Project

General

Profile

Activity

From 05/15/2011 to 06/13/2011

06/13/2011

08:41 PM Feature #1599 (Duplicate): Browser detection for captive portal
I am using pfSense on a old computer with 4 network cards in a small hotel. It has two incoming lines that have now b... Svein Wisnaes
06:16 PM Revision 63f81fbd: Do not assume that every merge is about vips. Found-by: Jim
Ermal LUÇI
03:04 PM Revision 19ed1624: unset after checking that no reconfiguring is needed.
Ermal LUÇI
02:32 PM Bug #1598 (Resolved): IP Alias VIP configured on a CARP VIP, resets CARP VIP on sync
Found while looking at #1534 but is really a separate issue, so I'm splitting it off into a new ticket.
Prerequisi... Jim Pingle
01:51 PM Feature #1597 (Closed): FTP-Data
ftp-data is the source port on data transmissions, and too many people think it's a required destination port. That w... Chris Buechler
01:47 PM Feature #1597 (Closed): FTP-Data
It would be nice if you could add FTP-Data as a protocol in the firewall rule and nat rule drop down for source and d... Michael Miller
12:34 PM Revision b09c2d86: Do not call time() uselessly every time for each entry. Instead just snapshot it and use it in calculations. This helps performance and useless paranoic time fetching since every 60 seconds the code will be executed again.
Ermal LUÇI
12:22 PM Revision 48de5a10: Do not test for availbility of voucher session_timeout in the database it is mandatory for vouchers. This will make sure that if ever a corrupted db happens a user will be required to relogin and correct the db. Possibly related to: http://forum.pfsense.org/index.php/topic,37636.0.html
Ermal LUÇI
09:07 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
I do not know the state of the IPv6 code but can you try with latest snapshot of pfSense since there were some binary... Ermal Luçi
08:53 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
I've upgraded to 2.0-RC2-IPv6 (amd64) built on Sat Jun 11 23:14:29 EDT 2011. Had severe problems with this update. Af... Marcin Krol
02:30 AM pfSense Packages Bug #1561: HTTP traffic dies after disabling HAVP
Just a note. Even rebooting router with HAVP disabled doesn't bring HTTP traffic back. Only re-enabling HAVP helps. S... Marcin Krol
01:45 AM pfSense Packages Bug #1596 (Closed): Snort And PfseError
duplicate of #1590
Chris Buechler

06/12/2011

02:10 PM Revision f8c462dd: Allow packages to specify that their tabmenus should not be a drop-down list by using a <no_drop_down/> tag.
Warren Baker
06:26 AM Bug #1327 (Resolved): RFC 2136 dynamic dns bug
Ermal Luçi
06:24 AM Bug #1586 (Feedback): vouchers saved to XML config every 5 minutes even though no new vouchers have been activated
Ermal Luçi
12:51 AM Revision 424be584: Allow someone to add a host DNS override twice, so long as the IP type isn't the same. Lets you add a host override for both IPv4 and IPv6 for the same hostname.
Jim Pingle
12:49 AM Revision 06da79f9: Merge remote-tracking branch 'upstream/master'
Jim Pingle

06/11/2011

05:41 PM pfSense Packages Bug #1596 (Closed): Snort And PfseError
my english is very very bad
BUT in Pfsense 2.0-RC2 (i386)
built on Fri Jun 10 21:02:50 EDT 2011
Snort afer... Joaquim Soares Soares
03:20 PM Feature #1594: numbers in "Interface Group" names
That is a limitation of the OS, not just the GUI. I know they cannot end in a number, and for simplicity's sake it's ... Jim Pingle
03:07 PM Feature #1594 (Closed): numbers in "Interface Group" names
I created an interface group, and it would only let me use alpha characters in the name, it would be nice to use numb... J Hyde
05:15 AM pfSense Packages Bug #1590: Snort Will Not Start
In the latest release of pfsense 2.0-RC2 I can't get Snort to start.
While my console output is the same as listed ... Andrew Mitchell

06/10/2011

08:02 PM Revision 5ebe85e9: Fixes #1327. Trigger synching of vouchers to config through check_reload_status. Retire the saveinterval option since it is not useful anymore. Use the prune process of captiveportal to sync vouchers as well to fix issues as reported-by: http://forum.pfsense.org/index.php/topic,37636.0.html
Ermal LUÇI
07:20 PM Revision b9eccc77: Fixes #1327. Put description that a full qualified hostname is required.
Ermal LUÇI
04:37 PM Revision de408516: Merge remote branch 'upstream/master'
Jim Pingle
04:36 PM Bug #1399: rrdtool respawning too fast
at a minimum should get rid of the log message at some point Chris Buechler
03:10 PM Bug #1399: rrdtool respawning too fast
This seems to be an assumption made from apinger that after an error occured you cannot respawn rrdtool faster than 3... Ermal Luçi
04:19 PM Revision dd28abbd: Ticket #1545. Ooops pass parameter so the dyndns works correctly. Pointy-hat: Copy/pasto
Ermal LUÇI
04:05 PM Bug #1327: RFC 2136 dynamic dns bug
Applied in changeset commit:5ebe85e9344abfe52f3dced34c8e4515b8a8d293. Ermal Luçi
03:20 PM Bug #1327 (Feedback): RFC 2136 dynamic dns bug
Applied in changeset commit:b9eccc77815a3e9d4913fcad8f7c474291e9f67a. Ermal Luçi
02:18 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
That is a known issue. Fixed in the next snapshot (building now) try again with that. Jim Pingle
02:16 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
After upgrade I'm now on 2.0-RC2-IPv6 (amd64) built on Fri Jun 10 01:43:14 EDT 2011 and its even more broken. Whateve... Marcin Krol
12:18 PM Bug #1591 (Resolved): Sync issues on June 8 Snapshot
closefrom(0) patch added some days before imapcted this. Ermal Luçi
12:31 AM Bug #1591: Sync issues on June 8 Snapshot
2.0-RC2 (i386) built on Thu Jun 9 19:52:30 EDT 2011
When you switch between HTTP and HTTPS in System: Advanced: Admi... Evgeny Yurchenko
12:17 PM Bug #1545: Dynamic DNS updates fail on 3G connections
My fault fixed it. Ermal Luçi

06/09/2011

05:08 PM Bug #1593 (Rejected): SSH login halts for a long time then disconnects
not a legit bug report, please post to the forum or mailing list Chris Buechler
03:53 PM Bug #1593 (Rejected): SSH login halts for a long time then disconnects
Whenever I try to ssh my pfsense router I wait a long time then the router disconnects me.
Running recent upgrade ... David Bender
10:12 AM Bug #1591 (Resolved): Sync issues on June 8 Snapshot
Since the changes to check_reload_status yesterday, a primary is not syncing its config to a secondary. It's acting a... Jim Pingle

06/08/2011

09:33 PM Revision 7401c8c4: Allow OpenNTPD to listen on Virtual IPs, not just interfaces. Fixes #342
Jim Pingle
09:13 PM pfSense Packages Bug #1590 (Resolved): Snort Will Not Start
Hello all-
I just upgraded my pfsense firewall (from a snap on Tuesday May 31 to a snap today 2.0-RC2 (amd64) buil... Mike Binkowski
07:53 PM Revision c7422829: Fixes #1341. If a table has not entries it is marked as persist and pf(4) does not clear its contents. Schedule a table flush for these tables after filter reload to make sure an entry is not forgotten.
Ermal LUÇI
06:47 PM Bug #1545: Dynamic DNS updates fail on 3G connections
Thanks, but not working. It is now not even updating on boot. The only way I can get it to update is to manually remo... Ross Williamson
06:22 PM Revision 92ca32cc: Actually make this code more readble.
Ermal LUÇI
06:21 PM Revision d1e03822: Remove the entry from old entries even when there are no changes to prevent marking them down.
Ermal LUÇI
06:16 PM Revision 3c3cd07e: Merge remote branch 'upstream/master'
Jim Pingle
06:15 PM Revision 578f20ec: Actually correct vip check to be correct for all vip types.
Ermal LUÇI
06:13 PM Revision 156bf9b1: Merge remote branch 'upstream/master'
Jim Pingle
05:35 PM Bug #342 (Feedback): OpenNTPD can only listen on interface IP
Applied in changeset commit:7401c8c451e33a5f5fd38e934760e1b855fee822. Jim Pingle
04:47 PM Bug #1514 (Resolved): Limiters not syncing
Since no complain received i am marking this as solved. Ermal Luçi
04:46 PM Bug #1394 (Resolved): MTU does not reset
The same issue exists for the mac address.
Possibly a fix for mac addresses should be done on 2.1 Ermal Luçi
04:44 PM Bug #1410: pfSense remains without default route
I am moving this to 2.1 for improving.
For 2.0 the option under system->advanced should be enough. Ermal Luçi
04:41 PM Bug #1403 (Closed): Filter Rules description do not get saved when "(quote) present as character
It happened to me in a VM.
Not really sure on the circumstances, though if i can reproduce again i will check more t... Ermal Luçi
03:55 PM Bug #1341 (Feedback): Removing last host from alias does not truly remove it, host continues to be affected by rules
Applied in changeset commit:c7422829b2a76301d2efbe0aa01e3dcfcce3012f. Ermal Luçi
03:53 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Latest snapshot has more fixes in this regard. Ermal Luçi
03:18 PM Bug #1552: DNS Reject Rule Crashes Router
Evgeny you need fragments to trigger this panic. Ermal Luçi
02:54 PM Revision 0042f5d9: Send correct event for reloading packages.
Ermal LUÇI
02:49 PM Bug #1588: HAVP dashboard widget broken by June 7 build
Yes, it reinstalls all packages on every update. Jim Pingle
02:49 PM Bug #1588: HAVP dashboard widget broken by June 7 build
Indeded, removing and re-installing the package fixed that. Does pfSense remove and re-install all packages every tim... Bryan Agee
01:12 PM Bug #1588 (Rejected): HAVP dashboard widget broken by June 7 build
Looks like that file doesn't exist, which means you need to reinstall the package. Some other package may have failed... Jim Pingle
01:09 PM Bug #1588 (Rejected): HAVP dashboard widget broken by June 7 build
I have a box running 2.0 RC1 with the havp package installed. After upgrading to the June 7 build, the service appear... Bryan Agee
01:20 PM Bug #1589 (Rejected): pfsense crashes all the time with rt3070 wlan
Driver issue, we probably can't do anything for that. Try to reproduce it on a plain FreeBSD install and report it to... Jim Pingle
01:19 PM Bug #1589 (Rejected): pfsense crashes all the time with rt3070 wlan
Hello.
With rt3070 wlan card, pfsense is crashing all the time with the error that you can find a screenshot here ... serge laurent
10:35 AM pfSense Packages Bug #1587 (Resolved): The openvpn client configuration exporter doesn't enforce TLS subject verification
Hi,
The openvpn client configuration exporter doesn't enforce TLS subject verification. This leads to a security v... Florent Daigniere
07:44 AM Revision 6a7dd9bb: Do not destroy and create the vip during interface [re]configuration since it causes unecessary work and most importantly issues.
Ermal LUÇI
07:29 AM Revision 7fc6c005: Generate proper index for unsetting so we do not destroy all the vips in the backup.
Ermal LUÇI

06/07/2011

05:25 PM Revision 2c85b316: Disconnect any voucher forced to expire if there are active sessions with it.
Ermal LUÇI
05:15 PM Revision e64c894f: Allow a second optional argument to captiveportal_read_db to be able to index the read db by the field in the db.
Ermal LUÇI
05:06 PM Revision f989aa5b: Correct variable name so voucher disconnect on synchronized vouchers works properly.
Ermal LUÇI
04:52 PM Revision d06f9f45: Adding ioncube
Scott Ullrich
03:09 PM Revision 720e2e60: Nuke trailing newline
Scott Ullrich
01:47 PM Revision d8012adb: Merge remote-tracking branch 'mainline/master' into inc
Conflicts:
etc/inc/voucher.inc
usr/local/www/fbegin.inc Vinicius Coque
10:13 AM Bug #1556: Changing local IPsec tunnel endpoint does not work
Still struggling to replicate though tested with OPT1 and OPT2 (can't touch WAN). -(
1. Tunnel works via OPT1.
2. C... Evgeny Yurchenko
10:07 AM Feature #1571: Interfaces completely reset when hardware is changed
"this is how things have always worked" means that this is a far more serious bug than I first thought, and a fundame... Mr Horizontal
08:08 AM Revision 3f8a13e0: Oops correct the POST destination page.
Ermal LUÇI
05:18 AM Bug #1586 (Resolved): vouchers saved to XML config every 5 minutes even though no new vouchers have been activated
On "Services: Captive portal: Vouchers" page there is an interval for saving vouchers into config with default of 5 m... Pavel Pilat
01:00 AM pfSense Packages Bug #1585 (Closed): pfsense 2.0-RC1 intermittently disconnects PPTP client session
upgrade, that was fixed since then. Chris Buechler
12:25 AM pfSense Packages Bug #1585 (Closed): pfsense 2.0-RC1 intermittently disconnects PPTP client session
Hello,
I am testing pfsense 2.0 in a VMware virtual machine. My setup is:
Laptop (Ubuntu 10.04) pptp client
pl... Jawaid Bazyar
12:44 AM Revision 60ccf01c: Add a div around input errors box so that it can be hidden on subequent page posting
Scott Ullrich

06/06/2011

09:09 PM Revision c88ff708: Include ssh2 module if available
Scott Ullrich
06:12 PM Revision 4e192846: Correct event calling during bootup for rc.newipsecdns and also convert the command executed during an ipsec even to go through check_reload_status which will prevent races on calling rc.newipsecdns. Which might lead to many filterdns processes.
Ermal LUÇI
05:57 PM Revision f6bf0661: Switch this to check_reload_status event to see if it solves any possible issues of nohup blocking signals to be delivered to filterdns proces.
Ermal LUÇI
04:04 PM Revision 63dfc7ef: Suppress keyboard device errors on bootup
Scott Ullrich
03:48 PM Revision 0b704a40: Correct whitespace.
Ermal LUÇI
02:37 PM Revision a9c489c7: Fix pppoe server user rule generation. Fixes #1577
Jim Pingle
01:12 PM Revision 7d6be855: Correct possible lock leak.
Ermal LUÇI
01:08 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
19 VIPs, 20 permanent OpenVPN tunnels, 1 OpenVPN for users, 2 gigabit NICs aggregated into 1 lagg0 interface, 14 VLAN... Marcin Krol
10:05 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
How many interfaces / VIPs do you have on that box? When I apply changes on my VM, I only see 1-2 of those and they i... Jim Pingle
12:40 PM Revision ac07425a: Fix whitespace.
Ermal LUÇI
11:07 AM Bug #1341 (New): Removing last host from alias does not truly remove it, host continues to be affected by rules
This doesn't seem to be fixed. If I clear a table/alias in the GUI, and it's really a table on the backend, the IPs a... Jim Pingle
11:04 AM Revision 43f26ab1: Ticket #1412. Provide even a link to this page through System->User Manager
Ermal LUÇI
10:53 AM Revision e33be77c: Ticket #1412. Fixing the access login to the user manager presented another problem since now users cannot change their passwords anymore. Allow this through another page and an extra priviledge needed to be added to the user for allowing them to change the password.
Ermal LUÇI
10:40 AM Bug #1577 (Feedback): Inserting any rules on VPN PPPoE interface cause filter not reload
Applied in changeset commit:a9c489c7ab68e9c853b37a3f132fbc2c53363bbb. Jim Pingle
10:22 AM Revision 425ba708: Ticket #1545. Take into account curl errors during dyndns service checks otherwise will just mark some updates as successful even though they are not.
Ermal LUÇI
06:53 AM Bug #1556: Changing local IPsec tunnel endpoint does not work
That is correct, racoon will listen on the correct interface, but ignore all communication for that phase 1.
The m... Seth Mos
06:20 AM Bug #1545: Dynamic DNS updates fail on 3G connections
Just updated the code to take into account some curl errors.
These errors just marked the service as updated but rea... Ermal Luçi

06/05/2011

08:23 PM Revision 6627e4ec: Restoring gray background to the right of some tables in GUI (theme pfsense_ng).
Evgeny Yurchenko
08:09 PM Revision 79633b6c: Reverting class="sortable" damaged by commit 17d5077f61d963178f47e016b8768b768800ba68
Evgeny Yurchenko
07:17 PM Revision 8527bc02: Merge remote branch 'origin/master'
Evgeny Yurchenko
07:15 PM Revision 17d5077f: Restoring gray background to the right of some tables in GUI.
Evgeny Yurchenko
01:36 PM Feature #1578 (Rejected): Custom DynDNS Providers
Thanks Bill - will do.
Will reject this call, as indicated by Matt, it is a duplicate of #1241. Warren Baker
01:27 PM Feature #1578: Custom DynDNS Providers
Additionally, this is a duplicate of #1241 sorry for the confusion there. I had just seen that git was moved off of ... Matt Corallo
01:20 PM Feature #1578: Custom DynDNS Providers
Originally posted here, uploaded to github to make it easier for me to keep it up-to-date http://forum.pfsense.org/in... Matt Corallo
01:00 PM Feature #1578: Custom DynDNS Providers
Pull request is at [[https://github.com/bsdperimeter/pfsense/pull/2]] Bill Marquette
12:55 PM Feature #1578: Custom DynDNS Providers
Can you please update the pull request with the items you don't want to pull so the author can modify his changes? A... Bill Marquette
01:27 PM Feature #1241: Custom Dynamic DNS
Github pull at: https://github.com/bsdperimeter/pfsense/pull/2
Sorry for the disturbance. Matt Corallo
04:32 AM Bug #1583 (Resolved): IPv6 IPs with :: trigger DNS rebinding
When browsing to an IPv6 IP containing :: the DNS rebinding check is triggered as the :: causes part of the IP to be ... Chris Buechler
04:14 AM Bug #1567: pfsense rc1 2.0 DNS
*Update*
for general settings --> dns use gateway
have you tried it lately? not availible
03:18 AM Revision cf371185: s/WAN//
Chris Buechler
02:58 AM Revision 14c354ee: fix typo, add warning
Chris Buechler
01:56 AM Bug #1545: Dynamic DNS updates fail on 3G connections
Unfortunately this has not helped. Here's some more logs (with -rc2 in the filename) of it happening on the latest ve... Ross Williamson
12:43 AM Revision 81debd44: Show the MAC on the page rather than just a hover, too many times it needs to be copied/pasted or quickly viewed, and the vendor isn't nearly as useful as the actual MAC.
Chris Buechler

06/04/2011

10:13 PM Bug #1312 (Closed): NAT reflection/DNS Forwarder broken again
not seeing any issues here, Brian you can post on the 2.0 board of the forum for help troubleshooting if it's still a... Chris Buechler
10:12 PM Bug #1340 (Resolved): PPTP Rar "Clear Log" button does not work
Chris Buechler
10:10 PM Bug #1524 (Resolved): Dhcrelay not running when DHCP server not in same subnet.
Chris Buechler
10:10 PM Bug #1277 (Resolved): Rip propagation
Chris Buechler
10:09 PM Bug #1444 (Resolved): Reconfiguring interfaces doesn't deconfigure previous ones
Chris Buechler
10:08 PM Bug #1235 (Resolved): pfsense 2.0 load balancing with a https monitor seems to default timeout 200ms causing constant timeouts
Chris Buechler
10:07 PM Bug #1292 (Resolved): PPTP server with Radius breaks on upgrade from 1.2.3 to 2.0
Chris Buechler
10:07 PM Bug #954 (Resolved): Switching to manual outbound NAT creates incorrect rule for PPTP server
Chris Buechler
10:05 PM Bug #1511 (Resolved): panic in pfi_dynaddr_update
this should be worked around now, was triggered by a race condition in CARP deletion which has been worked around and... Chris Buechler
09:55 AM Bug #495: USB drive fails to mount during boot
Sondre Slathia wrote:
> I just came across this issue still present on latest nightly build of embedded 4g pfsense 2... Jim Pingle
06:35 AM Bug #495: USB drive fails to mount during boot
I just came across this issue still present on latest nightly build of embedded 4g pfsense 2. Is this issue resolved ... Sondre Slathia
01:27 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
harry,same problem i have got on 2.0-RC2 (i386),problem not resolved.I think it's not normal priority case because o... Hafiz Rafiyev

06/03/2011

10:29 PM Revision 5cb0360b: Merge branch 'master' of github.com:bsdperimeter/pfsense
Bill Marquette
10:29 PM Bug #1552: DNS Reject Rule Crashes Router
I have slightly different results.
1. Setup as in the bug description - blocking rule just does not work, DNS reques... Evgeny Yurchenko
10:29 PM Revision 5b542ae5: Typoes
Bill Marquette
07:34 PM Revision 534375b6: Merge remote branch 'upstream/master'
Conflicts:
etc/inc/openvpn.inc Jim Pingle
06:53 PM Revision bd4b0982: If a mode_cfg subnet is defined for IPsec, also add it to outbound NAT.
Jim Pingle
02:35 PM Bug #1546: Traffic Shaper fails to handle UDP traffic
I disabled the upnp and tested again, but the same problem still occur, but for me is the upload traffic that goes to... Guilherme Barreto
07:06 AM Bug #1546: Traffic Shaper fails to handle UDP traffic
actually the topic was supposed to be UDP download traffic not going to proper queue, shaping as well as upload traff... Bipin Chandra
02:29 PM Revision c8ff68a4: Allow duplicating an IPsec phase 2. The code was already on vpn_ipsec_phase2.php but unlinked.
Jim Pingle
01:50 PM Revision 5cd9e96a: Add a GUI selection for racoon's generate_policy directive since it may be useful in certain configurations, especially for mobile clients.
Jim Pingle
01:29 PM Revision 039cb920: Add a button here to clear the package lock.
Jim Pingle
01:20 PM Revision 5dc6c910: When making a P2P SSL/TLS OpenVPN server, if the given CIDR for the tunnel network is a /30, don't use the OpenVPN server directive. See ticket #1417
Jim Pingle
01:03 PM Revision 19cdeb3e: Instead of showing an emtpy drop-down for CA/Cert/CRL, show an error that there are none defined, and link to the page to create one.
Jim Pingle
01:03 PM Revision 1591ea6f: Remove the warning message that a user doesn't have any CA/Certs when viewing OpenVPN connections. This is just confusing people, and isn't relevant to people using only shared key tunnels.
Jim Pingle
01:03 PM Revision 2f51259b: Redirect back to the CA/Cert management page after delete so a person can't refresh and accidentally delete other CA/Certs. (CRLs are deleted differently and don't need this fix)
Jim Pingle
12:10 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
Still replicated this bug after updating to 2.0-RC2 (amd64) built on Thu Jun 2 10:50:48 EDT 2011.
I had the ipsec ... Harry Gonzalez
10:30 AM Bug #1560 (Resolved): IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Tested a few different scenarios and this seems to be solved all the way around. Thanks! Jim Pingle
10:25 AM Bug #1577: Inserting any rules on VPN PPPoE interface cause filter not reload
Attached the config xml. Fabiano Heringer
10:16 AM Bug #1577: Inserting any rules on VPN PPPoE interface cause filter not reload
You can download the config from Diagnostics > Backup/Restore. Jim Pingle
10:01 AM Bug #1417: OpenVPN client specific overrides doesnt work by default
I committed the change to check the CIDR and if it's 30+, it will not use the server/client-config-dir directives. Sh... Jim Pingle
09:52 AM Bug #1395 (Resolved): RRD data not collecting accurate information
Thanks for the feedback. I'll mark it as resolved. Jim Pingle
09:44 AM Bug #1395: RRD data not collecting accurate information
I just noticed that this problem appears to be fixed. I'm not sure when this behavior changed but this bug can be cl... David Miller
09:37 AM Bug #1572: DHCP + MAC spoofing leads to link cycling
Do you know the way to reproduce it? I can't see this behavior... Evgeny Yurchenko
07:25 AM Revision 327d958a: fixed for use pfsense API
Luiz Gustavo S. Costa
07:15 AM Revision 8c0199ea: Better management for reload lighttpd
Luiz Gustavo S. Costa
07:15 AM Bug #1582 (Closed): traffic shaper queues bug
bear in mind this is not the same bug as ports opened by upnp not being shaped, to replicate this bug add some rules ... Bipin Chandra
05:36 AM pfSense Packages Bug #1580 (Closed): countryblock doesn't uninstall cleanly
duplicate of #1579 Chris Buechler
04:31 AM pfSense Packages Bug #1580 (Closed): countryblock doesn't uninstall cleanly
The countryblock package doesn't uninstall cleanly and leaves some files behind, causing squid to fail on startup wit... Volker Kuhlmann
04:49 AM pfSense Packages Feature #1581 (Resolved): lightsquid logfile location
2.0RC1, lightsquid 1.8.0 pkg v.1.2
The lightsquid logfile location is hardcoded in
/usr/local/pkg/lightsquid.inc... Volker Kuhlmann
04:31 AM pfSense Packages Bug #1579 (Resolved): countryblock doesn't uninstall cleanly
The countryblock package doesn't uninstall cleanly and leaves some files behind, causing squid to fail on startup wit... Volker Kuhlmann
03:20 AM Feature #1578 (Rejected): Custom DynDNS Providers
The ability to add a custom DynDNS Provider as per a mail to the support mailing list from 'TheBlueMatt'.
"Add the... Warren Baker
02:52 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
I've updated yesterday and now I'm running 2.0-RC2-IPv6 (amd64) built on Wed Jun 1 18:03:37 EDT 2011 and last commits... Marcin Krol

06/02/2011

10:03 PM Revision 67dde8b0: Merge remote branch 'origin/master'
Evgeny Yurchenko
06:40 PM Bug #1546 (Closed): Traffic Shaper fails to handle UDP traffic
yeah it is, general UDP shaping works fine. Chris Buechler
06:34 PM Bug #1546: Traffic Shaper fails to handle UDP traffic
I use upnp to open ports for my ps3 games, so is very likely to be the same problem reported here http://redmine.pfse... Guilherme Barreto
06:11 PM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Jim P noticed that it is impossible now to edit P2, when you change something else rather than networks definitions i... Evgeny Yurchenko
09:39 AM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Corrected https://github.com/bsdperimeter/pfsense/commit/3da5c50d5c2285b439a56ab4fcd6f9dbe94f5c4e
Currently there is... Evgeny Yurchenko
05:23 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
Just tested
exec("/etc/rc.reboot");
works ok. Probably because /etc/rc.reboot does not contain php code. Evgeny Yurchenko
08:58 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
For the moment I disabled the package stop on reboot.
Though after sleeping on it, I remembered a similar problem I ... Jim Pingle
05:07 PM Todo #1573 (Resolved): Test Android Gingerbread IPsec Options
The choices that use main mode (anything that isn't labeled "aggressive") won't work as the IP of the phone is used a... Jim Pingle
04:47 PM Revision f451ea09: Show how much data has passed on an SAD entry.
Jim Pingle
03:43 PM Revision e96bbf82: Patch from EvgenyY to allow editing an existing p2 without it being flagged a duplicate.
Jim Pingle
03:23 PM Revision b717f1bc: Bug #1560.IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1 (fixing p2 edit)
Evgeny Yurchenko
01:07 PM Revision 0640a65b: Add "Default" choice that will unset the media/mediaopt, otherwise whatever is first in the list is saved in the config.
Jim Pingle
12:36 PM Bug #1417: OpenVPN client specific overrides doesnt work by default
Yeah that's a fair point. I'll look into adding a check on the subnet mask side and tossing out the server/csc lines ... Jim Pingle
12:24 PM Bug #1417: OpenVPN client specific overrides doesnt work by default
The last section of http://backreference.org/2009/11/15/openvpn-and-iroute/ explains that there are situations where ... Bill Fenner
11:54 AM Bug #1417: OpenVPN client specific overrides doesnt work by default
Well the remote network only adds a route, typically with SSL/TLS it requires an iroute to assocate that route to a g... Jim Pingle
11:51 AM Bug #1417: OpenVPN client specific overrides doesnt work by default
I suppose I was using p2p+tls because it was the option that was selected when I clicked "add VPN server", not becaus... Bill Fenner
11:23 AM Bug #1417: OpenVPN client specific overrides doesnt work by default
Ah, ok. I was thinking of a shared key and /30.
The main reason most people want to use p2p+tls is to push settin... Jim Pingle
11:07 AM Bug #1417: OpenVPN client specific overrides doesnt work by default
We used 172.25.0.0/30, and OpenVPN gripes as follows:
Jun 2 07:55:09 tfw1 openvpn[60992]: Options error: --server... Bill Fenner
09:30 AM Bug #1577: Inserting any rules on VPN PPPoE interface cause filter not reload
Hi,
Sorry i can´t know how to find config xml.
I created a rule on PPPoE Interface, with Action Pass from any sou... Fabiano Heringer
08:13 AM Bug #1577: Inserting any rules on VPN PPPoE interface cause filter not reload
Please provide your config xml or description of the rules and pppoe server configuration. Ermal Luçi
07:16 AM Bug #1577 (Resolved): Inserting any rules on VPN PPPoE interface cause filter not reload
When I inserting any rule filter on interface VPN PPPoE, the filter reload don´t start, show the follow error:
The... Fabiano Heringer
08:14 AM Revision 3781d809: Correct input object name from wrong copy/pasto. Reported-by: http://forum.pfsense.org/index.php/topic,37369.0.html
Ermal LUÇI
07:16 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
As a closing note: I switched my firewall config fully to nested port aliases now (some are 3 levels deep), and it al... Frank Zavelberg
04:06 AM Bug #1575 (Resolved): Limiters are bypassed by local applications injecting rules
Taking a look at http://forum.pfsense.org/index.php/topic,37399.0.html
it would be good to teach the match action ab... Ermal Luçi
03:28 AM Feature #1574 (New): Password quality enforcment.
It would be nice to be able to enforce password policy for local accounts.
http://www.openwall.com/passwdqc/ can hel... Ermal Luçi

06/01/2011

11:22 PM Bug #1417: OpenVPN client specific overrides doesnt work by default
What exactly did you have entered for the Tunnel Network? It works fine when entering a proper value (a /30 where the... Jim Pingle
11:07 PM Bug #1417: OpenVPN client specific overrides doesnt work by default
Part of the last commit ( 0cc5ab4 ) broke my previously-working site-to-site p2p_tls vpn configuration using a /30. ... Bill Fenner
10:32 PM Todo #1573 (Resolved): Test Android Gingerbread IPsec Options
Gingerbread brought with it "Advanced IPsec VPNs", most of which look like they should work as a mobile client agains... Jim Pingle
10:29 PM Revision fc3dcc8b: Merge remote branch 'origin/master'
Evgeny Yurchenko
10:28 PM Revision 3da5c50d: Bug #1560.IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1 (improvement of previous patch)
Evgeny Yurchenko
10:07 PM Bug #1565 (New): Pull kern/134878 into pfsense 2.0
Chris Buechler
09:57 PM Bug #1565: Pull kern/134878 into pfsense 2.0
Patch attached. Tested against RELENG_8_1. Also requires puc enabled in kernel. Michael Reynolds
09:39 PM Revision 2e88102d: Disable this until it can be properly fixed.
Jim Pingle
08:56 PM Revision ee0cf21f: Merge remote branch 'upstream/master'
Jim Pingle
08:55 PM Bug #1570: Reboot doesn't work from ssh with option 5
Typo: 5.0 should be 5.)
And I can reboot from the web interface, so my bug is definitely different. Joop Braak
08:53 PM Bug #1570: Reboot doesn't work from ssh with option 5
No, it doesn't , it is only mentioned in a comment that was added by you yesterday!
The original description clear... Joop Braak
08:26 PM Bug #1570: Reboot doesn't work from ssh with option 5
you're the one who can't read, the other ticket covers both this and the web interface reboot. Chris Buechler
08:24 PM Bug #1570: Reboot doesn't work from ssh with option 5
Can you not read ? This is not the same , it is the opposite. Please reopen this bug. Joop Braak
08:54 PM Revision a01ce4c7: Make the ICMP echo request type less ambiguous, and since it's likely the main one to get used, move it to the top.
Jim Pingle
05:20 PM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Is 192.168.16.5/24 input considered valid? It's easier to error on this in gui... Evgeny Yurchenko
05:02 PM Bug #1560 (New): IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Still at least one case that needs checking:
It still allows you to overlap if you use the "[Interface Name] subnet"... Jim Pingle
06:52 AM Bug #1560 (Feedback): IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Ermal Luçi
03:53 PM Bug #1572 (Resolved): DHCP + MAC spoofing leads to link cycling
If MAC spoofing is enabled on an interface that is a DHCP client, in some circumstances it can get itself into a mess... Chris Buechler
03:52 PM Bug #1351 (Resolved): Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
thanks Chris Buechler
04:45 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
Just for a point of reference to my earlier info.
I eventually found that my issue was a problem with the client end... Andy Giles
03:28 PM Feature #1571: Interfaces completely reset when hardware is changed
this is how things have always worked and how the system is intended to function. If you remove a physical interface ... Chris Buechler
12:15 PM Feature #1571 (Rejected): Interfaces completely reset when hardware is changed
I had a configuration that used 2 wireless cards (urtw) and had interfaces assigned. One of the urtw interfaces was c... Mr Horizontal
03:25 PM Revision 7af360ce: Add tunable, by default disabled, to enable the default gateway switching feature when the default one 'disappears'.
Ermal LUÇI
03:25 PM Revision f8f3732a: Fixes #1412. Properly pass the page to match so users are not always presented with the change password screen. Proper fix.
Ermal LUÇI
02:42 PM Revision b5ef447f: Fix merge blip.
Jim Pingle
02:03 PM Revision f4645d7f: Add tunable, by default disabled, to enable the default gateway switching feature when the default one 'disappears'.
Ermal LUÇI
01:00 PM Revision 58005e52: Merge remote branch 'upstream/master'
Conflicts:
conf.default/config.xml
etc/inc/filter.inc
etc/inc/globals.inc
etc/inc/pfs... Jim Pingle
12:23 PM Revision 9584d162: Fixes #1412. Properly pass the page to match so users are not always presented with the change password screen. Proper fix.
Ermal LUÇI
11:14 AM Revision 97c1f268: Fixes #1412. Properly pass the page to match so users are not always presented with the change password screen.
Ermal LUÇI
11:14 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
That is because you are on the IPv6 branch which hadn't been merged in a while. I just synced it back up with mainlin... Jim Pingle
02:29 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
I just updated my backup router, but commits from 5 days ago are not included yet. I'm now running:
2.0-RC2-IPv6 (... Marcin Krol
10:49 AM Revision 695a35ae: Ticket #944. Also destory the previous interface if the user changing the vlan tag of an existing vlan entry.
Ermal LUÇI
10:49 AM Revision 6b421a0f: Fixes #944. Use the correct interface name to destroy the previous vlan if the parent is changed.
Ermal LUÇI
09:46 AM Bug #1532: test_pfSpkg code breaks packages
This might be a long term change, but it might make sense to convert each package to a class which will prevent multi... Yehuda Katz
06:58 AM Bug #1532: test_pfSpkg code breaks packages
This has been reverted and it will not make 2.0 Ermal Luçi
09:32 AM Bug #1556: Changing local IPsec tunnel endpoint does not work
How to replicate?
I've tried switching between WAN and OPT1 and racoon always listens on respective interface. Reboo... Evgeny Yurchenko
08:42 AM Bug #1529 (Resolved): bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
Ermal Luçi
08:38 AM Bug #1408 (Resolved): DHCP DNS servers still get routes even if allow override is unchecked
Ermal Luçi
08:34 AM Bug #1391 (Resolved): Disable auto-added VPN rules missing
This has been solved if needed can be re-opened later on. Ermal Luçi
08:30 AM Bug #1383: Upgrade routines should check free space
This is doable only if we keep an approximate file size for upgrades hardcoded in the source.
This allows to do heur... Ermal Luçi
08:23 AM Bug #1412 (Resolved): Assign a user the "WebCfg - System: User Manager Page" does'nt allow access
Ermal Luçi
07:15 AM Bug #1412 (Feedback): Assign a user the "WebCfg - System: User Manager Page" does'nt allow access
Applied in changeset commit:97c1f2684c5dd225075fec08148f084ff190af0a. Ermal Luçi
07:06 AM Bug #1353: Number of queues possible
This is not so critical for 2.0 Ermal Luçi
07:04 AM Bug #1303 (Resolved): Removal interface without setting of wan causes error unset
Ermal Luçi
07:02 AM Bug #482 (Resolved): OpenVPN config upgrade problems
I am closing this for now after 9 months.
If issues arise it can be re-opened. Ermal Luçi
06:55 AM Bug #1541 (Resolved): /etc/rc.start/stop_packages do not start/stop .sh files
Ermal Luçi
06:54 AM Bug #1519 (Resolved): sshlockout truncates ip
Ermal Luçi
06:50 AM Bug #944: Moving VLANs to lagg doesn't remove old VLANs
Applied in changeset commit:6b421a0fb42a50d1e87ac63c64a5b8b8d2157577. Ermal Luçi
06:47 AM Bug #944: Moving VLANs to lagg doesn't remove old VLANs
I just pushed some fixes.
Please gitsync and verify they work correctly now. Ermal Luçi
05:16 AM Bug #944: Moving VLANs to lagg doesn't remove old VLANs
still in 2.0-RC2(amd64) built on Tue May 31 12:13:03 EDT 2011
 Andreas Bochem
06:39 AM Bug #1510 (Resolved): Aliases names over 32 characters in length cause table problem errors
Ermal Luçi
05:30 AM Bug #1510: Aliases names over 32 characters in length cause table problem errors
Looks good in 2.0-RC2 (amd64) built on Tue May 31 12:13:03 EDT 2011.
Trying to save an alias with name longer than... Andreas Bochem
06:37 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
I will look at this a bit since its related to some other hangs that happen at times. Ermal Luçi
06:20 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
Changing rc.stop_packages to a shell script works. Which is a small trivial change and the following works for me:
... Warren Baker
12:13 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
Forgot to mention: mwexec("/usr/local/bin/php -f /etc/rc.stop_packages"); does not work either. Evgeny Yurchenko
12:08 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
I've spent some time trying to understand why we get three processes rc.stop_packages after clicking reboot from gui:... Evgeny Yurchenko
06:28 AM Bug #636: layer7 not work correctly
Can you upload the generated config file i am not seeing it. Ermal Luçi
05:52 AM Bug #636: layer7 not work correctly
I've removed that, and there's no improvement. Jonathan Puddle
03:41 AM Revision 538b6eb3: Bug #1560. IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1(site-to-site).
Evgeny Yurchenko
12:31 AM Bug #1425: pfSense stops receiving traffic on 'bge' driven interface
Multiple instances of iperf with udp traffic is very good way to generate substantial load. Evgeny Yurchenko

05/31/2011

11:46 PM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Fixed by https://github.com/bsdperimeter/pfsense/commit/061f28bfd582d1f08d8dfe60f87fc4fd99ec0a93 for mobile clients a... Evgeny Yurchenko
08:32 PM Revision 0ca52cff: fix typoes
Bill Marquette
07:39 PM Bug #1570 (Closed): Reboot doesn't work from ssh with option 5
same as #1564 Chris Buechler
07:34 PM Bug #1570 (Closed): Reboot doesn't work from ssh with option 5
When I log into pfsense with ssh and choose option 5 to reboot and then confirm with "y", the system doesn't reboot.
... Joop Braak
07:39 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
same from console menu option 5 Chris Buechler
04:52 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
The php.net bug is a decade old. While include() may 'fix' this, IMHO it really obfuscates what it's trying to do an... Bill Marquette
10:33 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
#5 Solution works for me as well, for me please commit ... Karsten G
12:21 AM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
It seems that this is related to bug in php http://bugs.php.net/bug.php?id=11430 "Impossible to execute .php from ins... Evgeny Yurchenko
06:42 PM Revision f9d7c5b3: Use array_overlay()
Scott Ullrich
06:28 PM Revision 0b581a8a: Use array_extend
Scott Ullrich
06:26 PM Bug #1569 (Needs Patch): USB760 CD not recognized
driver issues are outside of our control. If you have a patch to fix it, we can commit it. Chris Buechler
06:13 PM Bug #1569 (Duplicate): USB760 CD not recognized
While inserting/booting a USB760 CDMA usb modem one can't eject the CD to put it in modem mode because pfSense does n... Scott Lampert
05:50 PM Revision 456026b5: Use pfsense.restore_config_section
Scott Ullrich
05:47 PM Revision 485b1ca5: Remove debugging code
Scott Ullrich
05:45 PM Revision db748384: Add merge handler code
Scott Ullrich
05:21 PM pfSense Packages Bug #1376: Text in "Interfaces" widget wraps when interface speed is more then 100mbit
The fixes from the ipv6 branch may apply here.
https://github.com/smos/pfsense-ipv6/commits/master/usr/local/www/wid... Bill Marquette
04:35 PM Revision 10d74dff: Remove bogus protection. We have better handling of this now.
Scott Ullrich
04:14 PM Todo #1568 (Resolved): Import the IPv6 patch that allows router advertisements with forwarding enabled
It is impossible to accept v6 router advertisements when v6 forwarding is enabled.
this patch applies to FreeBSD 8... Seth Mos
03:58 PM Revision 85055175: Remove old vidcontrol cruft lingering from long long ago
Scott Ullrich
10:45 AM pfSense Packages Bug #1563 (Closed): UPDATE: Squid errors on updating version
Moved note to #1443
Please don't open new tickets for an update, if there is a problem with redmine that is a separ... Jim Pingle
10:45 AM pfSense Packages Bug #1443: Squid errors on updating version
Lloyd is still having issues (See #1563)
I still can't reproduce this no matter what I do. Jim Pingle
10:15 AM Bug #1567 (Rejected): pfsense rc1 2.0 DNS
It works fine, I'm using it on my home router without problems. Please use the forum for help diagnosing such issues ... Jim Pingle
10:07 AM Bug #1567: pfsense rc1 2.0 DNS
architecture Amd 64 not availible
10:06 AM Bug #1567 (Rejected): pfsense rc1 2.0 DNS
Under general setup drop down box +use gateway+ does not seem to work when there are more then one interface not availible
10:13 AM Bug #1566 (Rejected): pfsense 2.0 rc1 Firewall rules
It works fine, even on the latest snapshots. Please use the forum to get help diagnosing an issue and confirming a bu... Jim Pingle
10:04 AM Bug #1566 (Rejected): pfsense 2.0 rc1 Firewall rules
Under firewall tab
adding a *rule* to wan interface does not seem to work not availible
09:05 AM Revision 9d545c88: Merge remote branch 'origin/master'
Evgeny Yurchenko
09:03 AM Revision 061f28bf: Bug #1560. IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1(mobile clients).
Evgeny Yurchenko
02:58 AM Bug #636: layer7 not work correctly
You have a stray <containter/> tag what happens if you remove that? Ermal Luçi
02:02 AM Bug #636: layer7 not work correctly
The l7shaper config is attached, sorry, it took me a minute to find it. The log output looks similar to above, some e... Jonathan Puddle
02:10 AM Revision edb2a3da: Bug#1528. Automatically create outbound NAT rules on WAN for localhost when switching to manual.
Evgeny Yurchenko
01:05 AM Bug #1565 (Needs Patch): Pull kern/134878 into pfsense 2.0
attach a tested patch against RELENG_8_1 and we'll add it. Chris Buechler
12:58 AM Bug #1565 (Resolved): Pull kern/134878 into pfsense 2.0
I've submitted this as a bug because I am unable to use my 8 port serial card with pfsense, but can with 8_2_RELENG w... Michael Reynolds

05/30/2011

10:38 PM Todo #1528: Automatic outbound NAT from localhost needs a little work
not for 2.0, can be revisited in the future Chris Buechler
10:24 PM Todo #1528: Automatic outbound NAT from localhost needs a little work
Do we need "NAT from localhost out LAN and other internal interfaces as well"? It does not look hard to implement. Evgeny Yurchenko
10:16 PM Todo #1528: Automatic outbound NAT from localhost needs a little work
That much is adequate for 2.0. Chris Buechler
10:14 PM Todo #1528: Automatic outbound NAT from localhost needs a little work
The first part is fixed by this https://github.com/bsdperimeter/pfsense/commit/edb2a3dab4833fa024828f3150cdcc1521ea1b48 Evgeny Yurchenko
10:21 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
I can confirm that I have this issue using 2.0-RC2 (i386) Mon May 30 11:06:53.
Tried to reboot from reboot.php. We... lude lude
04:45 PM Bug #1564 (New): rc.stop_packages causes reboot to only works from SSH, not from Web interface
Scott Ullrich
04:42 PM Bug #1564: rc.stop_packages causes reboot to only works from SSH, not from Web interface
I can confirm on snapshot May 30 11:53:52 nanobsd 4G when I remove rc.stop_packages https://github.com/bsdperimeter/p... Perry Mason
02:04 PM Bug #1564 (Feedback): rc.stop_packages causes reboot to only works from SSH, not from Web interface
Cannot replicate this issue.
 Scott Ullrich
02:02 PM Bug #1564 (Resolved): rc.stop_packages causes reboot to only works from SSH, not from Web interface
As reported in the forum (http://forum.pfsense.org/index.php/topic,37258.0.html), the reboot feature doesn't work fro... Pierre ROUSSET
07:27 PM Revision a3d58a12: Use aon plugin
Scott Ullrich
07:25 PM Revision 2ba7d6f8: Add plugin features to aon edit
Scott Ullrich
04:28 PM Revision 2ea00c3e: Add missing plugin code. Move the pre_write section up a bit.
Scott Ullrich
04:02 PM Revision 3dbceb92: Include .inc files for plugin system
Scott Ullrich
02:35 PM Bug #1403: Filter Rules description do not get saved when "(quote) present as character
I've added the same syntax checks to NAT pages.
https://github.com/bsdperimeter/pfsense/commit/b45babaeb55ac039f498d... Evgeny Yurchenko
01:11 PM Revision d97ff036: Prevent races on resovlconf generation as well by adding a lock.
Ermal LUÇI
09:03 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Can you try with latest snapshots? Ermal Luçi
09:00 AM Bug #1545 (Feedback): Dynamic DNS updates fail on 3G connections
Please try with latest version.
Currently increasing the timeout is the best solution.
In long term possibly the ... Ermal Luçi

05/29/2011

09:44 AM pfSense Packages Bug #1563 (Closed): UPDATE: Squid errors on updating version
This is an update to http://redmine.pfsense.org/issues/1443 which will not let me edit
I am still experiencing the... Lloyd Collins

05/28/2011

04:19 PM Revision ce91583b: Merge pull request #1 from EvgenyY/6e2a15e677fa0558ba0c9b1700be38f4065a76f6
Speed/duplex select for interfaces Ermal LUÇI
10:52 AM Bug #1562 (Rejected): atheros 9280 not working
nothing we can do with ath driver issues. usually forcing the channel will work around that particular problem. Chris Buechler
10:50 AM Bug #1562: atheros 9280 not working
These are driver issue which we try to look whenever possible. Ermal Luçi
04:39 AM Bug #1562 (Rejected): atheros 9280 not working
card is detected and it is possible to create wireless devices
but if i configure the device (tested in b also g mod... Miroslav Hruska

05/27/2011

09:55 PM Revision b45babae: Bug #1403. Filter Rules description do not get saved when "(quote) present as character
Evgeny Yurchenko
05:27 PM Revision 55260532: Add note about voucher sync (only enable on slave nodes).
Scott Ullrich
05:06 PM Revision 58f963d0: Clarify auth option to include Vouchers
Scott Ullrich
04:02 PM Revision f40a03a4: Only add pppoe to the interfaces list if it both has an entry and is in server mode (i.e. not disabled.)
Jim Pingle
04:02 PM Revision 685c9776: Some extra protection against putting empty values into the ruleset.
Jim Pingle
03:32 PM Revision a1b86994: Ticket #1534. Try to stop packages during reboot of system.
Ermal LUÇI
03:21 PM Revision 6e2a15e6: Hiding mediaopt under Advanced button
Evgeny Yurchenko
02:42 PM Bug #1372 (Resolved): RRD is not updating VPN statistics
Jim Pingle
02:41 PM Bug #1372: RRD is not updating VPN statistics
Verified in
2.0-RC2 (i386)
built on Fri May 27 07:59:32 EDT 2011
It is fixed now.
Thx. Sven Rubben
10:46 AM Revision 93b8df2a: Increase timeout to 2 minutes. Ticket #1545.
Ermal LUÇI
10:45 AM Revision 71070cc5: Ticket #1545. Lock each dnsHost to be updated to prevent running two instances in parallell.
Ermal LUÇI
08:24 AM Revision 224ddbad: Silence the route changing since it fills the logs with not needed info.
Ermal LUÇI
07:56 AM Revision dfb30a89: Trigger reloading of packages through check_reload_status so it can serialize the calls to not DoS the OS with processes triggered from this. Ticket #1534
Ermal LUÇI
05:06 AM Bug #1545: Dynamic DNS updates fail on 3G connections
Sorry, this happened ages ago. Didn't realise it was so quick. Here's the logs as requested. As mentioned the first u... Ross Williamson
03:52 AM Revision e5770bc2: DHCP only knows about IPv4
don't allow admins to shoot themselves with v6 addresses in the config Bill Marquette
03:28 AM Revision 13f0762d: Fix #1277
Wasn't able to remove the multicast RIPv2 discovery at startup, but
all ripv1 response's are gone now. Bill Marquette
03:02 AM pfSense Packages Bug #1561 (Resolved): HTTP traffic dies after disabling HAVP
Yesterday I've installed HAVP. I've set it up to run in transparent mode and it works fine with one exception. If I'l... Marcin Krol
02:53 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Disabling and re-enabling HAVP on master router causes even more severe load on backup router. It also causes other i... Marcin Krol
02:43 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Indeed I was using old gitsync URL. I've performed few tests yesterday on updated systems. Unfortunately applied chan... Marcin Krol

05/26/2011

11:30 PM Bug #1277 (Feedback): Rip propagation
Applied in changeset commit:13f0762d9c2f23e19eec13dc1041506c40051be8. Bill Marquette
09:43 PM Bug #1555 (Resolved): Wrong DHCP configuration option when activating "Deny unknown clients"
Chris Buechler
08:51 PM Revision b75d32e5: Free ipfw rule number after mac pass-through deletion.
Ermal LUÇI
08:16 PM Revision ab731f54: Bring more consistent style to CP edit mac and ip passthrough pages.
Ermal LUÇI
07:39 PM Revision adcf909a: Just use the long reference here instead of creating potential dangerous reference.
Ermal LUÇI
01:56 PM Bug #1415 (Resolved): Nat reflection is installing rules with 'Array'
OK, I'm closing this out. That other bug isn't right either, it's really just this problem too.
Start a new ticke... Jim Pingle
01:52 PM Bug #1415: Nat reflection is installing rules with 'Array'
Dear Jim,
I tried, but it didn't work anyway... btw, I think this specific issue can be closed since is resolved, ma... Michele Di Maria
08:16 AM Bug #1415: Nat reflection is installing rules with 'Array'
Try switching to manual outbound NAT if you haven't already, and then add an outbound NAT rule on the LAN with a sour... Jim Pingle
01:57 AM Bug #1415: Nat reflection is installing rules with 'Array'
Hello,
I confirm that rules are not defined with "array" even in the case of "port alias" described above.
Anyway,... Michele Di Maria
01:41 PM Bug #1559: Static IP on interface not updating properly
Jim P wrote:
> Is this on a current snapshot? That bug was fixed a week or so ago (there is already a ticket for it,... David Miller
10:50 AM Bug #1559 (Closed): Static IP on interface not updating properly
Is this on a current snapshot? That bug was fixed a week or so ago (there is already a ticket for it, #1522, reopen t... Jim Pingle
10:35 AM Bug #1559 (Closed): Static IP on interface not updating properly
I don't know if this behavior is as desired or if it's even a new issue with 2.0 rc2.
I've found that when you c... David Miller
01:25 PM Bug #1560: IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Error from the IPsec log:... Jim Pingle
10:48 AM Bug #1560 (Resolved): IPsec GUI needs to reject duplicate subnets in phase 2s for a given phase 1.
Currently, the GUI lets you specify the same source/destination subnet more than once in the list of phase 2 definiti... Jim Pingle
12:44 PM Bug #636: layer7 not work correctly
You need to show the generated config file and you have not shown your layer7 from your config. Ermal Luçi
07:54 AM Bug #636: layer7 not work correctly
I've tested things a bit more today, and am seeing some strange behaviour. I've added some Layer7 rules, and am then ... Jonathan Puddle
11:41 AM Revision 1a6cb6e7: Remove decimals from cumulative users graph.
Warren Baker
11:11 AM Bug #651: Multiple gateways on WAN interface
Sorry!
The post is:
http://forum.pfsense.org/index.php/topic,37116.0.html Josep Pujadas-Jubany
11:11 AM Bug #651: Multiple gateways on WAN interface
Hello!
At the Spanish Forum there is an user with similar problem.
He posted images of its topology. So, its ea... Josep Pujadas-Jubany
10:08 AM Feature #1557 (Resolved): Add the Interface descriptions to the OS interface descriptions
When configuring an interface we can specify a "description" of the interface.
Unfortunately this description is not... Peter Baumann
08:37 AM Bug #1556 (Resolved): Changing local IPsec tunnel endpoint does not work
When attempting to change over a tunnel from a OPT back to the WAN interface the tunnel never came up.
The other s... Seth Mos
08:25 AM Revision 3c5e10fc: Add debugging notes so that we can easily fix this when IPv6 support is added to the pfSense module.
Remove the Accept router advertisement from all interfaces unless we enable them Seth Mos
08:14 AM Revision 668ce1f9: Increase the minimum time between generating images from 5 to 15 seconds to prevent DoS the firewall.
Seth Mos
08:13 AM Revision d67d99a1: Fix packet graph label alignment
Seth Mos
08:10 AM Revision a63f2b7d: Fix the graph label alignment
Seth Mos
07:59 AM Revision a555cc58: Fix my traffic graphs
Seth Mos

05/25/2011

11:51 PM Revision e4a8ed97: Add function header
Scott Ullrich
11:43 PM Revision d65962a7: Adding a new hook system for firewall nat edit and firewall rules edit page.
Basically if the directory exists it will suck in the files to extend these pags.
/usr/local/pkg/firewall_nat/input_... Scott Ullrich
10:43 PM Revision 838e4eb8: Rather make use of $global variable for RRD path.
Warren Baker
10:02 PM Revision 474f36d1: * Add is_ipaddr_configured() so that people do not need to reinvent the wheel for this task
* Check to make sure the administrator is not entering the IP address of the same host preventing a issue where the f... Scott Ullrich
10:00 PM Revision 5c723d9f: Remove out-dated RRD file as it will cause broken images to appear on RRD graphs page.
Warren Baker
08:36 PM Revision c206a2ab: Disable csrf checks when posting from scripts.
Ermal LUÇI
08:28 PM Revision 05771a24: Provide a voucher_expire function so that voucher can be expired through a POST.
Ermal LUÇI
05:35 PM Revision 669113f9: Merge remote-tracking branch 'mainline/master' into inc
Vinicius Coque
05:33 PM Revision 19bd7032: Remove gettext from negotiation mode
It is causing errors on raccon because config file were generated with
translated words Vinicius Coque
05:08 PM Revision dceff62e: Put some debug info during dyndns update under debug conditionals.
Ermal LUÇI
04:51 PM Revision 193ee786: Actually add more error checking and do not schedule a scan if it is not possible to retreive the wan ip address.
Ermal LUÇI
04:41 PM Revision dd575ea4: Improve some code and check return value from _checkIP.
Ermal LUÇI
04:29 PM Revision 7788c76a: Don't overwrite the $target variable. Fixes #1415
Jim Pingle
04:10 PM Bug #1552 (New): DNS Reject Rule Crashes Router
This really does crash the box. Attaching a backtrace. I can reproduce it at will.
 Jim Pingle
03:38 PM Revision c749ef62: Check that the returned ip is an ip_address and not blindly trust the returned information.
Ermal LUÇI
01:35 PM Revision f0e80b72: Correct dhcpd statement for unknown-clients. Fixes #1555
Jim Pingle
12:30 PM Bug #1415 (Feedback): Nat reflection is installing rules with 'Array'
Applied in changeset commit:7788c76a4e9e04b356f40f2129ff5309617dad99. Jim Pingle
11:02 AM Revision f6f1c847: Update some code to be more readble and more compliant to php5
Ermal LUÇI
09:35 AM Bug #1555 (Feedback): Wrong DHCP configuration option when activating "Deny unknown clients"
Applied in changeset commit:f0e80b72a3c359f52596e9b6948178ad48d6bb1b. Jim Pingle
09:27 AM Bug #1555 (Resolved): Wrong DHCP configuration option when activating "Deny unknown clients"
Hello everybody,
There is a bug in the generated dhcpd.conf when enabling "Deny unknown clients".
the resulting... Alexis Olivier
08:43 AM Bug #1386 (Resolved): Nested port aliases causes "Unknown port" error upon loading filters
Ermal Luçi
08:37 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
Using the "Tue May 24 04:45:10 EDT 2011" version, the problem seems to be successfully fixed. :) I was able to create... Frank Zavelberg
05:35 AM Revision b2d00d91: Unset the correct variables
Seth Mos
02:28 AM Bug #1554 (Resolved): Voucher page turns grey after parameter change
"Services: Captive portal: Vouchers" page gets nearly all greyed out and no new roll can be generated (the "+" icon d... Pavel Pilat

05/24/2011

08:44 PM Revision 92bb7a41: Make it so that we use the correct fields in the right order
Seth Mos
08:13 PM Revision b7475a81: Correct the interface alias generation. Wrong copy-pasto before.
Ermal LUÇI
08:11 PM Revision 77bd744e: Correct the interface alias generation.
Ermal LUÇI
08:05 PM Revision d1a44a5f: Correct the interface alias generation.
Ermal LUÇI
08:01 PM Revision 7e107d2e: Use remoteips here.
Ermal LUÇI
07:35 PM Revision ee6d2b52: Resolves #1243. Properly handle pppoe new format of config so correct rulesets are generated.
Ermal LUÇI
05:39 PM Revision 4e12754d: Fix automatic and manual outbound NAT for PPTP. Fixes #954
Jim Pingle
05:17 PM Bug #1553: Dynamic DNS does not allow @ in the password
It looks like the (AT) is breaking the string being sent to DNS-0-Matic's server as "ksdfg" is part of the password I... Aaron Lusk
05:15 PM Bug #1553: Dynamic DNS does not allow @ in the password
DNS-O-Matic accepts the passwords with an @ symbol on their website but when you use that password on the Dynamic DNS... Aaron Lusk
04:26 PM Bug #1553: Dynamic DNS does not allow @ in the password
Do you mean that DNS-O-Matic rejects such a password?
I don't see that we are currently doing any kind of input valid... Jim Pingle
03:37 PM Bug #1553 (Resolved): Dynamic DNS does not allow @ in the password
Dynamic DNS updater does not allow for @ symbol in the password for the update service.
Run into this problem when... Aaron Lusk
05:00 PM Feature #372: Improve packet capturing interface
(1) Should be working properly now.
(3) You can already limit the size of the capture in the GUI using the "Count" f... Jim Pingle
04:49 PM Revision bdb6bd30: Fix syntax error/typo. Fixes #1372
Jim Pingle
04:48 PM pfSense Packages Bug #265 (Resolved): Bugs in Squid LightSquid SquidGuard Packages in PFsense 2.0
Squid, Squidguard, and Lightsquid have been working on 2.0 for quite some time now. Jim Pingle
04:39 PM Feature #148 (Feedback): Allow alias usage on Outbound NAT
This was added quite some time ago, almost all fields in outbound NAT can use aliases now. Jim Pingle
04:34 PM Revision 5aa28c86: Apply fix from wallabybob on the forum http://forum.pfsense.org/index.php/topic,37079.0.html
Seth Mos
04:22 PM Revision a90896fd: Move the code to touch needs_package_sync into the shell script portion of the post upgrade command. The PHP portion will fail spectacularly during the 1.2.3-to-2.0 upgrade trying to run the new binaries on the old OS. The shell script part still works. Fixes #1251 enough for what we need. The PHP code can never run properly there, but at least we can trigger the package reinstall and the rest can sort itself out when 2.0 boots the first time.
Jim Pingle
03:43 PM Bug #1552 (Feedback): DNS Reject Rule Crashes Router
need backtrace Chris Buechler
03:33 PM Bug #1552 (Resolved): DNS Reject Rule Crashes Router
UDP - LAN - net - * - !Router - 53(DNS) - WAN - none - DNS Reject
If this rule is setup on the LAN interface to re... Aaron Lusk
03:35 PM Bug #1243 (Feedback): GUI/Backend code needs updated after multi-PPPoE-server code switch
Applied in changeset commit:ee6d2b525127a05121682b1c26dd153496385b36. Ermal Luçi
02:58 PM Bug #1403: Filter Rules description do not get saved when "(quote) present as character
It looks like you can save a NAT rule with a " in the description, which could get you a filter rule with a " in the ... Jim Pingle
01:40 PM Bug #954 (Feedback): Switching to manual outbound NAT creates incorrect rule for PPTP server
Applied in changeset commit:4e12754d1ae3405a8910686a7fa0bb012c01d8da. Jim Pingle
12:50 PM Bug #1372 (Feedback): RRD is not updating VPN statistics
Applied in changeset commit:bdb6bd30651fc219acf5a0171752164d680a1c7b. Jim Pingle
12:25 PM Bug #1251 (Feedback): /tmp/post_upgrade_command.php is not executing when going from 1.2.3 to 2.0
Applied in changeset commit:a90896fd641a24d33af1db55efbf83c5cfac9974. Jim Pingle
11:49 AM Todo #1438: Add override for CSR request->response subject mismatch
Ah, ok. I wasn't looking back far enough in the git log. Looks good, thanks! Jim Pingle
11:46 AM Todo #1438: Add override for CSR request->response subject mismatch
a828210b746c074c1e701a44f5f2ec3a69ba368a
2594f4010b85e5f4571ba76a69e36a16f441b4e3 Yehuda Katz
08:07 AM Todo #1438: Add override for CSR request->response subject mismatch
I didn't see a commit bringing this into mainline, is the patch on the ticket up to date? I just want to make sure we... Jim Pingle
01:28 AM Todo #1438 (Resolved): Add override for CSR request->response subject mismatch
thanks! Chris Buechler
06:46 AM Bug #1508: Wan Fai lback
If apinger marks a gateway as down as soon as it is up it will mark it as availble and the pool will switch to it for... Ermal Luçi

05/23/2011

09:04 PM Revision e2b6e604: Also process v4 gateways on v4 gif tunnels
Seth Mos
08:59 PM Revision 7c0571ce: When editing a gif interface with a gateway we need to call system_routing_configure() for that gif interface.
Seth Mos
08:36 PM Revision ed5c640d: Test the right variable otherwise we have no hope of getting a v6 gateway
Seth Mos
07:42 PM Todo #1438: Add override for CSR request->response subject mismatch
I was going through the files again and I found that there are no more places in the code that need this change.
Thi... Yehuda Katz
06:57 PM Revision 45d4b71e: Merge remote-tracking branch 'mainline/master' into inc
Vinicius Coque
06:41 PM Revision d21d6e20: Merge remote-tracking branch 'mainline/master' into inc
Conflicts:
etc/inc/interfaces.inc
etc/inc/upgrade_config.inc
etc/inc/vpn.inc Vinicius Coque
03:51 PM Bug #1437: More validation needed on CSR generation
Any comments on this potential solution? Yehuda Katz
02:56 PM Revision 7a18dfa4: Fixes #1444. Implements the same fix that issue ermal made in #1522 to the console menu
Luiz Gustavo S. Costa
02:40 PM Bug #1508: Wan Fai lback
Correct me if I'm wrong, but this appears to only resolve the issue of bringing the WAN back up if you physically unp... Phil Parris
11:00 AM Bug #1444: Reconfiguring interfaces doesn't deconfigure previous ones
Applied in changeset commit:7a18dfa4ed218ad7b114d9cd52c008a76c811614. Luiz Gustavo S. Costa
10:59 AM Bug #1444 (Feedback): Reconfiguring interfaces doesn't deconfigure previous ones
Luiz Gustavo S. Costa
08:24 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Did you adjust your gitsync URL to point at the github location? The IPv6 tree is up-to-date with 2.0 mainline right ... Jim Pingle
04:34 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
> Sure. I did update today
Err... before weekend :-) Marcin Krol
04:33 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
> Can you please test with latest snapshot from tomorrow and let me know.
> I have done some fixes that should preve... Marcin Krol
07:24 AM pfSense Packages Todo #1551 (Resolved): OLSR Version update
The OLSR Version in the pfSense 2.0RC1 is 0.5.6-r7(release Date 09/2009).
This should be updatet becaus the aktua... Juergen Pomberger
04:49 AM Bug #1342: kernel crash with RC1 on vmware
Hi,
A new crash this morning, RC2 on a vmware guest, without open-vm-tools... Any hint or any help will be highly ... Thomas NOEL
04:07 AM Feature #1550 (Resolved): used + active + ready should match # of tickets
Would it be possible to change the captive portal status display philosophy so that used, active and ready columns ma... Pavel Pilat

05/22/2011

02:09 PM Todo #1438: Add override for CSR request->response subject mismatch
I already forked from GitHub and I am working from there.
I should have something to merge later today. Yehuda Katz
02:01 PM Todo #1438: Add override for CSR request->response subject mismatch
Another note: Our repositories have moved from rcs.pfsense.org to github (https://github.com/bsdperimeter/pfsense), s... Jim Pingle
02:00 PM Todo #1438: Add override for CSR request->response subject mismatch
Yehuda - That option is only available to users with certain levels of access here. If you want to just add a note on... Jim Pingle
01:57 PM Bug #1318: Certificate error: certificate subject does not match signing request subject
Ermal - that is exactly what is in the works. Check ticket #1438 - this ticket can probably be closed in favor of tha... Jim Pingle

05/21/2011

09:16 PM Revision 839ee78f: Further fine tune the gif tunnel default route commands.
Seth Mos
09:14 PM Revision 69bd3cc0: Comment out the interface_gif_configure(). It is causing more issues then it is solving.
Seth Mos
08:41 PM Revision 3be49c5f: Run system_routing_configure() for all the gif interfaces when the parent interfaces renews.
Seth Mos
05:29 PM Bug #1549 (Closed): Sip INVITE dropped.
As best as I can tell so far, the issue is that SIP INVITE packets in particular are being dropped for X minutes ever... William King
03:35 PM Revision 509ca889: Adding gui to choose media options for interfaces.
Evgeny Yurchenko
02:35 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
Next snapshot should. Ermal Luçi
01:07 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
> I just fixed this. Please test new snapshots.
I just updated my installation to:
2.0-RC2 (amd64)
built on... Frank Zavelberg
11:06 AM Bug #1318: Certificate error: certificate subject does not match signing request subject
Possibly reading this link https://pkiwidgets.quovadisglobal.com/pkiwidgets/matchCertAndCSR.aspx the same procedure s... Ermal Luçi
10:14 AM pfSense Packages Bug #1533 (Closed): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Jim Pingle
05:09 AM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Please close as resolved; now installs and uninstalls with no errors. Phil Jaenke
04:09 AM Bug #1545: Dynamic DNS updates fail on 3G connections
Thanks. Just waiting for an IP change before I do as I updated to the latest build so haven't got any logs when the p... Ross Williamson

05/20/2011

08:47 PM Revision 100c7be0: Do not use global router advertisements, instead configure per interface.
Seth Mos
04:54 PM Revision abcdca83: Fixes #1386. Correct unlooping nested port aliases.
Ermal LUÇI
04:10 PM Revision aa3c4866: Correct code to use correct refernces for proxy settings set in Advanced->misc. Reported-by: http://forum.pfsense.org/index.php/topic,36939.0.html
Ermal LUÇI
04:09 PM Bug #1547 (Resolved): Config Sync causes carp backup to loose most of the System configuration
Thanks for finding the problem and confirming the fix :-)
 Jim Pingle
03:44 PM Bug #1547: Config Sync causes carp backup to loose most of the System configuration
Hi,
I was just testing the latest image, I think everything is at its own place after sync... I did this test:
1) u... Michele Di Maria
10:30 AM Bug #1547 (Feedback): Config Sync causes carp backup to loose most of the System configuration
Applied in changeset commit:aa6699fbea27f15626a8901bcf34ae6bdcc3f2e5. Jim Pingle
08:57 AM Bug #1547: Config Sync causes carp backup to loose most of the System configuration
Confirmed this... On the slave, when this config change happens:
> (system): Merged in config (system sections) fr... Jim Pingle
08:10 AM Bug #1547 (Resolved): Config Sync causes carp backup to loose most of the System configuration
Hello,
with the last image (RC2, x86, built on Thu May 19 19:44:17 EDT 2011), after a config sync on the backup mach... Michele Di Maria
04:05 PM Revision f69d8346: Merge remote branch 'upstream/master'
Jim Pingle
03:45 PM Revision 2a57a4d1: Correct curl setting for setting a proxy username and password. Reported-by: http://forum.pfsense.org/index.php/topic,36939.0.html
Ermal LUÇI
02:27 PM Revision aa6699fb: Fix config sync issue. Resolves #1547 Fixed-by: Ermal
Jim Pingle
01:33 PM Feature #1548 (Closed): IPSEC Secondary Gateway
It would be nice if in Phase 1 could be possible to add a second remote gateway as backup, if phase 1 with the first ... Michele Di Maria
11:00 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
Applied in changeset commit:abcdca835cbce83d72d70bb957bbbf2118ae3d01. Ermal Luçi
10:53 AM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
I just fixed this. Please test new snapshots.
Thanks for reporting. Ermal Luçi
02:55 AM Bug #1433 (Resolved): Config sync causes CARP state change
Ermal Luçi
02:45 AM Bug #1433: Config sync causes CARP state change
Ermal Luçi wrote:
> I have made changes on the system which should fix this.
> Please test latest snaps.
Yesterd... Michele Di Maria
02:22 AM Bug #1545: Dynamic DNS updates fail on 3G connections
Please attach dyndns and PPP logs Chris Buechler
12:41 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
With an IPSEC connection running, this is the log when I connected to the PPTP, then disconnected. After the IPSEC w... David Stumpf

05/19/2011

10:45 PM Bug #1546 (Closed): Traffic Shaper fails to handle UDP traffic
I and some others are having problems with the traffic shaper handling UDP traffic, the traffic dont pass thru the as... Guilherme Barreto
10:07 PM Bug #1545 (Resolved): Dynamic DNS updates fail on 3G connections
I'm having (and have been having for a long time with 2.0, even pre-RC) problems with the dynamic DNS service not upd... Ross Williamson
09:03 PM Revision b7d56b64: Fixes #1508. When an interface is configured as static and an up event comes manually trigger rc.newwanip so gateway and other services get restarted properly.
Ermal LUÇI
06:51 PM Revision e4aa1eae: Merge remote branch 'upstream/master'
Jim Pingle
06:47 PM Revision 43a68abc: Fix clearing of PPTP/PPPoE/L2TP server raw logs. Fixes #1340
Jim Pingle
06:41 PM Bug #1386: Nested port aliases causes "Unknown port" error upon loading filters
Please find the requested files attached.
The error occured when I create a port alias group "HR_Orion", containin... Frank Zavelberg
06:26 PM Revision 51f8a7f8: Correct password variable name for input validation test on PPTP users. Fixes #1239
Jim Pingle
06:26 PM Feature #1520: Option to disable the automatic default gateway (re)selection
Seth's referring to ESP rather than GRE there Chris Buechler
07:32 AM Feature #1520: Option to disable the automatic default gateway (re)selection
One of the issues that came up was with Racoon. Even if the default gateway came back to the WAN interface the tunnel... Seth Mos
05:35 PM Bug #1433: Config sync causes CARP state change
I have made changes on the system which should fix this.
Please test latest snaps. Ermal Luçi
05:34 PM Revision bac9941b: Reject alias names that are too long. Fixes #1510
Jim Pingle
05:30 PM Bug #1342 (Closed): kernel crash with RC1 on vmware
No more interest from the author. Ermal Luçi
05:22 PM Bug #1523: DHCP settings checks only one interface IP via ifconfig to validate settings
Well you can't have two active subnets on an interface for DHCP, so it doesn't make sense to make another tab when it... Jim Pingle
05:19 PM Bug #1523: DHCP settings checks only one interface IP via ifconfig to validate settings
Well i would like this to be closed or turned to a feature.
The way dhcpd is configured from GUI is trhough tabs tha... Ermal Luçi
05:05 PM Bug #1508 (Feedback): Wan Fai lback
Applied in changeset commit:b7d56b6412280d9dde10af0175dcc84eb75a85f2. Ermal Luçi
04:54 PM Revision 12ac39e8: Merge remote branch 'upstream/master'
Conflicts:
conf.default/config.xml Jim Pingle
04:51 PM Revision dfa6deda: Fix array parsing of rc files. Resolves #1541
Jim Pingle
04:41 PM Feature #1544 (Resolved): Syslog Features
If possible would you consider adding any/all of the following features to syslog host fields in diag_logs_settings.p... Alex Vergilis
04:37 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss
K Mullin wrote:
> I have tried individual Outbound NAT rules for each OPT interface, this actually doesn't work even... K Mullin
04:24 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss
Attached are original tcpdumps of a few ICMP packets. As well as a screenshot of the Outbound NAT rules.
I have tr... K Mullin
04:10 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss
Uploads to here should be fixed. It would be helpful to see exactly how your outbound NAT rule(s) are configured.
... Jim Pingle
03:35 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss
I've tried assigning both OpenVPN instances to an OPT interfaces, this does not seem to have any effect.
Which con... K Mullin
03:03 PM Bug #1543: 2 Different Simultaneous OpenVPN Clients - Packet Loss
Do you have both of these OpenVPN interfaces assigned as OPT interfaces?
Seeing your full config might be helpful.... Jim Pingle
02:56 PM Bug #1543 (Closed): 2 Different Simultaneous OpenVPN Clients - Packet Loss
2.0-RC2 (i386) (NANOBSD)
built on Sun May 15 04:00:16 EDT 2011
I'm using a recent build, and I have 2 simultaneo... K Mullin
03:08 PM Revision c1f4af16: Show the DUID instead of the MAC. Fix online test.
Jim Pingle
02:50 PM Bug #1340 (Feedback): PPTP Rar "Clear Log" button does not work
Applied in changeset commit:43a68abc9d16878cedac8ffda46fc12af5bb18ef. Jim Pingle
02:44 PM Revision bcb24b81: Misc DHCPv6 lease view improvements (at least shows the IP...)
Jim Pingle
02:35 PM Bug #1336: PPTP VPN NAT on WAN or other external interface
I have setup multiple PPTP servers on i386 within the last week, and it worked fine, including NAT out to the Interne... Jim Pingle
02:25 PM Bug #1239 (Feedback): PPTP - Assign password to a user with ñ
Applied in changeset commit:51f8a7f8d553ff4418168e9840b0f01a49e9ed6f. Jim Pingle
02:19 PM Bug #1049 (Resolved): After reinstalling packages at bootup, WebUI not accessable (NanoBSD)
Closing this out. The underlying cause of the original errors have been fixed, and if there are any left they are pac... Jim Pingle
01:42 PM Bug #1535 (Closed): Special Characters in IPsec PSK can cause problems
This was something else entirely, a red herring. Jim Pingle
01:38 PM Bug #1522 (Resolved): Changing interface IP doesn't (always?) remove old interface IP
Confirmed this is fixed now. Jim Pingle
01:35 PM Bug #1510 (Feedback): Aliases names over 32 characters in length cause table problem errors
Applied in changeset commit:bac9941b5ea3fb67f7203726d426afdf84576150. Jim Pingle
01:15 PM Bug #1541: /etc/rc.start/stop_packages do not start/stop .sh files
Applied in changeset commit:dfa6dedad7a3741cc621669077304f44c2c79467. Jim Pingle
01:13 PM Bug #1541 (Feedback): /etc/rc.start/stop_packages do not start/stop .sh files
Should be fixed by https://github.com/bsdperimeter/pfsense/commit/dfa6dedad7a3741cc621669077304f44c2c79467 Jim Pingle
08:25 AM Bug #1541 (Resolved): /etc/rc.start/stop_packages do not start/stop .sh files
Hi,
foreach doesn't works after array_flip()...
=================
--- ./etc/rc.start_packages.orig 2011-05... Thomas NOEL
12:56 PM Revision 153fa447: Fix conf.default version
Jim Pingle
12:56 PM Revision a83d01d8: Fix conf.default version
Jim Pingle
12:50 PM Revision 27d0722d: Merge remote branch 'upstream/master'
Jim Pingle
11:00 AM Bug #1542: Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>
created forum thread: http://forum.pfsense.org/index.php/topic,36898.0.html Epi Salamanca
10:32 AM Bug #1542 (Feedback): Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>
That error would point to your config being empty or unparseable. Look farther back in the boot log for more detail. ... Jim Pingle
10:27 AM Bug #1542 (Closed): Fatal Error during Upgrade from 2.0-RC1 to latest snapshot 2.0-RC2<May 18 built>
Hi,
I've just upgraded from pfSense-2.0-RC1-i386-20110226-1530.iso
to latest snapshot (pfSense-2.0-RC1-i386-2011... Epi Salamanca
07:19 AM Bug #1540: Captive Portal Vouchers Synchronization
It is not an autocomplete problem, I did the test on several browsers and computers.
I tried to delete the credent... Toon Vandenneucker
06:51 AM Bug #1540: Captive Portal Vouchers Synchronization
Toon Vandenneucker wrote:
> I know I can't do that, but I can't make the master stop from synchronizing its database... Michele Di Maria
04:24 AM Bug #1540: Captive Portal Vouchers Synchronization
I know I can't do that, but I can't make the master stop from synchronizing its database from the slave.
Even when I... Toon Vandenneucker
03:45 AM Bug #1540 (Feedback): Captive Portal Vouchers Synchronization
it sounds like you're syncing from the slave to the master and the master to the slave, you can't do that. Chris Buechler
03:25 AM Bug #1540 (Closed): Captive Portal Vouchers Synchronization
I've set up two teaming firewalls. On the master, I've defined a voucher roll.
When I want my slave to retrieve the ... Toon Vandenneucker

05/18/2011

11:49 PM Todo #1438: Add override for CSR request->response subject mismatch
I am not quite done yet, but I was looking at this ticket and there does not seem to be a way that I can update the p... Yehuda Katz
11:31 PM Feature #1184: Certificate Manager - Ability to add nsCertType=SERVER extension to certificates
This one is a bit tricky, I've looked into it before and came up empty. There doesn't seem to be a good way to do thi... Jim Pingle
11:17 PM Feature #1184: Certificate Manager - Ability to add nsCertType=SERVER extension to certificates
+1 Request for this. I will correct though, not having ns-cert-type does not allow a MitM attack except from other VP... Rhys Rhaven
11:21 PM Bug #1437: More validation needed on CSR generation
Three places call `openssl_csr_new(...)`.
None of those have any validation.
All three are in /etc/inc/certs.inc
I... Yehuda Katz
11:09 PM Revision 2f6532d5: Fixes #1514. Differentiate in the carp settings between layer7, limiter and queues so layer7 and limiters do not rely on queues being active.
Ermal LUÇI
10:49 PM Revision 941baf1e: When uninstalling packages try to remove even any rc files created by packages.
Ermal LUÇI
10:40 PM Revision 6c19757e: Restore running custom scripts under /usr/local/etc/rc.d directory since it causes regressions and its a feature used by many users.
Ermal LUÇI
09:56 PM Revision c415a55b: Micro optimization.
Ermal LUÇI
09:54 PM Revision bb4fcffd: Fixes #1522. Call interface reconfigure so we bring down the interface and than re-configure it.
Ermal LUÇI
09:31 PM Revision f51d4f98: Ticket #1534, #1433. Remove custom sync code for vip, since it array_merge() replaces same keys data when merging. But make the code for reloading only changed vips after merge better and some more checks.
Ermal LUÇI
09:11 PM Revision 51611440: Ticket #1534, #1433. Properly merge carp interfaces and do not reload carp interfaces that have not change any configuration parameter. Also make merge_config_section_xmlrpc() an alias for restore_config_section_xmlrpc() since that what it is.
Ermal LUÇI
09:02 PM Todo #1539 (Closed): difference between git repository and this redmine repo
The repos moved to github over the weekend.
https://github.com/organizations/bsdperimeter Jim Pingle
08:48 PM Todo #1539 (Closed): difference between git repository and this redmine repo
_I know it's not really a bug, but this problem prevents me to properly follow the evolution of pfSense._
On this ... Thomas NOEL
08:56 PM Revision ce107ca5: When converting 1.2.3 LB pools to 2.0 gateway groups, strip invalid characters from the group names and update any rules referencing the old name. Fixes #1515
Jim Pingle
08:35 PM Revision ee7f1647: Correct default code disabling! Ponty-hat: myself
Ermal LUÇI
07:43 PM Revision 77b70d6b: Disable the default route switching code since its causing more issues than solving. It needs more work to get re-enabled.
Ermal LUÇI
07:10 PM Bug #1514 (Feedback): Limiters not syncing
Applied in changeset commit:2f6532d55221f86cbc717350eafb8e4404181cbd. Ermal Luçi
06:57 PM Feature #1520: Option to disable the automatic default gateway (re)selection
This has been disabled at all for now.
Switch to 2.1 as target. Ermal Luçi
01:16 AM Feature #1520: Option to disable the automatic default gateway (re)selection
from what we discussed on this previously, rather than selecting a default or not, there should be 3 options in a dro... Chris Buechler
05:55 PM Bug #1522 (Feedback): Changing interface IP doesn't (always?) remove old interface IP
Applied in changeset commit:bb4fcffd7d89b48429bae5f8913f5c17bfee6952. Ermal Luçi
05:00 PM Bug #1515 (Feedback): Upgrading from 1.2.3, Load Balancer Pool to Gateway Group needs to strip invalid characters
Applied in changeset commit:ce107ca58c61c8f166e672a5ad93fa2daee7bec4. Jim Pingle
04:53 PM Revision 7171b7b6: Fix PPTP server radius settings upgrade from 1.2.3. Fixes #1292
Jim Pingle
03:02 PM Bug #1525 (Feedback): OpenVPN passtos does not work
Committed that little patch here:
https://github.com/bsdperimeter/pfsense-tools/commit/f2b7c612a4434df1d6ac9314a2f98... Jim Pingle
08:17 AM Bug #1525: OpenVPN passtos does not work
My c is a bit rusty so it could have gone either way :-)
If that header patch does the job that is much nicer. The... Jim Pingle
07:23 AM Bug #1525: OpenVPN passtos does not work
Whatever! ;-) This is even shorter... ptos is not used anywhere else:... Torsten Vielhak
06:31 AM Bug #1525: OpenVPN passtos does not work
Are you sure? The parameter is a pointer to the address of ptos (&ls->ptos), so a cast would lead to unpredictable re... Torsten Vielhak
12:55 PM Bug #1292 (Feedback): PPTP server with Radius breaks on upgrade from 1.2.3 to 2.0
Applied in changeset commit:7171b7b65dfe9b4a93220b31d689c0fa7e1da40e. Jim Pingle
12:52 PM pfSense Packages Bug #1538 (Closed): openvpn-client-export.inc -- issue with ca.crt lookup
Jim Pingle
12:47 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup

Yes I updated to the official RC1.
So I guess it will be pushed on to the next RCx.
Mistery Solved :)
... Epi Salamanca
12:41 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup
In the current code there is already a ksort there. I assume you upgraded to the official RC1 and not to a snapshot?
... Jim Pingle
12:15 PM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup

I've just migrated, 2 days ago. So I imported it 1 day ago.
The issue seems to be with my ca_subject not matchi... Epi Salamanca
10:25 AM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup
How long ago did you import that certificate into a 2.0 install? I checked a CA/Cert I recently had imported into a V... Jim Pingle
09:34 AM pfSense Packages Bug #1538: openvpn-client-export.inc -- issue with ca.crt lookup

Jim,
you are right, the CA/certificate|key and server/certificate|key are both imported.
But the server/certi... Epi Salamanca
07:47 AM pfSense Packages Bug #1538 (Feedback): openvpn-client-export.inc -- issue with ca.crt lookup
If the server certificate has no caref, then the system believes it wasn't generated against any CA. If the server ce... Jim Pingle
06:59 AM pfSense Packages Bug #1538 (Closed): openvpn-client-export.inc -- issue with ca.crt lookup
Hi,
I'm currently running pfSense 2.0 RC1.
I've just installed OpenVpn-client-export package. Whenever
that I... Epi Salamanca
01:59 AM Revision 0d5c21f7: fix missing images for CRLs
Chris Buechler
01:30 AM Bug #1517 (Feedback): Captive Portal sends RADIUS output accounting packets with zero value
what version?
what you attached is an access request, no accounting packets there. Chris Buechler
01:18 AM Bug #1501 (Feedback): Captive Portal Logout popup does not work
on which version? Chris Buechler

05/17/2011

10:23 PM Revision 7eea4407: When uninstalling a service actually stop it first.
Ermal LUÇI
10:20 PM Revision b5058001: Do not call stop_service since its already called from start_service itself.
Ermal LUÇI
10:19 PM Revision b27ade8e: Test for null names passed to these functions as a safety precaution.
Ermal LUÇI
10:18 PM Revision f1dbcf47: Actually sync_package before starting it again. Also include restart in the log message since it might be like that.
Ermal LUÇI
10:14 PM Revision aed6fc72: Ticket #1534. Change rc.start_packages and rc.stop_packages to php scripts so they do a proper job at start/stop packages, rather than assume every package has a .sh script which is not true. It mostly reuses code from rc.packages which is not used anywhere as of now!
Ermal LUÇI
10:08 PM Revision 8bf2e9e5: Test for null names passed to these functions as a safety precaution.
Ermal LUÇI
09:47 PM Revision 098820e2: Ticket #1534. Check if a rc file exists before trying to run it. Also return if we execute a stop command through rc file to be consistent with the start_service function.
Ermal LUÇI
09:18 PM Revision 67d78c87: Ticket #1534. Serialize all the xmlrpc requests coming to the firewall. Seems such request can stomp into each other and create either corruption of xmlrpc request or other issues.
Ermal LUÇI
07:13 PM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Jim P wrote:
> Is this on i386 or amd64? I just tried i386 this morning and it installed fine, initialized all of th... Phil Jaenke
03:15 PM pfSense Packages Bug #1533 (Feedback): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Jim Pingle
03:15 PM pfSense Packages Bug #1533: Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Is this on i386 or amd64? I just tried i386 this morning and it installed fine, initialized all of the KLDs, and oper... Jim Pingle
06:29 PM Bug #1534 (Feedback): rc.newwanip issues (CARP slave problems, package issues)
Ermal Luçi
06:28 PM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
Can you please test with latest snapshot from tomorrow and let me know.
I have done some fixes that should prevent t... Ermal Luçi
11:08 AM Bug #1534 (Resolved): rc.newwanip issues (CARP slave problems, package issues)
Quoted from here http://forum.pfsense.org/index.php/topic,36802.0.html
> I've mentioned some rc.d problems in othe... Jim Pingle
06:24 PM Revision f5adee3f: Make sure all CP form elements are disabled/enabled with the master checkbox.
Jim Pingle
06:04 PM Revision a7af5ddc: Don't put an empty PSK into the file, and try to avoid extra whitespace to be safe.
Jim Pingle
04:38 PM Bug #1537 (Feedback): Openvpn Client Exporter does not clean up itself
I tried on a full install and nanobsd and each time it has cleaned up after itself.
Are you on the most current ve... Jim Pingle
03:51 PM Bug #1537 (Closed): Openvpn Client Exporter does not clean up itself
Openvpn Client Exporter does not clean up files that are used to generate the archive but only the archive itself.
 Ermal Luçi
04:05 PM Feature #1536 (Feedback): Openvpn Client Exporter
Applied in changeset commit:882406aedba41f9871cde9228c79c0fba30488b8. Jim Pingle
03:44 PM Feature #1536 (Resolved): Openvpn Client Exporter
It would be nice for the Openvpn Client Exporter to be able to export dyndns configured hostnames in the config. Ermal Luçi
03:12 PM Bug #1525: OpenVPN passtos does not work
Can you try that with a cast instead of reassignment? You should be able to use (int) before that variable name for a... Jim Pingle
11:09 AM Bug #1525: OpenVPN passtos does not work
That would be great ;-) The patched file ist openvpn-2.2.0/socket.h... Torsten Vielhak
11:01 AM Bug #1525 (Needs Patch): OpenVPN passtos does not work
Jim Pingle
11:01 AM Bug #1525 (New): OpenVPN passtos does not work
Jim Pingle
11:01 AM Bug #1525: OpenVPN passtos does not work
Well if you found a workaround, even if they don't patch it, we can. Just do a diff -u file.c.orig file.c and post th... Jim Pingle
10:51 AM Bug #1525: OpenVPN passtos does not work
see ticket #135:
https://community.openvpn.net/openvpn/ticket/135
I found the problem (see ticket above). Let's s... Torsten Vielhak
01:58 PM Bug #1535 (Feedback): Special Characters in IPsec PSK can cause problems
A client-side issue seems more likely. I put special characters all over a PSK and I was still able to connect and pa... Jim Pingle
01:32 PM Bug #1535: Special Characters in IPsec PSK can cause problems
I've used a wide range of special characters too without any issues. Maybe a client side issue in this case? Or maybe... Chris Buechler
01:20 PM Bug #1535: Special Characters in IPsec PSK can cause problems
Note: I am currenlty using '%', '@' and '.' as non-letter/digit character on a 1.2.3 pfSense system, with a Juniper r... Pierre POMES
11:24 AM Bug #1535 (Closed): Special Characters in IPsec PSK can cause problems
A customer reported that having any PSK with special characters caused problems with all mobile clients connecting an... Jim Pingle
11:34 AM pfSense Packages Bug #1080 (Closed): Snort Installation fails
Scott Ullrich
11:27 AM pfSense Packages Bug #1080: Snort Installation fails
seems resolved now. Package is able to instal will no issues. Cino .
11:33 AM Bug #1509: Traffic Shaper (altq) not working with 82574L interfaces?
My MB is Supermicro X7SPA-HF, which has 2 Intel 82574L NICs built-in. They are setup for my WAN/LAN and traffic shapi... Cino .

05/16/2011

08:57 PM Revision aab2a3f6: Update default gitsync url to be the github URL. If anyone had done a gitsync before to the standard URL, they'll need to either rm /root/pfsense/ or cd /root/pfsense/pfSenseGITREPO/pfSenseGITREPO; git remote set-url origin git://github.com/bsdperimeter/pfsense.git; and then gitsync again.
Jim Pingle
08:47 PM Revision 1a137650: Fixup MAC display on this other path too
Jim Pingle
07:40 PM Revision 701989fb: Print the MAC mfg on another line in a smaller font if it's found. Less obtrusive than completely replacing the MAC.
Jim Pingle
06:57 PM pfSense Packages Bug #1533 (Closed): Open-VM-Tools 313025 fails to install, reports installed, can't uninstall
Build 313025 of Open-VM-Tools fails to install due to an error in open-vm-tools.inc - it aborts installation due to a... Phil Jaenke
02:26 PM Revision 73bf4a46: Use base 1000 on user graphs and display cumulative of Total users logged in over the 'x' period.
Warren Baker
02:25 PM Revision 9cd72856: Ensure that $timestamp is only ever written out if it contains a value and let file be retained through reboots.
Warren Baker
02:24 PM Revision 24fa000b: Remove Total users graph this has become redundant and replaced with a cumulative result.
Warren Baker
01:08 PM Bug #1508: Wan Fai lback
For anyone watching this bug report, i've created a workaround until it gets officially fixed.
create a file /root/f... Phil Parris
10:26 AM pfSense Packages Bug #1531 (Closed): ipfw broken in 2.0-RC1
Jim Pingle
10:10 AM pfSense Packages Bug #1531: ipfw broken in 2.0-RC1
sorry for the noise.
I just came across some ipfw commands while digging for IPv6 settings and
haven't had a look ... Frank Heydlauf
07:51 AM pfSense Packages Bug #1531 (Feedback): ipfw broken in 2.0-RC1
ipfw isn't loaded by default. If you have a feature enabled that needs IPFW (captive portal, limiters, etc) it will b... Jim Pingle
04:03 AM pfSense Packages Bug #1531 (Closed): ipfw broken in 2.0-RC1
using:
8.1-RELEASE-p2 FreeBSD 8.1-RELEASE-p2 #0: Tue Apr 19 23:38:02 EDT 2011
sullrich@FreeBSD_8.0_pfSense_2.0-sn... Frank Heydlauf
09:34 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
count my vote for it as well and one more thing i always wished the ARP table and the DHCP leases table had was the d... Bipin Chandra
09:26 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
I have no issues either. Would it be possible to add the code from this thread for this add-on? This way you can see ... Cino .
04:38 AM Bug #1529: bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
SOLVED Bipin Chandra
09:32 AM Bug #1532 (Closed): test_pfSpkg code breaks packages
Becuase the new test_pfSpkg() function gets added to each package's .inc file with the same name, the package system ... Jim Pingle
07:54 AM Bug #1525 (Closed): OpenVPN passtos does not work
Thank you for taking the time to track it down, it's really appreciated.
If you hear back anything from them, be s... Jim Pingle
05:11 AM Bug #1525: OpenVPN passtos does not work
You are right! It looks like an OpenVPN problem in the FreeBSD port. I
compiled OpenVPN 2.2.0 with FreeBSD8.1
Thi... Torsten Vielhak
06:20 AM Revision 62a29fe3: Resolves #1529. Check if the file exists before opening it.
Ermal LUÇI
04:54 AM Bug #1514: Limiters not syncing
Ah, sorry.
What we see here are the limiter rules not replicating. Slaygon Censor

05/15/2011

08:50 PM Bug #1529 (Feedback): bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
Applied in changeset commit:4e4de1d1af14cd8849418ca46c144966a8129a4c. Ermal Luçi
10:56 AM Bug #1529 (Resolved): bug related to ID: 57f2840e1faacf50b1a93d7954bb576eca77475b
i get this under dhcp leases and arp table
Warning: file(/usr/local/share/nmap/nmap-mac-prefixes): failed to open ... Bipin Chandra
07:15 PM Revision dcbbcf64: Remove onlink flags
Seth Mos
02:28 PM Feature #1530: Super vlan(RFC 3069)
I forgot to mention that in the post above, translated from google, the vlans from ng_vlan can be safely exchanged wi... Ermal Luçi
02:27 PM Feature #1530 (Needs Patch): Super vlan(RFC 3069)
According to this forum post http://forum.pfsense.org/index.php/topic,36722.msg189344.html#msg189344 the super-vlan c... Ermal Luçi
09:58 AM Feature #1431: PPPoE LQR Echo
updated to RC2 build on 15th May .. PPPoE connection does not disconnect at all, are there any changes on the ppp mod... Calvin Teh
 

Also available in: Atom