Activity

30 days up to

User

Subprojects

Activity

From 10/08/2011 to 11/06/2011

10/30/2011

10:29 AM Feature #1548 (Closed): IPSEC Secondary Gateway: Closing, using #1965 instead. Jim Pingle
03:35 AM Feature #1965: Support Multiple IPsec Peers: It looks a duplicate of this:
http://redmine.pfsense.org/issues/1548
Actually this is explained better :D Michele Di Maria

10/29/2011

05:35 AM pfSense Packages Bug #1961: Spoink and IP banning: yes, it would be great!
As you understand, I personally don't want to focus on the solution itself, for me any solu... Michele Di Maria
02:22 AM Feature #1984 (Resolved): Allow CP Voucher submission via URL so they can be distributed as QR code: In addition to the web form, allow the submission of voucher via URL e.g.... Dim Hatz

10/28/2011

07:39 PM Bug #1983 (Resolved): Cancel Button generates a Confirm Form Resubmission message: Add or edit a rule (such as a firewall rule) and apply it, leaving the "The settings have been applied." message open... Cam Cook
03:34 PM Revision 5cf74791: Reformat the DNS Forwarder page a bit so it conforms with the other pages. Add some headers to make it more clear what each section does. Cosmetic changes only.: Jim Pingle
03:32 PM Revision 6661dbcf: Reformat the DNS Forwarder page a bit so it conforms with the other pages. Add some headers to make it more clear what each section does. Cosmetic changes only.: Jim Pingle
02:44 PM pfSense Packages Bug #1982 (Resolved): Snort exits on rules update and does not restart: Using Snort 2.9.0.5 pkg v. 2.0 on pfSense 2.0... using either autoupdate of rules or manual update of rules, if Snort... Seb A
01:50 PM pfSense Packages Bug #1942: snort_blocked.php loads blank: I've noticed that the snort_blocked.php page uses a lot of CPU in the php process. It takes a long time to render for... Seb A
01:36 AM pfSense Packages Bug #1942: snort_blocked.php loads blank: Blank Page happens also on pfsense 2.0 final at these URL
#blocked pages
/snort/snort_blocked.php
#alerts
/snor... tb o
01:45 PM pfSense Packages Bug #1961: Spoink and IP banning: Another solution is to remove Spoink and use SnortSam in it's place in the Snort package. I think this is in the dev ... Seb A

10/27/2011

09:10 PM Revision 26ba572a: Merge pull request #15 from marcelloc/patch-2: Fix missing description in rowhelper. Scott Ullrich
09:09 PM Revision b65ce59a: Fix missing description in rowhelper.: Marcello Silva Coutinho
08:28 PM Feature #290: Add Multi-WAN awareness to UPnP: I just tested pfSense 2.0-RELEASE and with multiple WAN w/ multiple public IP addresses, selecting the LAN interface ... Simon Fong
02:29 PM Revision ea9a4cc8: Assume a default value of 1 for cert_depth to disallow chaining.: Jim Pingle
02:29 PM Revision 77ed2f4c: Add GUI option to limit the certificate depth allowed when OpenVPN clients are connecting.: Jim Pingle
02:29 PM Revision 3f9c1775: Specify full path to openssl.cnf, and select the relevant section to use when generating certificates.: Jim Pingle
02:28 PM Revision 41936acc: Assume a default value of 1 for cert_depth to disallow chaining.: Jim Pingle
02:28 PM Revision 98963f27: Add GUI option to limit the certificate depth allowed when OpenVPN clients are connecting.: Jim Pingle
02:28 PM Revision 87b4deb2: Specify full path to openssl.cnf, and select the relevant section to use when generating certificates.: Jim Pingle
11:10 AM Bug #1918: update status: Just tried in three different browsers (2 of which I never access this device with) and an incognito window in Chromi... Dave Wilde

10/26/2011

10:40 PM Bug #1918: update status: In almost all cases, such errors are resolved by clearing your browser's cache or closing and opening the browser ses... Jim Pingle
09:22 PM Bug #1918: update status: Just noticed the same problem. This is a stock release that was upgraded from RC1 to RELEASE. I haven't altered any... Dave Wilde
10:38 PM Bug #1981 (Closed): lighttpd errorlog using text rather than clog format: Please note that the format of /var/log/lighttpd.error is text rather than clog, which could potentially eat up disks... Dim Hatz
09:14 PM Revision 4659f856: Fix up syslog settings a bit, add some missing options, fix formatting of syslog.conf, correct behavior of 'everything', code cleanup.: Jim Pingle
09:14 PM Revision 236524c2: Fix up syslog settings a bit, add some missing options, fix formatting of syslog.conf, correct behavior of 'everything', code cleanup.: Jim Pingle
05:48 PM Feature #1938: Filter messages broken into multiple syslog messages: Wow, that's troubling. I escaped it because it looked like PHP was swallowing the backslash. But I'm looking now and ... Ted Lum
05:14 PM Feature #1938: Filter messages broken into multiple syslog messages: A warning to those trying the proposed change, it doesn't quite work as written. It works if you run it from the comm... Jim Pingle
01:17 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Chris Buechler wrote:
> we're working on it. a partial fix will be in 2.0.1 though not sure we can get it entirely f... Derrick Conner
01:15 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: we're working on it. a partial fix will be in 2.0.1 though not sure we can get it entirely fixed for then (it's comin... Chris Buechler
01:12 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Hafiz Rafiyev wrote:
> anybody working on this urgent bug?
Not that I am aware of. I also have an embedded test... Derrick Conner
12:09 PM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: anybody working on this urgent bug? Hafiz Rafiyev
10:14 AM Bug #1928: Can't sync voucher database when carp peer is also active: I deleted the CARP sync so that the voucher database keeps syncing fine but when the master goes down I still can't g... Sander Naudts
09:29 AM Revision 12a2f395: Fix the 2nd grow command, add space: Ticket #1758 Seth Mos
08:13 AM Revision 16cc1c10: Increase the GROW for the 60 minute RRA so that we have atleast 2160 entries for 3 months worth of data.: Seth Mos
06:45 AM Revision 4fe54cdf: Add back the accidentally removed xml rrd restore line, otherwise we still don't have the new RRD file: Ticket #1758 Seth Mos

10/25/2011

08:05 PM Revision b0b48a57: Correct typo in command.: Ticket #1758 Seth Mos
07:49 PM Revision eb346e0b: Ok, let's try not to corrupt the RRD files on upgrade. Leave the RRA arc: hives for the 720 minutes average at 1000.
Then run a rrdtool resize command to grow the RRA by 1000 and 2000 for the... Seth Mos
06:26 PM Revision d7778a7b: Ok, let's try not to corrupt the RRD files on upgrade. Leave the RRA archives for the 720 minutes average at 1000.: Then run a rrdtool resize command to grow the RRA by 1000 and 2000 for the 60 and 720 average respectively.
Attempts ... Seth Mos
05:34 PM Bug #1980 (Closed): RFC 2136 will not update two records for one interface: If you have two entries for the same interface, only the top one in the list will be updated when the address of that... Andreas Winge
03:06 PM Revision 4d89e4d7: Do not pass the ldap port separately, but add it to the LDAP URL. PHP's ldap_connect() ignores the passed port parameter if the first parameter is a URL instead of a hostname.: Jim Pingle
03:05 PM Revision 9f27de6d: Do not pass the ldap port separately, but add it to the LDAP URL. PHP's ldap_connect() ignores the passed port parameter if the first parameter is a URL instead of a hostname.: Jim Pingle
01:42 PM Feature #1979 (Resolved): Allow user-defined rules to utilize built-in system aliases: It would be useful to have some stock aliases that come by default which are not editable by users. These aliases wou... Jim Pingle
01:03 PM Feature #1913 (Resolved): Add relayd to Status > Services: Chris Buechler
08:47 AM Bug #1978 (Resolved): Multi-WAN+Multi-LAN shaper wizard VoIP bandwidth check is wrong: In traffic_shaper_wizard_multi_all.xml wizard when you get to the VoIP bandwidth screen there is a box for each WAN, ... Jim Pingle
12:00 AM Bug #1948 (Resolved): VoIP Rule from shaper wizard doesn't work as the description implies: Chris Buechler

10/24/2011

11:57 PM Bug #1920 (Resolved): Incorrect title banner in 2 of 3 "Status: System Logs" Web Configurator pages.: Chris Buechler
11:55 PM Bug #1954 (Closed): Outbound manual nat rules could break CARP: Chris Buechler
11:54 PM Bug #1960 (Resolved): Typo in php script for update status: Chris Buechler
11:28 PM Bug #1888: Upgrade ISC dhcpd to v4.2.2: ISC DHCP 4.2.3 was released on 19 Oct 2011
http://www.isc.org/software/dhcp Dim Hatz
10:34 PM Revision ea1cea05: Converting javascript code from prototype to jQuery: Vinícius Coque
10:11 PM Bug #1976: problems with CP MAC pass-through: #1958 details the same issue, closed it in favor of this one. Chris Buechler
09:27 PM Bug #1976 (Resolved): problems with CP MAC pass-through: There are issues with the MAC pass-through, replicable in the following scenarios (use the attached config as a start... Chris Buechler
10:11 PM Bug #1958 (Closed): CP ipfw ruleset has two rules with the same number: forgot this was here, opened #1976 instead which has the specific problem. Chris Buechler
08:48 PM Revision c6023b4a: Show RTT and Loss on Status > Gateways, not just on the widget: Jim Pingle
08:47 PM Revision fc4fa6de: Show RTT and Loss on Status > Gateways, not just on the widget: Jim Pingle
06:21 PM Revision 8f096822: Don't run ldap_urlchange on page load if there is a custom port, otherwise it appears to ignore a custom LDAP port even when it's correct in the config.: Jim Pingle
06:20 PM Revision 230b3b1b: Don't run ldap_urlchange on page load if there is a custom port, otherwise it appears to ignore a custom LDAP port even when it's correct in the config.: Jim Pingle
07:32 AM Bug #1975 (Rejected): Weird Interface Names.: Looks like a problem with your setup, I've got 2.0 amd64 installed in VirtualBox and it's fine.
Given the crashes ... Jim Pingle
04:09 AM Bug #1975 (Rejected): Weird Interface Names.: Hello,
just installed the latest release 2.0 amd64 into virtualbox and got weird interface names.
I'm still inv... Oliver Loch

10/23/2011

07:06 PM Bug #1974 (Resolved): Captive Portal RADIUS accounting bytes wrong: As discussed here:
http://forum.pfsense.org/index.php/topic,39555.0.html
ipfw entrystats is returning wrong valu... Chris Buechler
01:22 AM Revision 79226d4f: fix text: Chris Buechler
01:21 AM Revision 9f07c343: fix text: Chris Buechler

10/22/2011

10:13 PM Revision e03ef9a0: Converting ajax code from prototype to jQuery: Vinícius Coque
10:00 PM pfSense Packages Feature #1973 (Closed): Update siproxd to v0.8.1: http://siproxd.sourceforge.net/index.php?op=changelog
> Release 0.8.1
> 10-Jul-2011
> This release fixes some bu... Dim Hatz
09:56 PM Bug #1336: PPTP VPN NAT on WAN or other external interface: Test 2.0-Release This problem has been resolved.
Thank you pfsense team effort. Shadow Hwang
07:02 PM Revision 78d84a88: Converting from prototype to jQuery status_*: Vinícius Coque
07:01 PM Revision ef9773a5: Converting from prototype to jQuery: Vinícius Coque

10/21/2011

10:11 PM pfSense Packages Bug #1749: Rules/ Categories update: I am seeing this issue with 2.0 release, amd64. The process that autogenerates oinkmaster_nnnnnn_em0.conf is creating... David Nadle
04:42 PM Bug #1968: webconfigurator dies: well,I will try to unlock as suggested next time if it happens again.
Something I did not mention here, related to... Franck Bourdonnec
03:20 PM Bug #1968: webconfigurator dies: Probably the rate command is hanging on status_graph.php and if a command hangs like that, it hangs up fastcgi, which... Jim Pingle
03:13 PM Bug #1968: webconfigurator dies: ok,
new freeze of web interface WITHOUT modification.
This eliminates totally 'syntax error'
I made following in... Franck Bourdonnec
03:05 PM Revision 2c73ba5f: Shorten the NEGATE rule label as these are too long: Seth Mos
03:02 PM Feature #1972 (Resolved): Allow /31 networks to be configured: http://svn.freebsd.org/changeset/base/226402
Needs to be allowed on the web interface. Ermal Luçi
02:39 PM Bug #1971 (Rejected): carp sync username not honored: Duplicate of #1736 Jim Pingle
02:33 PM Bug #1971 (Rejected): carp sync username not honored: Carp sync appears to not use the @Remote System Username@ anymore, but always sends @admin@ as the username.
I had... Jesse Norell
01:44 PM Revision 64758836: Shorten the NEGATE rule label as these are too long: Seth Mos
08:04 AM Bug #1970: IPsec stops routing after a while: Might be related to #1351
Also this post to the ipsec-tools list sounds similar:
http://sourceforge.net/mailarchi... Jim Pingle

10/20/2011

05:14 PM Bug #1969: IPsec refuses connection after first Cisco Client connection: I believe this to be the same issue as bug 1970, except that somehow the Cisco client is not disconnecting properly (... c c
05:12 PM Bug #1970: IPsec stops routing after a while: Attached are logfiles. First is a connection while racoon is in a hung state, followed by 4 pings to 8.8.8.8 (all ti... c c
05:05 AM Bug #1970 (Resolved): IPsec stops routing after a while: Using the same setup as this bug:
http://redmine.pfsense.org/issues/1969
It appears that after a while with no cl... c c
02:49 PM Bug #1968: webconfigurator dies: no, no other addon, pure valilla pfsense 2.0 !
It is not my habit to spell www.something Www.something.
I have no... Franck Bourdonnec
02:32 PM pfSense Packages Bug #1443: Squid errors on updating version: This is now less of an issue as I have found that Squid will still run correctly. The error messages still appear, bu... Lloyd Collins
02:09 PM Bug #1402: When creating a QinQ it works until reboot.: Hi,
I'm experiencing the same trouble with qinq.
*My platform* : Pfsense 2.0 amd64
*What I am trying to do* ... Antoine Rodriguez
12:52 AM pfSense Packages Bug #1749: Rules/ Categories update: I too have noticed this problem. Even though Snort will say "reapplying enabled/disabled rules" when doing an updated... Kyle Britton

10/19/2011

11:20 PM Bug #1969 (Resolved): IPsec refuses connection after first Cisco Client connection: Full details etc in thread
http://forum.pfsense.org/index.php/topic,41631.0.html
I have mobile IPsec set up, and... c c
07:02 PM Bug #1968 (Feedback): webconfigurator dies: it's not that simple. need the specific problem, this isn't adequate as a bug report. I suspect it's an installed pac... Chris Buechler
06:31 PM Bug #1968 (Closed): webconfigurator dies: --- /conf/backup/config-1319057958.xml 2011-10-19 23:18:58.000000000 +0200
+++ /conf/backup/config-1319057344.xml 20... Franck Bourdonnec
06:43 PM Revision 976db9de: More typos/text fixes.: Jim Pingle
06:39 PM Revision f65555eb: More typos/text fixes.: Jim Pingle
05:59 PM Revision a499d560: Fix typo: Jim Pingle
05:59 PM Revision 7b230103: Fix typo: Jim Pingle
05:16 PM Revision 7492e6c3: Fix typo: Jim Pingle
05:16 PM Revision 08847295: Fix typo: Jim Pingle
06:55 AM Revision 1005d4bf: Add the OOM memory restructuring fix from Ticket #1758 into mainline for nanoBSD upgrades.: Seth Mos
03:11 AM pfSense Packages Bug #1443: Squid errors on updating version: I just checked and this is happening in the release version as well, in both VMware and on physical hardware. Lloyd Collins

10/18/2011

03:22 PM Bug #1856 (Closed): Removing a Phase 2 does not remove the SPD policy: Failed to replicate on current code.
more /tmp/spd.conf.reload.1318965869.ob2B1v
spddelete -6 2001:470:d72c:0:0:... Seth Mos
08:41 AM Revision 1e3c94dd: Modify code to remove memory usage to prevent a Out of Memory condition when upgrading the RRD database on a 128MB system.: Ticket #1758 Seth Mos
07:33 AM Revision 9dfd60db: Add a check to prevent this gateway code from triggering the address family check. This might not be all that is needed for Ticket #1949: Seth Mos
05:54 AM Bug #1758 (Feedback): Upgrade fails to upgrade RRD data for traffic and packets: Ok, so the code now triggers properly on a nanobsd system but it causes a Out of Memory situation on a 128MB system (... Seth Mos
03:36 AM Bug #1949 (Feedback): can not set gateway group on a filter rule.: The fix seems to work as intended, I tried switching filter rules back and forth on protocol, gateways, groups and ad... Seth Mos
03:01 AM Bug #1950 (Feedback): "Bypass firewall rules for traffic on the same interface" doesn't work as intended: The direct_networks table was never used but initially created for the purpose of negate policy based routing rules. ... Seth Mos

10/17/2011

05:10 PM pfSense Packages Bug #1966 (Resolved): 500 Error On Graph Request of LightSquid: System
------
I have PfSense version 2.0 (built on Tue Sep 13 17:33:40 EDT 2011), installed Squid 2.7.9_4.2 and Lig... Steve Beaudoin
03:13 PM Revision 7cc56826: Add missing ?, fix uname display. Fixes #1960: Jim Pingle
03:12 PM Revision ebcd13ca: Add missing ?, fix uname display. Fixes #1960: Jim Pingle
02:57 PM Feature #1965 (Resolved): Support Multiple IPsec Peers: In the future it would be nice to have IPsec allow connections to/from multiple peers for the same tunnel, for failov... Jim Pingle
11:10 AM Bug #1960: Typo in php script for update status: Applied in changeset commit:ebcd13cac1f5d83f7352016c9bc750adfd6e21fa. Jim Pingle
11:10 AM Bug #1960 (Feedback): Typo in php script for update status: Applied in changeset commit:7cc56826c8036cac40b95aab8e1c6349741e5e01. Jim Pingle
11:10 AM Bug #1964: Changing MTU on pfSense 2.0 doesn't work: The ticket system is not for troubleshooting or help - please keep it on the forum. Jim Pingle
11:04 AM Bug #1964: Changing MTU on pfSense 2.0 doesn't work: Why in pfsense 1.2.3 or in a linux-based firewall as Kerio Control it works and in pfSense 2.0 it doesn't work???
I'... Alessandro Bolletta
11:00 AM Bug #1964: Changing MTU on pfSense 2.0 doesn't work: Then your MTU is 1496. It changed as it was supposed to - which means the MTU change is not the problem, and you have... Jim Pingle
10:59 AM Bug #1964: Changing MTU on pfSense 2.0 doesn't work: Yes, I get the same ifconfig when I change MTU on the WebGUI, but it doesn't work, while if I do the same things in p... Alessandro Bolletta
10:52 AM Bug #1964 (Rejected): Changing MTU on pfSense 2.0 doesn't work: Please keep the discussion on the forum until a bug is confirmed. Changing the MTU works fine.
[2.0-RELEASE][root@... Jim Pingle
10:35 AM Bug #1964 (Rejected): Changing MTU on pfSense 2.0 doesn't work: I tried to change MTU on pfSense 2.0 into 1496 because of my internet connection needs. While i could get it working ... Alessandro Bolletta
02:08 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: Hafiz Rafiyev wrote:
> any progress abouts this bug?
Don't know. Was never contacted after my last comment nearl... David Rees
01:56 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: I second that question! Is there something anyone needs, such as access to an online system that can reproduce ... Derrick Conner
01:36 AM Bug #1421: Disconnecting PPTP VPNs drops IPsec when using wrong PPTP server IP: any progress abouts this bug? Hafiz Rafiyev

10/16/2011

08:05 PM Revision ebfc87d6: Converting from prototype to jQuery: Vinicius Coque
08:05 PM Revision e3c1ea9b: converting from prototype to jQuery: Vinicius Coque
05:54 PM Bug #1963 (Resolved): CP Voucher submission - 'Enter' button does not submit form in MSIE: Please note that the default webpage generated by get_default_captive_portal_html() /etc/inc/captiveportal.inc with a... Dim Hatz
08:35 AM Feature #1962 (Closed): disconnect specific pptpd interface from command line: For pfsense usage in secured network ability to disconnect specific dialin user or interface is must.
if some one k... Zeev Zalessky
12:49 AM pfSense Packages Bug #1961 (Closed): Spoink and IP banning: Hello,
this request follows this post on the Forum: http://forum.pfsense.org/index.php/topic,41895.0.html.
Su... Michele Di Maria

10/15/2011

07:26 PM Bug #1960 (Resolved): Typo in php script for update status: Hi,
I've just been messing with the Dashboard and found a "bug" in the html source as shown in the picture added. Oliver Loch
02:09 PM Bug #1959: openssl does not accept ECC-certificates: funny that it's possible to create a ecc-certificate using the older binary but it only works on the newer one …. Michal Fresel
02:07 PM Bug #1959: openssl does not accept ECC-certificates: related to this one #1851 Michal Fresel
02:06 PM Bug #1959 (Resolved): openssl does not accept ECC-certificates: The default openssl-package will not work with ECC-certificates... Michal Fresel
12:37 PM Bug #1851: ECC-Cert breaks the webconfigurator: maybe testing using the php-function "openssl_pkey_get_details" and checking for return-level could sanitize uploadin... Michal Fresel
12:04 PM Revision e1fd8311: Fixes #1948. Do not specify an interface for the Voip rules that intend a source ip.: Ermal LUÇI
12:04 PM Revision 8800783f: Fixes #1948. Do not specify an interface for the Voip rules that intend a source ip.: Ermal LUÇI
08:05 AM Bug #1948: VoIP Rule from shaper wizard doesn't work as the description implies: Applied in changeset commit:8800783f5d513c7ff0cbb890d988f95ac9db4df9. Ermal Luçi
08:05 AM Bug #1948 (Feedback): VoIP Rule from shaper wizard doesn't work as the description implies: Applied in changeset commit:e1fd8311bd36906e423c4c711dc3133078e8a464. Ermal Luçi
07:56 AM Feature #1901: Maintain IP range tables for popular Internet sites: I do not like that since you cannot draw the line what is more important and what is to skip. Ermal Luçi
07:54 AM Bug #1944 (Closed): Typo in /etc/inc/voucher.inc: Either was fixed from someone else or it was not an issue.
It is correct in code either way. Ermal Luçi
07:46 AM Bug #1956 (Closed): Detect if logout was succesful: I do not see any usefulness on this! Ermal Luçi
07:45 AM Bug #1957: Remove button-inside-hyperlink usage from web forms: Patches accepted! Ermal Luçi
06:59 AM Bug #1958: CP ipfw ruleset has two rules with the same number: notes from originator: ... Chris Buechler

10/14/2011

08:03 PM Bug #1958 (Closed): CP ipfw ruleset has two rules with the same number: Not at all sure if it's an issue or not (haven't used ipfw before), but I've noticed that on my system 'ipfw show' pr... Dim Hatz
09:24 AM Bug #1957 (Resolved): Remove button-inside-hyperlink usage from web forms: Having an <input type="button"> inside an <a href="..."> is technically a violation of HTML5. Also, it makes the butt... David Nadle
05:20 AM Bug #1951 (Rejected): Auto generated reply-to rules not working: no specific bug here, need to post things like this to the list or forum first as it's more likely a config issue as ... Chris Buechler
04:03 AM Bug #1956 (Closed): Detect if logout was succesful: Currently, a message "You have been disconnected." is shown regardless whether the user was logged in before or not. ... Benjamin P

10/13/2011

07:51 PM Revision cf37ec23: Remove the old direct_networks table which is not used throughout the filter code. Instead we now create a negate_networks table which contains both vpns, directly connected networks (static routes) which should never be tagged for policy routing which breaks traffic.: This fixes Ticket #1950 and needs to be MFC to 2.0 for 2.0.1 Seth Mos
06:47 PM Revision c066ea8a: Remove the old direct_networks table which is not used throughout the filter code. Instead we now create a negate_networks table which contains both vpns, directly connected networks (static routes) which should never be tagged for policy routing which breaks traffic.: This fixes Ticket #1950 and needs to be MFC to 2.0 for 2.0.1
Conflicts:
etc/inc/filter.inc Seth Mos
02:58 PM Revision f7dc7ce1: Add no nat/rdr rules for carp protocol so people do not screw their setups.: Ermal LUÇI
02:58 PM Revision 378b2987: Add no nat/rdr rules for carp protocol so people do not screw their setups.: Ermal LUÇI
12:28 PM Revision 7ad4b1f4: Move the old databases to the backup folder in conf: Fixes ticket #1758 Seth Mos
12:28 PM Revision eb5e790f: Restore the RRD backup before attempting a migration as this bites the nanobsd users.: We immediately backup the new databases to a new rrd.tgz file. The old database will be moved to /root
Fix for ticket... Seth Mos
12:15 PM Revision 8fa054b1: Move the old databases to the backup folder in conf: Fixes ticket #1758 Seth Mos
12:12 PM Revision e34cf1f6: Restore the RRD backup before attempting a migration as this bites the nanobsd users.: We immediately backup the new databases to a new rrd.tgz file. The old database will be moved to /root
Fix for ticket... Seth Mos
11:34 AM Bug #1951: Auto generated reply-to rules not working: 6 Screenshots attached. The Floating and Interface Group rules were only enabled one at a time. They are both disable... Larry Titus
11:10 AM Bug #1951: Auto generated reply-to rules not working: Without showing what you configured on the floating rules i cannot give you a real answer.
My first guess is that ... Ermal Luçi
11:09 AM Bug #1954 (Feedback): Outbound manual nat rules could break CARP: A fix has been put in for 2.0.1 to prevent nat from messing with carp packets. Ermal Luçi
11:07 AM Bug #1954 (Closed): Outbound manual nat rules could break CARP: If user create manual outbound rules with source any it can break carp protocol.
Prevent this by adding protection n... Ermal Luçi
11:07 AM Bug #1948: VoIP Rule from shaper wizard doesn't work as the description implies: That is true actually.
I will try to put a reasonable fix soon.
For now just remove the interface that is auto-se... Ermal Luçi
06:00 AM Bug #1758: Upgrade fails to upgrade RRD data for traffic and packets: Just a FYI in case people want to upgrade their 1.2.3 databases on their 2.0 installs. Executing the following code o... Seth Mos

10/12/2011

07:43 PM Bug #1951 (Rejected): Auto generated reply-to rules not working: In Multi-WAN setups, traffic seems to always leave the default gateway no matter what interface it entered on. For te... Larry Titus
05:05 PM Bug #1950 (Resolved): "Bypass firewall rules for traffic on the same interface" doesn't work as intended: The rules from "Bypass firewall rules for traffic on the same interface" go at the end of the ruleset, and thus are n... Jim Pingle
11:10 AM Bug #1949 (Resolved): can not set gateway group on a filter rule.: When trying to set a gateway group on a filter rule in 2.1 the address family validation triggers. This needs an addi... Seth Mos

10/11/2011

09:31 PM Revision 3f57df75: Disable could not find gateway for FOO log message. It is not causing any trouble and is making folks feel like there is something wrong with their install when there really is no issues.: Scott Ullrich
07:56 PM Revision ad700f39: Fix static routes editing and removal for both IPv4 and IPv6. Changing a route should clean up too.: Fix ticket #1892 Seth Mos
04:30 PM Bug #1948 (Resolved): VoIP Rule from shaper wizard doesn't work as the description implies: When using the shaper wizard, the text description for VoIP prioritization by address isn't consistent with the resul... Jim Pingle
03:37 PM Revision d8b989bc: Correct the updates path: Scott Ullrich
04:54 AM Bug #1946 (New): /usr/local/www/services_captiveportal.php: The description is wrong and the fix is wrong. Opening this because it appears committing a fix broke at least someth... Chris Buechler
12:00 AM Revision df39dd8a: replacing prototype by jQuery on firewall_*: Vinicius Coque

10/10/2011

08:05 PM pfSense Packages Bug #1765: Unable able to clear Snort Alerts: I uninstalled and reinstall the snort package. Its still not clearing the log. I dont get a blank page anymore. Just ... Cino .
07:54 PM Revision 0491163b: Merge pull request #14 from bcyrill/master: fix 1946 Scott Ullrich
07:52 PM Revision 13a45484: fix Bug 1946: Cyrill B
07:50 PM Revision 8d344afe: Merge pull request #13 from bcyrill/master: Bug 1944 Scott Ullrich
07:46 PM Revision 52bb3619: fix typo (Bug 1944): Cyrill B
07:18 PM Revision d568e38d: Fix multi instance cp items. Fixes #1946: Scott Ullrich
07:15 PM Revision 164a1525: Fix multi instance cp items. Fixes #1946: Scott Ullrich
06:46 PM Revision 943b7053: Revert "Add zone. Fixes #1945": This reverts commit 8a880cb97227c3cd41ed236d06e3188f97cea2ee. Scott Ullrich
06:44 PM Feature #1947 (New): Option to kill all states when creating a block rule: When creating a block rule you have the option to close all states relevant to the rule. Jonathan Bastin
06:41 PM Revision 8a880cb9: Add zone. Fixes #1945: Scott Ullrich
06:41 PM Revision 5dd5ef52: Add zone. Fixes #1945: Scott Ullrich
03:44 PM Bug #1676 (Feedback): dead IPv6 gateway causes kernel panics: Word is that the move to FreeBSD 9 will solve some of the issues as the ipsec socketbuffer patch will be gone. Seth Mos
03:42 PM Bug #1892: Cannot static add static IPv6 route.: Your "fix" is not correct approach, needs more work. We need to be able to set a larger mask in case of a new ipv6 en... Seth Mos
03:39 PM Bug #1758: Upgrade fails to upgrade RRD data for traffic and packets: In config step x we run the following commands. The only things I can think of is that these have failed.
function... Seth Mos
01:40 PM Bug #1758: Upgrade fails to upgrade RRD data for traffic and packets: OK, I'm no expert on RRD, but have done a little more digging on this.
In 1.2.3, the Traffic and Packet RRDs were ... Eddie Atherton
03:24 PM Bug #1946: /usr/local/www/services_captiveportal.php: Please open a new ticket for subsequent issues and please be sure the line #'s correspond with the prior changes.
... Scott Ullrich
03:22 PM Bug #1946: /usr/local/www/services_captiveportal.php: Small error in commit (Revision 164a1525)
>lines 272 to 293
replace $config['captiveportal'] with $newcp
e.g. ... Cyrill B
03:15 PM Bug #1946: /usr/local/www/services_captiveportal.php: Applied in changeset commit:164a152577ccce56f896ea5ef020fcfbf60fe896. Anonymous
03:15 PM Bug #1946 (Feedback): /usr/local/www/services_captiveportal.php: Applied in changeset commit:d568e38d0275efebbe0c1969e26b31bdf125570e. Anonymous
03:13 PM Bug #1946: /usr/local/www/services_captiveportal.php: line 642
replace @second@ with @third@
line 661
replace @second@ with @fourth@ Cyrill B
03:06 PM Bug #1946 (Closed): /usr/local/www/services_captiveportal.php: /usr/local/www/services_captiveportal.php
lines 272 to 293
replace @$config['captiveportal']@ with @$newcp@
li... Cyrill B
02:45 PM Bug #1945: Missing zone parameter: Applied in changeset commit:943b7053835d0928c79af1bfe32fa6fc8d6d2b6a. Anonymous
02:40 PM Bug #1945: Missing zone parameter: Applied in changeset commit:5dd5ef52a5676415da4acef460dc2244d9eb8dbf. Anonymous
02:40 PM Bug #1945 (Feedback): Missing zone parameter: Applied in changeset commit:8a880cb97227c3cd41ed236d06e3188f97cea2ee. Anonymous
02:32 PM Bug #1945 (Closed): Missing zone parameter: line 336 in /usr/local/www/services_captiveportal_vouchers.php... Cyrill B
02:15 PM Bug #1944 (Closed): Typo in /etc/inc/voucher.inc: line 667 in /etc/inc/voucher.inc... Cyrill B
12:04 PM Feature #1901: Maintain IP range tables for popular Internet sites: Sure if you would want to "cover all the bases" you'd need to monitor DNS traffic and add IPs to the passthrough list... Dim Hatz
10:00 AM Feature #1901: Maintain IP range tables for popular Internet sites: The only option here is to create a transparent proxy for dns and hook that up with daemons as filterdns.
All other ... Ermal Luçi
09:51 AM Bug #1928: Can't sync voucher database when carp peer is also active: It is not meant to work that way!
The voucher sync will sync with the master or use it as its central database.
I... Ermal Luçi
06:26 AM Bug #1943 (Closed): PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: (Copied from http://forum.pfsense.org/index.php/topic,40671.msg209656.html#msg209656)
Attached are four files. Her... David Burgess

10/09/2011

05:15 PM pfSense Packages Bug #1942 (Resolved): snort_blocked.php loads blank: Once snort has a large amount of blocked hosts the page doesn't load and a view source shows no html at all. This is ... Jonathan Bastin
01:18 PM Todo #1568 (Resolved): Import the IPv6 patch that allows router advertisements with forwarding enabled: Correct, it is not needed on FreeBSD9 where a alternative is already checked in by Bjoern.
The patch we use from m... Seth Mos
12:31 PM Todo #1568 (Feedback): Import the IPv6 patch that allows router advertisements with forwarding enabled: Probably not needed on 9. Ermal Luçi
12:46 PM Feature #1829 (Feedback): CARP with IPv6 support: Patch is active for 9 for FreeBSD 8 base it needs to be included by hand on builds to not create issues with 2.0 builds. Ermal Luçi
08:56 AM Revision 573ae2d1: fix typo. redmine #1941: Chris Buechler
07:17 AM pfSense Packages Feature #1815: OpenVPN Client Export Additional Parameters: I know, I added and submitted it on github :)
Thanks for closing the issue, I forgot about that! Andy I.
06:36 AM pfSense Packages Feature #1815 (Closed): OpenVPN Client Export Additional Parameters: There is an advanced section there that allows this Ermal Luçi
06:57 AM pfSense Packages Bug #1873 (Closed): Layer 7 RDP: the filters come from l7filter so it would need to be fixed there. They classify RDP as "OK: Probably works", but the... Chris Buechler
06:31 AM pfSense Packages Bug #1873: Layer 7 RDP: You are sure your rdp is not encrypted?
Ermal Luçi
06:37 AM pfSense Packages Bug #1689 (Resolved): Home URL broken from package paths: This has been solved for 2.0 Ermal Luçi
06:34 AM pfSense Packages Bug #1765 (Feedback): Unable able to clear Snort Alerts: This should be fixed since long now Ermal Luçi
06:33 AM pfSense Packages Bug #1753 (Resolved): Spoink integration: Ermal Luçi
04:53 AM Bug #1941 (Resolved): Typo in voucher_save_db_to_config function: fixed, thanks Chris Buechler

10/08/2011

09:36 PM Revision 3f978888: converting from prototype to jQuery on interfaces_assign.php: Vinicius Coque
07:04 PM Bug #1941: Typo in voucher_save_db_to_config function: Category: Captive Portal
Affected version: 2.1-IPv6
Affected Architecture: All Cyrill B
06:45 PM Bug #1941 (Resolved): Typo in voucher_save_db_to_config function: line 660 in /etc/inc/voucher.inc... Cyrill B
12:27 PM Revision dbe67167: Fixes issue with l2tp interfaces and altq: Ermal LUÇI
12:26 PM Revision 041e3190: Fixes issue with l2tp interfaces and altq: Ermal LUÇI
11:45 AM Feature #1938: Filter messages broken into multiple syslog messages: I don't know that I would call returning to the original functionality a "feature", this is a "bug" that broke the sy... Ted Lum
05:48 AM Feature #1938: Filter messages broken into multiple syslog messages: Probably some daemon should be done that reads this and does not complain much.
Does not seem hard to merge the tcpd... Ermal Luçi
04:40 AM Feature #1938 (Feedback): Filter messages broken into multiple syslog messages: this is the default logging format and not sure it should be changed, leaving as feedback for thoughts from others. M... Chris Buechler
07:14 AM Todo #1940 (New): Integrate rSyslogd: Seems its a better alternative to syslog since it supports encryption and can secure communication.
http://www.freeb... Ermal Luçi
05:51 AM Feature #1883: Diag > Limiter Info presentation enhancement: I am working on this. Ermal Luçi
12:35 AM Bug #1939 (Closed): Atheros DCMA-82 w/ IBSS has kernel panic: I'm trying to put together a Netgate ALIX kit for which I also picked up this wireless card that specifically states ... Josiah Ritchie

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

11/06/2011

11/05/2011

11/04/2011

11/03/2011

11/02/2011

11/01/2011

10/31/2011

10/30/2011

10/29/2011

10/28/2011

10/27/2011

10/26/2011

10/25/2011

10/24/2011

10/23/2011

10/22/2011

10/21/2011

10/20/2011

10/19/2011

10/18/2011

10/17/2011

10/16/2011

10/15/2011

10/14/2011

10/13/2011

10/12/2011

10/11/2011

10/10/2011

10/09/2011

10/08/2011