:36 PM Revision fa90d701: Add note about required enabled WPA option for 802.1x
Scott Ullrich
05:40 PM Feature #604: Need to show interrupts per second for interfaces
RRD graphs? We do have system wide interrupt time, but not per interface. Any particular use for this? I can imagine ... Seth Mos
02:47 PM Feature #604 (Needs Patch): Need to show interrupts per second for interfaces
Need to show interrupts per second for interfaces on Status -> Interfaces screen for each interface Scott Ullrich
05:10 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
Thanks Erik, I'll test once it is in the nightly build. Michael Welter
05:07 PM Bug #459 (Feedback): ip2long (and possibly others) return bogus values on 64 bit
I've made changes throughout the code to various things that used ip2long and long2ip that should fix it. I only cha... Erik Fonnesbeck
05:00 AM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
I've also seen places where subnet masks are negated with the bitwise not operator. In these places, we may also nee... Erik Fonnesbeck
04:54 AM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
The issue on 64-bit is likely that all the high 32 bits are set from sign extension because it considers it negative,... Erik Fonnesbeck
04:55 PM Revision 96033063: Various fixes to usage of ip2long, long2ip, and negated subnet masks, mostly affecting 64-bit. Ticket #459
Erik Fonnesbeck
04:04 AM Bug #565 (Resolved): Deleting pass-through MAC doesn't apply changes
fixed Chris Buechler
02:12 AM Bug #444: All mounts should be noatime
The issue Henrik was seeing was just from having multiple partitions and them not getting fscked properly at boot tim... Chris Buechler
02:09 AM Bug #444 (New): All mounts should be noatime
Scott Ullrich
01:24 AM Bug #444 (Feedback): All mounts should be noatime
Thanks for the patch! Scott Ullrich
01:32 AM Revision 986a3acc: block carp traffic to hosts self to avoid loops. fixes #598
Scott Ullrich
01:22 AM Revision 9978e156: Fix HTML tags in interfaces.php and delete extra javascript function in ppps_edit.js
Marcus Brown
01:19 AM Revision 69490b55: Handle mounting of extra filesystems correctly. Ticket #444
Scott Ullrich
01:08 AM Revision c4995e62: move mount up for cases where /usr and other partitions may be separate, and needed for other things to function
Chris Buechler
12:48 AM Bug #434: xmlparse.inc should not call die
The function cleanup_backupcache() is also adversely affected by the die() calls in xmlparse.inc. It tries to detect ... Jim Pingle
12:27 AM Revision a23a6db3: get rid of flowtable
Chris Buechler

05/19/2010

11:42 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
this update works, but i have many mistakes about the partitiontable
see update.log file as attachment
on my 1.2.... Jochen Becker
10:56 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
Automatic update has never, ever, worked on NanoBSD. It will be worked on eventually though.
Use one of the snapsh... Jim Pingle
10:40 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
Update URL ?
i flashed the CF card with "pfSense-2.0-BETA1-4g-20100515-0038-nanobsd.img.gz" and want to update fro... Jochen Becker
10:03 PM Revision 091cb5e9: Add a global declaration.
Ermal LUÇI
09:35 PM Bug #598 (Feedback): Need to block carp traffic to hosts self to avoid loops
Applied in changeset commit:"986a3accd40a7d45c0a3d48d2b42d2c58a231d99". Scott Ullrich
08:16 PM Revision cd25a2b2: Refactor this function a little so it will also rebuild the cache if it does not already exist. Fixes missing config history after reboot on NanoBSD.
Jim Pingle
07:19 PM Revision eef52225: Use the PHP call here instead of a shell exec.
Jim Pingle
07:12 PM Revision cf9a4467: Fix post-restore reboot on NanoBSD. Fixes #602
Jim Pingle
07:11 PM Bug #602: restore using GUI doesnt work
It looks like it's a problem with running /etc/rc.reboot from within the GUI on NanoBSD.
It should be fixed now. Jim Pingle
03:15 PM Bug #602 (Feedback): restore using GUI doesnt work
Applied in changeset commit:"cf9a4467e5c0a421aeed171b1b134a20ce2004a5". Jim Pingle
04:31 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
Sure, let me test tonight more thoroughly and I'll submit tomorrow. Michael Welter
04:30 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
It would probably be better to make our own ip2long function that does it right, and then change all our calls to use... Jim Pingle
04:28 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
Can you provide us a patch that wraps all ip2long calls with unpack?? We can get that committed. Probably will not... Scott Ullrich
01:41 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
From what I've read it this is not considered a bug from PHP's perspective since it is documented "Because PHP's inte... Michael Welter
04:06 PM Feature #96 (New): Add "All local networks" to source and destination drop down boxen in firewall rules
This isn't the same as the other ticket.
The other ticket is a list of IPs directly assigned to the router itself ... Jim Pingle
03:56 PM Feature #96 (Closed): Add "All local networks" to source and destination drop down boxen in firewall rules
Duplicate/Solved with http://redmine.pfsense.org/issues/597 Ermal Luçi
03:49 PM Feature #591 (Closed): Add disc(4) interfaces to the GUI
This can already be done by other means. Ermal Luçi
01:44 PM Revision 71fdaecd: Include filter.inc for the ipfw load function.
Ermal LUÇI
01:25 PM Feature #520: ALIX reset button
I tested this and made a small fix to it also last night. It works fine. Just hold in the reset button while the syst... Jim Pingle
01:12 PM Feature #520 (Feedback): ALIX reset button
Scott merged the factory reset feature the same as m0n0wall yesterday. Ermal Luçi
01:09 PM pfSense Packages Bug #253 (Feedback): Package - Fit123
Ermal Luçi
01:06 PM Feature #256 (Feedback): LoadBalance from the pfSense Box itself.
This can be done from floating rules.
Some more improvements will be merged soon too for this. Ermal Luçi
09:55 AM Bug #567 (Resolved): Firewall's hostname gets multiple hosts entries
Recreated the hosts file after configuring interfaces so that it is created properly. Verified this fixes 567 Seth Mos
08:39 AM Bug #567: Firewall's hostname gets multiple hosts entries
On a snapshot from 2010-05-16 it only writes the localhost entry.
Seen on multiple upgraded installs.... Seth Mos
09:52 AM Revision 4994b350: Re-create the hosts file on bootup after configuring all the interfaces. Ticket #567
Seth Mos
04:52 AM Revision 7f039071: Move this up in the boot sequence, the reset button check relies on its existence.
Jim Pingle
01:16 AM Revision 1a2911a7: Use nanobsd
Scott Ullrich
01:06 AM Revision 223ef06a: Use !=
Scott Ullrich

05/18/2010

11:10 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
I just updated a 2GB image from the GUI and the CLI and both worked, though I did check some fixes in for the "consol... Jim Pingle
09:19 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
NanoBSD Firmware upgrade in progress...
File list:
Warning: file_get_contents(/conf/file_upgrade_log.txt): fail... Jochen Becker
08:56 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
system alix board 4GB kingston flashcard Jochen Becker
08:52 PM Bug #457: Upgrade failed, "Something went wrong when trying to update the fstab entry".
same problem with fresh image 14.05.2010 by upgrading try to 18.05.2010 via webinterface
(sytemlog) php: : New ale... Jochen Becker
10:08 PM Revision d16af75d: Nuke nonsense
Scott Ullrich
10:03 PM Revision 31c9379c: Add back needed functions
Scott Ullrich
09:59 PM Revision fa83737d: Only check g['platform'] for nanobsd
Scott Ullrich
09:58 PM Revision 7188fc6d: Add missing functions and move check earlier since this only checks on bootup
Scott Ullrich
09:31 PM Revision 2c7d67ff: Add system_identify_specific_platform()
Scott Ullrich
09:27 PM Revision 15f14889: Add reset button support to alix/wrap. Obtained-from: m0n0wall
Scott Ullrich
08:13 PM Bug #320: Using special characters (e.g. åäö) in certificate "Descriptive name" breaks entire WebGUI
This should be fixed now.
All characters will be encoded/decoded properly and they will be shown properly too in the... Ermal Luçi
08:03 PM Revision 2e6a43a1: Encode/decode special characters with htmlentities/html_entity_decode combo to make the parser not bail on special characters.
Ermal LUÇI
07:31 PM Revision e490f995: Do not bail out when we write a new config. Seems that we can write some special characters but might not be able to read them back but we still should be able to recover from this. Include globals.inc before calling any config.lib.inc functions.
Ermal LUÇI
07:22 PM Revision 873b2f0c: Fix NanoBSD update detection for console update by URL
Jim Pingle
06:04 PM Revision 7382c59d: Do not duplicate gateway entries when status file is not present. Mostly an innocuos programmer error.
Ermal LUÇI
05:36 PM Revision 01207fd8: Fixes #536. More fixes and optimizations on the various functions and status pages used for gateways [groups].
Ermal LUÇI
05:36 PM Revision fe22a89b: Fixes #536. More fixes and optimizations on the various functions used for gateways [groups].
Ermal LUÇI
05:36 PM Revision d9dda2a5: Fixes #536. Actually add all available gateways to the gateway_groups array so all up members will be present for balancing.
Ermal LUÇI
04:54 PM Revision 4e6593de: Unbreak automatic updates.
Jim Pingle
04:51 PM Revision c1191d5b: Add myself to copyright for gwlb file.
Ermal LUÇI
04:47 PM Bug #536: apinger at times fails to touch filter_dirty
Perry,
try latest snapshots i have identified the issue should work correctly now. Ermal Luçi
01:40 PM Bug #536: apinger at times fails to touch filter_dirty
Applied in changeset commit:"d9dda2a5718709341852fed8b3328cfa2fd48198". Ermal Luçi
01:40 PM Bug #536: apinger at times fails to touch filter_dirty
Applied in changeset commit:"fe22a89b4e8014b1160edb3c9d176312ea3df6b2". Ermal Luçi
01:40 PM Bug #536: apinger at times fails to touch filter_dirty
Applied in changeset commit:"01207fd8487803b40559c62cac65ffbebf5bfcab". Ermal Luçi
01:30 PM Bug #536: apinger at times fails to touch filter_dirty
No change for me on a day old snapshot. Had a longer fallout on wan2.
After the connection came back I could tracero... Perry Mason
03:40 PM Revision c2b2b571: PPPoE config upgrade code and bump config version in globals.inc
Marcus Brown
03:06 PM Revision 9db6993f: Fix deletion of authentication servers. Fixes #600.
Jim Pingle
11:15 AM Bug #600 (Resolved): Unable to delete authentication servers
Applied in changeset commit:"9db6993f9ad8de7add4d8b042583c56014cef853". Jim Pingle
09:52 AM Revision 2666de59: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline into mlppp
Marcus Brown
09:38 AM Revision e40e6724: Modify and fix code to set pppoe periodic reset.
Marcus Brown
05:30 AM Bug #602 (Resolved): restore using GUI doesnt work
restoring config using webgui crashes the webgui and pfsense wont reboot also leaving in a desperate situation on the... Bipin Chandra

05/17/2010

11:26 PM Bug #429: Upgrade failed from console disk full!
It seems you probably did already at least get past the part where the image was too large to upload, so this is prob... Erik Fonnesbeck
07:08 PM Bug #429: Upgrade failed from console disk full!
That is a full image, not an upgrade image. You need, for example, pfSense-2.0-BETA1-1g-20100517-0921-nanobsd-upgrade... Jim Pingle
07:02 PM Bug #429: Upgrade failed from console disk full!
Erik Fonnesbeck wrote:
> Do you mean that the uncompressed size is around 1 GB or that you used the image for the 1 ... Oscar Francia
06:58 PM Bug #429: Upgrade failed from console disk full!
Do you mean that the uncompressed size is around 1 GB or that you used the image for the 1 GB NanoBSD platform? The ... Erik Fonnesbeck
05:54 PM Bug #429: Upgrade failed from console disk full!
Jim P wrote:
> That last message seems to indicate you were trying to load a 2G update onto a CF originally written ... Oscar Francia
02:22 PM Bug #429: Upgrade failed from console disk full!
That last message seems to indicate you were trying to load a 2G update onto a CF originally written with a 1G image. Jim Pingle
01:53 PM Bug #429: Upgrade failed from console disk full!
I've tested from web interface and the error is this I've tested from snapshot 03-05-2010 and from snapshot 12-05-201... Oscar Francia
11:21 PM Bug #586 (Resolved): Linked filter rule editing problems
My fix seems to have done the job. Besides the tests I performed before committing, users on the forum have also rep... Erik Fonnesbeck
10:52 PM Bug #571 (Resolved): Destination on rdr incorrect on interface addresses
Erik Fonnesbeck
10:49 PM Bug #316 (Resolved): Serial console on full installs drops to shell
I haven't seen this issue again so far. Currently the console menu will show on both consoles after bootup finishes ... Erik Fonnesbeck
10:12 PM Bug #493 (Resolved): Checkboxes saved outside of setup wizard do not show checked in wizard
It seems to be fixed now. I tried enabling/disabling it on either page and both now show the correct enabled or disa... Erik Fonnesbeck
12:29 PM Bug #493 (Feedback): Checkboxes saved outside of setup wizard do not show checked in wizard
Ermal Luçi
09:48 PM Bug #568: firewall rules advanced clean up
Is it not easier to just tag all set fields in the css class as being an unhidden type? That means far less code. the... Seth Mos
09:18 PM Revision 98be58a2: Tag for beta 2
Scott Ullrich
08:40 PM Bug #482: OpenVPN config upgrade problems
After some tests, it seems the vpnid field of an OpenVPN connection is what is used to create its device name. That v... Jim Pingle
04:30 PM Bug #482: OpenVPN config upgrade problems
I found some problems in the upgrading/handling of the "disable" option for OpenVPN clients/servers. They should prop... Jim Pingle
08:11 PM Revision bd7ca506: Revert "Allow the user to override OpenVPN interface name in custom options (e.g. dev tap99 or dev tun99) and set related options appropriately. ticket #482 Item 2a/2b." - Revert for now, may cause more issues than it fixes.
This reverts commit be58c36ded298a1cb7a0eac40cd2edd62908d882. Jim Pingle
07:55 PM Revision be58c36d: Allow the user to override OpenVPN interface name in custom options (e.g. dev tap99 or dev tun99) and set related options appropriately. ticket #482 Item 2a/2b.
Jim Pingle
07:03 PM Bug #601 (Resolved): VHID changes do not apply immediately on secondary
When changing the VHID on the primary, it's applied immediately on the primary and synced to the secondary so its con... Chris Buechler
06:03 PM Bug #108 (Resolved): Xauth is forced for IPsec mobile clients
what we went through here appears to be fine now, can open more specific tickets if there are any outstanding issues ... Chris Buechler
01:56 PM Bug #108: Xauth is forced for IPsec mobile clients
It appears to work as intended, tunnels establish OK with the new setup. However, ipsec-tools 0.8 does not have worki... Jim Pingle
04:36 PM Bug #449 (Feedback): OpenVPN died when PPPOE link came up with a different IP.
I found that the OpenVPN client page was not properly testing/setting the disable variable, and it was also not being... Jim Pingle
04:19 PM Revision b65f56f6: Fix copypasta error. Part of ticket #449.
Jim Pingle
04:14 PM Revision 763a1b52: Fix OpenVPN upgrade code to properly handle the disable option. Fixes item 1a (and probably 1b) in #482 and should be the rest of the fix for #449.
Jim Pingle
03:54 PM Revision 8319ee63: Fix OpenVPN client disable variable. It is being set/tested improperly (or at least inconsistently). Partial fix for #449.
Jim Pingle
02:20 PM Revision 373a1e7b: Ticket #493. Set a value for checkboxes since the parsers marks empty tags(<tag/>) as arrays.
Ermal LUÇI
01:57 PM Bug #600 (Resolved): Unable to delete authentication servers
If you add two RADIUS servers then try to delete them, at first it appears that one deleted, but in fact neither of t... Jim Pingle
12:37 PM Bug #541 (Feedback): Missing binaries on 64 bit
A note for the adventerous, uploading a amd64 tgz to a i386 1.2 or 2.0 pfSense box does complete, but does not reboot... Seth Mos
12:28 PM Bug #566: captive portal IP bypass issues
In their case, it didn't work immediately after boot. Is it possible that the boot-time initialization is not working... Jim Pingle
10:07 AM Bug #566: captive portal IP bypass issues
There is no place in code that this can happen unless something is clearing the tables(manually?)!
On the code pat... Ermal Luçi
11:56 AM Revision 79f30c1c: Do not throw the error message unnecerssarily. It is legal on 2.0 to not specify default gw on 2.0 with pppoe/pptp links specified.
Ermal LUÇI
09:43 AM Bug #344: Multiple P2s causes instability
This is most likely related to ipsec-tool 0.8. I've confirmed this issue with ipsec-tools 0.8 on 1.2.3-RC candidates.... Seth Mos
09:41 AM Bug #408 (Resolved): Static routes are not converted properly on upgrade
Code works as intended. All the static routes worked after upgrade from 1.2 to 2.0.
Snapshot 2010-05-16 Seth Mos
09:38 AM Bug #295 (Resolved): UID error in User Manager/SSH password sync with Web Admin User
I recently committed code for alternate usernames in ticket #574 for alternate usernames on upgrades. That also produ... Seth Mos
09:35 AM Bug #354 (Resolved): RRD upgrade code problems
Seth Mos
09:33 AM Bug #409 (Closed): Quality RRD graphs on embedded not working
Duplicate of ticket #536 Seth Mos
09:23 AM Revision b61154fb: Reduce the amount of logic in system_routing_configure to check for existing routes. This code is in the same style as used
by Ermal. Ticket #507 Seth Mos
09:19 AM Bug #507 (Resolved): system_routing_configure should not delete and re-add all routes
Confirmed fixed in snapshot 2010-05-16. Also reduced logic to be in line with existing code. Seth Mos
09:08 AM Bug #486 (Resolved): Rules with gateway selected not upgraded properly
Confirmed Fixed in snapshot 2010-05-16 Seth Mos

05/14/2010

09:42 PM Revision bcbcc2f8: Use client-side values in the function call rather than PHP-generated values for further calls to this client-side function.
Erik Fonnesbeck
09:20 PM Bug #566 (New): captive portal IP bypass issues
It looks like there are still some issues here. A support customer called and their bypass IP was not working. It was... Jim Pingle
09:20 PM Bug #493 (New): Checkboxes saved outside of setup wizard do not show checked in wizard
Chris Buechler
09:17 PM Bug #493: Checkboxes saved outside of setup wizard do not show checked in wizard
This is still an issue with latest code. Erik Fonnesbeck
02:26 PM Bug #493 (Feedback): Checkboxes saved outside of setup wizard do not show checked in wizard
Patched. Ermal Luçi
08:23 PM Bug #455: On initial wizard reload button do not put browser on new assigned ip.
Somehow it needs to figure out which interface it was accessed on to redirect to the correct address from the configu... Erik Fonnesbeck
04:51 PM Bug #455: On initial wizard reload button do not put browser on new assigned ip.
after hitting reload at the last page in the wizard in 1.2.3, it redirects to the changed IP if you're accessing it u... Chris Buechler
02:34 PM Bug #455: On initial wizard reload button do not put browser on new assigned ip.
This will not be possible because the new ip is not yet setup in the interface and it need to be added special code t... Ermal Luçi
08:12 PM Bug #561: Destination address for upgraded port forward is incorrect
I think the case of having picked an address from the list was the one case that was already handled correctly; thoug... Erik Fonnesbeck
12:16 PM Bug #561: Destination address for upgraded port forward is incorrect
On my upgraded work config I have about ~20 port forwards in total, but all of those use a carp address and did not c... Seth Mos
04:55 PM Bug #598 (New): Need to block carp traffic to hosts self to avoid loops
That's not the case, I think because of the state that sending the traffic creates (maybe). Otherwise VMware's loopin... Chris Buechler
12:21 PM Bug #598 (Resolved): Need to block carp traffic to hosts self to avoid loops
The antispoof directive we already have on each interface should already prevent such looping, or any traffic from en... Jim Pingle
01:59 AM Bug #598 (Resolved): Need to block carp traffic to hosts self to avoid loops
block in log quick proto carp from (self) to any
Without this change if the firewall sees traffic for itself (ethe... Scott Ullrich
04:42 PM Bug #526 (Resolved): bug in /etc/rc.php_ini_setup
Chris Buechler
04:08 PM Bug #526: bug in /etc/rc.php_ini_setup
works here.
beastie# /bin/cat /var/run/dmesg.boot | /usr/bin/awk '/avail memory/ { memory=($4 / 1048576); printf("... Ganbold Ts
01:12 PM Bug #526 (Feedback): bug in /etc/rc.php_ini_setup
Changed the used awk function to use the byte value and calculate from there.
Alternatively. Provide the strong fr... Seth Mos
04:21 PM Revision ba374e4b: Ticket #493. Ticket #302. Actually correct code flow to be correct and consistent to what it should do.
Ermal LUÇI
03:46 PM Bug #409 (Feedback): Quality RRD graphs on embedded not working
Should be ok as now apinger runs as root. Ermal Luçi
02:47 PM Revision 07b54e8c: Do not unconditionaly remove the default route and readd it. This should make system_routing_configure more
reliably. Ticket #507
stability Seth Mos
02:44 PM Bug #536 (Feedback): apinger at times fails to touch filter_dirty
This seem to work ok with Chris workaround.
@Perry,
try latest snapshots it should be ok. Ermal Luçi
02:25 PM Bug #302 (Feedback): Shaper wizard remembers values on error, but are disabled
Patched. Ermal Luçi
02:24 PM Bug #464 (Feedback): Problems with setup wizard
This should be feedback. Ermal Luçi
01:06 PM Revision 839cad07: Improve the parsing of the memory value, use the reported amount of bytes, divide to get megabytes and get the 1st result. Ticket #526
Seth Mos
12:23 PM Feature #597: add (self) to available source and destination drop down boxes
The antispoof rules should make this unnecessary for normal rules, but this may still be useful for rules on the Floa... Jim Pingle
01:57 AM Feature #597 (Resolved): add (self) to available source and destination drop down boxes
Add (self) option to drop down. Scott Ullrich
12:05 PM Bug #574 (Resolved): Config upgrade for non-default admin username broken
Verified that this change correctly sets the shell for the administrator user. Seth Mos
12:05 PM Bug #465 (Resolved): Description input validation too strict
stripping the < character before comparison works here. Confirmed that it still triggers on < Seth Mos
12:02 PM Revision 08825acc: Allow the use of ">" in filter rule descriptions. Even whilst stripping the > before the comparison htmlentities
will still trigger on the <. It is safe to assume here that creating any sort of html tag is unlikely. Ticket #465 Seth Mos
11:54 AM Revision ee23ccab: Ticket #295. Use empty to prevent some ghost entries in some configurations.
Ermal LUÇI
09:59 AM Bug #295 (Feedback): UID error in User Manager/SSH password sync with Web Admin User
Ermal Luçi
09:53 AM Feature #591: Add disc(4) interfaces to the GUI
As discussed further this can even be done through aliases or through black hole routes so no neccessary to include d... Ermal Luçi
09:29 AM pfSense Packages Bug #594 (Feedback): freeradius: default port should be 1812 and not 1892
Patched. Ermal Luçi
02:14 AM Bug #599 (Resolved): interfaces.php should split MTU and MSS clamping into 2 options
In certain situations it is ideal to adjust the mss clamping but leave the interfaces mtu intact. Need to separate t... Scott Ullrich
12:58 AM Revision c1263bbd: fix typo
Chris Buechler

05/13/2010

11:36 PM Revision 96372523: fix seperation between href and class
Andrew Thompson
11:29 PM Bug #429: Upgrade failed from console disk full!
Yeah, 76% of 81 MB is about 61.5 MB and the new snapshots are smaller than that, so it might work at least on a syste... Erik Fonnesbeck
09:29 PM Bug #429 (Feedback): Upgrade failed from console disk full!
Can you please test with latest snapshots which have debugging removed? Ermal Luçi
09:43 PM pfSense Packages Todo #596 (Closed): Varnish package suggestions for VCL syntax checking
I work in a web shop design company and we use varnish as a reverse proxy for mostly sites builded using Drupal, Code... Scott Ullrich
09:31 PM Todo #595 (Closed): Test IPsec with NAT
Ermal said that after looking at some code paths, IPsec may work with NAT now on 2.0, but needs some testing. Jim Pingle
09:18 PM Bug #131 (Feedback): "Static route filtering" doesn't add rules for routes on WAN
This is not the case anymore in 2.0.
It will add the bypass for each interface a static route is there and you can c... Ermal Luçi
09:17 PM Revision 5337fe2e: Simplify/optimize code.
Ermal LUÇI
09:05 PM Todo #515 (Feedback): Test sloppy state tracking
This seems to work and the flags option can be controlled through the GUI now. Ermal Luçi
08:39 PM Revision e774e3b3: Its bits/sec now.
Ermal LUÇI
08:36 PM Revision 6894b25a: Add PSK tab to all IPsec pages, it was missing from some.
Jim Pingle
07:46 PM Revision fb586a16: Add a GUI field to let the user configure the maxium table entries size. Resolves #588
NOTE: Actual tables, not states. Jim Pingle
07:35 PM Bug #581 (Feedback): rate's promiscuous mode changes can cause connectivity issues
Patched to not go promiscious and other fixes.
The port needs to be rebuilt on the builder though. Ermal Luçi
07:32 PM Revision ef021ff7: Use full path to rate and pass -b option to show the speeds in bits/s rather than byte/s in conformance with the traffic graph metric which is bits/s.
Ermal LUÇI
06:56 PM Revision f83fa942: Test correctly for previous existing entries of linked rules otherwise some bad deletions might happen. Reported-by: http://forum.pfsense.org/index.php/topic,25091.0.html
Ermal LUÇI
06:52 PM Bug #548 (Feedback): Inconsistent DHCP behavior when renumbering LAN
Ermal Luçi
06:51 PM Revision 2b001b5d: Ticket #548. Change message displayed when modifying an interface to actually tell people to modify dhcp server setting after applying settings since the interface configuration/ip will only change after applying settings and pfSense does not read the interface address from the config but from the interface itself and the complications for this and possibly other cases are not worth the effort.
Ermal LUÇI
06:42 PM pfSense Packages Bug #592: SquidGuard package problem with Squid 2.7.8_2
Version squidGuard and pfSense exists? (Probably pfSense 2.x) Serg Dvoriancev
06:30 PM pfSense Packages Bug #594 (Resolved): freeradius: default port should be 1812 and not 1892
The default port number in in the settings page when not entering anything yourself is set to 1892.
However, the d... Hans Maes
06:24 PM Todo #544 (Feedback): Restore locking
It seems the w+ mode was the culprit creating this.
Also moved the lock/unlock to support read/write locking schema ... Ermal Luçi
06:23 PM Revision b6c34bfc: Ticket #544. Restore locking, seems w+ migh already lock the file sometimes. While there improve the locking to a read/write locking schema. Make the default locking a read only lock and if explicitly specified a write locking can be specified through LOCK_EX optional parameter to lock(). During config manipulation do the filesystem mounting in rw, if needed, before doing any locking to avoid possible problems and also to be consistent through out the code on the method used. Also update calls to config to lock exclusively where required.
Ermal LUÇI
06:03 PM Bug #337 (Feedback): sticky connections do not work
I tried this and it works as expected.
For Port forwarding possibly it needs to be handled properly in backend sin... Ermal Luçi
05:59 PM Bug #354: RRD upgrade code problems
Verified that system, traffic, packets and quality graphs have been succesfully upgraded and historic data has not be... Seth Mos
05:08 PM Bug #574 (Feedback): Config upgrade for non-default admin username broken
Changed the pw usermod for the administrator account from /bin/sh to /etc/rc.initial. This should fix the wrong shell... Seth Mos
05:03 PM Revision 883b2552: Correct the shell for the admin account, this should be /etc/rc.initial. Not /bin/sh
Seth Mos
03:50 PM Todo #588 (Resolved): Add table entries size setting like state table size
Applied in changeset commit:"fb586a1633ba53584dab6208a64f96798be4869d". Jim Pingle
03:41 PM Revision 99b9708b: Fix static route for DNS from DHCP servers.
Jim Pingle
12:58 PM Feature #593: Preserve interface assignments based on last MAC address (possibly optionally)
If I even implement this myself, I do not intend to do it anytime soon (which is why I set no target version). My in... Erik Fonnesbeck
08:03 AM Feature #593: Preserve interface assignments based on last MAC address (possibly optionally)
Please do not do such thing since you will break pfSense in big blows.
VLANs share the same mac and so do the clones... Ermal Luçi
01:04 AM Feature #593: Preserve interface assignments based on last MAC address (possibly optionally)
One thing to watch out for if this is implemented is that the MAC address can probably only be reliably determined at... Erik Fonnesbeck
01:00 AM Feature #593 (Closed): Preserve interface assignments based on last MAC address (possibly optionally)
Some have requested to have the ability to automatically detect when the name of an interface has changed, based on t... Erik Fonnesbeck
11:46 AM Revision fe19e7d7: Using binat for reflection rules created some NAT issues under certain circumstances. Use rdr with the bitmask address pool type instead.
Erik Fonnesbeck

05/12/2010

10:16 PM Revision 4d52a9b9: Tag all config write cases with the username.
Jim Pingle
10:10 PM Bug #574: Config upgrade for non-default admin username broken
The line already said /bin/sh, but if that part wasn't working before, then it wouldn't have changed it. It is proba... Erik Fonnesbeck
08:56 PM Bug #574 (New): Config upgrade for non-default admin username broken
This is now giving admin a shell of /bin/sh when it should be /etc/rc.initial Jim Pingle
09:05 PM pfSense Packages Bug #592 (Closed): SquidGuard package problem with Squid 2.7.8_2
During SquidGuard installation, it looks like it's installing the 2.7.7 squid cache, which is conflicting with 2.7.8.... Jeremy Zeigler
07:12 PM Feature #591 (Closed): Add disc(4) interfaces to the GUI
Requested by Scott to have this feature request for.... Ermal Luçi
07:07 PM Revision 362b8147: Include username of person making the change in config change description, and in the config itself.
Jim Pingle
06:47 PM Feature #590 (Closed): Allow a detailed description on interfaces page
It would be nice to have a textarea on interfaces page to allow a through and detailed description of the interface.
... Ermal Luçi
06:30 PM Revision 3f2ef8d7: Fixing bugs and ommissions.
Marcus Brown
06:30 PM Revision 98c3eaa8: Ensure the URL table file is not empty at this step.
Jim Pingle
04:12 PM pfSense Packages Bug #577 (Resolved): Squid Guard package install information incorrect
Closing per e-mail from dvserg:
> Hello
>
> Please close this ticket
> http://redmine.pfsense.org/issues/577
... Jim Pingle
04:12 PM pfSense Packages Bug #589 (Closed): Squid cache_dir and aufs error
Cannot start squid due to squid[19587]: Bungled squid.conf line 28: cache_dir aufs /var/squid/cache 3000 16 256 Jeremy Zeigler
01:02 PM Bug #354 (Feedback): RRD upgrade code problems

Seth Mos
12:19 PM Bug #354: RRD upgrade code problems
I just made a replica of my entire work infrastructure in ESX with both the internal carp and the external carp clust... Seth Mos
12:57 PM Revision c9ba2835: Move RRD quality databases to reflect the gateway name instead of the interface name. This should prevent a flurry of duplicate but
unused RRD files on 2.0 where we use the gateway names for the RRD file. Fix ticket #354 Seth Mos
12:27 PM Revision 37df6d7b: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline into mlppp
Conflicts:
etc/inc/upgrade_config.inc Marcus Brown
12:02 PM Revision e256e9d4: Change the exec() calls to mwexec, this supresses the rrdtool messages during boot if the rrd files have a newer timestamp then the attempt to update
Seth Mos
11:38 AM Revision 04d36b1f: Small changes to fix up these pages a little bit.
Marcus Brown
11:36 AM Revision d85ba87f: Make changes to interfaces.php to be compatible with new PPPoE, PPtP code and config style.
Now this page will write the config info the same was that the interfaces_ppps_configure.php
writes the config info. Marcus Brown
03:53 AM Revision 00b702cc: Bandwidth, MTU, MRU settings working.
Marcus Brown
02:14 AM Bug #586 (Feedback): Linked filter rule editing problems
Erik Fonnesbeck
02:09 AM Revision 1122a892: Fix source input validation, saving, and the "View the NAT rule" link on linked filter rules. Ticket #586
Erik Fonnesbeck
12:21 AM Revision 3e3582a9: It wasn't clear enough why source port should usually be any. Make it more clear.
Erik Fonnesbeck
12:14 AM Revision 24fb2263: fix up text
Chris Buechler

05/11/2010

10:00 PM Revision aeccfd0e: remove duplicate cancel button
Chris Buechler
08:35 PM Bug #267: Old package .inc files can prevent system from booting properly
Alternately, sometime before here in the boot process it could force a reinstall of packages if it sees /conf/needs_p... Jim Pingle
08:27 PM Bug #267 (Feedback): Old package .inc files can prevent system from booting properly
This should be fixed with the commit I just made. Post upgrade we should have /conf/needs_package_sync and we can jus... Jim Pingle
08:26 PM Revision c57a3ac8: Don't load the package include files if the packages are out of sync, which can lead to the system not booting properly. Should help with ticket #267.
Jim Pingle
06:07 PM Revision 53b18623: Hard code mode to redirect and comment out the mode option. Suggested-by: BillM
Scott Ullrich
06:03 PM Revision 4d1e2971: Nuke Relay Protocols and Relay actions tabs. Suggested-by: BillM
Scott Ullrich
06:01 PM Revision 10d3ff84: Revert "Nuke XXX TODO option. Suggested-by: BillM"
This reverts commit 207148139ec648b8955c81ae908d0bdb7c472cda. Scott Ullrich
05:58 PM Revision 20714813: Nuke XXX TODO option. Suggested-by: BillM
Scott Ullrich
05:13 PM Revision 9b08f477: Add machine to banner notice
Scott Ullrich
03:29 PM Todo #588 (Resolved): Add table entries size setting like state table size
Ifa lot of data is loaded into a persist table, they can exhaust pf's default table entry limits easily.
On 2.0 it... Jim Pingle
03:17 PM Bug #53 (Resolved): Some packages with RC scripts start twice at bootup
Jim Pingle
03:17 PM Bug #53: Some packages with RC scripts start twice at bootup
I've done all I can think of to do in the base system for this, the rest is up to package maintainers.
If a packa... Jim Pingle
03:05 PM Revision 1f0f301c: Make /var/run/booting exist for more of the actual booting process. Ticket #53.
Jim Pingle
03:05 PM Revision 24d5fc0a: Fix booting checks. Part of ticket #53.
Jim Pingle
03:01 PM Bug #491 (Resolved): Dynamic DNS upgrade code not working
Seth Mos wrote:
> The config upgrade code worked a bit too well, it produced empty dyndns config items on upgrades w... Seth Mos
03:00 PM Bug #491: Dynamic DNS upgrade code not working
The config upgrade code worked a bit too well, it produced empty dyndns config items on upgrades when none existed be... Seth Mos
02:53 PM Revision 246aceaa: Prevent empry dyndns array items on config upgrade ticket #491
Seth Mos
02:09 PM Todo #506: Bring back unequal route-to balancing
Fair enough, since the original method wasn't really "official" anyhow. We may just want to make a note of this in th... Jim Pingle
02:07 PM Todo #506 (Resolved): Bring back unequal route-to balancing
Better not go down the upgrade route for the weight. A lot of users have multiple loadbalancer pools, which means we ... Seth Mos
01:58 PM Bug #574 (Resolved): Config upgrade for non-default admin username broken
Seth Mos
11:14 AM Bug #574 (Feedback): Config upgrade for non-default admin username broken
Fixed the local user account sync, this had the admin user account hardcoded. It also attempted to perform a usermod ... Seth Mos
01:50 PM Revision 57de741a: Bump the config version properly so that the theme is properly upgraded. Ticket #233
Seth Mos
09:08 AM Revision 5adb44fb: Fix creation of admin user account with uid of 0. This fixes ticket #574
Seth Mos
08:41 AM Revision 0810c115: Fix up final bits of PPPoE Periodic reset and disable setting of bandwidths for mlppp links for now.
Marcus Brown
06:50 AM Revision 1852fef0: Unbreak the switch statement, pointy hat to me
Seth Mos
02:06 AM Bug #548: Inconsistent DHCP behavior when renumbering LAN
I apologize, I am seeing this exact error message on a new install without having changed the LAN subnet and noticed ... Daniel Lloyd
01:51 AM Bug #548: Inconsistent DHCP behavior when renumbering LAN
No, I am seeing this on 32-bit. And it is not an IP calculation issue, the DHCP page retains the old subnet when it s... Jim Pingle
01:44 AM Bug #548: Inconsistent DHCP behavior when renumbering LAN
Looks to be related to Bug #459, where ip2long returns an unsigned int on 64 bit. Daniel Lloyd

05/10/2010

10:23 PM Bug #583 (Feedback): pppoe period reset doesnt work
Might be better on new snapshots but needs tested. Jim Pingle
10:20 PM Revision 5fac8174: Rework check for PPPoE reset setting, it wasn't matching at bootup so the reset file was not getting added properly. Ticket #583.
Jim Pingle
07:06 PM Revision 2c7bc9d0: Fix package URLs that use $myurl. Resolves #584
Jim Pingle
07:06 PM pfSense Packages Bug #584: Wrong URL in Diagnostics/ntop
I committed a fix to 2.0 for this, it wasn't a problem specific to ntop. Jim Pingle
03:10 PM pfSense Packages Bug #584 (Resolved): Wrong URL in Diagnostics/ntop
Applied in changeset commit:"2c7bc9d0442817229e67ccafca155276fab384a4". Anonymous
06:49 PM pfSense Packages Bug #585: Unable to start the ntop service
It looks like the includes on that package are rather messed up. It's trying to install a bunch of unneeded X librari... Jim Pingle
02:42 PM Revision 38564fde: Allow the webui admin account to have a duplicate user ID of 0.
Make sure to create that account before attempting to modify it's attributes Seth Mos
12:44 PM Bug #552: OpenDNS dynamic dns update does not work
Applied the fix manually on my system and OpenDNS updates seem to be working fine now. Anonymous
11:00 AM Bug #552 (Feedback): OpenDNS dynamic dns update does not work
Fixed the dyndns.class in the repo. Please test a newer snapshot soon to tell use if it has been resolved. Seth Mos
11:56 AM Bug #281: Traffic initiated by PPTP clients not passed
Many many thanks Mr. Luçi! A couple of friends and myself are ready to test when you would like testing! G D
10:14 AM Bug #281: Traffic initiated by PPTP clients not passed
There is a patch to apply to freebsd 8 for this.
I will see if i can add it to the snapshots. Ermal Luçi
11:15 AM Revision a832b901: Comment out the linkage of carp with alias members. As it is it does not work and passing 30000 addresses to match is not fun either in some edge cases.
Ermal LUÇI
10:55 AM Revision 6bccf4ca: Make sure to send the hostname as part of the openDNS update process
Fix ticket #552 Seth Mos
10:12 AM Revision 3fbc3487: Fix an edge error in getting the carp interfaces reported by Effone.
Ermal LUÇI
09:59 AM Revision 1d002dc9: Do not prepend empty lines to the first member this might trigger errors on code that relies on space to be a separator.
Ermal LUÇI
09:57 AM Bug #233 (Resolved): Config upgrade should change theme
Added Upgrade code 62 to 63, this allows us to convert deprecated legacy themes to pfsense_ng Seth Mos
09:36 AM Revision 0f8266ed: Correct the function name so that it upgrades properly
Seth Mos
09:35 AM Revision 168a1e48: Make sure to upgrade deprecated themes to pfsense_ng.
The switch() should make it easy to add other deprecated themes here. Seth Mos
09:25 AM Revision 0b1f6634: When doubleclicking a tunable, bring up the edit screen
Seth Mos
01:13 AM Revision 766bd6d0: PPPoE Periodic Reset via cron working.
Marcus Brown
12:07 AM Bug #363 (Resolved): Dynamic DNS issues
This is all working now, there may be some enhancements we can look at later for post-2.0 in a new ticket Chris Buechler

05/09/2010

09:25 PM Bug #281: Traffic initiated by PPTP clients not passed
As of "2.0-BETA1 Sat May 8 14:47:13 EDT 2010" this bug is still present.
I was unable to work around it with the Vir... G D
07:20 PM Bug #586 (Resolved): Linked filter rule editing problems
Two problems with editing a NAT-linked filter rule, new after the latest rdr changes I'm pretty sure.
1) The "Vie... Chris Buechler
06:42 PM pfSense Packages Bug #585 (Closed): Unable to start the ntop service
I've installed the latest snapshot pfSense-2.0-BETA1-20100507-1115 with quick install.
I installed ntop as a packa... Koen Van Impe
06:38 PM pfSense Packages Bug #584 (Resolved): Wrong URL in Diagnostics/ntop
I've installed the latest snapshot pfSense-2.0-BETA1-20100507-1115 with quick install.
I installed ntop as a packa... Koen Van Impe
02:55 PM Revision e951d0a9: Clean up of last revert commit. Revert requested by CMB. (Bring back PPP tab in diag_logs).
All client side connection of PPPoE, PPP, and PPtP will be logged under the PPP tab
for easy separation of normal sys... Marcus Brown
02:35 PM Revision 55f3ca1d: Revert "Remove PPP tab these all go to the system log now."
This reverts commit 62e74b4261b4044f523ade7c3b45e4484bbd2f8d.
Conflicts:
usr/local/www/diag_logs_slbd.php Marcus Brown
12:14 PM Bug #583 (Resolved): pppoe period reset doesnt work
period reset in pppoe doesnt seem to work and more info on this on this link
http://forum.pfsense.org/index.php/topi... Bipin Chandra
05:52 AM Bug #582 (Closed): Add all Diffserv options
ToS:
http://www.ietf.org/rfc/rfc1349.txt
DiffServ:
http://tools.ietf.org/html/rfc2474
prompted by: ... Chris Buechler
05:39 AM Bug #581 (Resolved): rate's promiscuous mode changes can cause connectivity issues
I've never seen it, but at least a couple people have reported connectivity issues when viewing the traffic graph. Mo... Chris Buechler
04:41 AM Revision cec4323f: Make interface sort order on creation consistent with the order displayed elsewhere, and fix possible missing description on LAN upon creation.
Erik Fonnesbeck
03:17 AM Revision c013d3f5: check more closely for match here, to fix multiple items being marked as "selected", leading to the wrong interface being selected.
Chris Buechler
03:06 AM Todo #311 (Closed): Test large numbers of interfaces
The mentioned issue isn't a problem (and actually works ok on 1.2.3 as well though I didn't test it as much there). I... Chris Buechler
12:17 AM Revision aba2f06d: Do not install reflection rules for port forwards when the destination is invalid.
Erik Fonnesbeck

05/08/2010

10:54 PM Revision ed69be7a: Add note that reflection timeout only applies for port forwards.
Erik Fonnesbeck
10:40 PM Revision bff94015: Revert changes to reflection for port forwards until finished and approved.
Erik Fonnesbeck
10:16 PM Revision e31f58fc: Merge http://gitweb.pfsense.org/pfsense/efonne-new_nat_reflection into master
Erik Fonnesbeck
06:34 PM Revision 5f2e5c8e: Remove remote network from wizard, it is not used for a Remote Access VPN.
Jim Pingle
04:19 PM Revision b008c1eb: Hide "Local Network" field when creating/editing an OpenVPN shared key server, because you can't push routes with shared key.
Jim Pingle
04:13 PM Revision 6180c3ae: Fix the same problem with sharing an OpenVPN instance w/existing shared key on the client page this time.
Jim Pingle
04:12 PM Revision 21c776dd: Fix OpenVPN server validation logic. It was failing if you tried to save a shared key server instance with an existing shared key.
Jim Pingle
04:12 AM Revision a986f97f: Working on PPPoE periodic reset. Writing out pppoe_restart_XXX file still needs work.
Marcus Brown

05/07/2010

11:00 PM Revision 520b1e07: Add 0x10 diffserv option. http://forum.pfsense.org/index.php/topic,24954.0.html
Scott Ullrich
09:54 PM pfSense Packages Bug #580: dns-server fails to install and remove
Please also see http://forum.pfsense.org/index.php/topic,24912.0.html; I think this may be the same issue Henrik Kaare Poulsen
07:38 PM pfSense Packages Bug #580 (Resolved): dns-server fails to install and remove
I've installed the latest snapshot pfSense-2.0-BETA1-20100507-1115 with quick install.
After the reboot I tried to... Koen Van Impe
09:49 PM Revision 8aff4a0c: The global reference declaration is needed.
Ermal LUÇI
07:32 PM Bug #579 (Closed): Keymap setting not followed
I've installed the latest snapshot pfSense-2.0-BETA1-20100507-1115.
I selected for keymap "be.iso.acc" and left all ... Koen Van Impe
05:16 PM Revision 7726c308: Preserve previous behaviour of having all alarms on for all gateways. Not sure this should be/is the right behaviour though.
Ermal LUÇI
05:12 PM Revision 023920e7: Move the settings of down/latency/loss to per gateway. This allows more fine grained control on gateways.
Ermal LUÇI
03:34 PM Bug #363 (Feedback): Dynamic DNS issues
This can be postponed after 2.0 for now i think? Ermal Luçi
03:31 PM Revision 1b38ac36: Use common function to return gateway array so consinstency is preserved around code.
Ermal LUÇI
03:13 PM Revision 6cae2c44: Do not put ip address on teh name since pfctl does not like an ip as part of macro name.
Ermal LUÇI
02:43 PM Revision 2557738e: Correct delay matching on outgoing load balancer code.
Ermal LUÇI
01:58 PM Revision 3327ac10: Use require_once() to overcome problems with includes.
Ermal LUÇI
01:41 PM Revision a842e988: Ticket #408. Provide code to upgrade static routes.
Ermal LUÇI
01:27 PM Revision e08e4ebc: Make list the same. Remove whitespace at the end so it does not get interpreted as special tag.
Ermal LUÇI
12:47 PM Bug #408 (Feedback): Static routes are not converted properly on upgrade
Ermal Luçi
12:43 PM pfSense Packages Bug #578: Snort to OpenVPN menu navigation
This is because snort replaces fbegin.inc which is what defines the menus. It's replacing 2.0's copy with its own whi... Jim Pingle
04:50 AM pfSense Packages Bug #578 (Resolved): Snort to OpenVPN menu navigation
Attempting to load the OpenVPN page from the Snort config page give error "Warning: fopen(/usr/local/pkg/openvpn.xml)... Jeremy Zeigler
11:37 AM Revision 906f11b5: Fix link_ip_to_carp_interface. This unbreak at least Carp on CP and other consumers of it.
Ermal LUÇI
11:02 AM Revision 8d964cea: Add scpecific scripts for when ovpn goes up and down so we get neccessary values for used in varius areas of pfSense. TODO is find out how to get DNS info form openvpn.
Ermal LUÇI
10:22 AM Revision da9d6701: Check if interface exists before issuing a command when disabling captiveportal.
Ermal LUÇI
10:10 AM Revision f1e7ae16: Prevent gateway groups of having the same name as a gateway because this is not valid.
Ermal LUÇI
10:05 AM Revision 28955fee: Use a global array to prevent errors on rulesets which have invalid gateways. If such are found do not use the gateway at all. Probably the rule should be skipped too?.
Ermal LUÇI
09:57 AM Revision fad4fae8: Move auto generated rule for static routes on same subnet. Use sloppy states to speed things up and use flags any in tcp case so sloppy state does not choke.
Ermal LUÇI
04:13 AM pfSense Packages Bug #577 (Resolved): Squid Guard package install information incorrect
SquidGuard package install is parsing to the config.xml using http://files.pfsense.org/packages/8/All/squidGuard-1.3_... Jeremy Zeigler
02:24 AM Bug #575: Ticket 1297: Policy routing to multiple gateways on a single interface
I found it in 2.0. Thanks very much. Brett Burley

05/06/2010

10:50 PM Revision 75466131: Catch up with latest apinger changes to make easier to extract the status of gateways.
Ermal LUÇI
10:20 PM Todo #576 (Resolved): Make sure IPsec upgrade code properly handles mobile clients
The IPsec code changes from 1.2.3 to 2.0 are quite large in some areas. Now that it is possible to replicate a 1.2.3-... Jim Pingle
09:47 PM Bug #575: Ticket 1297: Policy routing to multiple gateways on a single interface
Thanks. I'll check it out. See you in Ottawa. Brett Burley
09:28 PM Bug #575 (Closed): Ticket 1297: Policy routing to multiple gateways on a single interface
already exists in 2.0. Chris Buechler
09:24 PM Bug #575 (Closed): Ticket 1297: Policy routing to multiple gateways on a single interface
Ticket 1297 was closed back in 2008, but I do not believe this is possible today; "Policy routing to multiple gateway... Brett Burley
09:27 PM Bug #108 (Feedback): Xauth is forced for IPsec mobile clients
This is ready for testing. It generates a mobile config in racoon.conf which is equivalent to one found in 1.2.3 if y... Jim Pingle
09:20 PM pfSense Packages Bug #200 (Resolved): 100% CPU on PHP with Snort
Chris Buechler
09:18 PM pfSense Packages Bug #200: 100% CPU on PHP with Snort
Can someone close this bug report.
Robert
 robert zelaya
09:20 PM pfSense Packages Bug #547 (Resolved): Snort rules drop down only works in Firefox
Chris Buechler
09:16 PM pfSense Packages Bug #547: Snort rules drop down only works in Firefox
robert zelaya wrote:
> Can someone close this bug report.
>
>
> Robert
 robert zelaya
09:15 PM pfSense Packages Bug #547: Snort rules drop down only works in Firefox
Can some on close this bug report.
Robert robert zelaya
09:17 PM pfSense Packages Todo #532: little bug in snort_rules_edit.php (missing include)
Can someone close this bug report.
Robert
 robert zelaya
09:15 PM Revision 10d171f2: Add a few comments. This should be ready for testing/feedback. Ticket #108
Jim Pingle
08:57 PM Revision cee72940: Add missing ;
Jim Pingle
08:56 PM Revision bdf4ad85: Set proposal check and passive as needed for this scenario also. Ticket #108
Jim Pingle
08:53 PM Revision d98f1fa9: Ensure initial_contact is 'on' in this case to behave as 1.2.3 did. Ticket #108
Jim Pingle
08:51 PM Revision fa1f4827: Set generate_policy to "on" to behave as 1.2.3 does in this case. Ticket #108
Jim Pingle
08:40 PM Revision 36d047f5: Only specify peer ID if we are not dealing with a mobile PSK-only tunnel. Ticket #108.
Jim Pingle
08:34 PM Revision 9b2e9133: Do not specify subnet in sainfo if we are dealing with a mobile PSK-only tunnel. Ticket #108
Jim Pingle
08:13 PM Revision 1f65618b: Only enforce peer ID and psk on p1 screen if we are NOT dealing with a pure-psk mobile tunnel (which is the behavior in 1.2.3). Hide irrelevant options. Part of ticket #108.
Jim Pingle
07:43 PM Revision 71d61aa5: Reorder Auth. Method and PSK field to a more logical sequence. Part of ticket #108.
Jim Pingle
07:33 PM Revision 2ef1b601: Write out IPsec PSKs for mobile clients. Part of ticket #108.
Jim Pingle
07:27 PM Bug #574 (Resolved): Config upgrade for non-default admin username broken
Configs with an admin username other than 'admin' don't upgrade properly. Chris Buechler
07:25 PM Revision 7d8a886a: More tab fixes.
Jim Pingle
07:24 PM Revision b24479d6: A couple small fixes to the tabs/titles on these pages.
Jim Pingle
07:06 PM Revision 958420c5: Bring back IPsec PSK Tab/Edit. Part of ticket #108. Still needs backend code to use the resulting keys.
Jim Pingle
06:20 PM Bug #126 (Feedback): XML parser errors when enabling SSH
Latest snapshot should be ok with this.
To test just 'touch /cf/conf/use_xmlreader' Ermal Luçi
06:19 PM Bug #127 (Feedback): Empty config entries returned as array
Latest snapshot should be ok with this.
To test just 'touch /cf/conf/use_xmlreader' Ermal Luçi
05:20 PM Feature #573 (Needs Patch): Multiple gateways via DHCP
ISC DHCP (and other DHCP implementations) support giving clients multiple gateways to use. It might be good to suppor... Jim Pingle
04:55 PM Bug #285 (Resolved): Dashboard widget settings not being saved
Applied in changeset commit:"acc5dd59f9c5f60ae67e135376506e9c9f70c154". Anonymous
04:52 PM Revision bb927ed4: Previous commit also fixed traffic graph state changing, so re-enable that as well.
Jim Pingle
04:52 PM Revision acc5dd59: Fix widget settings in general. Initialize widget list before use. Fixes #285.
Jim Pingle
04:35 PM Revision a669395c: Enable even xmlwriter module.
Ermal LUÇI
04:34 PM Revision ab83fce0: Ticket #320. Use xmlreader and xmlwriter to read/write xml since it encodes decodes itself special chars.
Ermal LUÇI
04:08 PM Bug #511 (Resolved): pkg_generate_rules
Chris Buechler
11:21 AM Bug #511: pkg_generate_rules
Ermal Luçi wrote:
> I merged fixes yesterday to not penalize the other packages.
Thanks Ermal - that is perfect.
... Warren Baker
07:56 AM Bug #511: pkg_generate_rules
I merged fixes yesterday to not penalize the other packages. Ermal Luçi
04:04 PM pfSense Packages Bug #448 (Resolved): dnscache is not starting
Chris Buechler
03:50 PM pfSense Packages Bug #448: dnscache is not starting
I concur. The issue is now fixed.
Thank you! Henrik Kaare Poulsen
03:47 PM Bug #444: All mounts should be noatime
In this case the power yank isn't what really needs testing, it's whether or not the mount commands and changes would... Jim Pingle
03:46 PM Bug #444: All mounts should be noatime
Unfortunately I don't have VMware, and my only KVM capable PC is out of service.
In any case I am not so sure that u... Henrik Kaare Poulsen
03:15 PM Bug #444: All mounts should be noatime
If you have access to VMware Workstation, you can make a NanoBSD VM to test in. The serial port can be virtualized by... Jim Pingle
03:12 PM Bug #444: All mounts should be noatime
I have only tested on full install from live CD.
It is quite difficult for me to try nano, as I have to dismantle th... Henrik Kaare Poulsen
03:40 PM Bug #320 (Feedback): Using special characters (e.g. åäö) in certificate "Descriptive name" breaks entire WebGUI
Get a new snapshot and try with 'touch /cf/conf/use_xmlreader Ermal Luçi
03:11 PM Revision e77ea573: Fix config backup download on IE8+HTTPS. Reported-By: Seth on the Dev list
Jim Pingle
02:20 PM Bug #572 (Resolved): OpenVPN Inter-client communication option doesn't work.
Applied in changeset commit:"1b8b44dc661b45ea2752467a2c57433be69c051b". Anonymous
01:24 PM Bug #572 (Resolved): OpenVPN Inter-client communication option doesn't work.
The Inter-client communication option in the OpenVPN server configuration does not function properly. The XML file sh... Jeremy Zeigler
02:17 PM Revision 1b8b44dc: Add client-to-client to OpenVPN server config if the option is checked. Resolves #572.
Jim Pingle
02:07 PM Bug #295: UID error in User Manager/SSH password sync with Web Admin User
Looking through the history, this "backend" setting seems to be something that was removed, so this check in /etc/rc.... Erik Fonnesbeck
11:43 AM Bug #295: UID error in User Manager/SSH password sync with Web Admin User
This is probably related to an issue I've seen that the root/admin password on the console is not updated after I do ... Erik Fonnesbeck
12:08 PM Revision 34a2fb1b: Allow using the default session timeout.
Erik Fonnesbeck
10:43 AM Revision 07f1ca1d: Correct file_notice usage.
Ermal LUÇI
10:22 AM Bug #561: Destination address for upgraded port forward is incorrect
Added another fix. I used the wrong value name before. Erik Fonnesbeck
10:20 AM Revision fcf4e8cd: Fix upgrade code for port forwards with "Interface address" set on external address. Ticket #561
Erik Fonnesbeck
09:13 AM Revision 416ae3d6: Fix the empty array check, a empty load balancer tag has a value of 1, not 0.
Seth Mos
09:06 AM Revision 92a2ceae: Do not trip with configuration upgrades on a empty load balancer tag.
Seth Mos
08:54 AM Bug #571 (Feedback): Destination on rdr incorrect on interface addresses
Should be fixed now. Erik Fonnesbeck
08:31 AM Bug #571: Destination on rdr incorrect on interface addresses
Confirmed that the issue is not exclusive to port forwards. The same happens with firewall rules. Erik Fonnesbeck
08:25 AM Bug #571: Destination on rdr incorrect on interface addresses
Actually, it seems to be an issue only when using opt interfaces. Erik Fonnesbeck
08:20 AM Bug #571: Destination on rdr incorrect on interface addresses
I've tried it out and haven't been able to reproduce this. I get just the IP address. Erik Fonnesbeck
04:49 AM Bug #571 (Resolved): Destination on rdr incorrect on interface addresses
When you select any interface address in port forward entries now, it puts them into the config as something like:
... Chris Buechler
08:47 AM Revision 0167a9bf: Fix the regular expression used in filter_generate_address for OPT subnet so that it only matches the case intended. Ticket #571
Erik Fonnesbeck
05:56 AM pfSense Packages Bug #524: nvnstat not saving records on embedded
n the 4th may nanobsd snap, the package gets installed properly and GUI works but doesnt colelct any data and counter... Bipin Chandra
01:34 AM Revision 129bc052: Merge remote branch 'mainline/master' into patches
Resolved conflicts:
usr/local/www/system_advanced_firewall.php Erik Fonnesbeck

05/05/2010

11:21 PM Bug #444: All mounts should be noatime
Also, why do you use separate usr, var, and tmp?? That is not what the installer defaults to and is widely tested to... Scott Ullrich
11:18 PM Bug #444: All mounts should be noatime
This all looks sane but have you tested these changes on all of the distributions (livecd, nanobsd, etc)? Scott Ullrich
11:18 PM Revision 257c5205: Revert last commit .. This might not work on Nano
Scott Ullrich
11:14 PM Revision d8d5e511: Use mount -a instead of -uw Ticket #444
Scott Ullrich
08:56 PM Revision 7a31647e: Ticket #511. Do not penailize other packages if rules of one package are erroneous during package rule generation.
Ermal LUÇI
08:02 PM Bug #568 (Feedback): firewall rules advanced clean up
Ermal Luçi
08:01 PM Revision 8ba13f00: Ticket #568. Programatically decide if to show an advanced button or the value if non default.
Ermal LUÇI
07:26 PM Revision b8ed2a11: Implement tcp flags and sloppy state on the GUI.
Ermal LUÇI
06:56 PM Revision b315e307: Merge remote branch 'mainline/master'
Introduce gettext() calls on usr/local/www/{pkg_,system_}*.php Renato Botelho
04:59 PM Revision 83e16ead: The gui defaults to https in 2.0 correct it to make sure it is not stopped by CP on the CP interface[s].
Ermal LUÇI
03:28 PM Revision 9faa6c3c: Improve/correct the passthrumac rules when this option is enabled.
Ermal LUÇI
11:22 AM Revision 9ff30853: Merge remote branch 'mainline/master'
Renato Botelho
09:39 AM Revision 64d124c5: Code configured to use new interfaces_ppps_configure function for PPP, PPPoE, and PPtP links.
Marcus Brown
07:29 AM Revision cb37d8fa: New code working with PPP connections, and probably PPPoE/PPtP but I haven't tested yet.
It makes the proper mpd config files for PPPoE and MultiLink PPPoE. Marcus Brown
04:31 AM Revision e57d0897: Slightly change wording of NAT reflection description.
Erik Fonnesbeck
04:27 AM Revision 9fc22c6f: Add configuration option in System: Advanced: Firewall/NAT for NAT reflection on 1:1 NAT.
Erik Fonnesbeck
03:54 AM Revision c8bbe66f: Add backend code for NAT reflection on 1:1 NAT mappings.
Erik Fonnesbeck
03:11 AM Revision b06be629: Removed some redundant/obsolete code that is superceded by the new NAT reflection code.
Erik Fonnesbeck
03:11 AM Revision e9d8ecf2: Add the NAT that goes with the reflection redirects.
Erik Fonnesbeck
03:11 AM Revision e9dd5cea: Added reflection redirect rule and rearranged some related code that goes with it.
Erik Fonnesbeck
01:19 AM Bug #543: IP alias input validation problem
When changing it to none, if there are already existing alias VIPs, it could either not allow changing it to none unt... Erik Fonnesbeck

05/04/2010

11:27 PM Revision 1c826e48: Remove "pfSense nat bouncing" entries from the service ports list.
Erik Fonnesbeck
11:24 PM Revision 0bf53f55: Remove note about reflection being skipped on large port ranges.
Erik Fonnesbeck
11:20 PM Revision df66409b: Removed unused NAT reflection timeout setting.
Erik Fonnesbeck
11:14 PM Revision 9015e152: Remove the old reflection implementation and prepare for the new one.
Erik Fonnesbeck
11:09 PM Bug #543: IP alias input validation problem
It probably really doesn't make sense to add a VIP IP alias on an interface configured without an IP. So the solution... Chris Buechler
02:04 PM Bug #543: IP alias input validation problem
I am not sure if there is a solution to this.
I investigated on providing a fix for this but otherwise it will break... Ermal Luçi
10:02 PM Revision f3c5638e: Put all of these lines in the block under this condition and remove the irrelevant comment.
Erik Fonnesbeck
05:40 PM pfSense Packages Bug #448 (Feedback): dnscache is not starting
This is already committed. Ermal Luçi
05:30 PM Bug #491 (Feedback): Dynamic DNS upgrade code not working
It was there just it wasn't working because 'dyndns' now i considered as a member of an array.
 Ermal Luçi
05:24 PM Bug #535 (Feedback): Layer 7 - Error when deleting L7 rules group
Ermal Luçi
04:22 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
Sorry wrong link.
I can't find the right one now, but 32-bit will return signed int, and 64-bit will return unsigned... Yehuda Katz
04:16 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
This should have been fixed in the PHP5 source as of last April (2009).
If the issue is still there, maybe a bug rep... Yehuda Katz
01:03 PM Bug #459: ip2long (and possibly others) return bogus values on 64 bit
As noted by someone on the mailing list, this also affects input validation on things such as the DHCP server that ju... Jim Pingle
04:10 PM Revision 34a3694b: Fix displaying the Enable/Disable checkbox. Previously after a save button click it will show the old saved value.
Ermal LUÇI
04:02 PM Todo #506: Bring back unequal route-to balancing
A quick before-and-after from one scenario, load balanced WAN and OPT1 where WAN was weighted 3 in the old style.
Be... Jim Pingle
03:57 PM Revision 96cbc5aa: Fix displaying the Enable/Disable checkbox. Previously after a save button click it will show the old saved value.
Ermal LUÇI
03:03 PM Bug #541: Missing binaries on 64 bit
dnsmasq and dhcpleases should both be fixed now Scott Ullrich
12:11 PM Bug #560 (Resolved): loader.conf is empty after a firmware update.
Looks like the latest fix from Scott is good:
https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commit... Jim Pingle
01:11 AM Bug #560: loader.conf is empty after a firmware update.
Would we not need /boot/loader /boot/loader.rc and /boot/loader.4th - especially over a base OS version upgrade?
I... Jim Pingle
01:02 AM Bug #560 (Feedback): loader.conf is empty after a firmware update.
should be resolved by:
https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/7bd58f242717f23919756b... Chris Buechler
11:12 AM Revision 1cfa0465: Merge commit 'mainline/master'
Carlos Eduardo Ramos
10:56 AM Revision 156a7868: Add a gitsync option for reverting to the commit used when building the image.
Erik Fonnesbeck
10:27 AM Revision e31c90fc: Ticket #491. Fix upgrade code. Since dyndns is considered and array item it failed with previous code. Use index of 0 since 1.2.x does not have multiple entries.
Ermal LUÇI
10:19 AM Revision 9fdfdc5b: When 'No RDR' is set, skip some code that does not apply.
Erik Fonnesbeck
09:44 AM Revision 8ea2f022: This check is no longer needed here.
Erik Fonnesbeck
09:42 AM Revision 6735f23a: Return if not a supported protocol for reflection.
Erik Fonnesbeck
09:39 AM Revision bb37dc86: Ticket #535. Correct from where we get the port number.
Ermal LUÇI
09:37 AM Revision db843ceb: 'pass' is not valid with 'no rdr'
Erik Fonnesbeck
09:32 AM Bug #570 (Resolved): When "No RDR" is checked on a port forward, hide fields that do not apply.
When "No RDR" is checked on a port forward; Redirect target IP, Redirect target port, and Filter rule association hav... Erik Fonnesbeck
09:11 AM Revision f28e13de: Skip code for generating inetd.conf entries when 'no rdr' is used.
Erik Fonnesbeck
08:35 AM Revision 42809b4a: Use "PPPs" as the new Tab name in Interfaces -> Assign. Rename files and update affected files.
Also, add upgrade_config function 062_to_063. Marcus Brown
07:26 AM Bug #449: OpenVPN died when PPPOE link came up with a different IP.
There might be issues with restarting openvpn.
Maybe a sleep should be introduced somewhere! Ermal Luçi
07:15 AM Bug #567 (Feedback): Firewall's hostname gets multiple hosts entries
Ermal Luçi
07:13 AM Revision e3495c34: Modify reflection code to avoid having duplicate rule generation code for when the protocol is different.
Erik Fonnesbeck
06:35 AM Revision 8659bc21: Reflection can have side effects unexpected to the user with rules using any for destination address, so change any to the interface subnet for reflection rules, which should be closer to the desired behavior in most cases but without the side effect.
Erik Fonnesbeck
05:39 AM Revision 13b37be2: Use the same destination address and port in reflection rules as is used in the port forward's main rule.
Erik Fonnesbeck
05:20 AM Revision 1a3d911e: In reflection rules, fix the end of the port range in port range forwards.
Erik Fonnesbeck
05:06 AM Bug #569 (Closed): deleting L7 container error
duplicate of #535 Chris Buechler
05:05 AM Bug #569 (Closed): deleting L7 container error
while deleting L7 containers, this error occurs
Fatal error: Call to a member function GetRPort() on a non-object ... Bipin Chandra
04:57 AM Revision 6785f06a: add Logs tab
Chris Buechler
02:05 AM Revision c6bfc426: Move the reflection enabled check out of filter_generate_reflection, so this function can be used elsewhere regardless of the system setting for it (in preparation for reflection support on 1:1 NAT mappings).
Erik Fonnesbeck
12:51 AM Bug #568: firewall rules advanced clean up
Having the PHP output javascript for unhiding them when the conditions are met might be the best way to do this. Whe... Erik Fonnesbeck
12:27 AM Bug #434: xmlparse.inc should not call die
Lorenz: I would vote for config.lib.inc
 Scott Ullrich

05/03/2010

10:22 PM Revision e5995f9d: Ticket #567. Create an entry on hosts file with the ip address of lan or the first inerface ip without a gateway if lan is not present.
Ermal LUÇI
09:26 PM Revision b6fe3414: Fix more inconsistent capitalization.
Jim Pingle
08:29 PM Revision a4973f08: Fix punctuation.
Jim Pingle
06:43 PM Revision 18f8f9a3: Fix some inconsistent capitalization on labels
Jim Pingle
06:14 PM Revision d5ae560d: Ticket #565. Correct deleting passthru mac entries. revert back to always allow a passthru mac as with allowed ips. Remove the check during login for passthru mac entries they will never make it to the login page.
Ermal LUÇI
05:45 PM Bug #562 (Feedback): Pass-through MAC bandwidth limits not working
PAtched. Ermal Luçi
05:43 PM Revision b01792a0: Ticket #566. Reimplement the allowed ips keeping previous funcitonality and improving by adding a both direction. The problem with previous commit is that it always assumes that allowed ip address would have a pipe configured and entires without one would just get dropped.
Ermal LUÇI
05:43 PM Bug #565 (Feedback): Deleting pass-through MAC doesn't apply changes
Ermal Luçi
02:14 PM Bug #566 (Feedback): captive portal IP bypass issues
Ermal Luçi
12:55 PM Revision 8a0b4f14: Adding missing gettext() calls
Vinicius Coque
12:49 PM Revision 456e7c76: Removing invalid string from code
Vinicius Coque
12:38 PM Revision 5be999d3: Merge remote branch 'mainline/master'
Conflicts:
usr/local/www/system_gateway_groups.php
usr/local/www/system_gateway_groups_edit.php
... Vinicius Coque
10:30 AM Bug #511: pkg_generate_rules
Hey Chris
Chris Buechler wrote:
> Warren: can you confirm if this is now fixed for the scenario you could replica... Warren Baker
10:25 AM Bug #511: pkg_generate_rules
Hey Chris
Chris Buechler wrote:
> Warren: can you confirm if this is now fixed for the scenario you could replica... Warren Baker

05/02/2010

08:23 PM Revision 7133ab35: Various fixes for handling of ports in port forwards.
- Removed unused $srcport variable.
- Moved setting the $protocol variable to after setting the ports, so it can
cl... Erik Fonnesbeck
07:52 PM Bug #433 (New): layer7 not blocking anything
doesn't appear to matter what you put into a L7 config, it doesn't work. Easy test: create one that blocks HTTP, kill... Chris Buechler
07:45 PM Bug #568 (Resolved): firewall rules advanced clean up
The new advanced hiding, and splitting the screen into two parts, really messes up working with rules with advanced o... Chris Buechler
07:37 PM Feature #56 (Resolved): VAP code
this is working fine. May be some edge case issues, can open tickets later if any are found. Chris Buechler
07:35 PM Bug #542 (Resolved): when schedule time expires, the rules skippied give error in systemlog
not doing that for me anymore, looks to be fixed Chris Buechler
07:13 PM Bug #567 (Resolved): Firewall's hostname gets multiple hosts entries
In /etc/hosts, the firewall's hostname is entered once for each interface IP. This leaves you with a round robin DNS ... Chris Buechler
06:52 PM Bug #566 (Resolved): captive portal IP bypass issues
A few issues here.
1) It no longer works. Adding a rule with keep-state fixes it, such as:
allow ip from any to... Chris Buechler
06:20 PM Bug #565 (Resolved): Deleting pass-through MAC doesn't apply changes
After deleting a pass-through MAC entry and applying changes, the pass-through isn't actually removed until you click... Chris Buechler
10:21 AM Revision 4818f161: Moving reflection's interface listing code to its own function, for use in future NAT reflection improvements.
Erik Fonnesbeck
09:39 AM Revision de77ffdb: Code to save data on a per port(bandwidth, mtu, mru, etc.) basis is working.
Marcus Brown
09:22 AM Feature #13: wireless page to have option to select transmit and receive antennas
all that i can say is when tx and rx antenna r set to 0 and diversity off then i get much better signal strength in f... Bipin Chandra
06:35 AM Feature #13: wireless page to have option to select transmit and receive antennas
I'm fairly sure 0 does mean auto on those sysctl settings, so that's what should be labeled auto if this setting is e... Erik Fonnesbeck
02:22 AM Feature #13: wireless page to have option to select transmit and receive antennas
mine is a atheros 5414 chipset but BSD reports it as 5413 due to drivers Bipin Chandra
02:17 AM Feature #13: wireless page to have option to select transmit and receive antennas
from one of mine (Atheros 5413)
# athstats
297648 data frames received
388321 data frames transmit
4570 ... Chris Buechler
01:44 AM Feature #13: wireless page to have option to select transmit and receive antennas
$ athstats
3605891 data frames received
133799 data frames transmit
2900 short on-chip tx retries
47625 ... Bipin Chandra
08:38 AM Revision 414e21e0: Fix a check for "any" in port forwards.
Erik Fonnesbeck
08:09 AM Revision 6fcc9db6: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline into mlppp
Marcus Brown
08:08 AM Revision 44d57a2b: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline into mlppp
Marcus Brown
08:03 AM Revision d123e3bd: Make script files for getting ppp connection uptime executable.
Marcus Brown
08:00 AM Revision c9797064: Working on javascript for bandwidth, mtu, mru inputs on mlppp gui.
Marcus Brown
07:36 AM Revision 0acae2a0: Add a note about the regulatory domain and cards that have an unrecognized default.
Erik Fonnesbeck
06:51 AM Revision f4094f0d: Display some extra information about the available wireless channels.
Erik Fonnesbeck
02:24 AM Bug #511: pkg_generate_rules
Warren: can you confirm if this is now fixed for the scenario you could replicate? Chris Buechler

05/01/2010

08:39 PM Feature #13: wireless page to have option to select transmit and receive antennas
Other than the sysctl values, what does athstats say about antennas on your card?
By the way, I've found on a syst... Erik Fonnesbeck
07:39 PM Revision 4b85f096: properly create auto AON rules for PPTP, PPPoE, L2TP and OpenVPN
Chris Buechler
07:27 PM Revision 4f529aa8: fix "Invalid argument supplied for foreach"
Chris Buechler
04:43 PM Bug #558 (Resolved): Dynamic gateways are not saved/edited properly
This seems to work fine now for me. Jim Pingle
04:40 PM Bug #559 (Resolved): Dynamic gateways are not used properly in groups
Ermal's fix works great. Dynamic gateways make it into groups fine and no longer cause the rules to fail. Jim Pingle
03:41 PM Bug #406 (Resolved): OpenVPN tunnel network should be automatically added for Outbound NAT
https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/4b85f09622889a4a6665e55a61bcf732da8d1bd2 Chris Buechler
03:22 PM Bug #535 (New): Layer 7 - Error when deleting L7 rules group
Deleting L7 group now results in the above fatal error. Chris Buechler
01:29 PM Bug #563 (Rejected): pfsense tracert disappears when gateway is set in a specific rule
that's how pf's route-to functions, it's not a bug. Chris Buechler
11:55 AM Bug #563 (Rejected): pfsense tracert disappears when gateway is set in a specific rule
Hi,
situation:
pfsense: 192.168.99.1/192.168.98.2
pc: 192.168.99.2
gateway: 192.168.98.1
if there is a rule ... L J
06:59 AM Revision 77eddca8: fix display of PARP VIP ranges. Resolves #386
Chris Buechler
06:03 AM Revision 8788e899: add double click to edit
Chris Buechler
05:57 AM Revision 0d13b2e2: fix text
Chris Buechler
05:50 AM Revision d535ab71: fix up text
Chris Buechler
05:44 AM Revision 687b5432: fix up text
Chris Buechler
04:38 AM Revision 9291bf44: Fix up javascript and add id # to interfaces_mlppp page.
Marcus Brown
04:14 AM Bug #426 (Resolved): DNS server list not overriden by DHCP/PPP on WAN with PPPoE
fixed Chris Buechler
03:53 AM Feature #411 (Resolved): Regulatory domain and country settings for wireless
looks to work fine, thanks! Chris Buechler
03:43 AM Bug #116 (Resolved): Carp and Captive portal don't work together
this works. it redirects to the interface IP rather than the CARP IP, but that should be irrelevant. Chris Buechler
03:32 AM Bug #231 (Resolved): carp_input: packet received on non-carp interface log flooding
Chris Buechler
03:29 AM Bug #259 (Resolved): When disabling a dhcp interface, dhclient is not stopped
fixed Chris Buechler
03:25 AM Bug #471 (Resolved): Un-assigning VLAN parent interface makes VLANs stop working
fixed, thanks Chris Buechler
03:24 AM Bug #441 (Resolved): Can't set loss rate in limiter
Chris Buechler
03:21 AM Bug #525 (Resolved): Schedule rules outside of time show incorrect note
fixed, thanks Chris Buechler
03:16 AM Bug #487 (Resolved): PPP does not auto-reconnect
Chris Buechler
03:14 AM Bug #517 (Resolved): Do not check gateway within interface's IP subnet for dynamic gateways
fixed Chris Buechler
03:10 AM Bug #540 (Resolved): PPPoE Reconnect Issues
Chris Buechler
03:09 AM Bug #539 (Resolved): inet.flowtable flooding systemlog
Chris Buechler
03:05 AM Bug #386 (Resolved): Proxy ARP range does not show all usable IPs
Applied in changeset commit:"77eddca8aeabefab83130ec073241a6018026410". Chris Buechler
02:49 AM Bug #386 (New): Proxy ARP range does not show all usable IPs
still a problem Chris Buechler
02:27 AM Bug #470 (Resolved): Captive portal on VLANs bypassed when parent interface is assigned
This is fixed, nice work! Parent interface assigned now works fine with captive portal on only VLANs. Chris Buechler
02:10 AM Bug #562 (Resolved): Pass-through MAC bandwidth limits not working
The global bandwidth limiting is working fine, but the pass-through MAC and IP limits are not functional (traffic pas... Chris Buechler
12:57 AM Todo #506: Bring back unequal route-to balancing
And I'm not sure if we'd want to keep this ticket open or start a new one for the upgrade code to migrate from the ol... Jim Pingle
12:55 AM Todo #506: Bring back unequal route-to balancing
This is working great for me now.
I set a weight of 1 on my DSL (PPPoE, 3Mbit), and 3 on cable (DHCP, 10Mbit), and ... Jim Pingle
12:22 AM Bug #543 (New): IP alias input validation problem
Sent you a config to replicate it. Chris Buechler

04/30/2010

11:53 PM Bug #551 (Resolved): Proxy ARP does not work (choparp won't launch)
fixed, and it works. Chris Buechler
09:44 PM Revision fe538f56: Save gateway data when weight changes on dynamic gateways.
Ermal LUÇI
09:39 PM Revision cbdcd188: Remove debugging leftover.
Ermal LUÇI
09:34 PM Revision ca54b8a7: Unset the gateway from the rules before removing it from the array.
Ermal LUÇI
09:29 PM Revision f78302e8: Add gateways validation code before deleteing. This prevents footshooting especially with Gateway Groups.
Ermal LUÇI
08:41 PM Revision ec313443: Remove check that prevented bugs from happening. Now all code paths are safe from this.
Ermal LUÇI
08:40 PM Revision 7d9eef10: Remove unused function.
Ermal LUÇI
08:22 PM Revision 7bed8222: Ticket #506. Correctly save dynamic gateways extra parameters.
Ermal LUÇI
07:47 PM Revision 0307f351: Show descriptive name not the internal used one.
Ermal LUÇI
07:36 PM Revision c8e495a3: Use correct gateway name instead of the descriptive ones to adapt to dynamic gateways which use the interface name not the interface description as a reference. While here do not use history.back for cancel button but redirect to the groups page directly.
Ermal LUÇI
07:10 PM Revision 5ab8e250: Show the source options on port forwards if they are not at the defaults.
Erik Fonnesbeck
06:18 PM Revision 743ce9f8: Add upgrade code for values of "Interface address" and "any" for the external address of port forwards. Ticket #561
Erik Fonnesbeck
06:07 PM Revision a457e739: Initialize variable properly, it fixes #557
Renato Botelho
04:25 PM Revision fb5e6dcc: Unbreak this. Seems it needs to be filter for the rules to work.
Ermal LUÇI
04:24 PM Bug #558 (Feedback): Dynamic gateways are not saved/edited properly
Patched. Ermal Luçi
01:30 PM Bug #558 (Resolved): Dynamic gateways are not saved/edited properly
Editing a dynamic gateway still does not work as it should. Here are a few notes:
1. Checking the default box resu... Jim Pingle
04:23 PM Bug #559 (Feedback): Dynamic gateways are not used properly in groups
This was resolved in commits. Ermal Luçi
01:32 PM Bug #559 (Resolved): Dynamic gateways are not used properly in groups
You can pick a dynamic gateway as part of a gateway group, but it does not make it into /tmp/rules.debug.
Because... Jim Pingle
04:23 PM Todo #506 (Feedback): Bring back unequal route-to balancing
Ermal Luçi
01:22 PM Todo #506 (New): Bring back unequal route-to balancing
This seems to work correctly for static gateways, and copies of dynamic gateways, but does not work for actual dynami... Jim Pingle
09:54 AM Todo #506 (Feedback): Bring back unequal route-to balancing
Implemented in https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/5f53260a2da559c71a5de91dc5c6a332e664b2... Ermal Luçi
04:15 PM Revision 1f877c94: Make sure package rules are last. As the way they are coded they will null out entire rulesets. More work is needed to make them 2.0 comliant but for now this is enough.
Ermal LUÇI
03:45 PM Bug #491: Dynamic DNS upgrade code not working
Here's some before-and-after config clippings for this. Looks like we may just need to move the <dyndns> entry as-is ... Jim Pingle
02:50 PM Revision 9bfa3d47: Actually minimum weight is 1.
Ermal LUÇI
02:32 PM Revision 5f53260a: Allow for each gateway a weight to be choosen if the gateway has to be used in Gateway groups. This will create that many entries in the route-to statement as the weight says.
Ermal LUÇI
02:22 PM Bug #561 (Feedback): Destination address for upgraded port forward is incorrect
It should be correct now, but it needs testing and I am unable to test it at the moment. Erik Fonnesbeck
01:48 PM Bug #561 (Resolved): Destination address for upgraded port forward is incorrect
When a NAT port forward is upgraded from 1.2.3 to 2.0, its destination address is not upgraded correctly, or displaye... Jim Pingle
02:13 PM Revision 93458966: Removed gettext call
Carlos Eduardo Ramos
02:11 PM Bug #557: Editing or duplicating port forward loses external port range for "other" ports.
Fix confirmed. It works properly now. Jim Pingle
02:10 PM Bug #557 (Resolved): Editing or duplicating port forward loses external port range for "other" ports.
Applied in changeset commit:"a457e739f9764d51aada8c3bd3ac4efd943aac9c". Anonymous
01:48 PM Bug #557: Editing or duplicating port forward loses external port range for "other" ports.
Confirmed on newly created rules. Only seems to happen if you leave source at the defaults. Erik Fonnesbeck
01:36 PM Bug #557: Editing or duplicating port forward loses external port range for "other" ports.
The rules were upgraded from a 1.2.3 config. Jim Pingle
01:16 PM Bug #557 (Resolved): Editing or duplicating port forward loses external port range for "other" ports.
When you edit or duplicate a port forward entry that uses an "other" port and not one found in the drop-down list, th... Jim Pingle
02:10 PM Revision e13bfff1: Add gettext call
Carlos Eduardo Ramos
02:01 PM Revision 4af9c6a2: Adding gettext() call
Vinicius Coque
01:53 PM Revision bfb0b9dc: Adding gettext() calls
Vinicius Coque
01:35 PM Bug #560 (Resolved): loader.conf is empty after a firmware update.
On a full install the default /boot/loader.conf contains:... Jim Pingle
01:15 PM Revision 34563021: Fix gettext issues
Carlos Eduardo Ramos
01:13 PM Revision 2b33f342: add gettext() calls on missing places
Renato Botelho
01:11 PM Bug #449 (New): OpenVPN died when PPPOE link came up with a different IP.
I am running last night's snapshot and gitsync'd to current code as of this update.
OpenVPN connections are not bei... Jim Pingle
01:02 PM Revision f49a012c: gettext fixes
Renato Botelho
12:25 PM Revision 5b1dcebf: Fixing multiline gettext()
Vinicius Coque
12:06 PM Revision 2c955e0a: Fix gettext issues
Carlos Eduardo Ramos
11:34 AM Revision 955cdb26: Fix gettext issues
Carlos Eduardo Ramos
11:22 AM Revision 05f3ffa4: Ticket #8. Delete states after link fails down.
Ermal LUÇI
11:08 AM Revision 4e480d21: Merge remote branch 'mainline/master'
Renato Botelho
11:05 AM Revision c8aa6bdd: gettext cannot deal with string concatenation
Renato Botelho
09:21 AM Revision 2595abeb: Pull javascript out of mlppp_edit page into a separate file.
Marcus Brown
09:05 AM Revision badbe349: Fix up code to make ppp work again with new interface naming structure.
New interface naming for all PPP (point to point) links is that interfaces
in the ppps config section will be numbere... Marcus Brown
06:29 AM Feature #8 (Feedback): Clear states after failover
Seems the pfctl -b on ppp-linkdown has been lost in the history.
I putted back so it should be ok even in PPP links ... Ermal Luçi
04:27 AM Revision 897eb11d: show IP as well as gateway name on interfaces.php
Chris Buechler
04:25 AM Revision 3a78180e: show gateway IP as well as name
Chris Buechler
04:18 AM Revision 189ceb32: show gateway IP in addition to name
Chris Buechler
12:10 AM Revision 48a458d2: Use nobind for OVPN client when no local port and/or no local interface is requested. Ticket #282
Pierre POMES

04/29/2010

11:45 PM Bug #282 (Resolved): OVPN, --nobind and --local port conflict
fixed, thanks! Chris Buechler
08:11 PM Bug #282 (Feedback): OVPN, --nobind and --local port conflict
Fix commited. Pierre POMES
09:01 PM Revision 723f1761: this is no longer true thanks to eri's route-to from localhost based on src IP.
Chris Buechler
08:22 PM Revision f6c2ad64: Fix gettext issues
Carlos Eduardo Ramos
07:20 PM Revision ad5b5f61: Fix gettext()
Renato Botelho
07:10 PM Revision 29645da6: Fix gettext issues
Carlos Eduardo Ramos
07:05 PM Bug #553 (Resolved): OpenVPN missing "Dynamic IP" checkbox in 2.0
I added this back into both places last night. Jim Pingle
07:00 PM Revision 6e707e77: Adding gettext()
Vinicius Coque
06:44 PM Revision 9dce16d4: Merge branch 'master' of git@rcs.pfsense.org:pfsense/bluepex-clone
Carlos Eduardo Ramos
06:42 PM Revision c395a830: Fix gettext issues
Carlos Eduardo Ramos
06:06 PM Revision 10b0fac2: Fix whitespace
Renato Botelho
05:56 PM Revision d0a00ec9: Removing tab character
Vinicius Coque
05:55 PM Feature #8 (New): Clear states after failover
sounds like a suitable work around. Also please report back how pfctl -b works for you Dan, it hasn't been tested muc... Chris Buechler
05:52 PM Feature #8: Clear states after failover

Here is what I have found out: the code that runs in delete_states_for_down_gateways() is not working correctly, a... Dan Swartzendruber
05:53 PM Revision f0d1af93: Fix gettext issues
Carlos Eduardo Ramos
05:32 PM Revision 0e94685b: Fix gettext issues
Renato Botelho
05:29 PM pfSense Packages Feature #556 (Resolved): siproxd: add carp virtual IPs as interface candidates
The XML / GUI for the siproxd package allows any of the vlans and interfaces to fill be chosen as inbound and outboun... Harry Coin
05:18 PM Revision 4d473c89: Fixing gettext() on multiline strings
Vinicius Coque
05:17 PM Bug #449: OpenVPN died when PPPOE link came up with a different IP.
Doesn't seem to restart any longer on DHCP renewal when the IP hasn't changed (snapshot April 28th). - BlackB1rd -
04:44 PM Revision ab3ebf88: Generate gateways as macros and then just substitute them during the rules. This allows optimizations and features as repeating the same gateway more than one to be done.
Ermal LUÇI
04:12 PM Revision 95bd5c86: Always generate macros so ruleset does not fail even when the gateway has no members.
Ermal LUÇI
03:21 PM Revision 33d72c67: Reload gateway groups when changing them.
Ermal LUÇI
01:54 PM Revision 9a1e70df: Reviewing gettext()
Carlos Eduardo Ramos
01:37 PM Revision 0897ff7b: Implement gettext()
Renato Botelho
01:34 PM Revision e2b23632: Remove commented out code.
Marcus Brown
01:31 PM Revision e6ffcfbd: Reviewing gettext()
Carlos Eduardo Ramos
01:26 PM Revision c86e8f76: Removed PPP config numbering scheme. Completed PPPX assignment updates in interfaces_assign page.
Now PPP assignment to friendly interface works on Interfaces Assign page, including graceful handling
of deleting int... Marcus Brown
01:23 PM Revision 6ae5a092: Merge branch 'master' of rcs.pfsense.org:pfsense/bluepex-clone
Vinicius Coque
01:23 PM Revision f65227b9: Implementing gettext()
Vinicius Coque
01:17 PM Revision c8536f7d: Implementing gettext()
Carlos Eduardo Ramos
01:11 PM Bug #316: Serial console on full installs drops to shell
Note: you may need to re-save the settings on System: Advanced: Admin Access to get the corrected line in /etc/ttys a... Erik Fonnesbeck
12:23 AM Bug #316 (Feedback): Serial console on full installs drops to shell
Erik Fonnesbeck
11:51 AM Bug #555 (Resolved): Certificate Revocation List (CRL) missing from Certificate Manager
There is no place in the 2.0 GUI to handle certificate revocation. The best fit seems to be in the Certificate Manage... Jim Pingle
11:50 AM Revision 67a7861e: Merge branch 'master' into gettext
Renato Botelho
11:40 AM Revision 5e4f894b: Merge remote branch 'mainline/master'
Renato Botelho
11:27 AM Revision 59ecde49: Improve NAT Port Forwarding
New features available are:
* Now you can disable a rule
* You can define "no rdr" rules
* Source type, address and p... Renato Botelho
11:14 AM Revision 0f65d53e: Merge branch 'master' into gettext
Renato Botelho
11:13 AM Revision bae53989: Fix indent
Renato Botelho
11:09 AM Revision 5a5fcf02: Merge branch 'master' into gettext
Renato Botelho
11:08 AM Revision 274ba00f: Merge branch 'master' of rcs.pfsense.org:pfsense/bluepex-clone
Renato Botelho
11:07 AM Revision 649bc342: Merge branch 'master' into gettext
Renato Botelho
11:06 AM Revision 5961c5c6: Merge remote branch 'mainline/master'
Renato Botelho
10:34 AM Revision 7d35ed78: Create rules for openvpn/l2tp/pppoe/pptp when switching to manual outbound nat so the user can do less work.
Ermal LUÇI
10:00 AM Revision 932364e7: Default to and display the last used repository URL in gitsync.
Erik Fonnesbeck
09:02 AM Revision b6964228: Add gitsync support for merging from other repositories.
Erik Fonnesbeck
08:59 AM Revision ecac770c: Allow gitsync to properly switch branches or repositories. Resolves #523
Erik Fonnesbeck
08:50 AM Revision 5a7d04bf: Resolves #554. Correct path to tftp-proxy.
Ermal LUÇI
08:19 AM Revision e27fe834: Fix text for consistency.
Erik Fonnesbeck
08:13 AM Bug #465: Description input validation too strict
It also might work to encode the characters using HTML and depend on the web browser to decode the text, instead of h... Erik Fonnesbeck
08:08 AM Bug #465: Description input validation too strict
That may be too harsh. Having those descriptions be readable in the config.xml is a large benefit, IMHO. Jim Pingle
06:52 AM Bug #465 (Feedback): Description input validation too strict
We can encode all description fields with base64 so no problems should arise.
Agreed? Ermal Luçi
05:41 AM Bug #406 (Feedback): OpenVPN tunnel network should be automatically added for Outbound NAT
https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/7d35ed789061a755127ac4b2dde533c30e4bdee1 Ermal Luçi
05:10 AM Bug #523 (Resolved): gitsync to custom URL doesn't work with existing checkout
Applied in changeset commit:"ecac770c1a1faa0a4be31e7d45f0e51b765f4d59". Erik Fonnesbeck
04:11 AM Revision fd946c7e: The console menu does not show if the terminal type is not cons25 - not sure why. Changed to cons25 to allow the menu to work on the serial console when enabling it through the web GUI. Ticket #316
Erik Fonnesbeck
04:00 AM Bug #554 (Resolved): tftp-proxy binary missing
Applied in changeset commit:"5a7d04bf55989cf8cb23c793084285e861b28fae". Ermal Luçi
03:17 AM Revision c3c2fd20: Merge branch 'master' into gettext
Resolved conflicts:
usr/local/www/system_advanced_firewall.php
usr/local/www/system_routes.php
... Erik Fonnesbeck
03:10 AM Revision 1364604b: Merge remote branch 'mainline/master'
Erik Fonnesbeck
02:36 AM Revision 01dcf2b3: properly show TFTP enabled interfaces
Chris Buechler
01:54 AM Revision 8b666514: Fix OpenVPN upgrade code for lzo compression. Resolves #280, mentioned also in Ticket #482.
Jim Pingle
01:38 AM Revision dfa11031: Fix apparent typo in IPsec upgrade code which broke the user_fqdn identity type.
Jim Pingle
01:17 AM Revision 93c745f6: touch up text
Chris Buechler
12:49 AM Revision 9605d06f: Restore select_source value correctly
Scott Ullrich

04/28/2010

11:17 PM Revision a529aced: Ticket #507. Do not remove all static routes to readd them back. The change will never delete a rule but define the action to be taken on it, either add or change a present route. Be consinstent on gateways allowed to be selected as destinations for static routes, including dynamic gateways.
Ermal LUÇI
10:28 PM Revision df6df70f: Add dynamic IP option to OpenVPN wizard.
Jim Pingle
10:24 PM Bug #554 (Resolved): tftp-proxy binary missing
The tftp-proxy binary does not exist in snapshots. Chris Buechler
09:55 PM Bug #280 (Resolved): 1.2.3 -> 2.0 OVPN LZO Setting does not transfer over.
Applied in changeset commit:"8b666514fc616b34b8128dc69eac0998f577301d". Anonymous
09:20 PM Bug #528 (Resolved): route-to on traffic from localhost breaks connectivity to WAN subnets
fixed Chris Buechler
09:20 PM Bug #79 (Resolved): DNSMasq removed ISC-DHCP Log parsing. Need to write a replacement
Chris Buechler
09:19 PM Revision 599d5c62: Fix description
Jim Pingle
09:18 PM Bug #18 (Resolved): Link loss can cause multi-WAN difficulties
Chris Buechler
09:17 PM Bug #378 (Resolved): session timeout in user manager
fixed Chris Buechler
09:17 PM Revision 65ff8497: Add back Dynamic IP checkbox for OpenVPN Servers.
Jim Pingle
09:14 PM Bug #443 (Resolved): Notifications HELO uses IP rather than FQDN
Chris Buechler
09:13 PM Bug #475: L2TP is not functional in the way users will expect
clarifying ticket, it does actually work, but not the way most people are going to expect. Chris Buechler
09:05 PM Bug #285 (New): Dashboard widget settings not being saved
traffic graph widget refresh interval still not working Chris Buechler
09:01 PM Bug #483 (Resolved): PHP missing bcmath
fixed Chris Buechler
08:48 PM Bug #498 (Resolved): OpenVPN client export download doesn't work in IE
Chris Buechler
08:48 PM Bug #340 (Resolved): EasyRule call to undefined function
Chris Buechler
08:46 PM Bug #474 (Resolved): Disabled OpenVPN servers still run
fixed Chris Buechler
08:28 PM Revision 39c0be7b: Fixing gettext implementation
Vinicius Coque
07:34 PM Revision b7596b80: add ')' at end line 149
Carlos Eduardo Ramos
07:17 PM Bug #507 (Feedback): system_routing_configure should not delete and re-add all routes
Ermal Luçi
06:22 PM Revision 9c09c2c6: Reviewing gettext()
Carlos Eduardo Ramos
06:15 PM Revision d238d430: Remove {} between variable since it's out of the string
Renato Botelho
06:13 PM Revision 798f6ea3: Use printf() for string that need to print variables
Renato Botelho
06:13 PM Revision 8492fd30: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
06:12 PM Revision 1409c8d1: Implementing gettext()
Vinicius Coque
06:10 PM Revision 89f0ac4c: Implement gettext()
Renato Botelho
06:05 PM Revision 90521a27: Reviewing gettext()
Carlos Eduardo Ramos
06:00 PM Revision a7242c88: Implement gettext()
Carlos Eduardo Ramos
05:53 PM Revision 9a758f4c: Implementing gettext()
Vinicius Coque
05:52 PM Revision 57d90db6: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
05:52 PM Revision 3d573b8c: Implementing gettext()
Vinicius Coque
05:33 PM Revision 499fea07: Implement gettext()
Carlos Eduardo Ramos
05:27 PM Revision 92936289: Implement gettext()
Carlos Eduardo Ramos
05:13 PM Revision f2a0ebed: Merge branch 'gettext' of git@rcs.pfsense.org:pfsense/bluepex-clone into gettext
Carlos Eduardo Ramos
05:10 PM Revision b4fd804b: Reviewing gettext()
Carlos Eduardo Ramos
05:03 PM Revision 6d78607d: fix indent
Renato Botelho
05:00 PM Revision 79501c4b: Implement gettext()
Renato Botelho
04:51 PM Revision 257705ca: Implement gettext()
Renato Botelho
04:44 PM Revision 683c26cf: Fixing gettext() implementation
Vinicius Coque
04:33 PM Revision 39452267: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
04:33 PM Revision 9db4beef: Reviewing gettext() implementation
Vinicius Coque
04:22 PM Bug #553: OpenVPN missing "Dynamic IP" checkbox in 2.0
Also need to remember to add it back into the wizard. Jim Pingle
04:18 PM Bug #553 (Resolved): OpenVPN missing "Dynamic IP" checkbox in 2.0
The OpenVPN GUI code in 2.0 seems to be missing the Dynamic IP checkbox that is present on 1.2.3.
The code is stil... Jim Pingle
04:17 PM Revision 76d49f20: Use array instead of explode for reqdfieldsn to fit it better with gettext() calls
Renato Botelho
04:14 PM Revision ed2e2c47: Reviewing gettext()
Carlos Eduardo Ramos
03:59 PM Revision 40fb81a1: Reviewing gettext()
Carlos Eduardo Ramos
03:45 PM Revision 38fb1109: Fixing gettext() implementation for required fields
Vinicius Coque
03:12 PM Revision 91a5b98a: Implement PPP config numbering scheme. Deleting a PPPx config doesn't renumber
the other config sections, but saving a new or existing config renumbers all
config sections. Update interfaces_assig... Marcus Brown
02:43 PM Bug #551 (Feedback): Proxy ARP does not work (choparp won't launch)
Seems builder had compiled something different of choparp.
Recompiled the port and it seemed ok. It does not seem ... Ermal Luçi
02:02 PM Revision e2f0ac59: Implementing gettext()
Carlos Eduardo Ramos
01:55 PM Revision b79454a7: Reviewing gettext() implementation
Carlos Eduardo Ramos
01:27 PM Revision dde169d9: Removing unnecessary gettext()
Vinicius Coque
12:38 PM Revision c3c68a70: Implementing gettext()
Vinicius Coque
12:33 PM Revision 223bbfb9: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
12:32 PM Revision bbf825ab: Implementing gettext()
Vinicius Coque
12:09 PM Revision 39589fbc: Implement gettext()
Carlos Eduardo Ramos
11:55 AM Revision 5ce9ae67: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
11:55 AM Revision 181b29ca: Reviewing gettext() implementation
Vinicius Coque
11:48 AM Revision 169e0008: Review gettext implementation
Carlos Eduardo Ramos
11:43 AM Revision cc8aa7db: Fixing gettext() call
Vinicius Coque
11:36 AM Revision 573439f1: Implementing gettext(0
Vinicius Coque
11:24 AM Revision 6bf77f38: Removing unnecessary gettext()
Vinicius Coque
11:22 AM Revision df152a88: Implement gettext()
Carlos Eduardo Ramos
11:19 AM Revision 36a0f816: Merge branch 'master' into gettext
Renato Botelho
11:18 AM Revision edc7a281: Merge remote branch 'mainline/master'
Renato Botelho
10:59 AM Bug #282: OVPN, --nobind and --local port conflict
Yeah you're right, it doesn't add them both anymore. Though there is still a problem, if you select a particular non-... Chris Buechler
09:05 AM Bug #282: OVPN, --nobind and --local port conflict
As you can see in my screenshot, "WAN" is used as interface for OpenVPN (I added this feature in ticket #69).
- Fr... Pierre POMES
12:44 AM Revision 8fb49e83: Fix typo in comment
Pierre POMES

04/27/2010

11:32 PM Revision 4f6a5e6a: Update (C) to 2010
Scott Ullrich
11:15 PM Bug #282: OVPN, --nobind and --local port conflict
You probably have "any" specified as the interface, it has to be one of the specific interfaces or a VIP to add the l... Chris Buechler
10:10 PM Bug #282: OVPN, --nobind and --local port conflict
Strange, I just upgraded to the lastest snapshot (April, 27th), and I still see that "local" is omitted and "nobind" ... Pierre POMES
09:20 PM Bug #282: OVPN, --nobind and --local port conflict
Yeah I saw exactly that code when I was looking at it last, 5 days ago. It's not doing what you think it should from ... Chris Buechler
08:50 PM Bug #282: OVPN, --nobind and --local port conflict
Ok, I just did the test in the meanwhile.
I think you are using an old snapshot ? Actually, since March 12th, wh... Pierre POMES
08:44 PM Bug #282: OVPN, --nobind and --local port conflict
This is referring to 'local', not 'lport'. Where lport is defined, nobind is never specified (as in the code snippet ... Chris Buechler
08:16 PM Bug #282: OVPN, --nobind and --local port conflict
Hi,
Just to clarify, are we talking about "local" directive (bind to a given IP) or "lport" (bind to a given port,... Pierre POMES
09:43 PM Revision 2d181b70: Fix IE downloading with HTTPS
Jim Pingle
09:31 PM Revision fa4a331f: Ticket #471. Bring up the removed/unassigned interface correctly if it is parent to other interfaces, as vlans.
Ermal LUÇI
08:50 PM Revision 461c0a1a: Ticket #449. Actually save something to read back.
Ermal LUÇI
08:47 PM Revision 40655051: Ticket #449. Bring back the check if there is really an ip change on interface event. This avoids reloading openvpn and other sevices when actually there is no change.
Ermal LUÇI
08:37 PM Revision 24a1f963: Ticket #540. Do not require VJ compression with todays link speeds it pessimizes more than helps.
Ermal LUÇI
08:26 PM Revision 79eaddf4: Fix : for translations
Renato Botelho
08:20 PM Revision 198afa09: Implementing gettext()
Vinicius Coque
08:17 PM Revision 51ecb99e: Added wrong removed spaces
Renato Botelho
08:11 PM Revision 1b99764b: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
08:11 PM Revision a2927ebf: Implementing gettext()
Vinicius Coque
08:09 PM Revision f8513409: Implement gettext()
Carlos Eduardo Ramos
08:06 PM Revision a6d8feb6: Remove extra space
Renato Botelho
07:56 PM Revision 00d01f78: Separate string and '\n' to make it easier to translators
Renato Botelho
07:50 PM Revision 259159e0: Add a missing gettext() call
Renato Botelho
07:10 PM Revision 8395f51e: Implement gettext()
Carlos Eduardo Ramos
06:54 PM Revision a53e451b: Implement gettext()
Carlos Eduardo Ramos
06:51 PM Revision c70a6be8: Fix wizard form field padding on other themes also
Jim Pingle
06:43 PM Revision 0a6fe301: Fix form field padding on wizards to match other areas.
Jim Pingle
06:25 PM Revision f0d1edc9: Implement gettext()
Carlos Eduardo Ramos
05:58 PM Revision 95b97dd1: Add first revision of rewritten OpenVPN status widget to 2.0 resolves #496.
Jim Pingle
05:56 PM Revision 18464b74: Implement gettext()
Carlos Eduardo Ramos
05:47 PM Bug #498 (Feedback): OpenVPN client export download doesn't work in IE
I committed a fix for this, I am now able to download in both IE and FF when using HTTPS. Jim Pingle
05:41 PM Bug #464: Problems with setup wizard
1 should be fixed by jimp commit to pfsense-ng theme. Ermal Luçi
05:40 PM Revision 4134b5e6: Reviewing gettext()
Carlos Eduardo Ramos
05:37 PM Bug #470 (Feedback): Captive portal on VLANs bypassed when parent interface is assigned
Please test the latest snapshots. Ermal Luçi
05:32 PM Bug #471 (Feedback): Un-assigning VLAN parent interface makes VLANs stop working
Ermal Luçi
05:15 PM Revision 53663f57: Move these functions to a more central location. Part of ticket #496
Jim Pingle
05:07 PM Revision e64aa6f8: Reviewing gettext()
Carlos Eduardo Ramos
04:51 PM Bug #449 (Feedback): OpenVPN died when PPPOE link came up with a different IP.
Ermal Luçi
04:44 PM Bug #536: apinger at times fails to touch filter_dirty
Don't know how related it is (with the work around), but in a multi wan setup with failover groups.
If wan fails api... Perry Mason
04:37 PM Bug #540 (Feedback): PPPoE Reconnect Issues
Ermal Luçi
01:03 AM Bug #540: PPPoE Reconnect Issues
requesting ermal to apply this patch so i can get rid of my pppoe reconnect issue as manually editing the mpd conf fi... Bipin Chandra
04:35 PM Revision 443ddf6f: Reviewing gettext()
Carlos Eduardo Ramos
04:33 PM Bug #231 (Feedback): carp_input: packet received on non-carp interface log flooding
Ermal Luçi
04:26 PM Bug #542 (Feedback): when schedule time expires, the rules skippied give error in systemlog
Ermal Luçi
04:18 PM Revision c6d1c7de: Ticket #517. Fix saving of monitorip in dynamic interface cases.
Ermal LUÇI
04:16 PM Bug #551 (New): Proxy ARP does not work (choparp won't launch)
I did apply settings, doesn't launch it. Even a reboot doesn't launch it. In the past it would always launch from the... Chris Buechler
10:13 AM Bug #551 (Feedback): Proxy ARP does not work (choparp won't launch)
You need to click 'apply settings' so choparp starts.
It does not go into background it seems that is why it stays... Ermal Luçi
03:49 PM Revision 82b15b70: Implement gettext()
Carlos Eduardo Ramos
03:41 PM Revision a26412f2: Merge branch 'master' into gettext
Renato Botelho
03:39 PM Revision 5e02b57b: Merge remote branch 'mainline/master'
Renato Botelho
03:35 PM Revision eb01fcec: Ticket #525. Correct message shown for a schedule now that the behviour has changed.
Ermal LUÇI
03:26 PM Revision 0172c431: Actually correctly handle editing of vips with index 0.
Ermal LUÇI
02:55 PM Revision 7a938f1b: Ticket #389. Correctly make the ldap object picker work and handle various errors.
Ermal LUÇI
02:08 PM Revision b567f589: Ticket #378. Correct text to reflect the allowed 0 value.
Ermal LUÇI
02:07 PM Revision 02647583: Ticket #378. Correctly handle a timeout of 0 to mean never timeout.
Ermal LUÇI
01:51 PM Revision a1cab2c7: Ticket #474. Properly check for disabled openvpn configs.
Ermal LUÇI
01:35 PM Revision 5ad0cbee: Implement gettext()
Carlos Eduardo Ramos
01:08 PM Revision e454bcd3: Rwviewing gettext()
Vinicius Coque
01:07 PM Revision 267c28ab: Adding gettext() to save button
Vinicius Coque
01:03 PM Bug #552: OpenDNS dynamic dns update does not work
Forgot to say this is on 2.0 Beta snapshot "2.0-BETA1
built on Tue Apr 13 19:26:36 EDT 2010". Anonymous
12:30 PM Bug #552 (Resolved): OpenDNS dynamic dns update does not work
Update of OpenDNS dynamic dns does not work, updates are rejected with error php: /services_dyndns_edit.php: phpDynDN... Anonymous
12:52 PM Revision e51ed1e9: Reviewing gettext()
Vinicius Coque
12:49 PM Revision f77911f1: Merge branch 'gettext' of rcs.pfsense.org:pfsense/bluepex-clone into gettext
Vinicius Coque
12:48 PM Revision d9950d29: Reviewing gettext()
Vinicius Coque
12:43 PM Revision 7465d12c: Implement gettext()
Carlos Eduardo Ramos
12:30 PM Revision bca12a76: Reviewing gettext()
Vinicius Coque
12:19 PM Revision cf9331b3: Add missing gettext() call
Renato Botelho
12:15 PM Revision f3f2277c: Merge branch 'master' into gettext
Renato Botelho
12:03 PM Revision 2648fa63: Automatically select destination as $Interface address when Interface is changed just for new rules, or, if previous rule has already the combination interface + interface address selected
Renato Botelho
11:41 AM Revision cb11b71e: Merge branch 'master' into gettext
Renato Botelho
11:41 AM Revision be28a8c0: Merge remote branch 'mainline/master'
Renato Botelho
11:30 AM Revision ca72c3f5: Implement gettext()
Carlos Eduardo Ramos
11:25 AM Revision 0648c968: Silence and correct command that tries to kill a previous running ipfw-classifyd command.
Ermal LUÇI
11:24 AM Bug #517 (Feedback): Do not check gateway within interface's IP subnet for dynamic gateways
I fixed a problem of saving the monitor ip to the correct place in config.
Otherwise i was unable to reproduce this.... Ermal Luçi
11:10 AM Revision df5da531: Missed curly.
Ermal LUÇI
11:08 AM Revision b7729cee: Do not error out when trying to delete an unexisting package. Just display an error message.
Ermal LUÇI
10:40 AM Bug #525 (Feedback): Schedule rules outside of time show incorrect note
Ermal Luçi
10:32 AM Bug #543 (Feedback): IP alias input validation problem
I cannot reproduce this on latest snapshots. Ermal Luçi
10:04 AM Bug #535: Layer 7 - Error when deleting L7 rules group
Ive tested again and I get the following error appears when I delete an l7 group.... Abdsalem Chaoui
06:31 AM Bug #535 (Feedback): Layer 7 - Error when deleting L7 rules group
Patched try next snapshot Ermal Luçi
10:01 AM Bug #389 (Feedback): "LDAP Authentication container" Select doesn't work until after Save
Ermal Luçi
09:32 AM Revision 047ae6ab: Revert "Push all work on mlppp to the interfaces_ppp_edit and interfaces_ppp pages."
This reverts commit 258f1ca439af24026849e15f8dbfc558be0e1ef3.
Actually, not ready to do this yet. Marcus Brown
09:18 AM Bug #467 (Feedback): Unable to use active FTP via second gateway
Can you please try latest snapshots and report back if the same situation persists?
There have been fixes merged w... Ermal Luçi
09:14 AM Bug #378 (Feedback): session timeout in user manager
Ermal Luçi
08:57 AM Bug #474 (Feedback): Disabled OpenVPN servers still run
Ermal Luçi
08:53 AM Revision 258f1ca4: Push all work on mlppp to the interfaces_ppp_edit and interfaces_ppp pages.
Marcus Brown
08:49 AM pfSense Packages Bug #537: Recent RELENG_8 STABLE version breaks AutoConfigBackup pkg
This is an issue in how it was coded in php.
Probably needs more info on which script uses it?! Ermal Luçi
05:57 AM Bug #433 (Feedback): layer7 not blocking anything
It should be ok on latest snapshots.
Otherwise please attach a traffic trace. Ermal Luçi
04:38 AM Revision db3829e1: Add binding support for row helper drop downs
Scott Ullrich
04:06 AM Revision 9f65abbf: Allow mapping a select drop down to any area of config.xml
Scott Ullrich

04/26/2010

08:02 PM Revision 1b4f376d: Addin gettext functions do system::firmware
Vinicius Coque
07:57 PM Revision 51e4f7a3: Addin gettext to page title
Vinicius Coque
07:33 PM Revision e066fe07: Fix test to not penalized variable value of 0.
Ermal LUÇI
07:26 PM Revision ec6b31f5: Merge branch 'master' into gettext
Renato Botelho
07:22 PM Revision fac4562e: Merge remote branch 'mainline/master'
Renato Botelho
07:22 PM Revision 573e8df2: Remove option 'any' from Destination Port Range
Renato Botelho
07:10 PM Revision 1eacdc8a: Implement gettext()
Carlos Eduardo Ramos
06:41 PM Bug #551 (Resolved): Proxy ARP does not work (choparp won't launch)
Adding PARP VIPs doesn't launch choparp. When trying to do so manually it just hangs forever without returning anythi... Chris Buechler
05:48 PM pfSense Packages Bug #550 (Closed): "Frickin" 2.0 package does not install properly.
I am using pfsense 2.0-BETA1 built on Fri Apr 16 15:35:27 EDT 2010 FreeBSD 8.0-STABLE. I downloaded and installed "Fr... Alan Brown
04:21 PM Revision ca23c2f8: Implement gettext()
Renato Botelho
03:43 PM Bug #549 (Resolved): VIP configuration changes.
The code present in 2.0 assumes that apply button will be clicked for every operation done on the VIP entry, so it wi... Ermal Luçi
02:13 PM Revision a37753d7: Gettext for System::Cert manager
Vinicius Coque
02:13 PM Revision 1324ebaf: Mark this just informative textarea as readonly
Renato Botelho
01:06 PM Bug #548 (New): Inconsistent DHCP behavior when renumbering LAN
And apparently I'm much too quick on the trigger today. The DHCP settings are a problem even when the LAN IP does cha... Jim Pingle
01:00 PM Bug #548 (Closed): Inconsistent DHCP behavior when renumbering LAN
This has nothing to do with DHCP. I'm trying to track down/reproduce the real cause of the problem (changing the LAN ... Jim Pingle
12:31 PM Bug #548: Inconsistent DHCP behavior when renumbering LAN
Actually it appears as though this may be due to the fact that when you change the LAN IP, it doesn't actually update... Jim Pingle
12:26 PM Bug #548 (Resolved): Inconsistent DHCP behavior when renumbering LAN
When you change the LAN IP in the GUI, the note says to change the DHCP settings before applying. However, when you t... Jim Pingle
12:44 PM Revision ec0d9bef: no rdr rules shouldon't have ->, take care of nat reflection rules either
Renato Botelho
12:00 PM Revision a94ee3fa: Merge remote branch 'mainline/master'
Renato Botelho
12:18 AM Revision 67d5b508: correctly go to interface for edit bogons/rfc1918
Chris Buechler

04/25/2010

11:18 PM pfSense Packages Bug #547 (Resolved): Snort rules drop down only works in Firefox
The drop down on snort_rules.php only changes pages in Firefox. A similar issue on firewall_rules.php and other pages... Chris Buechler
12:12 PM pfSense Packages Bug #546 (Resolved): [PATCH] TinyDNS does not register static DHCP leases
TinyDNS does not register static DHCP leases.
Patch:... Henrik Kaare Poulsen
08:20 AM Revision c8efb628: Use the source address/ports and nordr parameter with reflection redirects as well.
Erik Fonnesbeck
04:04 AM Revision 0534d60a: temporary work around for ticket #536
Chris Buechler
02:36 AM Revision a73f50e2: add note about 1:1s and interface IPs
Chris Buechler
02:25 AM Revision 81a24277: remove unnecessary input validation checks
Chris Buechler
02:16 AM Revision e05b5278: remove this check, the WAN IP can be used in binat now with no problems
Chris Buechler

04/24/2010

11:31 PM Revision 7d7992cd: remove this check here too, though it doesn't do anything as it's checking against non-existent ipaddr
Chris Buechler
11:13 PM Todo #544 (Resolved): Restore locking
Locking needs to be tested and re-enabled if fixed, or fixed in FreeBSD/PHP if not.
this is the commit to be reve... Chris Buechler
11:04 PM Revision ee8c3889: remove bunk input validation
Chris Buechler
06:39 PM Bug #543 (Resolved): IP alias input validation problem
When you have an interface with IP "none" configured, and have an IP alias on that interface, after adding the IP ali... Chris Buechler
01:55 AM Bug #542 (Resolved): when schedule time expires, the rules skippied give error in systemlog
suppose if a few rules use a schedule and when in schedule, its fine but when that time expires, those rules r skippi... Bipin Chandra

04/23/2010

10:51 PM Bug #541 (Resolved): Missing binaries on 64 bit
dnsmasq and dhcpleases (possibly others?) are missing from 64 bit snapshots. Chris Buechler
10:40 PM Bug #449 (New): OpenVPN died when PPPOE link came up with a different IP.
This fix is excessive and causes different problems. It now restarts OpenVPN after every DHCP renewal (and probably P... Chris Buechler
06:21 PM Bug #538: Installer is broken with recent RELENG_8 snapshot
Log from installation. Notice the "bad magic".
BSD Installer started
DFUI connection on tcp:9999 successfully e... Scott Ullrich
04:51 PM pfSense Packages Bug #514: dnscache does not start after reboot; but starts after "save" on GUI
Any news or comments on this issue? Henrik Kaare Poulsen
04:49 PM Bug #444: All mounts should be noatime
Any news or comments on this issue? Henrik Kaare Poulsen
04:37 PM Revision 3d1e7c67: Merge remote branch 'mainline/master'
Renato Botelho
04:28 PM Revision 1b8048a1: Fix perms
jim-p
04:19 PM Revision 2b5f276f: Improve NanoBSD slice updating/changing a bit, add some error checking. Resolves #534.
Jim Pingle
03:25 PM Bug #494: Additional DHCP options lost on input errors
The code that copies the numbered options into $pconfig is inside of a block that is only entered if (!$input_errors)... Jim Pingle
02:17 PM Bug #441 (Feedback): Can't set loss rate in limiter
This should work ok now. Ermal Luçi
02:05 PM Bug #406: OpenVPN tunnel network should be automatically added for Outbound NAT
PPPoE/PPTP/L2TP/IPSec Ermal Luçi
02:05 PM Revision 08fd5444: Relocate some NanoBSD functions to a central place. Change NanoBSD diagnostics and system info widget to use the new code. Ticket #533 and some prerequisite parts of Ticket #534.
Jim Pingle
12:39 PM Todo #533 (Resolved): Improve NanoBSD slice info on Dashboard
If the boot slice has been changed on Diagnostics > NanoBSD, it is now shown on the System Info widget. Jim Pingle
12:25 PM Todo #534 (Resolved): Script to change NanoBSD slice from console
Applied in changeset commit:"2b5f276f8766b7085d8b6ec54b21b6db7554a355". Anonymous
08:17 AM Revision 8ec7b3e0: Well there was a reason for this being returned out. Ticket #539.
Ermal LUÇI
04:46 AM Bug #540 (Resolved): PPPoE Reconnect Issues
http://forum.pfsense.org/index.php/topic,24554.0.html
shouldnt line 2199 as well as 2349 both be
set ipcp no vjcomp Bipin Chandra
03:23 AM Bug #539 (Feedback): inet.flowtable flooding systemlog
Thanks for reminding. Ermal Luçi
02:33 AM Bug #539 (Resolved): inet.flowtable flooding systemlog
i keep getting this in systemlog and sometimes there is a flood of them
php: : The command '/sbin/sysctl net.inet.... Bipin Chandra

04/22/2010

09:15 PM Revision c4e0fc8b: Remove all code for directions it is not needed any more on passthrough ip's.
Ermal LUÇI
09:08 PM Revision c10ea0a1: Add missing ;
Ermal LUÇI
06:20 PM Bug #538: Installer is broken with recent RELENG_8 snapshot
problem noticed on pfSense-2.0-BETA1-20100422-0838 snapshots+ Scott Ullrich
02:53 PM Bug #538 (Resolved): Installer is broken with recent RELENG_8 snapshot
boot0cfg apparently has undergone some changes and errors out at the end of a installation Scott Ullrich
02:52 PM pfSense Packages Bug #537 (Resolved): Recent RELENG_8 STABLE version breaks AutoConfigBackup pkg
root 36571 1.5 0.3 4976 2852 ?? S 5:37PM 0:00.01 /usr/bin/openssl enc -e -aes-256-cbc -k b9u2jdk3845758dvn... Scott Ullrich
12:18 PM Revision 0f9b6beb: Merge remote branch 'mainline/master'
Conflicts:
etc/inc/filter.inc Renato Botelho
11:54 AM Revision e3e5160c: Unbreak limiter rule creation.
Ermal LUÇI
11:23 AM Revision 5de7d56f: Ticket #528. Do not route-to for local connected subnets.
Ermal LUÇI
10:10 AM Bug #527 (Resolved): Captive Portal idle timeout is not functioning
Chris Buechler
10:06 AM Bug #527: Captive Portal idle timeout is not functioning
Ive upgraded to pfSense-Full-Update-2.0-BETA1-20100421-2213 and the last activity column seems to be showing the corr... Abdsalem Chaoui
10:10 AM Bug #536 (Resolved): apinger at times fails to touch filter_dirty
apinger at times fails to touch filter_dirty because it appears something messes with the perms on /tmp... Chris Buechler
10:02 AM Bug #295 (New): UID error in User Manager/SSH password sync with Web Admin User
Chris Buechler
09:59 AM Bug #308 (Resolved): Multiple wireless cards no longer work
Chris Buechler
09:58 AM Bug #505 (Resolved): Cannot connect to FTP server
works now for me Chris Buechler
09:57 AM Bug #508 (Resolved): TFTP proxy not functional
Chris Buechler
09:57 AM Bug #535 (Resolved): Layer 7 - Error when deleting L7 rules group
Im testing out layer 7 blocking on pfSense-Full-Update-2.0-BETA1-20100421-2213.
If I create a layer 7 rules group ... Abdsalem Chaoui
09:26 AM Todo #534 (Resolved): Script to change NanoBSD slice from console
There should be a shell and perhaps console menu command to change the active NanoBSD slice to the alternate, which w... Jim Pingle
09:19 AM Todo #533 (Resolved): Improve NanoBSD slice info on Dashboard
From http://forum.pfsense.org/index.php/topic,24533.0.html
> - In the dashboard, we see the currently bootup slice, ... Jim Pingle
06:28 AM Bug #528 (Feedback): route-to on traffic from localhost breaks connectivity to WAN subnets
Ermal Luçi
04:39 AM pfSense Packages Todo #532 (Closed): little bug in snort_rules_edit.php (missing include)
I've installed Snort 2.8.5.3 pkg v. 1.21.
But there is incomplete include section in my snort_rules_edit.php file,... Ivan Radaev
12:34 AM Bug #282 (New): OVPN, --nobind and --local port conflict
this is still a problem for client configurations. nobind should not be added to the config where local is used. Chris Buechler
 

Also available in: Atom