Activity

30 days up to

User

Subprojects

Activity

From 05/01/2011 to 05/30/2011

05/30/2011

10:38 PM Todo #1528: Automatic outbound NAT from localhost needs a little work: not for 2.0, can be revisited in the future Chris Buechler
10:24 PM Todo #1528: Automatic outbound NAT from localhost needs a little work: Do we need "NAT from localhost out LAN and other internal interfaces as well"? It does not look hard to implement. Evgeny Yurchenko
10:16 PM Todo #1528: Automatic outbound NAT from localhost needs a little work: That much is adequate for 2.0. Chris Buechler
10:14 PM Todo #1528: Automatic outbound NAT from localhost needs a little work: The first part is fixed by this https://github.com/bsdperimeter/pfsense/commit/edb2a3dab4833fa024828f3150cdcc1521ea1b48 Evgeny Yurchenko
10:21 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface: I can confirm that I have this issue using 2.0-RC2 (i386) Mon May 30 11:06:53.
Tried to reboot from reboot.php. We... lude lude
04:45 PM Bug #1564 (New): rc.stop_packages causes reboot to only works from SSH, not from Web interface: Scott Ullrich
04:42 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface: I can confirm on snapshot May 30 11:53:52 nanobsd 4G when I remove rc.stop_packages https://github.com/bsdperimeter/p... Perry Mason
02:04 PM Bug #1564 (Feedback): rc.stop_packages causes reboot to only works from SSH, not from Web interface: Cannot replicate this issue.
Scott Ullrich
02:02 PM Bug #1564 (Resolved): rc.stop_packages causes reboot to only works from SSH, not from Web interface: As reported in the forum (http://forum.pfsense.org/index.php/topic,37258.0.html), the reboot feature doesn't work fro... Pierre ROUSSET
07:27 PM Revision a3d58a12: Use aon plugin: Scott Ullrich
07:25 PM Revision 2ba7d6f8: Add plugin features to aon edit: Scott Ullrich
04:28 PM Revision 2ea00c3e: Add missing plugin code. Move the pre_write section up a bit.: Scott Ullrich
04:02 PM Revision 3dbceb92: Include .inc files for plugin system: Scott Ullrich
02:35 PM Bug #1403: Filter Rules description do not get saved when "(quote) present as character: I've added the same syntax checks to NAT pages.
https://github.com/bsdperimeter/pfsense/commit/b45babaeb55ac039f498d... Evgeny Yurchenko
01:11 PM Revision d97ff036: Prevent races on resovlconf generation as well by adding a lock.: Ermal LUÇI
09:03 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues): Can you try with latest snapshots? Ermal Luçi
09:00 AM Bug #1545 (Feedback): Dynamic DNS updates fail on 3G connections: Please try with latest version.
Currently increasing the timeout is the best solution.
In long term possibly the ... Ermal Luçi

05/29/2011

09:44 AM pfSense Packages Bug #1563 (Closed): UPDATE: Squid errors on updating version: This is an update to http://redmine.pfsense.org/issues/1443 which will not let me edit
I am still experiencing the... Lloyd Collins

05/28/2011

04:19 PM Revision ce91583b: Merge pull request #1 from EvgenyY/6e2a15e677fa0558ba0c9b1700be38f4065a76f6: Speed/duplex select for interfaces Ermal LUÇI
10:52 AM Bug #1562 (Rejected): atheros 9280 not working: nothing we can do with ath driver issues. usually forcing the channel will work around that particular problem. Chris Buechler
10:50 AM Bug #1562: atheros 9280 not working: These are driver issue which we try to look whenever possible. Ermal Luçi
04:39 AM Bug #1562 (Rejected): atheros 9280 not working: card is detected and it is possible to create wireless devices
but if i configure the device (tested in b also g mod... Miroslav Hruska

05/27/2011

09:55 PM Revision b45babae: Bug #1403. Filter Rules description do not get saved when "(quote) present as character: Evgeny Yurchenko
05:27 PM Revision 55260532: Add note about voucher sync (only enable on slave nodes).: Scott Ullrich
05:06 PM Revision 58f963d0: Clarify auth option to include Vouchers: Scott Ullrich
04:02 PM Revision f40a03a4: Only add pppoe to the interfaces list if it both has an entry and is in server mode (i.e. not disabled.): Jim Pingle
04:02 PM Revision 685c9776: Some extra protection against putting empty values into the ruleset.: Jim Pingle
03:32 PM Revision a1b86994: Ticket #1534. Try to stop packages during reboot of system.: Ermal LUÇI
03:21 PM Revision 6e2a15e6: Hiding mediaopt under Advanced button: Evgeny Yurchenko
02:42 PM Bug #1372 (Resolved): RRD is not updating VPN statistics: Jim Pingle
02:41 PM Bug #1372: RRD is not updating VPN statistics: Verified in
2.0-RC2 (i386)
built on Fri May 27 07:59:32 EDT 2011
It is fixed now.
Thx. Sven Rubben
10:46 AM Revision 93b8df2a: Increase timeout to 2 minutes. Ticket #1545.: Ermal LUÇI
10:45 AM Revision 71070cc5: Ticket #1545. Lock each dnsHost to be updated to prevent running two instances in parallell.: Ermal LUÇI
08:24 AM Revision 224ddbad: Silence the route changing since it fills the logs with not needed info.: Ermal LUÇI
07:56 AM Revision dfb30a89: Trigger reloading of packages through check_reload_status so it can serialize the calls to not DoS the OS with processes triggered from this. Ticket #1534: Ermal LUÇI
05:06 AM Bug #1545: Dynamic DNS updates fail on 3G connections: Sorry, this happened ages ago. Didn't realise it was so quick. Here's the logs as requested. As mentioned the first u... Ross Williamson
03:52 AM Revision e5770bc2: DHCP only knows about IPv4: don't allow admins to shoot themselves with v6 addresses in the config Bill Marquette
03:28 AM Revision 13f0762d: Fix #1277: Wasn't able to remove the multicast RIPv2 discovery at startup, but
all ripv1 response's are gone now. Bill Marquette
03:02 AM pfSense Packages Bug #1561 (Resolved): HTTP traffic dies after disabling HAVP: Yesterday I've installed HAVP. I've set it up to run in transparent mode and it works fine with one exception. If I'l... Marcin Krol
02:53 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues): Disabling and re-enabling HAVP on master router causes even more severe load on backup router. It also causes other i... Marcin Krol
02:43 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues): Indeed I was using old gitsync URL. I've performed few tests yesterday on updated systems. Unfortunately applied chan... Marcin Krol

05/26/2011

11:30 PM Bug #1277 (Feedback): Rip propagation: Applied in changeset commit:13f0762d9c2f23e19eec13dc1041506c40051be8. Bill Marquette
09:43 PM Bug #1555 (Resolved): Wrong DHCP configuration option when activating "Deny unknown clients": Chris Buechler
08:51 PM Revision b75d32e5: Free ipfw rule number after mac pass-through deletion.: Ermal LUÇI
08:16 PM Revision ab731f54: Bring more consistent style to CP edit mac and ip passthrough pages.: Ermal LUÇI
07:39 PM Revision adcf909a: Just use the long reference here instead of creating potential dangerous reference.: Ermal LUÇI
01:56 PM Bug #1415 (Resolved): Nat reflection is installing rules with 'Array': OK, I'm closing this out. That other bug isn't right either, it's really just this problem too.
Start a new ticke... Jim Pingle
01:52 PM Bug #1415: Nat reflection is installing rules with 'Array': Dear Jim,
I tried, but it didn't work anyway... btw, I think this specific issue can be closed since is resolved, ma... Michele Di Maria
08:16 AM Bug #1415: Nat reflection is installing rules with 'Array': Try switching to manual outbound NAT if you haven't already, and then add an outbound NAT rule on the LAN with a sour... Jim Pingle
01:57 AM Bug #1415: Nat reflection is installing rules with 'Array': Hello,
I confirm that rules are not defined with "array" even in the case of "port alias" described above.
Anyway,... Michele Di Maria
01:41 PM Bug #1559: Static IP on interface not updating properly: Jim P wrote:
> Is this on a current snapshot? That bug was fixed a week or so ago (there is already a ticket for it,... David Miller
10:50 AM Bug #1559 (Closed): Static IP on interface not updating properly: Is this on a current snapshot? That bug was fixed a week or so ago (there is already a ticket for it, #1522, reopen t... Jim Pingle
10:35 AM Bug #1559 (Closed): Static IP on interface not updating properly: I don't know if this behavior is as desired or if it's even a new issue with 2.0 rc2.
I've found that when you c... David Miller
01:25 PM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.: Error from the IPsec log:... Jim Pingle
10:48 AM Bug #1560 (Resolved): IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.: Currently, the GUI lets you specify the same source/destination subnet more than once in the list of phase 2 definiti... Jim Pingle
12:44 PM Bug #636: layer7 not work correctly: You need to show the generated config file and you have not shown your layer7 from your config. Ermal Luçi
07:54 AM Bug #636: layer7 not work correctly: I've tested things a bit more today, and am seeing some strange behaviour. I've added some Layer7 rules, and am then ... Jonathan Puddle
11:41 AM Revision 1a6cb6e7: Remove decimals from cumulative users graph.: Warren Baker
11:11 AM Bug #651: Multiple gateways on WAN interface: Sorry!
The post is:
http://forum.pfsense.org/index.php/topic,37116.0.html Josep Pujadas-Jubany
11:11 AM Bug #651: Multiple gateways on WAN interface: Hello!
At the Spanish Forum there is an user with similar problem.
He posted images of its topology. So, its ea... Josep Pujadas-Jubany
10:08 AM Feature #1557 (Resolved): Add the Interface descriptions to the OS interface descriptions: When configuring an interface we can specify a "description" of the interface.
Unfortunately this description is not... Peter Baumann
08:37 AM Bug #1556 (Resolved): Changing local IPsec tunnel endpoint does not work: When attempting to change over a tunnel from a OPT back to the WAN interface the tunnel never came up.
The other s... Seth Mos
08:25 AM Revision 3c5e10fc: Add debugging notes so that we can easily fix this when IPv6 support is added to the pfSense module.: Remove the Accept router advertisement from all interfaces unless we enable them Seth Mos
08:14 AM Revision 668ce1f9: Increase the minimum time between generating images from 5 to 15 seconds to prevent DoS the firewall.: Seth Mos
08:13 AM Revision d67d99a1: Fix packet graph label alignment: Seth Mos
08:10 AM Revision a63f2b7d: Fix the graph label alignment: Seth Mos
07:59 AM Revision a555cc58: Fix my traffic graphs: Seth Mos

05/22/2011

02:09 PM Todo #1438: Add override for CSR request->response subject mismatch: I already forked from GitHub and I am working from there.
I should have something to merge later today. Yehuda Katz
02:01 PM Todo #1438: Add override for CSR request->response subject mismatch: Another note: Our repositories have moved from rcs.pfsense.org to github (https://github.com/bsdperimeter/pfsense), s... Jim Pingle
02:00 PM Todo #1438: Add override for CSR request->response subject mismatch: Yehuda - That option is only available to users with certain levels of access here. If you want to just add a note on... Jim Pingle
01:57 PM Bug #1318: Certificate error: certificate subject does not match signing request subject: Ermal - that is exactly what is in the works. Check ticket #1438 - this ticket can probably be closed in favor of tha... Jim Pingle

05/21/2011

09:16 PM Revision 839ee78f: Further fine tune the gif tunnel default route commands.: Seth Mos
09:14 PM Revision 69bd3cc0: Comment out the interface_gif_configure(). It is causing more issues then it is solving.: Seth Mos
08:41 PM Revision 3be49c5f: Run system_routing_configure() for all the gif interfaces when the parent interfaces renews.: Seth Mos
05:29 PM Bug #1549 (Closed): Sip INVITE dropped.: As best as I can tell so far, the issue is that SIP INVITE packets in particular are being dropped for X minutes ever... William King
03:35 PM Revision 509ca889: Adding gui to choose media options for interfaces.: Evgeny Yurchenko
02:35 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: Next snapshot should. Ermal Luçi
01:07 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: > I just fixed this. Please test new snapshots.
I just updated my installation to:
2.0-RC2 (amd64)
built on... Frank Zavelberg
11:06 AM Bug #1318: Certificate error: certificate subject does not match signing request subject: Possibly reading this link https://pkiwidgets.quovadisglobal.com/pkiwidgets/matchCertAndCSR.aspx the same procedure s... Ermal Luçi
10:14 AM pfSense Packages Bug #1533 (Closed): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Jim Pingle
05:09 AM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Please close as resolved; now installs and uninstalls with no errors. Phil Jaenke
04:09 AM Bug #1545: Dynamic DNS updates fail on 3G connections: Thanks. Just waiting for an IP change before I do as I updated to the latest build so haven't got any logs when the p... Ross Williamson

05/20/2011

08:47 PM Revision 100c7be0: Do not use global router advertisements, instead configure per interface.: Seth Mos
04:54 PM Revision abcdca83: Fixes #1386. Correct unlooping nested port aliases.: Ermal LUÇI
04:10 PM Revision aa3c4866: Correct code to use correct refernces for proxy settings set in Advanced->misc. Reported-by: http://forum.pfsense.org/index.php/topic,36939.0.html: Ermal LUÇI
04:09 PM Bug #1547 (Resolved): Config Sync causes carp backup to loose most of the System configuration: Thanks for finding the problem and confirming the fix :-)
Jim Pingle
03:44 PM Bug #1547: Config Sync causes carp backup to loose most of the System configuration: Hi,
I was just testing the latest image, I think everything is at its own place after sync... I did this test:
1) u... Michele Di Maria
10:30 AM Bug #1547 (Feedback): Config Sync causes carp backup to loose most of the System configuration: Applied in changeset commit:aa6699fbea27f15626a8901bcf34ae6bdcc3f2e5. Jim Pingle
08:57 AM Bug #1547: Config Sync causes carp backup to loose most of the System configuration: Confirmed this... On the slave, when this config change happens:
> (system): Merged in config (system sections) fr... Jim Pingle
08:10 AM Bug #1547 (Resolved): Config Sync causes carp backup to loose most of the System configuration: Hello,
with the last image (RC2, x86, built on Thu May 19 19:44:17 EDT 2011), after a config sync on the backup mach... Michele Di Maria
04:05 PM Revision f69d8346: Merge remote branch 'upstream/master': Jim Pingle
03:45 PM Revision 2a57a4d1: Correct curl setting for setting a proxy username and password. Reported-by: http://forum.pfsense.org/index.php/topic,36939.0.html: Ermal LUÇI
02:27 PM Revision aa6699fb: Fix config sync issue. Resolves #1547 Fixed-by: Ermal: Jim Pingle
01:33 PM Feature #1548 (Closed): IPSEC Secondary Gateway: It would be nice if in Phase 1 could be possible to add a second remote gateway as backup, if phase 1 with the first ... Michele Di Maria
11:00 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: Applied in changeset commit:abcdca835cbce83d72d70bb957bbbf2118ae3d01. Ermal Luçi
10:53 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: I just fixed this. Please test new snapshots.
Thanks for reporting. Ermal Luçi
02:55 AM Bug #1433 (Resolved): Config sync causes CARP state change: Ermal Luçi
02:45 AM Bug #1433: Config sync causes CARP state change: Ermal Luçi wrote:
> I have made changes on the system which should fix this.
> Please test latest snaps.
Yesterd... Michele Di Maria
02:22 AM Bug #1545: Dynamic DNS updates fail on 3G connections: Please attach dyndns and PPP logs Chris Buechler
12:41 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: With an IPSEC connection running, this is the log when I connected to the PPTP, then disconnected. After the IPSEC w... David Stumpf

05/19/2011

10:45 PM Bug #1546 (Closed): Traffic Shaper fails to handle UDP traffic: I and some others are having problems with the traffic shaper handling UDP traffic, the traffic dont pass thru the as... Guilherme Barreto
10:07 PM Bug #1545 (Resolved): Dynamic DNS updates fail on 3G connections: I'm having (and have been having for a long time with 2.0, even pre-RC) problems with the dynamic DNS service not upd... Ross Williamson
09:03 PM Revision b7d56b64: Fixes #1508. When an interface is configured as static and an up event comes manually trigger rc.newwanip so gateway and other services get restarted properly.: Ermal LUÇI
06:51 PM Revision e4aa1eae: Merge remote branch 'upstream/master': Jim Pingle
06:47 PM Revision 43a68abc: Fix clearing of PPTP/PPPoE/L2TP server raw logs. Fixes #1340: Jim Pingle
06:41 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: Please find the requested files attached.
The error occured when I create a port alias group "HR_Orion", containin... Frank Zavelberg
06:26 PM Revision 51f8a7f8: Correct password variable name for input validation test on PPTP users. Fixes #1239: Jim Pingle
06:26 PM Feature #1520: Option to disable the automatic default gateway (re)selection: Seth's referring to ESP rather than GRE there Chris Buechler
07:32 AM Feature #1520: Option to disable the automatic default gateway (re)selection: One of the issues that came up was with Racoon. Even if the default gateway came back to the WAN interface the tunnel... Seth Mos
05:35 PM Bug #1433: Config sync causes CARP state change: I have made changes on the system which should fix this.
Please test latest snaps. Ermal Luçi
05:34 PM Revision bac9941b: Reject alias names that are too long. Fixes #1510: Jim Pingle
05:30 PM Bug #1342 (Closed): kernel crash with RC1 on vmware: No more interest from the author. Ermal Luçi
05:22 PM Bug #1523: DHCP settings checks only one interface IP via ifconfig to validate settings: Well you can't have two active subnets on an interface for DHCP, so it doesn't make sense to make another tab when it... Jim Pingle
05:19 PM Bug #1523: DHCP settings checks only one interface IP via ifconfig to validate settings: Well i would like this to be closed or turned to a feature.
The way dhcpd is configured from GUI is trhough tabs tha... Ermal Luçi
05:05 PM Bug #1508 (Feedback): Wan Fai lback: Applied in changeset commit:b7d56b6412280d9dde10af0175dcc84eb75a85f2. Ermal Luçi
04:54 PM Revision 12ac39e8: Merge remote branch 'upstream/master': Conflicts:
conf.default/config.xml Jim Pingle
04:51 PM Revision dfa6deda: Fix array parsing of rc files. Resolves #1541: Jim Pingle
04:41 PM Feature #1544 (Resolved): Syslog Features: If possible would you consider adding any/all of the following features to syslog host fields in diag_logs_settings.p... Alex Vergilis
04:37 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss: K Mullin wrote:
> I have tried individual Outbound NAT rules for each OPT interface, this actually doesn't work even... K Mullin
04:24 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss: Attached are original tcpdumps of a few ICMP packets. As well as a screenshot of the Outbound NAT rules.
I have tr... K Mullin
04:10 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss: Uploads to here should be fixed. It would be helpful to see exactly how your outbound NAT rule(s) are configured.
... Jim Pingle
03:35 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss: I've tried assigning both OpenVPN instances to an OPT interfaces, this does not seem to have any effect.
Which con... K Mullin
03:03 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss: Do you have both of these OpenVPN interfaces assigned as OPT interfaces?
Seeing your full config might be helpful.... Jim Pingle
02:56 PM Bug #1543 (Closed): 2 Different Simultaneous OpenVPN Clients - Packet Loss: 2.0-RC2 (i386) (NANOBSD)
built on Sun May 15 04:00:16 EDT 2011
I'm using a recent build, and I have 2 simultaneo... K Mullin
03:08 PM Revision c1f4af16: Show the DUID instead of the MAC. Fix online test.: Jim Pingle
02:50 PM Bug #1340 (Feedback): PPTP Rar "Clear Log" button does not work: Applied in changeset commit:43a68abc9d16878cedac8ffda46fc12af5bb18ef. Jim Pingle
02:44 PM Revision bcb24b81: Misc DHCPv6 lease view improvements (at least shows the IP...): Jim Pingle
02:35 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: I have setup multiple PPTP servers on i386 within the last week, and it worked fine, including NAT out to the Interne... Jim Pingle
02:25 PM Bug #1239 (Feedback): PPTP - Assign password to a user with ñ: Applied in changeset commit:51f8a7f8d553ff4418168e9840b0f01a49e9ed6f. Jim Pingle
02:19 PM Bug #1049 (Resolved): After reinstalling packages at bootup, WebUI not accessable (NanoBSD): Closing this out. The underlying cause of the original errors have been fixed, and if there are any left they are pac... Jim Pingle
01:42 PM Bug #1535 (Closed): Special Characters in IPsec PSK can cause problems: This was something else entirely, a red herring. Jim Pingle
01:38 PM Bug #1522 (Resolved): Changing interface IP doesn't (always?) remove old interface IP: Confirmed this is fixed now. Jim Pingle
01:35 PM Bug #1510 (Feedback): Aliases names over 32 characters in length cause table problem errors: Applied in changeset commit:bac9941b5ea3fb67f7203726d426afdf84576150. Jim Pingle
01:15 PM Bug #1541: /etc/rc.start/stop_packages do not start/stop .sh files: Applied in changeset commit:dfa6dedad7a3741cc621669077304f44c2c79467. Jim Pingle
01:13 PM Bug #1541 (Feedback): /etc/rc.start/stop_packages do not start/stop .sh files: Should be fixed by https://github.com/bsdperimeter/pfsense/commit/dfa6dedad7a3741cc621669077304f44c2c79467 Jim Pingle
08:25 AM Bug #1541 (Resolved): /etc/rc.start/stop_packages do not start/stop .sh files: Hi,
foreach doesn't works after array_flip()...
=================
--- ./etc/rc.start_packages.orig 2011-05... Thomas NOEL
12:56 PM Revision 153fa447: Fix conf.default version: Jim Pingle
12:56 PM Revision a83d01d8: Fix conf.default version: Jim Pingle
12:50 PM Revision 27d0722d: Merge remote branch 'upstream/master': Jim Pingle
11:00 AM Bug #1542: Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>: created forum thread: http://forum.pfsense.org/index.php/topic,36898.0.html Epi Salamanca
10:32 AM Bug #1542 (Feedback): Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>: That error would point to your config being empty or unparseable. Look farther back in the boot log for more detail. ... Jim Pingle
10:27 AM Bug #1542 (Closed): Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>: Hi,
I've just upgraded from pfSense-2.0-RC1-i386-20110226-1530.iso
to latest snapshot (pfSense-2.0-RC1-i386-2011... Epi Salamanca
07:19 AM Bug #1540: Captive Portal Vouchers Synchronization: It is not an autocomplete problem, I did the test on several browsers and computers.
I tried to delete the credent... Toon Vandenneucker
06:51 AM Bug #1540: Captive Portal Vouchers Synchronization: Toon Vandenneucker wrote:
> I know I can't do that, but I can't make the master stop from synchronizing its database... Michele Di Maria
04:24 AM Bug #1540: Captive Portal Vouchers Synchronization: I know I can't do that, but I can't make the master stop from synchronizing its database from the slave.
Even when I... Toon Vandenneucker
03:45 AM Bug #1540 (Feedback): Captive Portal Vouchers Synchronization: it sounds like you're syncing from the slave to the master and the master to the slave, you can't do that. Chris Buechler
03:25 AM Bug #1540 (Closed): Captive Portal Vouchers Synchronization: I've set up two teaming firewalls. On the master, I've defined a voucher roll.
When I want my slave to retrieve the ... Toon Vandenneucker

05/18/2011

11:49 PM Todo #1438: Add override for CSR request->response subject mismatch: I am not quite done yet, but I was looking at this ticket and there does not seem to be a way that I can update the p... Yehuda Katz
11:31 PM Feature #1184: Certificate Manager - Ability to add nsCertType=SERVER extension to certificates: This one is a bit tricky, I've looked into it before and came up empty. There doesn't seem to be a good way to do thi... Jim Pingle
11:17 PM Feature #1184: Certificate Manager - Ability to add nsCertType=SERVER extension to certificates: +1 Request for this. I will correct though, not having ns-cert-type does not allow a MitM attack except from other VP... Rhys Rhaven
11:21 PM Bug #1437: More validation needed on CSR generation: Three places call `openssl_csr_new(...)`.
None of those have any validation.
All three are in /etc/inc/certs.inc
I... Yehuda Katz
11:09 PM Revision 2f6532d5: Fixes #1514. Differentiate in the carp settings between layer7, limiter and queues so layer7 and limiters do not rely on queues being active.: Ermal LUÇI
10:49 PM Revision 941baf1e: When uninstalling packages try to remove even any rc files created by packages.: Ermal LUÇI
10:40 PM Revision 6c19757e: Restore running custom scripts under /usr/local/etc/rc.d directory since it causes regressions and its a feature used by many users.: Ermal LUÇI
09:56 PM Revision c415a55b: Micro optimization.: Ermal LUÇI
09:54 PM Revision bb4fcffd: Fixes #1522. Call interface reconfigure so we bring down the interface and than re-configure it.: Ermal LUÇI
09:31 PM Revision f51d4f98: Ticket #1534, #1433. Remove custom sync code for vip, since it array_merge() replaces same keys data when merging. But make the code for reloading only changed vips after merge better and some more checks.: Ermal LUÇI
09:11 PM Revision 51611440: Ticket #1534, #1433. Properly merge carp interfaces and do not reload carp interfaces that have not change any configuration parameter. Also make merge_config_section_xmlrpc() an alias for restore_config_section_xmlrpc() since that what it is.: Ermal LUÇI
09:02 PM Todo #1539 (Closed): difference between git repository and this redmine repo: The repos moved to github over the weekend.
https://github.com/organizations/bsdperimeter Jim Pingle
08:48 PM Todo #1539 (Closed): difference between git repository and this redmine repo: _I know it's not really a bug, but this problem prevents me to properly follow the evolution of pfSense._
On this ... Thomas NOEL
08:56 PM Revision ce107ca5: When converting 1.2.3 LB pools to 2.0 gateway groups, strip invalid characters from the group names and update any rules referencing the old name. Fixes #1515: Jim Pingle
08:35 PM Revision ee7f1647: Correct default code disabling! Ponty-hat: myself: Ermal LUÇI
07:43 PM Revision 77b70d6b: Disable the default route switching code since its causing more issues than solving. It needs more work to get re-enabled.: Ermal LUÇI
07:10 PM Bug #1514 (Feedback): Limiters not syncing: Applied in changeset commit:2f6532d55221f86cbc717350eafb8e4404181cbd. Ermal Luçi
06:57 PM Feature #1520: Option to disable the automatic default gateway (re)selection: This has been disabled at all for now.
Switch to 2.1 as target. Ermal Luçi
01:16 AM Feature #1520: Option to disable the automatic default gateway (re)selection: from what we discussed on this previously, rather than selecting a default or not, there should be 3 options in a dro... Chris Buechler
05:55 PM Bug #1522 (Feedback): Changing interface IP doesn't (always?) remove old interface IP: Applied in changeset commit:bb4fcffd7d89b48429bae5f8913f5c17bfee6952. Ermal Luçi
05:00 PM Bug #1515 (Feedback): Upgrading from 1.2.3, Load Balancer Pool to Gateway Group needs to strip invalid characters: Applied in changeset commit:ce107ca58c61c8f166e672a5ad93fa2daee7bec4. Jim Pingle
04:53 PM Revision 7171b7b6: Fix PPTP server radius settings upgrade from 1.2.3. Fixes #1292: Jim Pingle
03:02 PM Bug #1525 (Feedback): OpenVPN passtos does not work: Committed that little patch here:
https://github.com/bsdperimeter/pfsense-tools/commit/f2b7c612a4434df1d6ac9314a2f98... Jim Pingle
08:17 AM Bug #1525: OpenVPN passtos does not work: My c is a bit rusty so it could have gone either way :-)
If that header patch does the job that is much nicer. The... Jim Pingle
07:23 AM Bug #1525: OpenVPN passtos does not work: Whatever! ;-) This is even shorter... ptos is not used anywhere else:... Torsten Vielhak
06:31 AM Bug #1525: OpenVPN passtos does not work: Are you sure? The parameter is a pointer to the address of ptos (&ls->ptos), so a cast would lead to unpredictable re... Torsten Vielhak
12:55 PM Bug #1292 (Feedback): PPTP server with Radius breaks on upgrade from 1.2.3 to 2.0: Applied in changeset commit:7171b7b65dfe9b4a93220b31d689c0fa7e1da40e. Jim Pingle
12:52 PM pfSense Packages Bug #1538 (Closed): openvpn-client-export.inc -- issue with ca.crt lookup: Jim Pingle
12:47 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup: Yes I updated to the official RC1.
So I guess it will be pushed on to the next RCx.
Mistery Solved :)
... Epi Salamanca
12:41 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup: In the current code there is already a ksort there. I assume you upgraded to the official RC1 and not to a snapshot?
... Jim Pingle
12:15 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup: I've just migrated, 2 days ago. So I imported it 1 day ago.
The issue seems to be with my ca_subject not matchi... Epi Salamanca
10:25 AM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup: How long ago did you import that certificate into a 2.0 install? I checked a CA/Cert I recently had imported into a V... Jim Pingle
09:34 AM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup: Jim,
you are right, the CA/certificate|key and server/certificate|key are both imported.
But the server/certi... Epi Salamanca
07:47 AM pfSense Packages Bug #1538 (Feedback): openvpn-client-export.inc -- issue with ca.crt lookup: If the server certificate has no caref, then the system believes it wasn't generated against any CA. If the server ce... Jim Pingle
06:59 AM pfSense Packages Bug #1538 (Closed): openvpn-client-export.inc -- issue with ca.crt lookup: Hi,
I'm currently running pfSense 2.0 RC1.
I've just installed OpenVpn-client-export package. Whenever
that I... Epi Salamanca
01:59 AM Revision 0d5c21f7: fix missing images for CRLs: Chris Buechler
01:30 AM Bug #1517 (Feedback): Captive Portal sends RADIUS output accounting packets with zero value: what version?
what you attached is an access request, no accounting packets there. Chris Buechler
01:18 AM Bug #1501 (Feedback): Captive Portal Logout popup does not work: on which version? Chris Buechler

05/17/2011

10:23 PM Revision 7eea4407: When uninstalling a service actually stop it first.: Ermal LUÇI
10:20 PM Revision b5058001: Do not call stop_service since its already called from start_service itself.: Ermal LUÇI
10:19 PM Revision b27ade8e: Test for null names passed to these functions as a safety precaution.: Ermal LUÇI
10:18 PM Revision f1dbcf47: Actually sync_package before starting it again. Also include restart in the log message since it might be like that.: Ermal LUÇI
10:14 PM Revision aed6fc72: Ticket #1534. Change rc.start_packages and rc.stop_packages to php scripts so they do a proper job at start/stop packages, rather than assume every package has a .sh script which is not true. It mostly reuses code from rc.packages which is not used anywhere as of now!: Ermal LUÇI
10:08 PM Revision 8bf2e9e5: Test for null names passed to these functions as a safety precaution.: Ermal LUÇI
09:47 PM Revision 098820e2: Ticket #1534. Check if a rc file exists before trying to run it. Also return if we execute a stop command through rc file to be consistent with the start_service function.: Ermal LUÇI
09:18 PM Revision 67d78c87: Ticket #1534. Serialize all the xmlrpc requests coming to the firewall. Seems such request can stomp into each other and create either corruption of xmlrpc request or other issues.: Ermal LUÇI
07:13 PM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Jim P wrote:
> Is this on i386 or amd64? I just tried i386 this morning and it installed fine, initialized all of th... Phil Jaenke
03:15 PM pfSense Packages Bug #1533 (Feedback): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Jim Pingle
03:15 PM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Is this on i386 or amd64? I just tried i386 this morning and it installed fine, initialized all of the KLDs, and oper... Jim Pingle
06:29 PM Bug #1534 (Feedback): rc.newwanip issues (CARP slave problems, package issues): Ermal Luçi
06:28 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues): Can you please test with latest snapshot from tomorrow and let me know.
I have done some fixes that should prevent t... Ermal Luçi
11:08 AM Bug #1534 (Resolved): rc.newwanip issues (CARP slave problems, package issues): Quoted from here http://forum.pfsense.org/index.php/topic,36802.0.html
> I've mentioned some rc.d problems in othe... Jim Pingle
06:24 PM Revision f5adee3f: Make sure all CP form elements are disabled/enabled with the master checkbox.: Jim Pingle
06:04 PM Revision a7af5ddc: Don't put an empty PSK into the file, and try to avoid extra whitespace to be safe.: Jim Pingle
04:38 PM Bug #1537 (Feedback): Openvpn Client Exporter does not clean up itself: I tried on a full install and nanobsd and each time it has cleaned up after itself.
Are you on the most current ve... Jim Pingle
03:51 PM Bug #1537 (Closed): Openvpn Client Exporter does not clean up itself: Openvpn Client Exporter does not clean up files that are used to generate the archive but only the archive itself.
Ermal Luçi
04:05 PM Feature #1536 (Feedback): Openvpn Client Exporter: Applied in changeset commit:882406aedba41f9871cde9228c79c0fba30488b8. Jim Pingle
03:44 PM Feature #1536 (Resolved): Openvpn Client Exporter: It would be nice for the Openvpn Client Exporter to be able to export dyndns configured hostnames in the config. Ermal Luçi
03:12 PM Bug #1525: OpenVPN passtos does not work: Can you try that with a cast instead of reassignment? You should be able to use (int) before that variable name for a... Jim Pingle
11:09 AM Bug #1525: OpenVPN passtos does not work: That would be great ;-) The patched file ist openvpn-2.2.0/socket.h... Torsten Vielhak
11:01 AM Bug #1525 (Needs Patch): OpenVPN passtos does not work: Jim Pingle
11:01 AM Bug #1525 (New): OpenVPN passtos does not work: Jim Pingle
11:01 AM Bug #1525: OpenVPN passtos does not work: Well if you found a workaround, even if they don't patch it, we can. Just do a diff -u file.c.orig file.c and post th... Jim Pingle
10:51 AM Bug #1525: OpenVPN passtos does not work: see ticket #135:
https://community.openvpn.net/openvpn/ticket/135
I found the problem (see ticket above). Let's s... Torsten Vielhak
01:58 PM Bug #1535 (Feedback): Special Characters in IPsec PSK can cause problems: A client-side issue seems more likely. I put special characters all over a PSK and I was still able to connect and pa... Jim Pingle
01:32 PM Bug #1535: Special Characters in IPsec PSK can cause problems: I've used a wide range of special characters too without any issues. Maybe a client side issue in this case? Or maybe... Chris Buechler
01:20 PM Bug #1535: Special Characters in IPsec PSK can cause problems: Note: I am currenlty using '%', '@' and '.' as non-letter/digit character on a 1.2.3 pfSense system, with a Juniper r... Pierre POMES
11:24 AM Bug #1535 (Closed): Special Characters in IPsec PSK can cause problems: A customer reported that having any PSK with special characters caused problems with all mobile clients connecting an... Jim Pingle
11:34 AM pfSense Packages Bug #1080 (Closed): Snort Installation fails: Scott Ullrich
11:27 AM pfSense Packages Bug #1080: Snort Installation fails: seems resolved now. Package is able to instal will no issues. Cino .
11:33 AM Bug #1509: Traffic Shaper (altq) not working with 82574L interfaces?: My MB is Supermicro X7SPA-HF, which has 2 Intel 82574L NICs built-in. They are setup for my WAN/LAN and traffic shapi... Cino .

05/16/2011

08:57 PM Revision aab2a3f6: Update default gitsync url to be the github URL. If anyone had done a gitsync before to the standard URL, they'll need to either rm /root/pfsense/ or cd /root/pfsense/pfSenseGITREPO/pfSenseGITREPO; git remote set-url origin git://github.com/bsdperimeter/pfsense.git; and then gitsync again.: Jim Pingle
08:47 PM Revision 1a137650: Fixup MAC display on this other path too: Jim Pingle
07:40 PM Revision 701989fb: Print the MAC mfg on another line in a smaller font if it's found. Less obtrusive than completely replacing the MAC.: Jim Pingle
06:57 PM pfSense Packages Bug #1533 (Closed): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall: Build 313025 of Open-VM-Tools fails to install due to an error in open-vm-tools.inc - it aborts installation due to a... Phil Jaenke
02:26 PM Revision 73bf4a46: Use base 1000 on user graphs and display cumulative of Total users logged in over the 'x' period.: Warren Baker
02:25 PM Revision 9cd72856: Ensure that $timestamp is only ever written out if it contains a value and let file be retained through reboots.: Warren Baker
02:24 PM Revision 24fa000b: Remove Total users graph this has become redundant and replaced with a cumulative result.: Warren Baker
01:08 PM Bug #1508: Wan Fai lback: For anyone watching this bug report, i've created a workaround until it gets officially fixed.
create a file /root/f... Phil Parris
10:26 AM pfSense Packages Bug #1531 (Closed): ipfw broken in 2.0-RC1: Jim Pingle
10:10 AM pfSense Packages Bug #1531: ipfw broken in 2.0-RC1: sorry for the noise.
I just came across some ipfw commands while digging for IPv6 settings and
haven't had a look ... Frank Heydlauf
07:51 AM pfSense Packages Bug #1531 (Feedback): ipfw broken in 2.0-RC1: ipfw isn't loaded by default. If you have a feature enabled that needs IPFW (captive portal, limiters, etc) it will b... Jim Pingle
04:03 AM pfSense Packages Bug #1531 (Closed): ipfw broken in 2.0-RC1: using:
8.1-RELEASE-p2 FreeBSD 8.1-RELEASE-p2 #0: Tue Apr 19 23:38:02 EDT 2011
sullrich@FreeBSD_8.0_pfSense_2.0-sn... Frank Heydlauf
09:34 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b: count my vote for it as well and one more thing i always wished the ARP table and the DHCP leases table had was the d... Bipin Chandra
09:26 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b: I have no issues either. Would it be possible to add the code from this thread for this add-on? This way you can see ... Cino .
04:38 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b: SOLVED Bipin Chandra
09:32 AM Bug #1532 (Closed): test_pfSpkg code breaks packages: Becuase the new test_pfSpkg() function gets added to each package's .inc file with the same name, the package system ... Jim Pingle
07:54 AM Bug #1525 (Closed): OpenVPN passtos does not work: Thank you for taking the time to track it down, it's really appreciated.
If you hear back anything from them, be s... Jim Pingle
05:11 AM Bug #1525: OpenVPN passtos does not work: You are right! It looks like an OpenVPN problem in the FreeBSD port. I
compiled OpenVPN 2.2.0 with FreeBSD8.1
Thi... Torsten Vielhak
06:20 AM Revision 62a29fe3: Resolves #1529. Check if the file exists before opening it.: Ermal LUÇI
04:54 AM Bug #1514: Limiters not syncing: Ah, sorry.
What we see here are the limiter rules not replicating. Slaygon Censor

05/15/2011

08:50 PM Bug #1529 (Feedback): bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b: Applied in changeset commit:4e4de1d1af14cd8849418ca46c144966a8129a4c. Ermal Luçi
10:56 AM Bug #1529 (Resolved): bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b: i get this under dhcp leases and arp table
Warning: file(/usr/local/share/nmap/nmap-mac-prefixes): failed to open ... Bipin Chandra
07:15 PM Revision dcbbcf64: Remove onlink flags: Seth Mos
02:28 PM Feature #1530: Super vlan(RFC 3069): I forgot to mention that in the post above, translated from google, the vlans from ng_vlan can be safely exchanged wi... Ermal Luçi
02:27 PM Feature #1530 (Needs Patch): Super vlan(RFC 3069): According to this forum post http://forum.pfsense.org/index.php/topic,36722.msg189344.html#msg189344 the super-vlan c... Ermal Luçi
09:58 AM Feature #1431: PPPoE LQR Echo: updated to RC2 build on 15th May .. PPPoE connection does not disconnect at all, are there any changes on the ppp mod... Calvin Teh

05/14/2011

10:44 PM Revision 325e3163: Merge branch 'master' into smos-ipv6: Conflicts:
etc/inc/pfsense-utils.inc Bill Marquette
08:31 PM Revision 3f9492a7: Remove a space, this prevents the dhcp server from starting: Seth Mos
06:02 PM Todo #1528 (Resolved): Automatic outbound NAT from localhost needs a little work: Recently Ermal added rules for automatic outbound NAT to NAT from localhost out WAN, this works fine, but switching t... Jim Pingle
04:23 PM Revision 4450527f: Fix small typo: Evgeny Yurchenko
04:23 PM Revision 57f2840e: MAC prefix to vendor resolution at Status->Interfaces, Status->DHCP leases, Diagnostics->ARP table: Evgeny Yurchenko
04:16 PM Revision 92ca10c1: Merge branch 'axscode-pfs': Bill Marquette
04:08 PM Revision 23b774e0: Merge branch 'master' into yakatz-ssl: Bill Marquette
03:48 PM Revision 2ad2758f: Merge branch 'drcookie-he.net': Bill Marquette
03:44 PM Bug #1527: route-to should not override static routes: The point of policy routing is to override the system routing table, you don't want it to care at all about the routi... Chris Buechler
10:49 AM Bug #1527 (Closed): route-to should not override static routes: As it is today route-to in pf(4) does not check for any static routes before sending the packet.
In 1.2.3 there were... Ermal Luçi
03:08 PM Revision fed025ea: Teach row_helper about ipv6, should fix issue found here:: http://forum.pfsense.org/index.php/topic,36709.0.html Bill Marquette
02:53 PM Bug #1514: Limiters not syncing: Which part of the traffic shaper are you talking about?
Layer7, limiters or queues?
Ermal Luçi
02:39 PM Revision 8ea77433: Added HE.net (dns.he.net) to the list of available dyndns services.: Chris Wells
01:59 PM Revision 4e4de1d1: Resolves #1529. Check if the file exists before opening it.: Ermal LUÇI

05/13/2011

09:27 PM Bug #1526: OpenVPN Wizard created duplicate rules: I probably did leave it checked, and users certainly can change the rules. Still it might not hurt to do a quick scan... Chad Hower
07:54 PM Bug #1526: OpenVPN Wizard created duplicate rules: If you uncheck the box that tells the wizard to create the rules on the last step, it shouldn't make them. If you unc... Jim Pingle
06:24 PM Bug #1526 (Needs Patch): OpenVPN Wizard created duplicate rules: if you tell it to add a rule, it's going to add a rule. Chris Buechler
05:43 PM Bug #1526 (Needs Patch): OpenVPN Wizard created duplicate rules: Every time the openvpn wizard is run, it creates a new *:* rule in the OpenVPN Firewall Rules. This creates a lot of ... Chad Hower
07:24 PM Revision 5e80046a: Resolves #1524. USe the correct field from netstat parsed output.: Ermal LUÇI
05:37 PM Bug #1525 (Feedback): OpenVPN passtos does not work: Chris Buechler
08:51 AM Bug #1525: OpenVPN passtos does not work: Any way to try that same test compiling it on a FreeBSD client?
It's probably a FreeBSD-specific issue, if that's ... Jim Pingle
08:49 AM Bug #1525: OpenVPN passtos does not work: Just compiled
OpenVPN 2.2.0 x86_64-unknown-linux-gnu [SSL] [EPOLL] [eurephia] built on May 13 2011
and it work... Torsten Vielhak
08:15 AM Bug #1525: OpenVPN passtos does not work: It's working with Linux OpenVPN 2.1.1 x86_64-redhat-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Jan 5 2010
w... Torsten Vielhak
08:02 AM Bug #1525: OpenVPN passtos does not work: The keyword is in the config, see below. I will try an openvpn linux client. I think setting the TOS field is very OS... Torsten Vielhak
07:55 AM Bug #1525: OpenVPN passtos does not work: Does the passtos keyword appear in your OpenVPN config in /var/etc/openvpn/ for the tunnel?
If the keyword appears... Jim Pingle
07:51 AM Bug #1525 (Resolved): OpenVPN passtos does not work: I set up an OpenVPN tunnel, everthings works fine but if I try to use the passtos option of OpenVPN, the TOS Bits are... Torsten Vielhak
05:27 PM Revision e7237dd0: Fix interface recognition for diag > arp. It was't seeing wireless interfaces properly.: Jim Pingle
05:09 PM Revision b45630bf: Fix whitespace.: Jim Pingle
05:07 PM Revision f1273b82: Sync with dhcp leases reading code.: Jim Pingle
04:25 PM Bug #1524 (Feedback): Dhcrelay not running when DHCP server not in same subnet.: Applied in changeset commit:"5e80046a6b76d79356c3c24830cccd48ff144255". Ermal Luçi
04:09 AM Bug #1524 (Resolved): Dhcrelay not running when DHCP server not in same subnet.: Hello everybody,
I found a bug : if you activate DHCP Relay and provide a DHCP server not in the network from sele... Alexis Olivier
02:25 PM Bug #1519 (Feedback): sshlockout truncates ip: Applied in changeset commit:"08212a218dff0400190dc052c5e73c9ed2fbf18b". Ermal Luçi
01:45 PM Revision 60c5d29b: Test for array before using variable as one.: Jim Pingle
11:43 AM Revision 69be9601: Merge remote branch 'upstream/master': Conflicts:
etc/inc/vslb.inc
etc/version Seth Mos
11:18 AM Bug #1508: Wan Fai lback: I see in the logs "Filter Reload" when wan comes back up. I've also ran the PfSctl -c 'filter reload' manually and i... Phil Parris

05/12/2011

06:04 PM Revision 042578fd: Fix comment: Jim Pingle
05:59 PM Revision dc073abd: Also skip the rewind binding state or leases show expired. Reported at http://forum.pfsense.org/index.php/topic,36657.0.html: Jim Pingle
05:26 PM Revision 2b094d21: This function takes two parameters, fix PHP error. Reported at http://forum.pfsense.org/index.php/topic,36648.0.html: Jim Pingle
05:03 PM Revision eb06ca8e: Revert this change. reload_all() already sends a reload message. Unfortunately there is still something else lurking that causes a delay when loading the wizard step: Scott Ullrich
03:41 PM Revision 9545fe7a: Use send_event(): Scott Ullrich
03:39 PM Bug #1523 (Closed): DHCP settings checks only one interface IP via ifconfig to validate settings: The DHCP configuration checks the IP address of an interface to ensure that the range is valid. However, it only chec... Jim Pingle
03:38 PM Revision 602e9806: Use send_message and issue the reload all operation in the background: Scott Ullrich
03:22 PM Bug #1522 (Resolved): Changing interface IP doesn't (always?) remove old interface IP: When you change the IP of an interface (ex: LAN) using the Interfaces > [name] page, the old IP remains on the interf... Jim Pingle
02:45 PM Revision 1031c9ea: Make autocomplete on the login form optional.: Jim Pingle
01:10 PM pfSense Packages Bug #585 (Closed): Unable to start the ntop service: Installed a few more times and it seems to work fine. Closing the ticket. Jim Pingle
11:28 AM Todo #1521 (New): Multipath Routing GUI Support: It would be nice to have multiple gateways for a given route with metrics that get properly respected for route prefe... Jim Pingle
11:10 AM Feature #1520 (Closed): Option to disable the automatic default gateway (re)selection: The method that moves the default gateway to another gateway when the preferred goes down is very convenient, but we ... Jim Pingle
09:46 AM Bug #1519 (Resolved): sshlockout truncates ip: Reproted here http://forum.pfsense.org/index.php/topic,36641.0.html.
There is a bug in sshlockout where the buffer u... Ermal Luçi

05/11/2011

09:03 PM Revision a1bad141: Fix IPsec descr trimming for rule labels. Ticket #1426: Jim Pingle
08:40 PM Revision b148ab81: Skip step #9 for non pfSense branded installations: Scott Ullrich
08:12 PM Revision 4bc2c676: Test for array/size before foreach: Jim Pingle
08:10 PM Revision 728003c8: Various CRL fixes, handle empty internal CRLs better.: Jim Pingle
07:26 PM Revision 51b9e41d: Reload the wizard and then redirect to a wizard completed step. Prompt the user to donate to the project.: Scott Ullrich
07:02 PM Revision 00c36201: version bump to rc2: Scott Ullrich
06:27 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: The "unrecognized route message ..." log indicates some sort of routing table change that could impact racoon. Run 'r... Chris Buechler
02:43 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: I'm also experiencing the same issue and have had to disable PPTP on our 2.0-RC1 (i386). I get the same message in t... Jason Hoch
01:18 PM Revision cd9fa56b: Fix the input validation, typo in the field name. Mark the prefix delegation range as not required.: Seth Mos
12:20 PM Revision 4edbcf6d: fix accidental linebreak to cause the pid to always return 0: Seth Mos
09:37 AM pfSense Packages Bug #585: Unable to start the ntop service: We're using the latest version of ntop from the FreeBSD ports tree.
The only other thing I can think of that might... Jim Pingle
12:56 AM pfSense Packages Bug #585: Unable to start the ntop service: I did, no way, still stops after few time...
maybe updating ntop to the latest version could help, but anyway it's ... Michele Di Maria

05/10/2011

05:29 PM pfSense Packages Bug #585: Unable to start the ntop service: One of the many joys of ntop... you might try to remove the package and reinstall it, to make sure it's got all of th... Jim Pingle
05:24 PM pfSense Packages Bug #585: Unable to start the ntop service: Hello,
on my secondary machine (CARP as backup) the service starts, but after 1 minute the service stops and I see o... Michele Di Maria
09:07 AM pfSense Packages Bug #585 (Feedback): Unable to start the ntop service: Should be OK now. Try to install/reinstall the package, save the settings, it should start. Jim Pingle
04:00 PM Feature #1518 (Rejected): Openvpn server + bridge: duplicate of #1326 Chris Buechler
03:38 PM Feature #1518 (Rejected): Openvpn server + bridge: I have this interface config on FreeBSD server, and it works ok:
#ifconfig
.....
msk0: flags=8943<UP,BROADCAST,RUN... kropalik -
12:51 PM Revision 9eafb7e2: Properly kill the dhcp6 client: Seth Mos
12:46 PM Revision 9d158467: Save the IPv6 DNS server and search domain to /var/etc/ so that system resolv conf picks it up.: Seth Mos
09:06 AM pfSense Packages Bug #1513 (Closed): Ntop: Duplicate of/same issues as #585 Jim Pingle
08:46 AM Revision c65d3051: Correct the dhcp6c function name, accept router advertisements: Seth Mos
08:42 AM Revision 1a0b04df: Add the new rc.newwanipv6 script. Needs more work. Dhcp6c client does not pass a argument. Always assuming WAN for no: Seth Mos
08:40 AM Revision 0d6dedb9: Prevent incorrect rtadvd.conf generation if the prefix is not yet set on the LAN interface: Seth Mos
05:11 AM Bug #944: Moving VLANs to lagg doesn't remove old VLANs: Bug still exists in 2.0-RC1 (amd64) build on Mon May 9 04:17:17 EDT 2011.
Tested:
# create vlan 66 on em0 -> ifco... Andreas Bochem
04:30 AM Bug #1517 (Closed): Captive Portal sends RADIUS output accounting packets with zero value: There seem to be no proper accounting for the downstream data - only upstream traffic is counted. A check with Wiresh... Mark Dammer

05/09/2011

11:16 PM Bug #1415 (New): Nat reflection is installing rules with 'Array': Chris Buechler
04:17 PM Bug #1415: Nat reflection is installing rules with 'Array': The problem looks still there when rules are applied to "port alias" with multiple entries...
The first entry of th... Michele Di Maria
09:23 PM Revision bfb3e717: Add a prefix pool for prefix delegation. Doesn't work yet. ISC dhcpd complaining about the network mask being too short.: Seth Mos
07:56 PM Bug #1516 (Resolved): EOLs are removed from advanced options in OpenVPN client overrides: That's how it has always worked. Separate statements with semicolons and they will go into the config properly. Jim Pingle
07:55 PM Bug #1516: EOLs are removed from advanced options in OpenVPN client overrides: I see now that the text below says separate by a semi colon, so its "user error". However many users will expect to s... Chad Hower
07:53 PM Bug #1516 (Resolved): EOLs are removed from advanced options in OpenVPN client overrides: OpenVPN, add a client override. Now try to add two lines of overrides in the advanced options. Save. Edit. The EOL wi... Chad Hower
09:49 AM Bug #1515 (Resolved): Upgrading from 1.2.3, Load Balancer Pool to Gateway Group needs to strip invalid characters: The Load Balancer pools on 1.2.3 had a lot looser restrictions on naming than pf does on 2.0's gateway groups.
For... Jim Pingle
08:26 AM Bug #1493: pf blocks all traffic following filter reload.: This system has 1 package listed in "Installed Packages":
Package Name: RRD Summary
Package Version: 1.1
I'll ... Aaron Roberts
04:14 AM Bug #1493: pf blocks all traffic following filter reload.: Somehow it's skipping the entire user generated rules section. The only way that entire section is skipped is if
<... Chris Buechler
07:51 AM Bug #1514 (Resolved): Limiters not syncing: Added some traffic shaping on one of our pf's, made sure Firewall->Virtual IPs->CARP Settings had "Synchronize traffi... Slaygon Censor
07:37 AM Bug #1425: pfSense stops receiving traffic on 'bge' driven interface: We are seeing this error aswell. We can safely push some 200-300 mbit of traffic, but going beyond that will stop tra... Slaygon Censor
04:16 AM Bug #1420 (Resolved): Changing a WAN's type from PPPoE to other breaks it: thanks Chris Buechler
04:09 AM Bug #1420: Changing a WAN's type from PPPoE to other breaks it: Hello
I did some tests on my 2.0-RC1 (i386) built on Thu May 5 00:36:37 EDT 2011 NanoBSD config.
1. Setup PPPo... Peter Baumann

05/08/2011

08:06 PM pfSense Packages Bug #1513 (Closed): Ntop: IN
2.0-RC1 (i386)
built on Sat May 7 22:58:48 EDT 2011
I installed ntop and ...
It does not seem possible ... Joaquim Soares Soares
11:19 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: I am trying to replicate after updating to 2.0-RC1 (amd64) built on Sat May 7 23:04:11 EDT 2011 , but i am unable to ... Harry Gonzalez
02:20 AM Revision a9392a4e: Merge branch 'master' of http://gitweb.pfsense.org/pfsense/mterron-clone into review/master: Chris Buechler

05/07/2011

11:59 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: need exact logs, copy and paste.
I don't think it's state killing related, Ermal had someone remove that and it d... Chris Buechler
10:55 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Jim P wrote:
> Just a guess here, but last I knew, PPTP issued a pfctl -k (src) -k (dst) when disconnecting, and if ... Harry Gonzalez
10:49 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Chris,
For the ipsec stuff:
If you can give me a link for a tutorial to get the ipsec working properly on ios i w... Harry Gonzalez
10:01 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Just a guess here, but last I knew, PPTP issued a pfctl -k (src) -k (dst) when disconnecting, and if the IPs involved... Jim Pingle
08:10 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: IPsec works fine with iOS devices. The free OpenVPN client on OS X works fine too, it uses the same underlying softwa... Chris Buechler
06:16 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Hi,
Im having the same problem on my pf box.
And it would appreciate if this is rise priority to high since P... Harry Gonzalez
09:40 PM Bug #845 (Resolved): Need patch for PR usb/140883: Ermal that means you need to log in.
I merged this
Chris Buechler
08:07 PM Revision c7ac47fd: Misc fixes to make the openvpn wizard stop re-creating a CA previously made via the wizard if you re-ran the wizard and chose a CA instead. Fixes #1512: Jim Pingle
05:35 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: the problem caused by removing pptp patch by Eric at 16/3. you cansolve route problem at 32 bit version by using vers... Zeev Zalessky
04:10 PM Bug #1512 (Feedback): Ghost CAs: Applied in changeset commit:"c7ac47fd2d5ad66ff69a3e46c93bf41247929bc8". Jim Pingle
12:10 PM Bug #1512: Ghost CAs: I have seen CA/Certs come back before, but hadn't tried to track it down yet. I'll look into this and see what is goi... Jim Pingle
12:06 PM Bug #1512 (Resolved): Ghost CAs: Use wizard to create an openvpn server. Delete it. Delete the CA it used and all certs. Now create a new CA or do it ... Chad Hower
11:59 AM Bug #636: layer7 not work correctly: can you do a packet trace for bittorrent?
You sure its not encrypted?
Keep in mind that these are regex from http://... Ermal Luçi
07:51 AM Bug #1493: pf blocks all traffic following filter reload.: Oops, I lied.. I see the blocked packets in "Filter Logs", sorry.
Please find attached a tarball of /tmp from a pf... Aaron Roberts
04:14 AM Revision 2635f1f5: this should be checking for synchronizetoip not pfsyncpeerip: Chris Buechler
02:51 AM Revision 9c04a8c0: passive should always be on for mobile clients per racoon man page: Chris Buechler
12:58 AM Feature #1431: PPPoE LQR Echo: tried with v1.2.3 and v2.0rc1 it still produces the same problem on the same ISP.
i tried mofifying the /var/etc/m... Calvin Teh

05/06/2011

11:22 PM Bug #1511 (Resolved): panic in pfi_dynaddr_update: some info here:
http://forum.pfsense.org/index.php/topic,36004.0/topicseen.html
I can replicate this on at least... Chris Buechler
10:48 PM Bug #1341: Removing last host from alias does not truly remove it, host continues to be affected by rules: Thank you! G D
10:00 PM Bug #1341 (Resolved): Removing last host from alias does not truly remove it, host continues to be affected by rules: this has been fixed Chris Buechler
10:05 PM Bug #1079 (Resolved): Load balancer widget doesn't work on 2.0: Chris Buechler
10:05 PM Bug #636: layer7 not work correctly: Same as several others. HTTP block is working now, but it still does nothing for BitTorrent. Seth Scardefield
10:05 PM Todo #734 (Resolved): Fix up appearance of SSH tunnel shell: Chris Buechler
10:04 PM Bug #1063 (Resolved): Load balancer status doesn't work if the virtual server name contains a '.': Chris Buechler
10:03 PM Bug #1030 (Closed): Interface case change in apinger.conf needs reverted: Chris Buechler
10:01 PM Bug #738 (Resolved): Incorrect filter.inc packages: Chris Buechler
09:57 PM Bug #942 (Resolved): dhcp relay breaks: working fine everywhere I've set it up Chris Buechler
09:53 PM Bug #1323 (Resolved): Wrong rule file generation with build "Thu Mar 3 19:27:51 EST 2011": Chris Buechler
09:53 PM Bug #1316 (Resolved): User certificates are not synced to backups via XMLRPC: Chris Buechler
09:53 PM Bug #1311 (Needs Patch): Cosmetic problem: Chris Buechler
09:51 PM Bug #1289: IPsec mobile remote access (roadwarrior) responder (server) configuration: forgot ticket in commit, change here: https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/9c04a8c07993357... Chris Buechler
09:50 PM Bug #1289 (Resolved): IPsec mobile remote access (roadwarrior) responder (server) configuration: fixed Chris Buechler
09:45 PM Bug #1252 (Resolved): bug in header.inc: Chris Buechler
09:45 PM Bug #1232 (Resolved): Unable to load dynamic library '/usr/local/lib/php/20060613/mhash.so' - /usr/local/lib/libmhash.so.2: Chris Buechler
09:44 PM Bug #1173 (Closed): RRD Graph for cellular - not working for huawei E1762: it's not supposed to work with that modem so this isn't a bug. There is a feature open to add support for more modems. Chris Buechler
09:42 PM Bug #552 (Resolved): OpenDNS dynamic dns update does not work: Chris Buechler
09:31 PM Feature #1431: PPPoE LQR Echo: Do the affected ISPs work with v1.2.3?
Do you have the "set link keep-alive ..." in /var/etc/mpd_wan.conf? Chris Buechler
09:28 PM Bug #1448 (Closed): PPTP VPN Radius authentication and accounting don't work: this isn't an actual issue, there is a separate issue for the broken checksums Chris Buechler
09:28 PM Bug #1509 (Feedback): Traffic Shaper (altq) not working with 82574L interfaces?: definitely works with em interfaces, not sure about 82574L specifically but shouldn't be different than any other. Chris Buechler
12:25 PM Bug #1509 (Closed): Traffic Shaper (altq) not working with 82574L interfaces?: I was using traffic shaper with realtek interfaces, and it always worked really well. After changing from realtek to ... Vinícius Coque
09:27 PM Revision 5b06d9cc: Reorder instructions and do not reload dns if its not allowed from the dns allow override setting.: Ermal LUÇI
09:23 PM pfSense Packages Bug #668 (Resolved): Snort does not deinstall properly: Chris Buechler
09:22 PM pfSense Packages Bug #854 (Resolved): Unable to access web config interface for package NRPEv2: Chris Buechler
09:22 PM pfSense Packages Bug #945 (Resolved): vhosts package in pfsense 2.0: Chris Buechler
09:21 PM pfSense Packages Todo #767 (Resolved): Update pfflowd: this was implemented a while back plus some additional enhancements Chris Buechler
09:19 PM pfSense Packages Bug #1314 (Resolved): Typo in snort package /s/viwed/viewed: fixed Chris Buechler
09:17 PM pfSense Packages Bug #1117 (Resolved): TinyDNS-- Warning: Invalid argument supplied for foreach() in /usr/local/www/pkg.php on line 241: fixed a while back Chris Buechler
09:14 PM pfSense Packages Bug #1094 (Resolved): Clicking pfSense logo start deinstall/reinstall of HAVP package: Chris Buechler
09:13 PM pfSense Packages Bug #550 (Closed): "Frickin" 2.0 package does not install properly.: package no longer exists Chris Buechler
09:12 PM pfSense Packages Bug #578 (Resolved): Snort to OpenVPN menu navigation: Chris Buechler
09:11 PM pfSense Packages Bug #1065 (Resolved): error after rules installation: Chris Buechler
09:11 PM pfSense Packages Bug #1157 (Closed): Open VMware Tools installed, enable VMXNET2 interface -> crash pfSense: this is probably fixed with the most recent package. If not, it's not our bug, it's in some other component we can't ... Chris Buechler
09:09 PM pfSense Packages Bug #844 (Resolved): Open VM Tools Won't install: this is fixed Chris Buechler
09:09 PM pfSense Packages Bug #1385 (Resolved): Open-VM-Tools not working anymore: fixed, more under #1423 Chris Buechler
09:08 PM pfSense Packages Bug #1423 (Resolved): Open-VM-Tools package script files broken in 2.0rc-1: Chris Buechler
08:08 PM pfSense Packages Bug #1423: Open-VM-Tools package script files broken in 2.0rc-1: Looks good here as well.
Thanks guys! John Doe
08:07 PM pfSense Packages Bug #1423: Open-VM-Tools package script files broken in 2.0rc-1: Looks good here as well.
Thanks guys! John Doe
04:59 PM pfSense Packages Bug #1423 (Feedback): Open-VM-Tools package script files broken in 2.0rc-1: After Scott's last set of changes, I tried this on both 32-bit and 64-bit VMware pfSense 2.0 VMs and the tools instal... Jim Pingle
09:02 PM Revision 978cf4fd: Actaully put the route adding under the conditional logic checking. Ticket #1408.: Ermal LUÇI
08:55 PM Revision 114a9292: If we are disabling the radius inputs, also disable the secondary radius inputs.: Jim Pingle
08:55 PM Revision c07b2675: This field should be server2: Jim Pingle
08:36 PM Revision ac655e1b: Use the availble constant on php for this and also the right value that comes with it since PHP never supported u_int. There is a bug open still on PHP about bcmod but some more info is needed.: Ermal LUÇI
07:36 PM Revision 6f5ed6f0: Reorder where inetd gets started to after where the package rules are generated, so that a package can add a line to inetd.conf using that process.: Jim Pingle
07:05 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: I use pfSense 2.0 RC1 i386 with multi-WAN in my production environment, I meet the same issue. Is there any solution ... Shadow Hwang
01:10 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: The problem is related to 64 bit only. Zeev Zalessky
01:08 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: I should also mention, I do not have multi-WAN setup. So this issue does not appear to be limited to multi-WAN setups. David Prinzing
01:07 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: I am unable to get the most modern 2.0 RC1 amd64 build to route PPTP VPN traffic to the web. Version 1.2.3 works fin... David Prinzing
06:43 PM Bug #1510 (Resolved): Aliases names over 32 characters in length cause table problem errors: If one creates an alias with a name over 32 characters, it will cause table name problems when trying to use the alia... Bill McGonigle
05:27 PM Bug #747 (Resolved): Root schedulers (ie PRIQ) cannot be configured on interfaces that don't report bandwidth: Ermal Luçi
02:47 PM Bug #1507: openvpn.inc Local line in openvpn.inc failover: It seems I missed the Any on the local interface selection in the client config. This can be closed.
Thank You Phil Parris
02:21 PM Bug #1507: openvpn.inc Local line in openvpn.inc failover: it is updated when the interface is changed. It is required for the client config in multi-WAN scenarios. Chris Buechler
07:37 AM Bug #1507: openvpn.inc Local line in openvpn.inc failover: When you failover to opt1 the client configuration is not updated with opt1's ip address. I'm not expecting existing... Phil Parris
02:39 PM Bug #1151: Outgoing pptp Traffic-Flow stops after a while: I use now the version '2.0-RC1 (i386) built on Thu May 5 18:22:32 EDT 2011' and it's still the same behavior, the tra... George M
02:19 PM Revision de06b5b7: Enable debugging for the dhcp6c client so we can better track if it's working right: Seth Mos
01:08 PM Revision 000d9e71: Add the ipv6 allow tag to the default config.: Add a default allow rule for the LAN with IPv6
Add a dhcp-pd sla-id of 0 for the WAN.
Add a dhcp-pd length of 0 for t... Seth Mos
12:36 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: I would need the /tmp/rules.debug
also the port alias section from config.xml Ermal Luçi
12:09 PM Revision ed395640: Add DHCP-PD support if the WAN interface is set to DHCP.: Select a DHCP-PD prefix length in correspondence with your ISP. If set to "none" it will not be requested and normal ... Seth Mos
02:19 AM Bug #1508: Wan Fai lback: Could be the same thing I see on my wan2. When I look in /tmp/rules.debug gateways hasn't recovered. In a shell scrip... Perry Mason

05/05/2011

08:47 PM Revision f02c3e1d: Misc OpenVPN CRL selection fixes.: Jim Pingle
08:41 PM Revision 93a138ab: Add a field for the prefix pools. Fix the DUID check: Seth Mos
08:27 PM Revision a59831e7: If we have deleted the last cert from the CRL, blank out the text.: Jim Pingle
08:14 PM Revision 461aa9d0: When deleting a CA, delete its associated CRLs.: Jim Pingle
07:56 PM Revision 85936586: Enable accidentally commented out dhclient command for ipv4: Charlie
07:46 PM Revision 0d8562ed: Fix the parse error, missing bracket.: Charlie
07:29 PM Revision 7149c4e7: Add backend support for the dhcp v6 client: Seth Mos
06:42 PM Bug #1508: Wan Fai lback: Changing anything in the web interface to do with gateways makes the system failback but this is a manual process.
... Phil Parris
06:39 PM Bug #1508: Wan Fai lback: Subject should say "Wan Fail Back" Phil Parris
06:39 PM Bug #1508 (Resolved): Wan Fai lback: When the WAN interface has a static ip and the system fails over the gateway to a tier2 opt1 interface it will not fa... Phil Parris
06:35 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters: What feedback exactly would you require? I was of the impression that I described the "procedure to reproduce the pro... Frank Zavelberg
05:18 PM Bug #1386 (Feedback): Nested port aliases causes "Unknown port" error upon loading filters: Can you please give more detail on this?
Seems not many people havie seen this! Ermal Luçi
06:32 PM Bug #1507 (Rejected): openvpn.inc Local line in openvpn.inc failover: to change an OpenVPN client from WAN to OPT1 you have to change its config from WAN to OPT1, there is no failover of ... Chris Buechler
06:27 PM Bug #1507 (Rejected): openvpn.inc Local line in openvpn.inc failover: if (!empty($iface_ip)) {
$conf .= "local {$iface_ip}\n";
}
in /etc/inc/openvpn.inc c... Phil Parris
05:50 PM Bug #1493: pf blocks all traffic following filter reload.: pftop shows only traffic being passed, not blocked. check /tmp/rules.debug and the loaded rulesets and other info in ... Chris Buechler
12:19 PM Bug #1493: pf blocks all traffic following filter reload.: Hi, can you let me know what information would be useful?
At present, the only system logs immediately preceding f... Aaron Roberts
02:08 PM Bug #636 (Feedback): layer7 not work correctly: I pushed this https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/99030511af941f6679b15a8920e720486... Ermal Luçi
12:58 PM Feature #1506 (New): Notifications should spool: If the firewall can't connect to the mail server notifications fail and never attempt to notify again. A nice featur... Phil Parris
12:55 PM Bug #1505 (Closed): usb 3g 760 modem doesn't respond: The first time you insert the 3g modem it will work properly, if you disconnect or soft reboot ppp can't connect stat... Phil Parris
12:52 PM Feature #1504 (Closed): Verizon 3g usb760: Pfsense is not ejecting the cdrom when you insert/boot a verizon usb760 3g card. Without ejecting the cd-rom you don'... Phil Parris
11:50 AM Revision e7230cb3: Add firewall rules so that the DHCPv6 replies can come back in: Seth Mos
10:23 AM Revision 5fd3cb92: Ticket #CZH-831780. If gif(4) is part of a bridge and its mtu is smaller than 1500(ethernet standard) do not consider it in finding the smaller mtu because we have a patch to allow gif(4) be member of a bridge with smaller mtu. See https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/commits/67d3135722db4a3c911761ead5c881ccaef02c65 for details.: Ermal LUÇI
08:18 AM Bug #1502: web interface needs to be manually started: when RC1 boots the web interface does not come up (at least here).
Once I see the LCD display come alive I then have... Leon Zetekoff
08:16 AM Bug #1502 (Closed): web interface needs to be manually started: That is definitely not normal, but there is not enough information here to reach any kind of conclusion. Please post ... Jim Pingle
08:14 AM Bug #1502 (Closed): web interface needs to be manually started: it seems since I switched to using rc1 when PFSense is rebooted I have to ssh in and then restart the web configurato... Leon Zetekoff
08:18 AM Bug #1503 (Closed): autoupdater and reboots: That is also not normal behavior, and not something that anyone else has seen that I'm aware of. Between your previou... Jim Pingle
08:16 AM Bug #1503 (Closed): autoupdater and reboots: seems that the autoupdater may not be rebooting and shutting down instead. Also, the web interface keeps showing that... Leon Zetekoff
07:07 AM Revision c495f88b: Add the dhcp6 client into the backend code. Needs scripts for up down events also.: Seth Mos
05:02 AM Bug #1501 (Closed): Captive Portal Logout popup does not work: The logout popup for the captive portal does not work. People can still use the network and RADIUS is getting its acc... Mark Dammer

05/04/2011

11:39 PM Revision 4a916dc8: Timeout is either a global option and/or a table stanza option. For now made it a global option.: For the future each pool should probably have a configurable timeout. Warren Baker
09:54 PM Revision 8b1e7d04: Correct wrong key for checking if a interface type switched. Ticket #1420: Ermal LUÇI
09:31 PM Revision 56da23dc: Fixes #1394. Create a function get_itnerface_default_mtu and use it for resetting the mtu of a interface to default when needed. This adds the overhead of fetching the interface mtu and comparing with the default one every interface configuration run.: Ermal LUÇI
07:42 PM Bug #1235 (Feedback): pfsense 2.0 load balancing with a https monitor seems to default timeout 200ms causing constant timeouts: I have added a patch for this but for now made this a global option. We should, at a later stage add the option for c... Warren Baker
02:25 PM Bug #1235: pfsense 2.0 load balancing with a https monitor seems to default timeout 200ms causing constant timeouts: Did some quick tests: The timeout option is only valid as a global config or in the table stanza, not in a redirect ... John Welter
02:17 PM Bug #1235: pfsense 2.0 load balancing with a https monitor seems to default timeout 200ms causing constant timeouts: I have confirmed this issue. The default relayd timeout of 200ms is being used even with a timeout specified inside ... John Welter
07:18 PM Feature #1492: Captive Portal Interim Updates: Not sure we want to expose this for 2.0, potential for fallout since that's never been exposed, though it's probably ... Chris Buechler
09:44 AM Feature #1492 (Resolved): Captive Portal Interim Updates: Currently there is nothing in webGUI to configure how often Captive Portal pruning should be executed. So the default... Warren Baker
07:14 PM Bug #1493 (Feedback): pf blocks all traffic following filter reload.: not enough info to do anything with this. Definitely not a universal issue, maybe something specific to KVM or someth... Chris Buechler
12:17 PM Bug #1493 (Resolved): pf blocks all traffic following filter reload.: Version: 2.0-RC1 (i386) built on Tue Apr 19 23:03:17 EDT 2011
Hardware: /usr/libexec/qemu-kvm -S -M rhel5.4.0 -cpu... Aaron Roberts
05:58 PM Revision 131f3a50: Disable this log message, as it can be extremely spammy in the logs.: Jim Pingle
05:52 PM Bug #1420 (Feedback): Changing a WAN's type from PPPoE to other breaks it: Test latest snapshots. Ermal Luçi
05:42 PM Bug #636: layer7 not work correctly: @Jonathan,
can you show any picture of your configuration and the system log with the relevant layer7 logs(they sh... Ermal Luçi
03:48 PM Bug #636: layer7 not work correctly: Okay,
On image 2.0-RC1 (i386)
built on Tue May 3 10:51:27 EDT 2011
Confirmed that it works as previous comme... Rob Lister
09:20 AM Bug #636: layer7 not work correctly: I haven't tried any advance layer 7 rules yet but I do agree with Jonathan that a simple rule to block traffic(I bloc... Cino .
05:22 AM Bug #636: layer7 not work correctly: I've tested with a snapshot from the evening of the 3rd. It appears to be partially working now. If I create a simple... Jonathan Puddle
05:30 PM Bug #1394 (Feedback): MTU does not reset: Applied in changeset commit:"56da23dc5ffebdb6cf52f3b46abebc0ef56e9861". Ermal Luçi
02:58 PM Bug #1494 (Closed): Limiter does not apply to active FTP: The only way to do active FTP work is enabling functionality ftp.proxy.handle which brings the problem of not applyin... Alvaro Albani Costa
12:26 PM Revision a9543eae: Remove the dhcp6 type, add the DUID field to the dhcp config.: Seth Mos
10:50 AM Feature #1489: Can't configure PPPoE over VLAN: Howdy Mr. Stretz,
It is possible to do what you want without changing code, but it requires an extra step.
You ca... Marcus Brown
09:49 AM Feature #1489 (New): Can't configure PPPoE over VLAN: Marking item as future as this is a legitimate problem.
Scott Ullrich
05:37 AM Feature #1489: Can't configure PPPoE over VLAN: I'm confused. You write "for now" though close this bug. Does that mean forever? I had a look at the code and with... Malte Stretz
10:07 AM Revision cfd2ca3c: Remove stray debugging lines in VPN: Seth Mos
10:06 AM Revision 776603cd: Remove debugging: Seth Mos
08:58 AM Revision 2fb056d8: More DHCPv6 server fixes, split the function out into seperate v4 and v6. Make the router advertisement stand alone on the dhcp server page.: Seth Mos
07:05 AM Bug #1491 (Closed): Optional interface problem pinging LAN interface static IP's: Please use the forum at http://forum.pfsense.org/ for support questions, and post as much detail there in a thread as... Jim Pingle
06:48 AM Bug #1491 (Closed): Optional interface problem pinging LAN interface static IP's: There are 3 interface, WAN(pppoe),LAN and WLAN(optional wireless AP).
DHCP server is turned on on all interfaces.
O... Tihomir Kisicek
03:30 AM Bug #845: Need patch for PR usb/140883: Only owners can process and verify merge requests! Ermal Luçi
02:12 AM Bug #845: Need patch for PR usb/140883: merge request for this: https://rcs.pfsense.org/projects/pfsense-tools/repos/mainline/merge_requests/72
Chris Buechler
12:19 AM Bug #1486 (Resolved): relayd does not set sticky-address option when set in advanced/misc: Chris Buechler

05/03/2011

11:04 PM Bug #1486: relayd does not set sticky-address option when set in advanced/misc: I tested the Tue May 3 11:16:02 EDT 2011 and the bug is fixed. Thanks for the quick turn around! John Welter
04:30 AM Bug #1486: relayd does not set sticky-address option when set in advanced/misc: There was a typo s/conf/config/ - this has been fixed.
Applied in change set commit:327ef8eb3244f79e1b669dca792c83... Warren Baker
12:48 AM Bug #1486: relayd does not set sticky-address option when set in advanced/misc: Unfortunately this still doesn't fix the issue. I tested and (isset($conf['system']['lb_use_sticky'])) returns false... John Welter
07:20 PM Revision ab1047d4: Make sure to send both the managed and other config flags.: Seth Mos
12:55 PM Feature #1489 (Closed): Can't configure PPPoE over VLAN: Its the way it works for now.
So please assign your vlan and choose the assigned interface as parent. Ermal Luçi
07:44 AM Feature #1489 (Closed): Can't configure PPPoE over VLAN: I currently have to run a PPPoE link over a 802.1Q tagged VLAN (don't ask...). When I go to [[http://10.49.1.1/inter... Malte Stretz
12:25 PM Bug #1402: When creating a QinQ it works until reboot.: Im just trying to connect two pfsense and pass into a parent vlan 2 vlans.
!qinq.jpg! Juan José Ponce Domínguez
10:20 AM Bug #1488: "There are no packages currently installed." is a lie: Looks like all packages failed to reinstall for some reason, so I guess the problem isn't/wasn't in the packages but ... Malte Stretz
10:12 AM Bug #1488: "There are no packages currently installed." is a lie: That is because a package failed to reinstall, which is not related to this. If a package fails during the reinstall ... Jim Pingle
10:04 AM Bug #1488: "There are no packages currently installed." is a lie: But anyterm and darkstat are still packages, right? I still have their entries in the menu (though they are broken d... Malte Stretz
09:02 AM Bug #1488 (Closed): "There are no packages currently installed." is a lie: OpenVPN is not a package on 2.0, it's part of the base system. OpenNTPd is also part of the base system, even if it i... Jim Pingle
07:28 AM Bug #1488 (Closed): "There are no packages currently installed." is a lie: I upgraded from 1.2.3 nanobsd to 2.0-rc1 (currently a snapshot built on Mon May 2 21:11:55 EDT 2011).
The package ... Malte Stretz
10:06 AM Feature #1490: The Package Manager should hide packages for old platforms per default: Ah, ok, that wasn't obvious from the output. I'd suggest changing the string "platform:" to "minimum version:". Malte Stretz
08:56 AM Feature #1490 (Closed): The Package Manager should hide packages for old platforms per default: that's the minimum version, if they aren't compatible they aren't in 2.0's package lists. Chris Buechler
08:19 AM Feature #1490 (Closed): The Package Manager should hide packages for old platforms per default: A quick glance at the list of Available Packages in the Package Manager shows a lot of packages. But most of these p... Malte Stretz
08:12 AM Revision 0130b756: Some more whitespace fixes.: Warren Baker
08:09 AM Revision dcb846e3: Merge remote branch 'upstream/master': Conflicts:
usr/local/www/status_rrd_graph_img.php Seth Mos
08:07 AM Revision 327ef8eb: Use correct config variable and fix some whitespaces.: Warren Baker
03:40 AM Bug #1487 (Rejected): INTERNET PROBLEM: this is not a support site and not a valid bug report, use the forum or mailing list. Chris Buechler
03:03 AM Bug #1487 (Rejected): INTERNET PROBLEM: We are using pfsense as a software & firewall.We have lot of windows & linux mechines.Yesterday i reinstalled the pfs... Nikhil Subramanian

05/02/2011

10:26 PM Revision 8c218e1d: Give time to filterdns to exit gracefully and after that start a new process.: Ermal LUÇI
10:04 PM Revision 9b0ddd8c: Resolves #1486. When sticky option is selected under advanced->misc honor it even in the relayd.conf setting.: Ermal LUÇI
08:57 PM Revision 0b1321e2: Bring back the optimization on max-packets at pf(4) level now that the issues with daemon have been identified.: Ermal LUÇI
08:57 PM Revision 81e14406: Bring back the optimization on max-packets at pf(4) level now that the issues with daemon have been identified.: Ermal LUÇI
08:57 PM Revision 2dc14ea2: Now that layer7 daemon issues are resolved bring back this optimization.: Revert "Do not write ont rules anymore max-packets. This apparently was done by me in a previous commit, it helps wit... Ermal LUÇI
08:52 PM Bug #1485 (Resolved): WebUI password changes do not change shell and VPN passwords: thanks Chris Buechler
01:43 PM Bug #1485: WebUI password changes do not change shell and VPN passwords: Thanks for quick fix! It works.
I updated to 2.0 RC1 built Fri Apr 29 21:19:09 EDT 2011. I changed the privileges ... Anton Cohen
07:32 PM Revision b01adece: Set default colors explicity, the theme can then override them. This prevents missing colors in themes from crashing the graphs.: Jim Pingle
06:36 PM Revision 49825b17: If the rrd multiplier is negative, use 5% for out instead of 95% for the 95th percentile line.: Jim Pingle
06:05 PM Bug #1486 (Feedback): relayd does not set sticky-address option when set in advanced/misc: Applied in changeset commit:"9b0ddd8cf37fbf4e453d476a985f00e36bbb0861". Ermal Luçi
04:47 PM Bug #1486 (Resolved): relayd does not set sticky-address option when set in advanced/misc: When the sticky session flag is set in advanced/misc and then a relayd pool setup the sticky-session option is not se... John Welter
05:02 PM Bug #636: layer7 not work correctly: I put a patch yesterday in the layer7 daemon used for classification.
It was forgetting the protocols during reload.... Ermal Luçi
04:53 PM Revision 3bae60be: Add a newline to the igmpproxy config to resolve issues of it not parsing correctly the file. Reported-by: http://forum.pfsense.org/index.php/topic,36279.0.html: Ermal LUÇI
11:00 AM Bug #1402: When creating a QinQ it works until reboot.: Usually it will be needed for the QinQ vlan, 1000 3000, in your case.
I cannot answer to you without a clear descr... Ermal Luçi

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

05/30/2011

05/29/2011

05/28/2011

05/27/2011

05/26/2011

05/25/2011

05/24/2011

05/23/2011

05/22/2011

05/21/2011

05/20/2011

05/19/2011

05/18/2011

05/17/2011

05/16/2011

05/15/2011

05/14/2011

05/13/2011

05/12/2011

05/11/2011

05/10/2011

05/09/2011

05/08/2011

05/07/2011

05/06/2011

05/05/2011

05/04/2011

05/03/2011

05/02/2011