Activity
From 06/19/2011 to 07/18/2011
07/18/2011
-
07:44 PM Bug #1694: /etc/hosts gets dhcp clients entries with wrong domainnames
- Chris Buechler wrote:
> Needs to be fixed at some point, but if you end up with a loop like that you have something ... -
06:49 PM Bug #1694: /etc/hosts gets dhcp clients entries with wrong domainnames
- Needs to be fixed at some point, but if you end up with a loop like that you have something configured in a non-optim...
-
- For 2.0-RC3 (i386) snapshot of Fri Jul 15 19:39:23 EDT 2011
The dynamic entries being written to /etc/hosts on a... -
- Presently, local services do not use the DNS forwarder (if enabled).
The solution (recommended by the dnsmasq manp... -
05:00 PM Bug #1690: PPPoE Server not passing IP from RADIUS server
- Ermal Luçi wrote:
> Can you please be more clear?
> Exapnd what works and what not and possibly go first through th... -
08:59 AM Bug #1690: PPPoE Server not passing IP from RADIUS server
- Can you please be more clear?
Exapnd what works and what not and possibly go first through the forums? -
01:45 PM Feature #1687: GetText code inspection
- We are reviewing the gettext code, strings with incorrect use of printf are already fixed. Soon they will be merged i...
-
01:00 PM Bug #749: Downstream queues should not be assigned to LAN interfaces
- I tried to test this out, but the description that Ermal added doesn't clearly tell me what I'm looking for. At firs...
-
11:19 AM Bug #1629: invalid state table entries after WAN IP change
- I had it reset again this weekend which took the asterisk server down again. Unfortunately I wasn't near a computer ...
-
07:48 AM Bug #1545: Dynamic DNS updates fail on 3G connections
- Ross Williamson wrote:
> So I have no idea what is going on. This is on the latest snapshot which appears to be Jul ... -
04:55 AM Bug #1545: Dynamic DNS updates fail on 3G connections
- For whatever reason dynamic DNS has completely stopped working for me now. I can't even force an update. On first boo...
-
06:24 AM Bug #1493: pf blocks all traffic following filter reload.
- Similar problem here:
Hardware: Fujitsu Primergy; VMWare VSphere
pfSense 2.0-RC3 (amd64)
built on Mon Jul 4 ... -
05:19 AM Bug #1493: pf blocks all traffic following filter reload.
- Hi,
I have tested with a vanilla install of pfSense.
I consistently encounter this issue. I have tried i386 pf... -
- that's a configuration issue, the PPTP clients are likely on the LAN subnet which means they fall into the P2, your O...
-
03:31 AM Bug #1692 (Rejected): OpenVPN Clients can't route to IPSEC peer
- Client PC connects using OpenVPN to a central pfsense firewall (2.0-RC3). Central firewall has IPSEC tunnel to remote...
07/17/2011
-
06:21 AM Bug #1691 (Closed): Virtio driver not working
- In commit:2ac109889ae1afeeea6cdd8dbcc339023a3f32a0 the virtio driver was added from upstream freebsd.
However, when ... -
- I have tried both with windows RADIUS and the packaged offered as an add-on for pfSense (freeradius) and both with th...
07/16/2011
-
08:53 PM Bug #1629: invalid state table entries after WAN IP change
- No, no, Im not talking about IPv6 in pfSense, Im talking about IPv6 NAT passthrough in the "System: Advanced: Network...
-
- IPv6 is a completely different version, that's 2.1 not 2.0, post info to the IPv6 board on the forum.
-
- I have the same problem (after the fixes) with IPv6 tunneling, so this is not resolved.
-
02:14 AM pfSense Packages Bug #1689 (Resolved): Home URL broken from package paths
- The pfsense image in the top left corner which takes the user back to the index.php page has it's url dynamically cre...
07/15/2011
-
- The DHCP server subnet input validation in 2.0 checks what IP is configured on the interface, so it's impossible to c...
-
05:13 PM Feature #1687: GetText code inspection
- <td colspan="2" class="listtopic">< ? php printf (gettext("Last $nentries PPP log entries"),$nentries); ? ></td>
-
- ver 2.0
Quickly i able to find it here
/diag_logs_ppp.php [91]
<td colspan="2" class="listtopic"><?php printf ... -
- Can you please point to such locations?
-
- In some cases, you can find such code:
$myname = 'NameName';
$myvar = 'abcd123';
$mytext = gettext("This is {$m... -
- guiconfig.inc
function print_info_box_np($msg, $name="apply",$value="Apply changes")
This function is called with... -
- This has been fixed for now by nullifying the gateway selection silently.
-
-
- Plese test latest snapshots.
-
- In the meantime you can get back in by resetting the LAN IP from the console, entering the same information again. Du...
-
03:48 PM Bug #1685: Web configurator silently fails when "Private key does not match the certificate public key"
- This is for version 2.0 RC3 x86.
-
- After choosing a particular certificate for the web administrator under System -> Advanced, the web server fails to r...
-
- This has been worked around by creating a queue that can go full interface speed.
-
- Can't reproduce this on current snapshots, full or nanobsd. Clearing logs returns fast and works as expected. Please ...
-
- So far the only way I've found to fix this is reboot. Restarting the web administrator from the console just printed ...
-
02:17 PM Bug #76: Changes needed to traffic shaper since its rewrite
- Sorry, I don't understand. Can't do what?
Isn't the error I am experiencing exactly same as #2 in the description o... -
- yes but that's no longer a bug, in this ticket that wasn't checked correctly, it is now. you can't do that.
-
- I am trying RC3 today and I still see the error with Single-WAN-Multi-LAN:
*"You cannot set the VoIP upload bandwi... -
- Just committed a fix for this.
You have to select the CA where you configure LDAP settings for it to be used.
This ... -
07:56 AM Feature #1683 (New): PF scrub min-ttl option
- Idea from this forum post http://forum.pfsense.org/index.php/topic,27206.0.html
It would be nice if pfsense have thi... -
- Idea from this forum post http://forum.pfsense.org/index.php/topic,36066.0.html
It would be nice if pfsense have thi... -
07:24 AM Bug #1545: Dynamic DNS updates fail on 3G connections
- i have the same issue, pfSense RC3 with two WAN.
Primary with lan connection to a router with fixed ip
Secondary PP... -
05:57 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- i have to restart racoon service in order it works properly after pptp client disconnect.But i'm not sure this shutdo...
-
- I think that restart is user-triggered, people restart racoon to fix it. The log that looks interesting to me is:
... -
- Well i need the system logs since seems something is resetting ipsec daemon....
-
- tun IPs on OpenVPN connections fail the local IP check used for the HTTP_REFERER web interface protection, so the def...
-
- You would have to load puc manually as a module from loader.conf but the patch is imported now.
-
- Applied in changeset commit:b451691f08e5615158b04c767bc6c7cb876bc913.
-
- Applied in changeset commit:e6bd231242cb43ad7e8fca8635d6adcb17f38186.
-
- This should be fixed in latest snapshots.
-
- resolv.conf was populated in this case.
This instance was exacerbated by AutoConfigBackup so it was even worse th... -
- Can you check if /etc/resolv.conf has any entry during this time?
-
- still hit this and it creates major issues with trying to operate or troubleshoot the system when there's no Internet.
-
- Can you please try by disabling msix and tso on bge interfaces?
-
- There was a reason of removing automatic redirection.
Mostly was because of automatic posting that could break thing...
07/14/2011
-
- The one shot patch is not needed at all now.
You can just increase the sysctl sockmaxbuf to give the same results. -
- Please open a forum thread to discuss this and eliminate any possible configuration errors. IF a bug has been confirm...
-
12:23 PM Bug #1680 (Rejected): Automatic Nat inter IpAlias
- I believe this is a bug
PfSense doing this automatically Nat inter all IpAlias of a interface
In my setup I have
... -
03:39 AM Bug #1679: Login redirect issue
- Note:
This fix keeps the redirect for non privileged users active.
-
- 1. Login and go to the captive portal status page (URL: http://your-pfsense-box.org/status_captiveportal.php)
2. Wai...
07/13/2011
-
- The problem here is that a generic way of implementing this is needed.
Some javascript tricks are needed which with ... -
- It appears just having an IPv6 gateway configured that's unreachable will result in panics several times a day, even ...
-
-
- Ermal great thanks for your fix,i had same problem(voip queue in ipsec vpn).After your last fix it's working just fin...
-
10:12 AM Bug #1344: Replace prototype javascript code with jQuery
- jQuery UI Core has a progress bar builtin:
http://jqueryui.com/demos/progressbar/
It is easy to control, is built... -
07:17 AM Bug #1344: Replace prototype javascript code with jQuery
- Progress bar replacement?
http://t.wits.sg/misc/jQueryProgressBar/demo.php for the demo
http://t.wits.sg/jquery... -
- it does work
-
07:30 AM Bug #1664: DHCP Server no longer allows empty gateway
- I have tested and can confirm the fix.
It's working as expected now.
// rancor
07/12/2011
-
- Need to change the Captive portal pop-up page to use techniques to bypass pop-up blockers.
-
04:17 PM Bug #1666: OpenVPN interface doesn't get added to bridge after reboot
- Tried the latest snapshot which contains this patch, but still doesn't get the OVPN interface added to the bridge aft...
-
- That is not the IP to listen for connections on, it is the IP to be used by connecting clients as their gateway on th...
-
12:43 PM Feature #1673 (Rejected): PPTP VPN Server Address by Interface Name
- Could the ability to type the interface name (eg WAN) in the server address instead of just the IP address be added. ...
-
- Andreas Bochem wrote:
> Same issue persisting on latest _2.0-RC3 (amd64) built on Mon Jul 4 16:49:48 EDT 2011_.
T... -
07:10 AM Bug #1598: IP Alias VIP configured on a CARP VIP, resets CARP VIP on sync
- Same issue persisting on latest _2.0-RC3 (amd64) built on Mon Jul 4 16:49:48 EDT 2011_.
-
- What snapshot are you on?
There have been made some fixes lately to fix this can you please test?
By looking at the ...
07/11/2011
-
09:23 PM Bug #1627: VPN VOIP Traffic Ignoring Traffic Shaper Queues
- 2.0-RC2 (i386)
built on Fri Jun 10 21:40:17 EDT 2011
I added our config with ip's and keys changed, and a screen... -
- I got the update installed last week but haven't had the IP change on me yet (surprisingly). I'll update this once t...
-
- Have you tested this on 2.0?
-
- There may also be some routing concerns when used on a bridge. See QYX-233317.
-
01:50 PM Feature #1668: OpenVPN Client Export support Tunnelblick
- Ok good to know. I don't have a Mac to try it out on but I know some of my users have Macs at home so the support qu...
-
- The config archive works fine for Tunnelblick.
-
- I typo'ed the name of the client in the subject and don't have permissions to correct it. Could someone please corre...
-
- TunnelBrick is an opensource MacOSX OpenVPN client that seems to be pretty active. https://code.google.com/p/tunnelb...
-
- If you setup an L2TP server and try to connect to a CARP VIP on the same interface, it does not work. The server resp...
-
- Applied in changeset commit:5237d356f41b6ac44cabaaa17208795b8471abcd.
-
- Applied in changeset commit:bf17eb72c18ee9b751f9e3eb22a082fd9c273ac9.
-
- When using an interface assigned to an OpenVPN tap interface in a bridge, it won't be added correctly after rebooting...
-
- thanks
-
04:55 AM pfSense Packages Bug #1631: incorrect syntax of /boot/loader.conf after open-vm-tools package installed
- The same installation sequence now works fine. All OK.
07/10/2011
-
-
12:05 PM
Bug #1664: DHCP Server no longer allows empty gateway
- Applied in changeset commit:7988ce7581efee9aef0184edfb2eeb2f352477a8.
-
12:05 PM
Bug #1664 (Feedback): DHCP Server no longer allows empty gateway
- Applied in changeset commit:45d1024db3d3d32fb26f2b6c42460cbe98e24096.
-
- The default is to use the IP on this interface of the firewall as the gateway but if I leave this empty (default) it'...
-
-
02:52 AM Bug #1608: manual update on nanobsd and alix fails always
- this is fixed now
-
- will this be fixed in 2.0?
-
- this is fixed now
-
- Need to add support for DHCPv6 relay. Can just copy DHCP Relay as DHCPv6 Relay, the existing dhcrelay supports IPv6 r...
-
- If a gateway is chosen for a DNS server on system.php, the gateway must be the same protocol as that of the DNS serve...
-
- system_routes_edit.php doesn't validate that the gateway selected is the same protocol as the entered "Destination ne...
-
- Members of a gateway group must all be of the same protocol, IPv4 or IPv6 only, not both. Currently you can create a ...
-
- Currently you can pick an IPv4 gateway for an IPv6 firewall rule, and an IPv6 gateway for an IPv4 firewall rule. Need...
07/09/2011
-
03:36 PM Bug #1344: Replace prototype javascript code with jQuery
- Neat tool for generating network maps!?
http://jsplumb.org/jquery/anchorDemo.html
-
- Ermal Luçi wrote:
> Can you please post the system logs more complete not the ipsec related part?
Ermal,I special...
07/08/2011
-
- it has no input validation currently (partially because it can't check the subnet before the interface is configured)
-
08:50 PM Bug #1658 (Resolved): Adding new Gateway in interface page needs input validation
- When adding a new gateway in the interface page, it asks you to specify a "Gateway Name" for the interface; when subm...
-
-
- Running 2.0-RC3 (i386) Fri Jul 8 06:31:45 EDT 2001
I just tried adding a gateway that was outside the subnet I'm u... -
- this only applies when the tz is changed while the system is running, and has always been the case. I've always just ...
-
- During setup the timzeone is set correctly but some utilities in base do not honor it which creates some problems to ...
-
05:20 PM Bug #1598: IP Alias VIP configured on a CARP VIP, resets CARP VIP on sync
- For what it's worth, I have a pair of devices running 2.0-BETA5 (8.1-RELEASE-p2 #0: Tue Jan 25 20:12:38 EST 2011 ...
-
- The filesystem is mounted noatime, so even if it's left rw, it still isn't touched except when the system wants to wr...
-
- Using nanobsd i386 8.1-release-p4 Jul 8 06:31:18 EDT 2011, after resetting to system default and rebooting, the / mou...
-
- I now see bug #1279, which discusses the rw nanobsd mount issue.
Josh
-
- I'm not sure how to test this since in the latest snapshot the / mount is still set to rw by default. Erik, you ment...
-
- Running 2.0-RC3 (i386) Tur Jul 7 01:04:41 EDT 2011
The logout popup does work for me. I'm not using Radius or acc... -
- It would be useful in the future if Diag > States could kill states more selectively by port number instead of only b...
-
-
09:21 AM Bug #1639: Port alias missing input validation in firewall_rules_edit.php
- Basically it checks for invalid combinations. I did not feel safe to call is_alias(something) without making sure 'so...
-
- Isnt this commit a bit drastic?
Possibly just check impossible combination should be enough? -
-
- changing the WAN IP and gateway works fine, whether in re-running the setup wizard or interfaces.php. Post to the lis...
-
04:27 AM Bug #1655 (Rejected): Change WAN address and their gateway
- When change the IP of the WAN and its gateway (the wizard proposes WANGW).
The gateway is not working properly, prob... -
- Can you please post the system logs more complete not the ipsec related part?
07/07/2011
-
- Ermal Luçi wrote:
> Can you please test latest snapshots and see if this happends again.
Ermal any changes with l... -
11:31 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- Just tested the latest snapshot 2.0-RC3 (amd64) built on Thu Jul 7 16:01:09 EDT 2011 - no change. All VPNs still dro...
-
- They're up now, the branch changed on the snapshots so the links were not pointing to the right place. Also, auto upd...
-
- Jim P wrote:
> That snapshot was not created after Ermal's note. Please wait for the next new snapshot. It should be... -
- Commit https://github.com/bsdperimeter/pfsense/commit/cfceda6d3528d4cdb87fccdb00f28ce194bf393f
-
- > A port alias can be assigned only as the "to" or "from" port, which is invalid and results in a pf syntax error.
... -
- That's expected to happen in 1.2.3 (it has no provisions for dealing with that scenario, only 2.0 does).
-
- Commit https://github.com/bsdperimeter/pfsense/commit/9bc59815c6eba7051a401404d4d0b0c7842a9d2f
-
05:01 PM Bug #1654: miniupnpd.pid located in wrong folder
- gitsync my pfsense and noticed miniupnpd.pid is now located in /var/run after reboot
thanks again guys! -
- thanks for the quick fix... I'll test once a new snapshot comes out
-
04:00 PM
Bug #1654: miniupnpd.pid located in wrong folder
- Applied in changeset commit:d8532e5db1abd2e4f6fd07998629936967fc9e67.
-
03:15 PM
Bug #1654 (Feedback): miniupnpd.pid located in wrong folder
- Applied in changeset commit:aa6798c07088b4a45f85e2626576e33876d04263.
-
- Running snapshot Thu Jun 30 17:12:48 EDT 2011 currently and also noticed it on Jul 4th snapshot.
miniupnpd.pid is ... -
- Lo Zio,
I like your suggestions, so I'm going to add my own wish list items for the CP here.
- Hide certain po... -
- I can confirm that this is fixed with the Jul 7 01:04:41 snapshot.
"ipfw table 1 entrystats 192.168.1.130" Now ret... -
08:48 AM Bug #1653: CP timeout bug: get_last_activity
- Also "Last activity" info from Captive portal status (/status_captiveportal.php?order=&showact=1) is wrong.
It shows... -
- I confirm this is the behaviour of my previus bug report (1647).
As per previous request, here is the log:
Jul 6 13... -
-
01:02 AM Bug #1607: MBUF usage grows geometrically
- After 10 days uptime my MBUF Usage has almost completely levelled off at 6062 /9856. The second number was at 9730 fo...
07/06/2011
-
- That snapshot was not created after Ermal's note. Please wait for the next new snapshot. It should be uploading soon.
-
- Ermal Luçi wrote:
> Can you please test latest snapshots and see if this happends again.
Just tested on 2.0-RC3 (... -
06:11 PM Feature #1260: Allow other Backends for Remote Access ( SSL/TLS + User Auth )
- Much appreciated!
Thanks -
- I changed the code around a while back to allow this, didn't realize there was still a ticket hanging out for it. Thi...
-
05:50 PM Bug #1549: Sip INVITE dropped.
- I was able to reproduce the issue again, but the problem only lasted ~5 minutes before resetting itself. I was unable...
-
-
- Well today it kills if the first ip, passed on first -b, matches src address or if the second ip, passed as second -b...
-
- Applied in changeset commit:8ed478973f20678568f03f00309a5165aa48a1b3.
-
- Applied in changeset commit:0f2826c03d3e3971f6d83041f9322737686846d9.
-
- This is probably broken in the case when the urltablealias contents change and pfSense reloads the alias but not its ...
-
- Fixed on next snapshots thanks for reporting.
-
- When I set idletimeout to blank the problem goes away.
When I set timeout to blank and idletimeout to 30, the prob... -
- Running 2.0-RC3(i386) Jul 4 17:29 Nanobsd.
Captive portal is expiring entries every cycle (60 seconds by default).... -
- Closing in favor of #1653 which has a lot more detail and appears to be the same issue.
-
- Please give the captiveportal log when this happens?
Also what is the idle timeout value you configure?
-
- Tried to unset the proxy transparent mode. Same thing.
Uninstalled squid, same thing.
It seems to log the user out ... -
- Have you tried this without squid installed? And this works normally without an idle timeout defined?
-
- using 2.0-RC3 (i386)
built on Mon Jul 4 16:48:37 EDT 2011
On captive portal, after setting a IDLE timeout (not t... -
- Applied in changeset commit:e366b753b24d8cadbe15bc6778e46c3159dc9983.
-
- 2.0 has Growl support already. Might be nice to use the jGrowl deal.
-
- Other Growl style notifications:
-----------------------
jGrowl
URL: http://stanlemon.net/projects/jgrowl.html
... -
- Also another notification bar called foobar http://themergency.com/foobar/ - which is pretty neat.
Then there is als... -
- Applied in changeset commit:00243d599dcb840eccf52f39f6d7da28d3605528.
-
- Applied in changeset commit:54dd98320d569f7f1c6041ec06dfe84c05948161.
-
- And the data sent to the RADIUS server is ok. It is an interface problem.
-
- Using 2.0-RC3 (i386)
built on Mon Jul 4 16:48:37 EDT 2011
Trying to set:
RADIUS NAS IP attribute
in captive po... -
- Confirmed, it does log the user out. Yet another reason not to use IE... :-)
-
- using 2.0-RC3 (i386)
built on Mon Jul 4 16:48:37 EDT 2011
Using IE9, clicking Status->Traffic graphs logs the u... -
- On 2.0 the rules do not have the opposing effect as they did on 1.2.3 when off-schedule. They merely act like they do...
-
07:59 AM Bug #1649 (Rejected): Schedule is blocking outside its range instead of passing the traffic
- I did some testing with schedules. For this created a schedule to block traffic between 00:00 and 06:00 every day.
B... -
- Using 2.0-RC3 (i386)
built on Mon Jul 4 16:48:37 EDT 2011
In Portal page contents:
- ability to revert to stan... -
- Removing squidguard version
Beta
1.4_2 pkg v.1.9
platform: 1.1
removes installed squid in an unclean manner.
... -
- I got the same error again with 2.0-RC3 (amd64) built on Fri Jun 24 19:26:29 EDT 2011.
Could not create a schedule... -
06:47 AM Bug #1445: Trouble with interface msk0 (Marvell Yukon 88E8057 Gigabit Ethernet)
- I have the problem too with the RC3 version of pfsense, according to
http://freebsd.1045724.n5.nabble.com/msk0-in...
07/05/2011
-
- PPPoE is supposed to clear all states on that interface when an IP changes, that's not happening correctly.
-
- Hopfully this is what you wanted.
My IP before the address changed was 76.254.18.100 and the new assigned addres... -
- 'pfctl -b' should selectively kill states for a single IP/gateway, but what it really does is wipe all states (or clo...
-
03:16 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- I can, on another system, had to remove the one failing from production. Should know something by tomorrow.
Th... -
- Can you please test latest snapshots and see if this happends again.
-
- Another alerting jQuery plugin: http://boedesign.com/demos/gritter/
-
- For log/state/etc... tables, I would highly recommend the DataTables jQuery plugin ( http://www.datatables.net ). I h...
-
- Possible on / off / service buttons: http://www.givainc.com/labs/ibutton_example.htm
-
- This will be a great alerts replacement: http://www.red-team-design.com/wp-content/uploads/2011/07/cool-notification-...
-
-
- Without a lot more detail this is impossible to track down. Please start a forum thread and see if anyone else has ha...
-
-
- Mukesh Patel wrote:
> its not a bug, please try with single or double coat i.e "mpatel" or 'mpatel'
Yes, the user...
07/04/2011
-
- not sure what you're referring to, deleting, adding, everything with config sync is working fine on the latest 2.0 ve...
-
04:38 PM Bug #1645 (Rejected): CARP sync problem for deleting process.
- Can not be sync to backup server for the virtual Ips, nat, load balancer and aliases record deleting process ın the c...
-
- Applies to: 2.0-RC3 (i396) built on Sun Jul 3 13:02:53 EDT 2011
Attempting to use the "easy rule" feature for Dest... -
05:52 AM pfSense Packages Bug #1640: Error to use squidguard with username
- its not a bug, please try with single or double coat i.e "mpatel" or 'mpatel'
-
- I'm not sure that's a bug, you should post to the forum for help.
-
12:21 AM pfSense Packages Bug #1640 (Closed): Error to use squidguard with username
- Hi,
I installed the squidguard module. In SERVICE -> PROXY FILTER -> GROUP ACL, I created an ACL and when I try to... -
- Evgeny Yurchenko wrote:
> No packet-dumps so far (details are on forum)?
I have been unable to catch the issue ag... -
02:13 AM Bug #636: layer7 not work correctly
- Latest version has the same problem.
Jul 4 02:15:14 ipfw-classifyd: Loaded Protocol: citrix (rule altq)
Jul 4 02... -
- I am sorry, did not pay attention to target version, just felt that it was doable.
-
- Evgeny - this is ok but in the future please don't commit anything with a target 2.1 to 2.0.
-
- OK, 3 Jul snapshot managed to keep the interface up over an IP change. Still not updating dynamic DNS:
Jul 4 16:3... -
- The DHCP server screen allows any IP as the gateway IP, needs input validation there to ensure only IPs within that s...
07/03/2011
-
- A port alias can be assigned only as the "to" or "from" port, which is invalid and results in a pf syntax error. If a...
-
- No packet-dumps so far (details are on forum)?
-
- I finally had a opportunity to update my pfSense install at work. And the rrdtool issue with uninstalling the ntop p...
-
- we're not fixing 1.2.x issues
-
07:40 PM Bug #1638 (Rejected): Package re-install failure after restore
- After doing a restore from a backup configuration, the packages that I want to have automatically reinstall do not. b...
-
12:45 PM Bug #1635: timeout setting on firewall rules does not work for UDP
- I'd assume that the 'udp' timeout is ignored for non-UDP traffic, in the same way as the 'tcp' timeout is ignored for...
-
- Now if I configure this option through gui for different types of traffic I get this:
pass in quick on em0 inet from... -
- Here is commit https://github.com/bsdperimeter/pfsense/commit/ae660b3ce7d7e2b1f34cb9f1b52eb4ce21e17c42
-
04:39 AM Bug #1621: Switching WAN from type PPP to other leaves former port assigned
- I created this bug describing my problem and its enough for me.
I will wait for the new release.
Thanks
07/02/2011
-
- Please provide state-table dump before IP change and after.
-
- Then create separate Bug report describing the problem.
-
- I have checked in a fix for this.
-
-
- it is that package, uninstall it. It doesn't do anything that isn't in 2.0 base now AFAIK. I disabled it.
-
06:12 PM Bug #1611: DHCP leases show as expired when they shouldn't be
- Yes, same here, I haven't tried removing it though.
-
05:48 PM Bug #1611: DHCP leases show as expired when they shouldn't be
- Indeed I do have that package installed!
-
- MAC-to-vendor does overwrite this page, and I haven't seen this anywhere (also don't have that package installed anyw...
-
- I think this is a bug in the MAC-to-vendor package. remove it and suddenly leases show up correctly.
-
- huh? which filter state?
I agree that you shouldn't have to set the timeout in two different places, but currently... -
- NAT states have the same timeout as the filter state and there isn't any scenario where doing otherwise would be a go...
-
- it does not appear to be possible to control the timeout on an outgoing NAT connection.
you can control the settin... -
04:26 PM Bug #1637: captive portal web service port bind validation issue
- forgot to provide pfsense version 2.0-RC3 (i386) built on Fri Jul 1 20:11:57 EDT 2011
-
- captive portal uses port 8000 for the web interface but fails to report to the user if the port is already in useby a...
-
- the 'state timeout' firewall rule setting (under 'advanced options') has no effect on UDP connections. that's because...
07/01/2011
-
10:36 PM Bug #1582: traffic shaper queues bug
- really think this should be re-opened, there is definitely something wrong with queuing UDP traffic. I find that a s...
-
- I added a utility that will zap any prior GPT partitions. This should do the same thing.
-
- As reported by customers to have working limiters working with bridges its needed to have an ip on the bridge interfa...
-
- Sorry to insist but the problem showed up after a change in config.I deactivated the interface and when I activated i...
-
- Forgot to mention: now user can always fix the mess he got after several reassignments by going to Interfaces->(assig...
-
- updated with the real cause, though this isn't ideal and should be improved in the future, its cause is user error, n...
-
03:13 AM Bug #1632: Captive Portal changed behaviour
- DesktopShare PC is restricted through firewall rules, but this rules were applied only after captive portal authentic...
-
- This one got me too, going to have to back out one system and go back to 1.2.3, any idea when this will be addressed?
-
- It's possible to pick an IPv4-only interface for your IPv6 gateway, which results in deletion of the default IPv4 rou...
06/30/2011
-
- Whenever you set up WAN to PPP section <ppps><ppp><ports> in config.xml changes to whatever you shoos in "modem port"...
-
- not a bug, fact of how CP works, that passthrough is required.
-
- Can you provide more information on this?
Your configuration in 1.2.3 and your config in 2.0.
Aslo an architecture ... -
- Hi,
I've upgraded (maintaining the same configuration) a corporate firewall with a "Transit LAN" with corporate netw... -
-
- Thanks, fixed in changeset commit:d7807cc49fb9c3c28f417c929b19c65c56ec6cb8
-
- After vmwate tools package installation, file /boot/loader.conf has inforrect syntax , which prevents kernel modules ...
-
- Chris Buechler wrote:
> I don't believe lagg supports ALTQ which is why, it's not as simple as showing that interfac... -
- I don't believe lagg supports ALTQ which is why, it's not as simple as showing that interface.
-
- when you go to use the wizard "traffic_shaper_wizard_multi_lan.xml" when you are using lagg for your lan, it won't le...
-
02:54 AM Bug #1628: Static ARP entries need reapplied after link loss
- Tested it with embedded and it works! going to apply it to a full version install now.
06/29/2011
-
- Indeed if you change from PPP to PPPoE you'll have /dev/cuau0 remained in <ports></ports>.
-
- Can't install snort at all -( Installation fails with
Downloading http://files.pfsense.org/packages/8/All/snortsam... -
- Some people are still hitting this same error, but not this specific circumstance. Two support customers, plus others...
-
- Applied in changeset commit:8ee623f3a98dca5681274d6a14450223236b4013.
-
- yes the only issue is ARP entries are disappearing
I'm power cycling all the switches since we get powercuts and w... -
- The problem is still with the ARP entries disappearing. That's the only issue here.
Are you power cycling the indi... -
- My setup is like this: about 20 switches serving around 150 clients connected through LAN, when I do a power cycle on...
-
- The problem with Static ARP is its locking out everyone listed when they disconnect and try to reconnect, maybe its r...
-
- Deny Unknown Clients only affects the DHCP server giving out IPs to clients that are not listed. A client can hardcod...
-
- small clarification about "Deny unknown hosts", if users are using a static IP they can bypass this if they are not i...
-
- Enabling static ARP in DHCPD causes the ARP table to get cleared if a disconnect happens to switches/clients connecte...
-
- We have an asterisk server behind pfsense 2.0-RC3 using a PPPoE DSL connection.
Whenever our WAN IP changes the aste... -
-
04:48 AM Bug #1534: rc.newwanip issues (CARP slave problems, package issues)
- Unfortuntely I can't drop IPv6 support on my machines. I'm currently running 2.0-RC3-IPv6 (amd64) built on Mon Jun 27...
-
- Updated to the latest version, but logging is busted, so I can't say what's happening. (There's a bunch of comments i...
-
-
- what version? what type of VPN?
-
- is it this that ur referring to?
http://forum.pfsense.org/index.php/topic,36742.0.html -
- I'm having trouble keeping the 3G connection active. It is now deciding to get stuck in PPP "Initial" state on IP cha...
06/28/2011
-
- I have a VPN setup for remote employees. The VOIP traffic usually goes to the VOIP queue between our PBX and the VOIP...
-
- Can you please test with latest snapshots?
-
- No,I din't configure pfsense to use /dev/cua0.What happened was that I changed WAN type to DHCP,PPP,etc and saved tho...
-
- snort_rules.php?id=X drop down seems to have taken its code from our old interfaces drop down on firewall_rules.php a...
06/27/2011
-
- there isn't a general problem with systems dropping offline, and this doesn't have a specific problem hence isn't a v...
-
02:57 PM Bug #1622 (Rejected): Loss of connectivity and response from pfSense system in 2.0 RC3
- Running a "fresh" 2.0 RC3 AMD64 install on a system with 4 Gig of RAM and an Intel EXPI9402PT Dual Port NIC. After so...
-
- this has never worked in any 8.x base versions, it's a problem in FreeBSD 8.x. It's intermittent, I ran that way for ...
-
- I'm facing the same problem with the latest snapshots for the past 4 days, also "Deny unkown hosts" doesn't do as it ...
-
- works as it should, if a non-default port is specified that's where the redirect goes, if there isn't a port specifie...
-
05:18 PM Bug #1623 (Closed): Redirect in System : Advanced loses port number
- Making a change under system_advanced_admin.php results in a delayed redirect. This redirect forgets to add a port nu...
-
- Please test the new installer located at /installer on 2.0.
There are no plans to further develop the LUA based in... -
- When running the installer from rw media (pfsense-memstick image in this case) the installer offers the drive/partiti...
-
- Please test the new installer located at /installer on 2.0.
There are no plans to further develop the LUA based in... -
- I've seen some problems installing pfSense 2 on previously used disks.
In one case I had a disk which just minutes... -
- I also have this issue, running
2.0-RC3 (i386)
built on Sun Jun 26 20:44:17 EDT 2011
Running Pfsense on Vmwa... -
09:43 AM pfSense Packages Bug #1620: Can't use transparent proxy when using bridge.
- It's not a squid issue, its a nat/rdr issue.
As I told even creating a rdr rule, I cant't see any traffic going to...
06/26/2011
-
- You have it configured to use /dev/cuau0 so no, it won't use re0 since it's not configured to do so. You must have ed...
-
- attach your config or can email it to me (cmb at pfsense dot org)
-
- replacing description with actual problem found by Evgeny:
Whenever you set up WAN to PPP section <ppps><ppp><por... -
- Commit https://github.com/bsdperimeter/pfsense/commit/0da02ef5d99de2c04846934b0cd7504e9e880eec.
ststus_rrd_graph_img...
06/25/2011
-
- Can't foward any package To localhost while using bridge and setting ip address only on new bridge interface.
Sam... -
- Ir Does not make sense. Why configure an Option To expire in 60 minutes but not in 60 minutes.
If i want To limit co...
06/24/2011
-
- it's not designed to expire them after exactly an hour and has no need for doing so. Running it more frequently would...
-
- **/60 * * * * root /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout*
**/60* checks... -
01:51 PM Bug #1336: PPTP VPN NAT on WAN or other external interface
- I can confirm Jim P's analysis. On VMWare, i386 works fine, amd64 does not.
-
- Yeah that may be fine then, though the code to implement this should not use .0, but mathematically calculate the nul...
-
- This is what it does:
01:18:15.819317 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 08:00:27:a6:50:bf... -
- It still does its ping test to ensure an IP is open before assignment, though I suppose on .0 in a /24 that would fai...
-
- Just tested with
host s_lan_0 {
hardware ethernet 08:00:27:e5:68:94;
fixed-address 192.168.56.99,... -
- That hack might work for the first client to connect in a subnet, but if two of them crossed at once it would not ass...
-
04:03 AM Bug #1605: DHCP Server should group known clients by interface
- @Evgeny:
Uuh, nice hack. Accepted! But I don't think it's really easy to implement. Every time, someone creates/modi... -
08:24 AM Bug #1572: DHCP + MAC spoofing leads to link cycling
- I encountered the same problem. Enabling MAC spoofing on WAN Interface using DHCP will instantly trigger link cycling...
-
08:23 AM Bug #1618 (Resolved): Captive portal: Invalid AVP value in Radius accounting packet
- Hello,
Using captive portal, with Radius authentication and accounting enabled, my server (tinyradius java lib) co... -
- is this the same as
http://redmine.pfsense.org/issues/1582
for more info
http://forum.pfsense.org/index.php/topi... -
- i compared an old config file with the current one and didnt notice any major change in the queues and rules, should ...
06/23/2011
-
- Just updated to 2.0-RC3 (amd64) built on Tue Jun 21 23:37:22 EDT 2011 which has the patch that Jim P linked to - same...
-
- Jim P wrote:
> Try it with commit:90ecc0b62f8b363d9497b4754133738edb9bc633
I have tried this on a "2.0-RC1 (amd64... -
- The tgz is an ugly mess that needs to die. It really needs to install properly from the package system. It may just n...
-
- Maybe we should remove
<depends_on_package>avahi-0.6.28.tbz</depends_on_package>
from pkg_config.8.xml.amd64 as it... -
- it was actually fixed a while back, I just missed the fact the file was still there, it's not an issue
-
- Tried to reproduce:
# echo test >/etc/rc.d/test
# chmod 555 /etc/rc.d/test
Install iperf package: /etc/rc.d/test i... -
- We are running dhcpd-4.2.1-P1 which supports grouping. The problem is 'host' cannot be related with 'subnet' (I tried...
-
09:19 PM Bug #1437: More validation needed on CSR generation
- I will test this on or right after July 4th. I will not have internet access between tomorrow and then (working at a ...
-
- Errors handling added:
https://github.com/bsdperimeter/pfsense/commit/95c8cf48f9bd72da5371aa01a03a070885411dbf
http... -
- Chris, here is the dhcp.leases:
# more /var/dhcpd/var/db/dhcpd.leases
# The format of this file is documented in ... -
- Can't replicate.
I configured 3 VLAN on my LAN beside my untagged LAN. Every thing on em1
em1:192.168.10.0/24
... -
- How long did you let the system install at 38%? This is the longest step in the installer and it does not give a lo...
-
- we don't track hardware-specific issues as there isn't anything we can do about them.
-
- I bought 2 Dell R210 and with all pfSense versions there's no way to install it!
With pfSense-2.0-RC3-amd64-201106... -
-
- It seems to work now.
Before I disable vlan203 the dhclient is running
$ ps ax | grep dhclient
8629 ?? Is ... -
-
- It seems to work now
Tested to reproduce with version 2.0 RC3 date 23 june 2011 and as quick as I remove the host ... -
- What is the needed feedback? I want to test fixes but there does not seems to be neither a fix nor a question
// r... -
- Thanks for the update!
-
- It works for me with 2.0 RC3 - snapshot dated 23 june 2011
I just tested with a fresh install with pfSense-1.2.3-R... -
- I just committed a change that should hopefully preserve rrdtool. Please test the next snapshot run.
-
- Uninstalling the ntop package results in the removal of rrdtool, possibly others as it does have a long list of depen...
-
- Already covered under #875 - add a note on that ticket instead of opening a new ticket.
-
- Subject pretty much sums it up. If you install and then uninstall the ntop package the rrdgraphs will stop working. ...
-
- Checked on 2.0-RC3 (amd64) built on Wed Jun 22 23:09:34 EDT 2011:
Dis-/re-enabling CARP is an issue even with no I... -
- I bought 2 Dell R210 and with all pfSense versions there's no way to install it!
With pfSense-2.0-RC3-amd64-201106... -
- queues adnd rules both created manually, no wizard used and it used to work also earlier but just went dead in newer ...
06/22/2011
-
- config issue not bug, UDP queues as configured (though probably related to general wizard issue covered by another ti...
-
08:29 PM Bug #1377: upgrade 1.2.3-Final nanobsd 4g to 2.0-RC1 nanobsd 4gb fails
- 4GB
I worked around this by physically going to the unit and reload the card with a 4G 2-RC1 image. -
- Is this specific to the 4GB size? I just did a manual update of a 1GB system and it had no problems upgrading that I ...
-
07:06 PM Bug #1613: OpenVPN LDAP authentication should not modify mail attribute as login.
- I've just realised my example is not a good one - in the company that I work for, our email addresses are in the form...
-
- The HTML (or something) has parsed my "description" and removed the "at" character. So all references to '' (double q...
-
- I have setup an LDAP user directory, using mail as the unique search key (to find users). In the organisation I work ...
-
- Applied in changeset commit:ff629977e3d45c1d41fc12449e647abd8b780241.
-
- Using the "pptp clients" entry in the drop-down list for firewall rules does not work. It does not match/pass traffic...
-
02:31 PM Bug #1615 (Resolved): rrd graph not refreshing the correct time frame
- The javascript is correctly triggering to refresh the rrd graphs, but the start and end time passed to the graphing s...
-
12:52 PM Bug #1554: Voucher page turns grey after parameter change
- Oops, still on RC1. I don't know RC3 is out. When I log on, I can see:
***
2.0-RC1 (i386)
built on Sat Feb 26 1... -
- It happened again today with what version? As Chris said you should be running 2.0-RC3.
-
- make sure you're on RC3, a number of voucher-related things have been fixed since RC1.
-
- ... and again! After I restored the voucher functionality using previous config file, we managed to set up only one v...
-
- Today it happened again - I had to restore older config. It is OK after restart.
-
- nevermind, I apparently can't see straight this morning, the file is still there... it shifted positions in ls becau...
-
- I investigated this and i cannot see in any place in pfSense base code something like that being done apart
the sect... -
- Yeah I thought it was, but it happens on the newest snapshot.
-
- You are sure to be on latest version.
I recall this happened during package improvements and i fixed this regression... -
- The package reinstall process (it appears) deletes unknown startup scripts in /usr/local/etc/rc.d/ which is commonly ...
-
- thanks
-
- confirm fixed in 2.0-RC3 (amd64) built on Tue Jun 21 23:37:22 EDT 2011
-
-
- Looks good on 2.0-RC3 (amd64) built on Tue Jun 21 23:37:22 EDT 2011.
My current test system does not have a workin...
06/21/2011
-
- Hrm i see.
Thank you for the info.
Actually you cannot use the root queue in there and i will try to fix the interf... -
- Pretty basic, as you can see. And the system logs still display:
Jun 20 23:49:07 ipfw-classifyd: Loaded Protocol:... -
- <l7shaper>
<container>
<name>test</name>
<enabled>on</enabled>
<description/>
<divert_port>41744<... -
- Hafiz Rafiyev wrote:
> Jim same problem is continued ,i have to restart racoon service after pptp client disconnect,... -
- Jim same problem is continued ,i have to restart racoon service after pptp client disconnect,here is log.
Jun 21 1... -
05:46 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- Harry Gonzalez wrote:
> Luca Sari wrote:
> > I've got the same problem on a 2.0-RC2 (i386)built on Mon Jun 6 00:12:... -
- Confirmed on the forums.
-
06/20/2011
-
- what does your /var/dhcpd/var/db/dhcpd.leases look like?
-
- Running on 2.0-RC3 (i386) built on Sun Jun 19 21:45:34 EDT 2011, I have a system with multiple VLAN's on the LAN side...
-
- You need to update since this is a bug fixed in latest snapshots of check_reload_Status.
-
-
- Try it with commit:90ecc0b62f8b363d9497b4754133738edb9bc633
-
03:59 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- Chris Buechler wrote:
> We can't replicate this, I can connect and disconnect PPTP all day long and IPsec never drop... -
- Harry it's so simple to replicate the bug.
Steps to replicate bug.
1)Make ipsec VPN tunnel between 2 PF 2.0RC2,... -
- Luca Sari wrote:
> I've got the same problem on a 2.0-RC2 (i386)built on Mon Jun 6 00:12:42 EDT 2011 running under v... -
- The RRD graphs mostly didn't survive the config restore, so the screenshot is the best I can do. I had firewall set t...
06/19/2011
-
- I've got the same problem on a 2.0-RC2 (i386)built on Mon Jun 6 00:12:42 EDT 2011 running under vmWare.
the problem ... -
- Of those I would probably be most inclined to point a finger an mlppp since it's the least common used feature among ...
-
- Summary:
7 lines mlppp
2 em NICs
14 or so vlans on both NICS, total
openvpn client
no packages currently insta...
Also available in: Atom