Activity
From 08/17/2011 to 09/15/2011
09/15/2011
-
06:52 PM pfSense Packages Bug #1880: snort package 2.9 v2
- oh another thing when set to update every 12 hours (suggested)
it tends to override settings that was previously set. -
- I don't know how important it is but, there seems to be a missing gid entry
snort_netbios.rules. it's not important... -
05:24 PM Bug #1861: false log filterdns: host_dns: failed looking up "88.192.1250.131"
- FQDNs in as network with a /32 are equivalent to hosts, that works fine, it's how all ours are setup.
-
04:40 PM Bug #1861: false log filterdns: host_dns: failed looking up "88.192.1250.131"
- Found your bug !
<alias>
<name>files2_zimbra_com</name>
<type>network</type>
<address>files2.zimbra.co... -
- Sep 15 21:48:05 filterdns: host_dns: failed looking up "a184": hostname nor servname provided, or not known
Sep 15 ... -
04:36 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- Chris, I have to admit, I have not checked it in the past few weeks but replication was simple. Build a pfSense, c...
-
09:42 AM Bug #1874: Captive Portal Login dies on empty input
- The Probleme why it wont work for voucher codes is really simple.
On line 143 in /usr/local/captiveportal/index.ph... -
- Just reviewd it on github, the problem is not fixed for usage with voucher codes!
-
- Is it only for user or pass fixed or also for vouchers?
I ask because im unable to view the changeset :(
09/14/2011
-
03:27 PM Bug #1879 (Rejected): At end of install to hard drive pfSense directs user to eject CD but doesn't unlock CD ROM drive.
-
- I have installed pfSense in ESX hundreds if not thousands of times and recently 5-10 in 5. I have never seen this is...
-
03:24 PM Bug #1879 (Rejected): At end of install to hard drive pfSense directs user to eject CD but doesn't unlock CD ROM drive.
- Issue:
While testing pfSense 2 RC3 on ESXi 5.0.0 I received an error that the install CD was still locked by the ope... -
08:07 AM pfSense Packages Bug #1870 (Closed): phpSysInfo on 2.0 RC3
-
07:52 AM pfSense Packages Bug #1870: phpSysInfo on 2.0 RC3
- Perry,
Your reasoning is logical. I also tried the newest version of phpsysinfo and It destroyed my 2.0 install whe... -
01:51 AM Feature #1878 (Closed): Option to add permanent ARP entries for WOL
- Hi,
NOYB helped me with this problem http://forum.pfsense.org/index.php/topic,40451.0.html
It would be nice featu...
09/13/2011
-
07:01 PM Bug #781: Entering sim code problem on a Huawei E1752
- Yoann Simon wrote:
> Hello,
> I have got same problem with my 3g modem ...
> On france in business connexion ...
... -
- Hello,
I have got same problem with my 3g modem ...
On france in business connexion ...
Crdt
Poustiquet -
05:35 PM pfSense Packages Bug #1870: phpSysInfo on 2.0 RC3
- I was the package developer. As most of the info phpsysinfo provides is in pfSense 2.0 and I don't use pfSense on har...
-
03:48 PM
pfSense Packages
Bug #1873: Layer 7 RDP
- HTTP and SSH works... RDP not. This means that the L7 rule is in use
-
03:46 PM
pfSense Packages
Bug #1873: Layer 7 RDP
- We had a new pfsense installation with no other rules then the L7 rule. We just configured it as documented in you (s...
-
03:30 PM pfSense Packages Bug #1873: Layer 7 RDP
- You have to show more how you have configured this.
Usually its better to go through the forum first for such things... -
07:10 AM
pfSense Packages
Bug #1873 (Closed): Layer 7 RDP
- If you create a Layer7 filter with RDP blocked and assign it to a LAN (I didn't test WAN) it won't block RDP sessions...
-
- Applied in changeset commit:00eda3a2eb5fb7e43ba9504c90ad494f41504888.
-
- Applied in changeset commit:90477318aad050eb1f1b5282fac790f2a985fce3.
-
- If you go to the captive portal login page and click submit without filling in any in the vouchercode-field you´ll ge...
-
03:14 PM Bug #1877 (Resolved): (cosmetic) aliases-edit markup to wide for background
- @2.0-RC3 (amd64) built on Mon Sep 12 10:27:40 EDT 2011@
hi,
when editing a list of aliases the right side of som... -
- If you enter an umlaut into "Invalid Voucher Message" or "Expired Voucher Message" you get an acknowledgement, that y...
09/12/2011
-
- It having authentication for everything, and working in general, is adequate as far as I'm concerned.
-
- I've got it so that it requires authentication now by including the header and footer. Chris, does this satisfy your ...
-
- fixed
-
- Applied in changeset commit:8678130da6c30f82272a1b27b190da3e90211bf1.
-
- Applied in changeset commit:75bb4bc3849cda6af49ee51cc495353dcb5ad489.
-
- Panic still happens even after a gitsync picking up these changes. First run through the wizard (going from DHCP to P...
-
- Applied in changeset commit:851083bd2f9c382dc513d4a10608f5dc840efc01.
-
- Applied in changeset commit:43d8f1cc9cd5190858ed7220339c0a147cc68dd2.
-
- Problem as described here, with patch here.
http://sourceforge.net/mailarchive/forum.php?thread_name=4DA4F48F.10608... -
- you need to post to the forum or mailing list for further help. Things are the way they are for good reason, you just...
-
- and you will tell me that there is no need for a Disable this Rule in Outbound rule editor ?
Think a moment a non ... -
- There is a vast difference there. One disables the rule (as it says) the other makes an exception where no nat is per...
-
- Hello,
Firewall: NAT: Port Forward: Edit
=================================
Disabled Disable this rule
Set this...
09/11/2011
-
- I would love to work on it and re-release it. How can we find out if the package maintainer is still around?
-
- probably because it didn't work. I'm not sure the package creator is around anymore. It also has no authentication su...
-
- pkg_config.8.xml - phpSysInfo has a maximum_version attribute of 1.2.3 on pkg_config.8.xml.
phpSysInfo does not s... -
- This is a general issue with packages that have conflicting dependencies. We expect to switch packages to PBIs in the...
-
- Not really avoidable if multiple packages use a particular dependency and cleanup during install. Perhaps a solution ...
09/10/2011
-
- I think that's a config issue of some sort, search on that or post to the forum or mailing list for help. regardless ...
-
10:20 PM Bug #1869 (Rejected): Broadcom 4306 Won't work
- I'm not entirely sure which logs to attach, or what you need, but just ask, and I'll reply.
When I us "ifconfig bw... -
11:19 AM
Bug #1865: Fatal error by saving System: Advanced: Miscellaneous
- I've updated to 2.0-RC3 (i386) built on Fri Sep 9 12:46:04 EDT 2011 and it works fine again.
Thanks Jim.
09/09/2011
-
03:55 PM Feature #1868 (Needs Patch): RFE: DHCP Server option pull-down menus, pre-populated data types
- It would be great to be able to pull down a menu when setting the advanced DHCP server options. The link given in th...
-
- I have a setup with a Multi-WAN configuration, with one cable modem with MTU 1500 and one DSL modem, MTU 1492. After...
-
- happy to learn it (red background)
for me it is ok, I won't loose time anymore in creating 10 rules with varying t... -
- Red background on a form field means an alias can be used. That is consistent throughout the entire GUI.
-
- "other" includes aliases. Just for you (-:
Can you for 1 minute impersonate someone discovering pfsense.
He sees ... -
- Applied in changeset commit:98a4cdc2a27cb5723ba3c01e64cee980691be2a4.
-
- Applied in changeset commit:ae0023beeaa0da21cf2080e81cec9631bee63c8e.
-
09:40 AM
Bug #1865 (Resolved): Fatal error by saving System: Advanced: Miscellaneous
- pfSense 2.0-RC3 (i386) built on Thu Sep 8 15:15:55 EDT 2011
When I click on the save button appears this error m... -
- The CPU frequency for power saving is only printed if the current frequency does match the highest frequency. If you ...
-
09:50 AM
Bug #1866 (Rejected): Dashboard: System Information: CPU Type no longer shows powersave details
- pfSsense 2.0-RC3 (i386) built on Thu Sep 8 15:15:55 EDT 2011
Since this or previous snapshot the power saving de... -
- If the local subnet of an IPsec network is an IP alias, the "start" button under Status>IPsec doesn't show up. That's...
-
- Found a copy:
http://cygnus.redirectme.net/FreeBSD_4.9_Docs/legal/intel_ipw/LICENSE
We should be careful of thi...
09/08/2011
-
- "other" includes aliases.
-
- Hello,
please make the 'Destination Port from' field display something like
'single port or alias' to be consistent... -
05:34 PM Bug #1851: ECC-Cert breaks the webconfigurator
- maybe we want to "block" uploading the following curves until working ...
-
- gen...
-
- I think lighty need it enable in config and presently we do not enable sslv3.
-
- from /var/log/lighttpd.error.log ...
-
- will try to make it more readable in the future - hopefully ;)
-
- ok I misunderstood what you were talking about there. I fixed the description to be more clear.
-
- pushing the official NTP-servers (counting 3) for my country by DHCP - so it is a reputable source declared by law.
... -
- The server entered for pfSense is used by the NTP daemon as its upstream source - you can't have pfSense use only its...
-
- As with DNS, (optionally) allow the upstream DHCP server to provide NTP servers to the firewall.
-
- (fyi, searching '1250' in a fresh backup gives nothing of course)
-
- Hello,
I made a typo while entering an IP in a alias object.
1250 instead of 250
I validated the alias (5 IP l... -
- plz also read "further reading" from bug #1858
-
- after installing a new box the system-SSH-key should default to 2048 or even 4096 bit RSA-keys...
-
- key-sizes above 8192 will not work on Safari (Mac OS X)
-
- after installing a new box the system-SSL-cert should default to 2048 or even 4096 bit RSA-keys
current: RSA - 102... -
- The friendly interfaces are shown now.
Remaining is showning the root interface so they can be cloned -
- so expecting a "feature" for the console would not be implemented either:
> ##external management-host##... -
- We can't stop everyone from shooting themselves in the feet.
Changing the default LAN behavior to anything but st... -
- I agree with Jim. This is not going in but thanks for the suggestion.
-
- hi Jim,
somehow i still do not understand WHAT can get wrong?
I know it is not simple and some coding is needed
... -
- Still too many things to go wrong. It is not that simple.
And the real fix is even simpler: Just don't plug a new ... -
- hi Jim,
x) send just 1 (one) ICMP package for ping
x) single pings to the whole subnet concurrently and wait for ... -
- It's a lot of work and a lot to go wrong for very little benefit there. If someone is concerned about it taking over ...
-
- maybe we set the LAN-if to DHCP to test if there is already a server and that way we obtain an IP (this way we know t...
-
- when a new installation is booting it should check if there is already another host using the default ip of 192.168.1.1
-
08:07 AM Bug #1610: v6 IPsec tunnels can trap 12 the kernel
- On the 2.1 IPv6 snaps dating September 1st I can not replicate this anymore, this may have been fixed somewhere by an...
-
06:28 AM Feature #1854 (Feedback): filter field on diag_logs_filter.php should be at top of page
- Applied in commit:21c160361dff36941812424390c10a235762b411
-
- Just to synchronize the answer
http://forum.pfsense.org/index.php/topic,38559.msg210340.html#msg210340 -
- The linked info is still OpenBSD-only I believe.
-
01:23 AM Feature #1855: NAT before IPsec VPN
- Thanks to FreeBSD 9 it should be now possible to NAT before the VPN in order to solve network overlapping.
Here htt... -
- I thought we already had a feature ticket open for IPsec+NAT in general but doesn't appear so.
-
- Removing a IPv6 phase 2 entry leaves the IPsec SPD policy in place.
Deleting it manually from the IPsec status SPD... -
- what's mentioned in this ticket works, there are other caveats with IPsec and NAT
09/07/2011
-
10:10 PM Bug #1690: PPPoE Server not passing IP from RADIUS server
- Alright, please give me a few weeks, as I am really far behind in my projects, thank you again for this quick fix. I ...
-
- thank you
-
- The filter field on diag_logs_filter.php should be at the top of the page, like the states display, as if you have a ...
-
04:07 PM Bug #1850: WAN interface missing on traffic shaper queue interface
- Ermal Luçi wrote:
> I cannot see this driver in FreeBSD 8.1 did you compile from some patch of sorts?
The driver ... -
- driver doesn't exist in stock releases
-
- I cannot see this driver in FreeBSD 8.1 did you compile from some patch of sorts?
-
- Hi,
after checking that altq is implemented into the driver, I added it to the is_altq_capable() function in the "... -
- Hi,
running the latest 2.0RC3:
2.0-RC3 (amd64)
built on Tue Sep 6 22:44:22 EDT 2011
the WAN interface is m... -
- Having a /32 IP on an interface and a gateway on another subnet is not a valid pfSense configuration, and thus not su...
-
- then we have a problem.....!
If i read well, nat-1-to-1 is in both direction, when an interface is 'wan'.
You a... -
01:54 PM pfSense Packages Bug #1853 (Resolved): Barnyard2 binary not installed
- After installing snort (2.8.6.1 pkg v 2.0) on pfsense 2.0-RC3 (amd64) (built on Tue Sep 6 22:44:22 EDT 2011) barnyard...
-
- Applied in changeset commit:f65b6851ea3d473128e48419450f0edb5d8830d9.
-
- some ecc-test-certificates are available at "SECG's ECC/TLS test server":http://tls.secg.org/index1.php?action=server...
-
- known bugs in lighttpd - fixed in 1.4.29
see http://www.lighttpd.net/2011/7/3/1-4-29 -
- Uploading a certificate which is using Elliptic curve cryptography (ECC) - afterwards webconfigurator stops respondi...
-
09:09 AM pfSense Packages Bug #1852 (Closed): Snort and IP-Block Installation/Deintsallation issue
- If you install snort, it replaces system Perl with Perl-multi-threaded. Once you remove snort it removes Perl-multi-t...
-
- Traffic shaper - By Queue view needs to use friendly inerface names to allow easy configuration and presentation.
Al... -
- If there are 2 WANs and the primary one fails and there are limiters configured in floating rules(after policy routin...
09/06/2011
-
10:06 PM Bug #1437: More validation needed on CSR generation
- I have so much going on, I thought I replied to this, but I guess I did not.
Everything that I did to cause an err... -
- should be fixed, awaiting Yehuda's confirmation
-
- should be fixed, will leave for confirmation
-
- if someone wants to see this get fixed in short order, purchase a 5 hour support subscription at portal.pfsense.org a...
-
-
-
-
- no change
-
- this has been confirmed working.
-
- well, OVH big big french provider is also using this king of setup
A well english detailled big page explain all h... -
- yes, I have added the 'dashboard' as small fixe, because all other unauthorized pages goes to 404.
In future release... -
- The privilege system will redirect the user to whichever page is listed first in their permissions (which they are al...
-
- Applied in changeset commit:fce938b3a32ed071edf9aba6b1f07ec08a82a743.
-
- Applied in changeset commit:7179d00e0b0134615e442829792960f343b8a378.
-
- menu system/user/manager
add a group
fix a few status/logs page among all proposed priviledges
create a user
ad... -
- not sure what you're referring to
-
- Hello,
after day and day of tuning/discovering, I had tried the user/group settings to build a person able to consul... -
- Duplicate of #972
-
- Hello,
During network lessons at school you learn that the gateway must be reachable with an IP in the same subnet... -
- it is both directions, where traffic is set to leave the interface where that 1:1 is assigned. Read http://pfsense.or...
-
- oh, I see no reason why you call nat-1to-1 when traffic is internet toward natted machine (B) and routing when it is ...
-
- rules including policy routing and NAT are separate entities that must be configured as you desire.
-
- Hello,
Add a check box in NAT One to One that make it more strict.
Explanation
my system have
Two WAN inter... -
- please close this one, I recreated it in 'pfsense' .
-
- duplicate of #1845
-
- Hello,
after day and day of tuning/discovering, I had tried the user/group settings to build a person able to consul... -
05:33 PM Bug #337: sticky connections do not work
- Ermal, can you please check your last commit. I can confirm that sticky sessions work for me on snapshot 2.0-RC3 (i3...
-
- Under Diagnostics > Limiters, it only shows the limiter pipes and does not display any information about the child qu...
-
- This is a package issue and not a Captive portal issue from what you have posted here.
-
03:45 AM pfSense Packages Bug #1842 (Closed): problem with FreeRADIUS?
- With CP & vouchers, say a 1 hour voucher never kicks off/logs out the end user after an hour.
After searching there ... -
03:03 AM Bug #1841 (Duplicate): TCP state issue when traffic passing through a GRE tunnel within IPSEC
- When running a GRE tunnel between two Pfsense 2.0 RC3 TCP traffic is shown as having its SYN/ACK packets dropped on t...
09/05/2011
-
08:29 AM Bug #1052: Certificate validation of the LDAPS servers is not enforced
- Ermal Luçi wrote:
> HAve you tested with latest snapshots?
Hi Ermal,
No, I haven't; just came back from holida...
09/04/2011
-
- That's good to know, we'll investigate. We're still not quite sure what's happening, some ipv6 builds seem to hit it ...
-
04:26 PM Bug #1758: Upgrade fails to upgrade RRD data for traffic and packets
- These errors showed up on the upgrade, and are associated with the upgrade process, not trying to display the graphs....
09/03/2011
-
08:18 PM pfSense Packages Bug #1753: Spoink integration
- Thanks to pfsense developers for the new version of snorte with the block offenders working, i've enabled it on my pf...
-
- ah, you mean the rtadvd settings? That would make sense, I tied them into the dhcp6 config as that seems the most str...
-
- My thought was actually keeping it in the DHCPv6 screen even though it has nothing to do with it, since we already ha...
-
- Ah, yes, well, the gateway field needs to go from the dhcpv6 config in the UI since it doesn't exist.
Complain to th... -
02:22 PM Bug #1839: No Quality RRD Graph w/ Non-Default Frequency Probe
-
RRD Graphs: Quality
Works with Probe Frequency (System - Routing) set at default (empty), 1, 2, 3, and 9 (prob... -
-
Setting Gateway Frequency Probe (System - Routing) to a non-default value, say 10 seconds, causes the RRD Quality ... -
- rtadvd service support committed. should fix both dns server and rtadvd clients to get the same information.
radns... -
- The package has the snort rules file hardcoded in the code.
This makes it a step to be followed when upgrading snort... -
- Still not fixed.
http://forum.pfsense.org/index.php/topic,40498.0.html
09/02/2011
-
- I am just upgrading now, has there been some work since I last posted on the PPPoE server? If so, thank you.
-
- Post you dyndns section from your config.
-
05:58 AM Bug #1838 (Resolved): Dynamic DNS disabled checkbox doesn't work
- As disabling a dynamic dns client with the checkbox, nothing is done except still updating dyndns host. Checkbox does...
-
- Latest package of snort should not have this issue.
-
- Should be working now
-
- Should be working now
-
- Should work as intended now.
-
03:26 AM Bug #337: sticky connections do not work
- Updated to version 2.0-RC3 (i386) built on Thu Sep 1 18:11:23 EDT 2011
Unfortunately the behavior is still the sam...
09/01/2011
-
- Description of how to replicate: ...
-
- need some additional consideration on how this should work from the GUI perspective. Maybe just make the underlying b...
-
- The specific issue is that you can not select a Carp IPv6 vip interface for router advertisements. Ideally we need to...
-
- need to be able to bind router advertisements to CARP IPs.
-
- Found this client which is even listed in the FreeBSD ports, dump the info into our filesystem and the rest is picked...
-
- Need RFC 5006 support for DNS from RAs
-
- probably will have to add a new port for miniupnpd-v6 or similar, as we're going to keep RELENG_2_0 snapshot builders...
-
- Thread in the miniupnp forum here.
http://miniupnp.tuxfamily.org/forum/viewtopic.php?t=728
This will take a while... -
- uPNP needs IPv6 support.
-
- I can't envision any scenario where you'd need proxy NDP, though maybe something will come up in the future. On the r...
-
- Need a WAN type for stateless autoconfiguration for IPv6, that's not going to be common in typical Internet firewall ...
-
- PPTP type WANs need IPv6 support. Not sure how that works or if it's even feasible, needs research.
-
- Layer 3 protocol isn't relevant for much of what it does, but needs review and at least some changes for IPv6.
-
- Captive portal needs IPv6 support. ipfw fwd doesn't function with IPv6 last I heard, amongst other things that need w...
-
- server load balancer needs IPv6 support.
-
- rc.newwanipv6 needs work. Might need to converge with rc.newwanip to avoid race and stepping on each other causing re...
-
- PPPoE server needs IPv6 support. Sends IPv6-CP packets, not confirmed if DHCPv6 server works.
-
- DynDNS client needs IPv6 support for registering AAAAs.
-
- Spoink is now integrated to snort and snort uses 2.9.0.5 port.
Possibly should ping the spoink author about this? -
- fixed
-
03:38 AM Bug #1824 (Resolved): DHCPv6 and unknown-clients.
- Hello,
There is a bug in the configuration of DHCPv6 : using the deny unknown-clients option makes the DHCPv6 fail...
08/31/2011
-
- thanks
-
01:40 PM Bug #1666: OpenVPN interface doesn't get added to bridge after reboot
- Seems to be fixed with latest snapshot, thanks.
-
- This is for snort-dev from what i can see!?
-
11:57 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP
- Also looking for a progress/status report here. Thanks.
08/30/2011
-
- The rules such as: ...
-
- HAve you tested with latest snapshots?
-
- Can you please try latest snapshots?
Also if still seeing issues can you get packet traces and any logs from pfSense... -
- Applied in changeset commit:db74464bf6f980c5c5845d53624d4c6f1b139fa7.
-
- I was finally able to reproduce this in a VM, even when the WAN was initially set for DHCP. Same panic message/backtr...
-
- Can you please test with tomorrows snapshot?
-
06:21 AM Bug #337: sticky connections do not work
I'm having the exact same behaviour as described by Mark Huijgen earlier. The only difference is that my two WAN in...-
- Bootstrap, a nice framework from Twitter which has a number of some quite nice features http://twitter.github.com/boo...
-
07:22 AM pfSense Packages Bug #1822 (Closed): Snort won't start
- So many issues with this package.
1) Local rules get wiped every time the auto updater runs. Then we have to go t... -
07:16 AM Bug #1806: OpenVPN Tunnel Network label configuration creates a wrong configuration file when using TAP device mode
- Did it with success, but with a little modification about the netmask. In fact to make it work I had to use the $mask...
-
- STP options work fine, not enough here to do anything with. Please post to the forum or mailing list with information.
-
04:12 AM pfSense Packages Bug #1821 (Rejected): spanning tree options
- Spanning Tree options are not considered
08/29/2011
-
- Yup, I hear ya.
Maybe by 2.1 someone could figure out how to do the dynamic hosts part per interface also, instead... -
- thanks. Too close to release to fix something that hasn't ever worked (probability of unintended consequences is alwa...
-
- Attached patch should result in the following behavior for registering DHCP hosts in DNS Forwarder.
*+Statically A... -
- Maybe just a tad bit of logic for using system domain when not specified in dhcp interface....
-
- Could fix for the statically assigned hosts of each interface in services dhcp be as simple as this?
--- /etc/in... -
- That's always worked that way, the domain filled in for the DHCP server if different from the primary domain name of ...
-
- Can you please bring some examples and facts from pfSense config files?
-
- DHCP Server specified Domain Name not being registered in DNS Forwarder.
Hosts are resolvable by System General sp... -
-
07:17 AM Bug #1809: Growl issue
- Well oke, thats now...
Never noticed that in RC1, But yes, it's working now :)
Thanks. -
04:02 PM pfSense Packages Bug #1820 (Closed): widescreen package doens't show ipv6 link
- widescreen package doens't show ipv6 link
dhcpv6 server & dhcpv6 lease link are missing when widescreen package is... -
-
- Can you try this?...
-
- Applied in changeset commit:737dbc05c13ddf31dc238ac59b406cc62716482a.
-
- Applied in changeset commit:8614f335d1c9d62cdb65e41f235e123e6993368e.
-
- Please try again newest snapshots
-
- DHCP Server specified Domain Name not being registered in DNS Forwarder.
Hosts are resolvable by System General sp... -
10:37 AM Feature #1817 (Resolved): Expand easyrule functions
- It would be nice if we could also use subnets for wan and lan interfaces and use the gateways thru the easyrule cli.
... -
- Most of the basic system now works with IPv6.
Large things that don't work.
- PPTP Client. not checked into. Is that... -
- This code is already checked in and the client exporter supports the new options as well. Furthermore the client expo...
-
- Negative, some networks will remain is bogon networks regardless, if networks are returned to a RIR they might come b...
-
- Please test
-
- Added Love, please check
08/28/2011
-
-
- Fixed in version 2.2
-
- thanks
-
- Fixed in version 2.2
08/27/2011
-
- diag_states_summary.php doesn't work correctly with IPv6. Seems to group everything under one entry, just listing the...
-
- should be fixed by https://github.com/bsdperimeter/pfsense-packages/pull/45
-
04:30 PM Feature #687: Test Button for Growl Notifications
- Chris Buechler wrote:
> You can file a test notice by going to Diag>Command, in PHP box put in:
> file_notice("tes... -
- 2.0-RC3 (amd64)
built on Wed Aug 24 10:10:33 EDT 2011
same case of hamilton, the error message is displayed onl... -
04:45 AM pfSense Packages Feature #1815 (Closed): OpenVPN Client Export Additional Parameters
- Hi,
The openvpn client configuration exporter doesn't have an option to pass additional parameters to the client (... -
- New version for auth.inc and system_authservers.php to allow for an extended LDAP query (Groups or otherwise)
08/26/2011
-
- i just uninstalled the widescreen package, shortcut are back. There is something missing for 2.1 in the widescreen pa...
-
- i found that right after an upgrade goth links are there. The links dissapear after all the package upgrade.
i hav... -
- I can not replicate this anymore as I only have a single WAN left at work.
08/25/2011
-
- We have no current plans for implementing this. where "current plans" always means "someone willing to fund it" out o...
-
- No intressst in this?
-
- I'm also unable to replicate this.
-
- I switch one of my tunnels back and forth regularly between my two WANs and as long as I adjust the peer address on t...
-
- You have a dying hard drive or other fatal hardware quirk. Nothing we can do about that.
-
05:55 PM Bug #1814 (Rejected): Drive read/boot errors w/2.0 RC3
- From forum post: http://forum.pfsense.org/index.php/topic,39181.0.html which was submitted by palesius
I have a sy... -
- I've been able to create a new gen_subnetv6_max() function in about a hour or 2 of coding and testing. Should be reso...
08/24/2011
-
- Should be all set, there was a unset of the input errors halfway the input validation that must have broken a lot of ...
-
- Committed code in git that should fix most of this, shows only the correct address family when editing a pool or fire...
-
- I've committed code to the gateway groups page that prevents you from adding different address families in the same g...
-
- Confirmed that my Macbook with 10.5 only has a link-local address when set to router-only. you can Still enable DHCP6...
-
- How are you testing Growl to say it is not working?
Growl creates a temp file (/var/db/growlnotices_lastmsg.txt) of... -
- This affects the kernel in 2.0 which is currently also in use on 2.1
-
- Code committed that prevents address family mixups in gateways and monitors, prevent v6 gateways on v4 only interfaces.
-
- Code with address family validation checked in, please test.
-
- Code checked in that converts the interface names to gateway names, updated the system.inc code that updates the rout...
-
03:47 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
- ronald meulendijks wrote:
> 0.0.0.0/0[any] 192.168.78.1[any] 255
> out ipsec
> esp/tunnel/95.96.134.40-91.189.22... -
- Jim P wrote:
> Some people are still hitting this same error, but not this specific circumstance. Two support custom... -
- My situation maybe related to this issues.
Mobile clients connect to pfSense use nat-t. I think racoon should supp... -
- Is there any progress on this issue?
-
- Seems fair enough
-
- Caution, if the config is Upgraded on nanobsd platforms the converted RRD files are not immediately saved to the flas...
08/22/2011
-
- floating rules can work around this
-
- the 'pass out' rules such as:
pass out route-to ( em1 9.2.2.1 ) from 9.2.3.17 to !9.2.2.0/21 keep state allow-opt... -
11:07 AM Bug #781: Entering sim code problem on a Huawei E1752
- Having same problem here with a novatel eu850d minipcie card, although PIN is deactivated.
When removing the "GetOK ...
08/21/2011
-
- has to be a browser cache issue, they're there.
-
- The dhcpv6 & dhcpv6 shortcut isn't present in the menu. but i have access if I type manualy the link in the address bar.
-
06:28 PM Feature #1811 (Closed): Monitor PPP for connections stuck in "initial" state
- I've been trying to help debug an issue with dynamic DNS updates on 3G connections (1545) but keep getting hampered b...
-
- DHCP Relay page only has 4 fields which are all the same between v4 and v6 with the exception of input validation. I ...
-
- I'll Investigate the needs. Page probably needs a total makeover because next to nothing that exists in ipv4 can be p...
-
- Added a "router" type that sends pinfoflags as being "". From the confusing documentation this might need to be "l" w...
-
- My thought was to add this as a choice from the drop down on the DHCP server page.
The config code currently does ... -
- Committed patches for both rebind and referrer checks.
Added patch for redirect url. -
- Confirmed that without a alternate port you do in fact trigger a DNS rebinding attack.
Found another gem related to ... -
- Will fix, same javascript helper from firewall rules and DNS server settings (gateway) would apply.
-
- This same issue exists on the firewall rules (edit) page for selection of gateways.
I can fix the input validation... -
- the sbappendaddr_locked() is a function that I believe comes from our one shot dumps patch which is active for our 2....
-
- Resolved by a commit a week ago when I ran into this myself on my lab setup.
-
- The function that calculates this is currently a string operated function instead of proper math. We need to have thi...
08/20/2011
-
10:22 PM pfSense Packages Todo #596: Varnish package suggestions for VCL syntax checking
- follow this forum topic:
http://forum.pfsense.org/index.php/topic,38271.15.html -
- > I work in a web shop design company and we use varnish as a reverse proxy for mostly sites builded using Drupal, Co...
-
- duplicate of #1810
-
07:52 AM pfSense Packages Bug #1805: Captive portal - Portal page contents - View current page url is incorrect.
- to be more specific: select line 700 - 710 and replace by:...
-
- In the /usr/local/www/services_captiveportal.php file the link to the uploaded html can not be accessed from a networ...
-
- I reported Bug #1769 that Growl stopped working and it got rejected.
So I tried some other stuff and updated the bug... -
- fixed, thanks
-
12:49 AM Bug #1808 (Resolved): link to scrub info is dead
- There is a link in the "Disable Firewall Scrub" section of /system_advanced_firewall.php that points to http://www.op...
08/19/2011
-
04:48 PM Feature #1807 (Resolved): Button needed for '-add a new one-' on the static IP configuration
- Button needed for '-add a new one-' on the static IP configuration. Currently this is just a link and not entirely o...
-
- Nice javascript spinner http://fgnass.github.com/spin.js/
-
- Those lines are from the OpenVPN log
/sbin/ifconfig ovpns2 3.3.3.5 *netmask 3.3.3.6* mtu 1500 up
/usr/local/sbin/... -
- When creating a *layer 2 tunnel using TAP devices in peer-to-peer shared key mode* you get a warning in the OpenVPN l...
-
- In the http://pfsense.local/services_captiveportal.php file there is an incorrect part:
the lines 701 till 709 nee... -
- Please post in the forum to rule out a configuration issue and to gather more information. If it's determined that a ...
-
05:02 AM Bug #1804 (Rejected): DNS forwarder
- I am on latest RC3 - I just discovered DNS forward is completely non-functional.
I am using 2 WAN (WAN+Opt2)- balanc...
08/18/2011
-
- It ends up read only but it breaks many other things if you upgrade with packages. GUI doesn't load, many processes d...
-
- Yeah, unfortunately that is the case, axe(4) doesn't support altq. Was worth double checking though.
-
09:52 AM Bug #1802: Interface not showing in traffic shaper
- From the dmesg output I get, the NIC is using the Axe driver. So, no ALTQ support.
axe0: <vendor 0x0b95 product 0x... -
- They all call themselves ue0 now I see. If you look in dmesg there would be a line saying what driver it actually is....
-
- It use the "ue", which is not listed in the ALTQ supported driver list.
-
- What driver does the network card use? It would be something like aue0, etc. We can double check the driver to see if...
-
- After doing more research, it seem like not all drivers/network cards are supporting ALTQ, so that must be the issue....
-
- Hi,
I recently installed pfSense 2.0 and am using an USB network card for testing purpose. I noticed that the inte...
08/17/2011
-
-
- Hello, it would be great to have a box in the certificate creation page to include intermediate certs.
forum threa... -
- See also #1336
-
- I put a fix that helps this.
Can you please try with latest snapshots? -
- That's just a fact of how it works, not a bug. If you have access to the user manager you have full admin rights.
-
03:08 PM Feature #1787: Everyone with access to user manager has full admin rights
- There are only a few things I have changed. I think this problem is not dependend on the configuration. To test this ...
-
- Can you describe how you have setup your firewall that gives you this issue?
-
- In some scenarios, it's undesirable for user manager users to have full admin capabilities, such as managing CP users...
-
- This is not expected to work on 2.0.
The way you should do is assign the vlan and then go and create a PPP type li... -
- amd64
pfsense rc3
Snort
Notes:
Snort seems to be still down
alerts tab clear log seems to be broken -
01:07 AM pfSense Packages Bug #1590: Snort Will Not Start
- the only snag that I think *might* cause an issue is a future rules update since that flushes the rules folder. if l...
-
- Another update. Just tried rebooting the server -- no updates were done or any changes to configuration or addition/...
-
- That may be possible, it would have to be tested to make sure it really works though. I haven't looked at this since ...
-
11:33 AM Feature #1184: Certificate Manager - Ability to add nsCertType=SERVER extension to certificates
- Since we know in advance what kinds of extensions we want, they should all be specified in the openssl.cnf, but in di...
-
- Auto upgrade works fine, I just tested it on my alix again. You may have a problem specific to your system or CF. Ple...
-
10:09 AM Bug #1786 (Rejected): NanoBSD auto upgrade fails
- I installed
2.0-RC3 (i386) built on Tue Aug 16 20:24:26 EDT 2011
on a Netgate ALIX.2D3 / 2D13.
by dd the image...
Also available in: Atom