Activity - pfSense - pfSense bugtracker

Activity

30 days up to

User

Subprojects

Activity

From 04/09/2011 to 05/08/2011

05/08/2011

02:20 AM Revision a9392a4e: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mterron-clone into review/master: Chris Buechler

05/07/2011

08:07 PM Revision c7ac47fd: Misc fixes to make the openvpn wizard stop re-creating a CA previously made via the wizard if you re-ran the wizard and chose a CA instead. Fixes #1512: Jim Pingle
04:14 AM Revision 2635f1f5: this should be checking for synchronizetoip not pfsyncpeerip: Chris Buechler
02:51 AM Revision 9c04a8c0: passive should always be on for mobile clients per racoon man page: Chris Buechler

05/06/2011

09:27 PM Revision 5b06d9cc: Reorder instructions and do not reload dns if its not allowed from the dns allow override setting.: Ermal LUÇI
09:02 PM Revision 978cf4fd: Actaully put the route adding under the conditional logic checking. Ticket #1408.: Ermal LUÇI
08:55 PM Revision 114a9292: If we are disabling the radius inputs, also disable the secondary radius inputs.: Jim Pingle
08:55 PM Revision c07b2675: This field should be server2: Jim Pingle
08:36 PM Revision ac655e1b: Use the availble constant on php for this and also the right value that comes with it since PHP never supported u_int. There is a bug open still on PHP about bcmod but some more info is needed.: Ermal LUÇI
07:36 PM Revision 6f5ed6f0: Reorder where inetd gets started to after where the package rules are generated, so that a package can add a line to inetd.conf using that process.: Jim Pingle
02:19 PM Revision de06b5b7: Enable debugging for the dhcp6c client so we can better track if it's working right: Seth Mos
01:08 PM Revision 000d9e71: Add the ipv6 allow tag to the default config.: Add a default allow rule for the LAN with IPv6
Add a dhcp-pd sla-id of 0 for the WAN.
Add a dhcp-pd length of 0 for t... Seth Mos
12:09 PM Revision ed395640: Add DHCP-PD support if the WAN interface is set to DHCP.: Select a DHCP-PD prefix length in correspondence with your ISP. If set to "none" it will not be requested and normal ... Seth Mos

05/05/2011

08:47 PM Revision f02c3e1d: Misc OpenVPN CRL selection fixes.: Jim Pingle
08:41 PM Revision 93a138ab: Add a field for the prefix pools. Fix the DUID check: Seth Mos
08:27 PM Revision a59831e7: If we have deleted the last cert from the CRL, blank out the text.: Jim Pingle
08:14 PM Revision 461aa9d0: When deleting a CA, delete its associated CRLs.: Jim Pingle
07:56 PM Revision 85936586: Enable accidentally commented out dhclient command for ipv4: Charlie
07:46 PM Revision 0d8562ed: Fix the parse error, missing bracket.: Charlie
07:29 PM Revision 7149c4e7: Add backend support for the dhcp v6 client: Seth Mos
11:50 AM Revision e7230cb3: Add firewall rules so that the DHCPv6 replies can come back in: Seth Mos
10:23 AM Revision 5fd3cb92: Ticket #CZH-831780. If gif(4) is part of a bridge and its mtu is smaller than 1500(ethernet standard) do not consider it in finding the smaller mtu because we have a patch to allow gif(4) be member of a bridge with smaller mtu. See https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/67d3135722db4a3c911761ead5c881ccaef02c65 for details.: Ermal LUÇI
07:07 AM Revision c495f88b: Add the dhcp6 client into the backend code. Needs scripts for up down events also.: Seth Mos

05/04/2011

11:39 PM Revision 4a916dc8: Timeout is either a global option and/or a table stanza option. For now made it a global option.: For the future each pool should probably have a configurable timeout. Warren Baker
09:54 PM Revision 8b1e7d04: Correct wrong key for checking if a interface type switched. Ticket #1420: Ermal LUÇI
09:31 PM Revision 56da23dc: Fixes #1394. Create a function get_itnerface_default_mtu and use it for resetting the mtu of a interface to default when needed. This adds the overhead of fetching the interface mtu and comparing with the default one every interface configuration run.: Ermal LUÇI
05:58 PM Revision 131f3a50: Disable this log message, as it can be extremely spammy in the logs.: Jim Pingle
12:26 PM Revision a9543eae: Remove the dhcp6 type, add the DUID field to the dhcp config.: Seth Mos
10:07 AM Revision cfd2ca3c: Remove stray debugging lines in VPN: Seth Mos
10:06 AM Revision 776603cd: Remove debugging: Seth Mos
08:58 AM Revision 2fb056d8: More DHCPv6 server fixes, split the function out into seperate v4 and v6. Make the router advertisement stand alone on the dhcp server page.: Seth Mos

05/03/2011

07:20 PM Revision ab1047d4: Make sure to send both the managed and other config flags.: Seth Mos
08:12 AM Revision 0130b756: Some more whitespace fixes.: Warren Baker
08:09 AM Revision dcb846e3: Merge remote branch 'upstream/master': Conflicts:
usr/local/www/status_rrd_graph_img.php Seth Mos
08:07 AM Revision 327ef8eb: Use correct config variable and fix some whitespaces.: Warren Baker

05/02/2011

10:26 PM Revision 8c218e1d: Give time to filterdns to exit gracefully and after that start a new process.: Ermal LUÇI
10:04 PM Revision 9b0ddd8c: Resolves #1486. When sticky option is selected under advanced->misc honor it even in the relayd.conf setting.: Ermal LUÇI
08:57 PM Revision 0b1321e2: Bring back the optimization on max-packets at pf(4) level now that the issues with daemon have been identified.: Ermal LUÇI
08:57 PM Revision 81e14406: Bring back the optimization on max-packets at pf(4) level now that the issues with daemon have been identified.: Ermal LUÇI
08:57 PM Revision 2dc14ea2: Now that layer7 daemon issues are resolved bring back this optimization.: Revert "Do not write ont rules anymore max-packets. This apparently was done by me in a previous commit, it helps wit... Ermal LUÇI
07:32 PM Revision b01adece: Set default colors explicity, the theme can then override them. This prevents missing colors in themes from crashing the graphs.: Jim Pingle
06:36 PM Revision 49825b17: If the rrd multiplier is negative, use 5% for out instead of 95% for the 95th percentile line.: Jim Pingle
04:53 PM Revision 3bae60be: Add a newline to the igmpproxy config to resolve issues of it not parsing correctly the file. Reported-by: http://forum.pfsense.org/index.php/topic,36279.0.html: Ermal LUÇI

04/29/2011

07:43 PM Revision c639315e: Set password on the OS instead of just the gui. Fixes #1485: Jim Pingle
06:23 PM Revision f7ea0505: Remove static routes that are added for dns servers when allow override is allowed when a ppp interface goes down. Code borrowed from dhclient-script.: Ermal LUÇI
06:19 PM Revision a73a9886: Ticket #1408. Honor the allow override settings even for ppp devices.: Ermal LUÇI
06:15 PM Revision e5f3359c: Send route delete message to blackhole.: Ermal LUÇI
06:13 PM Revision cfe92577: Ticket #1408. Do not add static routes for automatically learned dns servers from dhcp if Allow override is not selected.: Ermal LUÇI

04/28/2011

09:21 PM Revision 9cf46050: Correct saving of qinq specified members and also correctly destroy parent vlan when deleteing the interfaces. Also take care of attaching to netgraph now that we detach by default.: Ermal LUÇI
08:44 PM Revision a7ee5777: Remove rndtest sysctl since the kernel module is not anymore part of our kernels. Leftover noticed by: Jim: Ermal LUÇI
08:31 PM Revision 2d14181b: Remove rndtest sysctl since the kernel module is not anymore part of our kernels.: Ermal LUÇI
07:53 PM Revision 27dfd848: Bring comment up-to-date: Ermal LUÇI
07:33 PM Revision 65531b4b: Make sure that openvpn tunnels are not impacted by hitting 'Save' on the Interface->Configuration page when assigned.: Ermal LUÇI
07:29 PM Revision d1ae9705: Use the needed variable here so hitting 'Save' from Interface->Configuration section does not leave the assigned gif interfaces without tunnel addresses.: Ermal LUÇI
07:16 PM Revision 40b0c024: Correct code description during assignment: Ermal LUÇI
07:09 PM Revision d7f1891b: Some configurations might have gre/gif on top of carp. Make sure to handle this configurations and to bring the tunnel correctly up.: Ermal LUÇI
02:25 PM Revision 03f824a5: Remove the quotes, these break the advertisement: Seth Mos
01:27 PM Revision 61fbafc2: Hopefully fix the router advertisement: Seth Mos
09:33 AM Revision fcdc8943: Merge remote branch 'upstream/master': Conflicts:
etc/inc/pfsense-utils.inc Seth Mos
09:09 AM Revision 753bd64d: Change the rtadvd daemon options to a more readable format that should hopefully work better.: Seth Mos
01:10 AM Revision 1dfb7795: fix typo: Chris Buechler
12:25 AM Revision b0c2087e: Comment out debug print: Jim Pingle

04/27/2011

04:03 PM Revision f35abee2: Whitespace cleanup, code cleanup, add choice to filter on ipv4/ipv6 and also accept a subnet to filter on via the host field.: Jim Pingle

04/26/2011

09:08 PM Revision c41997ce: Allow users to select SSL/TLS+User Auth with external authentication sources.: Jim Pingle
06:37 PM Revision 7100a85c: No need to include head.inc twice: Jim Pingle
02:18 PM Revision 0b9d02f3: Don't just blindly echo to the ntpd.log, it's a clog file and that will break it.: Jim Pingle
07:05 AM Revision 787de45a: Push the ipv6 routes for the local network with push route-ipv6: Seth Mos

04/25/2011

08:12 PM Revision 97ffc513: Add the ipv6 configuration options for routing ipv6 over the tunnel. Currently only a /64 is supported for the routed network, so use a /64 and then route the /56: Seth Mos
07:50 PM Revision 9f5d14ce: Show OpenVPN instances on Status > Traffic Graphs, with descriptions.: Jim Pingle
05:17 PM Revision b1ba04cf: Add ipv6 tunnel remote subnets: Seth Mos

04/22/2011

07:48 PM Revision e3dc055a: Actually correct check meaning.: Ermal LUÇI
07:23 PM Revision bd17f93d: Do not an ip of all 1s as a gateways since it cannot be pinged.: Ermal LUÇI
06:28 PM Revision bce14123: Actually call interfaces_carp_setup after the carp interfaces are created so carp traffic can only flow after we have all vips up and running. This prevents premption more early than necessary. Ticket #1432.: Ermal LUÇI
03:23 PM Revision d8da6350: Provide a method for rebrands to force a theme. Otherwise upgrading nanobsd from pfSense to a rebrand image without the theme in the config.xml will have a broken GUI since the theme isn't there.: Jim Pingle
12:31 AM Revision de7222fb: correctly unmount drives where a config doesn't exist: Chris Buechler

04/21/2011

09:39 PM Revision 2d4003aa: If the bandwidth value is coming from radius scale it up to the requested Kbit/s unit.: Ermal LUÇI
08:05 PM Revision 2594f401: missed a bit of my last commit: Yehuda Katz
07:33 PM Revision 908cbaf9: Set user when removing privileges, otherwise things like the user's shell would not be reset until pressing save, which is inconsistent with that step not being needed when adding privileges.: Jim Pingle
06:34 PM Revision a29aeb47: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mainline.git: Yehuda Katz
06:33 PM Revision ea7763c0: ignore dreamweaver temp files: Yehuda Katz
06:29 PM Revision a828210b: checking moduli of ssl csr request and response: Yehuda Katz
05:10 PM Revision 1f0c76cf: Fix PPPoE upgrade, the <pppoe> tag is considered an array these days and the upgrade code wasn't treating it properly, accessing it directly instead of using the first entry ([0]). Fixes #1439 - PPPoE credentials upgrade properly now.: Jim Pingle
02:33 PM Revision 46698c3f: Reject encrypted CA private keys. Resolves #1446: Jim Pingle
01:59 PM Revision 0cc5ab42: Confirmed working fix for ticket #1417 - with this change I have two-way connectivity on Site-to-Site (SSL/TLS) with iroutes.: Jim Pingle

04/19/2011

11:59 PM Revision bd24573b: Backing out changes from ticket #1417, it was not a valid openvpn config that the user was trying to make.: Jim Pingle
09:06 PM Revision 673ee7b1: Harden SSL settings a bit. Verified OK with @cmb and @billm: Scott Ullrich

04/18/2011

10:27 PM Revision 6c9cf466: Slightly different fix for #1417 that doesn't mess up other parameters needed by p2p_tls: Jim Pingle
07:18 PM Revision e2e934e0: override option for certificate subject mismatch: Yehuda Katz
06:56 PM Revision 359f6307: Block instead of allowing proto carp/pfsync during bootup since this may cause issues. Ticket #1432: Ermal LUÇI
06:25 PM Revision 42c07003: Add an option under advanced->misc to specify a proxy for retreiving pfsense package info or downloading packages.: Ermal LUÇI
05:08 PM Revision e8503ff4: Only start log update ajax timer if the updateDelay is defined. http://forum.pfsense.org/index.php/topic,35771.0.html: Jim Pingle
09:08 AM Revision 81b44848: Surround the IPv6 address with brackets: Seth Mos

04/17/2011

05:27 AM Revision 5381b341: Don't include RFC1918 in bogons.: Jim Pingle

04/16/2011

10:19 PM Revision 988d498c: sync bogons: Chris Buechler

04/15/2011

08:57 PM Revision 13399e17: Properly add dns and wins fields, load them on page load.: Seth Mos
08:54 PM Revision d7bccf3c: Generate a address from the bridge mac and configure a v6 address: Seth Mos
04:38 PM Revision a51493d1: Merge remote-tracking branch 'mainline/master' into inc: Conflicts:
etc/inc/gwlb.inc Vinicius Coque
04:11 PM Revision 7b2fdeb3: Properly set/unset voucher enable/disable bit.: Jim Pingle
01:06 PM Revision 3df79aa0: Merge remote branch 'upstream/master': Conflicts:
usr/local/www/interfaces.php Seth Mos
12:53 PM Revision b9bbae04: Move the link to add a gateway up next to the drop-down box so it is more obvious.: Jim Pingle
12:37 PM Revision 6d3fd938: Change the wording and the link placement for adding a new gateway: Seth Mos
08:42 AM Revision b1c305e7: Merge remote branch 'upstream/master': Seth Mos
08:41 AM Revision cfd40454: Make it possible to add a IPv6 gateway using the ajax add button: Seth Mos

04/14/2011

08:50 PM Revision ca90133b: Save a little space on the interface list for console assignment.: Jim Pingle
05:26 PM Revision d2903c0c: Test if a variable is set before trying to unset it. If a user has no rules in their config, then $config['filter'] would not be undefined, so unsettings $config['filter']['bypassstaticroutes'] would result in an error. http://forum.pfsense.org/index.php/topic,35702.0.html: Jim Pingle

04/13/2011

07:52 AM Revision c8cc0c1c: Add missing fields for l2tp to define dns and wins servers: Seth Mos

04/12/2011

10:18 PM Revision a93020d5: Do not send growl notices twice: Scott Ullrich
10:08 PM Revision 2632934e: Remove blank trailing c/r.: Scott Ullrich
10:08 PM Revision 10c3d4c0: Notify via smtp as well as growl: Scott Ullrich
05:52 PM Revision cd11a142: Drop the ntpdate sync in favor of using ntpd -s, which should have the same net effect without needing the shell script that has been prone to hanging.: Jim Pingle
04:29 PM Revision 2816c5a1: Fix Parse error: Seth Mos
02:04 PM Revision d67b6b17: Also exclude grep from running processes when grepping for a running packet capture. Also, fix other test to match the recent changes made.: Jim Pingle
08:43 AM Revision 2521266a: Only pick up the ipv6 addresses from the DNS servers section: Seth Mos
08:40 AM Revision af8f910e: Merge remote branch 'upstream/master': Seth Mos
08:39 AM Revision 86966fba: Merge remote branch 'upstream/master': Conflicts:
etc/inc/filter.inc
usr/local/www/themes/the_wall/rrdcolors.inc.php Seth Mos

04/11/2011

08:58 PM Revision 127eb8e0: Add a toggle under System > Advanced on the misc tab to enable/disable debug mode for racoon.: Jim Pingle

04/09/2011

04:00 PM Revision 4eb4b18a: Revert changes to dhclient-script. Appears to have broken DNS servers from DHCP. Ticket #1428: Jim Pingle

Also available in: Atom