Activity

30 days up to

User

Subprojects

Activity

From 11/28/2012 to 12/27/2012

12/27/2012

11:42 PM Bug #2737 (Resolved): excessive filterdns processes in some circumstance(s): Some people are seeing huge numbers of filterdns processes. For instance:
http://forum.pfsense.org/index.php/topi... Chris Buechler
05:27 PM pfSense Packages Feature #2736 (Resolved): Additional configuration options for SMTP, POP3 and IMAP Pre-Processors in snort.conf: The attached *snort.inc* file contains some changes to the section that generates the snort.conf file for a newly add... Bill Meeks
05:21 PM pfSense Packages Feature #2735 (Resolved): Improvement to Snort Rules Update Process: The current rules update process in the Snort package has some shortcomings. In particular, when using both the Emer... Bill Meeks
05:18 PM Revision fee50f4d: Self-test should be hypenated, and the T should be lower case.: Jim Pingle
04:17 PM Revision 891e0d11: Correct tcp flags explanation code for CWR (should be W, not C): Jim Pingle
11:29 AM Bug #2734 (Closed): Mobile IPsec AES128 fails with glxsb on Alix, iOS client: +Hardware:+ Alix 2D3, latest BIOS. I attach the output of dmesg.
+pfSense:+ v2.0.2 (also fails with 2.0.1 and some... Jorge Albarenque
02:27 AM Revision 4c2ca7ea: Merge pull request #278 from phil-davis/master: Support different package internal name - feature #2603 Chris Buechler

12/26/2012

04:29 PM Revision 20df6ed7: Fix DHCPv6 lease deletion. Fixes #2726: Jim Pingle
03:16 PM Revision 0d1b26ee: Static mappings are not pool-specific. They exist independent of any pool, and you can't actually add static mappings "inside" a pool range. So disable the static map list/controls if editing a pool, since they are "global" for an interface. Fixes #2370.: Jim Pingle
03:09 PM Revision ee1fb205: Add description to additional DHCP pools. Implements #2733: Jim Pingle
02:24 PM Feature #1831: Captive portal IPv6 support: Those patches make the required changes to the php53-pfSense-module and the filterdns ports. Cyrill B
06:34 AM Feature #1831: Captive portal IPv6 support: I'll just add this here so that it doesn't get lost:
Add IPv6 support to 'pfSense_ip_to_mac' function https://github... Cyrill B
11:10 AM Revision c7421820: Merge pull request #289 from phildd/master: Handle null parameter to services_dyndns_configure Ermal LUÇI
11:08 AM Revision fca92751: Merge pull request #288 from bcyrill/patch-1: Fix comment Ermal LUÇI
10:55 AM Bug #2732: Captiveportal Can't Show User Status: pfSense-LiveCD-2.1-BETA1-i386-20121226-0706 still have the same problem! X.Z. Lin
10:30 AM Bug #2726 (Feedback): deletion of DHCPv6 leases from status_dhcpv6_leases.php does not work: Applied in changeset commit:20df6ed79b44807f2f556b821c125c4ca6bf3127. Jim Pingle
09:33 AM Bug #2730 (Resolved): Cannot add a static DHCP mapping within an Additional DHCP Pool: Should be "fixed" by commit:0d1b26ee (I put the wrong ticket ID on the commit)
Static mappings are not pool-specif... Jim Pingle
09:20 AM Feature #2733 (Feedback): Add in a "description" field for additional DHCP pools: Applied in changeset commit:ee1fb205d3b704d2c5af5fc7bc0c93bdb67d0271. Jim Pingle
03:24 AM Feature #2733 (Resolved): Add in a "description" field for additional DHCP pools: Would it be possible to add in a description field to the "additional pools" section under the DHCP4/6 server service... Brett Cooper
08:52 AM Revision 786ff5eb: Handle null parameter to services_dyndns_configure: When service_dyndns_configure is called with a null parameter, it should check/update the dyndns state of all interfa... phildd
01:57 AM Revision ddd69ea9: Fix comment: Cyrill B

12/25/2012

07:12 PM Feature #1831: Captive portal IPv6 support: Yes, I believe there are only partial patches available for ipv6 fwd support for stable/8 such as http://www.freebsd.... Cyrill B

12/24/2012

09:38 PM Revision 27493009: Add label to each pfctl logged result line, not just the first one.: With this, log filtering can find both the addresses added and deleted bogon records. N0YB
07:04 PM Bug #2732: Captiveportal Can't Show User Status: pfSense-LiveCD-2.1-BETA1-i386-20121217-0542 This version works properly
As of today, the 24th edition has the same p... X.Z. Lin
07:02 PM Bug #2732 (Resolved): Captiveportal Can't Show User Status: Captiveportal Can't Show User Status
Log message
Last 50 Portal Auth log entries
Dec 25 00:58:15 logportalauth[... X.Z. Lin
03:38 AM Bug #1399: rrdtool respawning too fast: I just had a epiphany, the enable_rrd_graphing() kills off any rrdtool process, including apinger'
Hence causing a... Seth Mos
03:01 AM Feature #2731 (Resolved): Add input validation of static route destination networks: We need input validation on system_routes_edit.php to prevent adding a static route with "Destination network" == any... Chris Buechler

12/23/2012

09:55 PM Bug #2730 (Resolved): Cannot add a static DHCP mapping within an Additional DHCP Pool: When attempting to add a static DHCP mapping within an Additional DHCP Pool, the static mapping gets added to the ove... Anonymous

12/21/2012

07:39 PM Revision 5feadf7f: Fix obtaining DNS servers from PPP: Jim Pingle
04:59 PM Bug #2729 (Resolved): UserManager has no indication that an account has an authorized_keys key defined: UserManager -> Users -> userpage offers no indication that an account has an authorized_keys key defined.
It's onl... Dim Hatz
02:01 PM Bug #2728 (Resolved): PPP WAN types do not obtain DNS servers properly in 2.0.2-RELEASE: [Note: This has already been resolved in commit:5feadf7fca75866582af73834c8d2ab14edca456 - Putting an entry here for ... Jim Pingle
12:59 PM Feature #2727 (Resolved): Add switch to dDNS Updates (RFC 2136) for external IP check: Hi all,
I'm referring to http://forum.pfsense.org/index.php/topic,57012.0.html
My preferred way would be to add... Jens Groh
09:10 AM Revision 3eeac25e: Since there is a firewall no need to do ingress checks in the routing table: Ermal LUÇI
03:26 AM Bug #1112: IPsec GUI/backend missing RADIUS support: Hi Jim,
from a few days it stopped working. No longer requests are forwarded to the radius.
thanks
Jonh Jonh Nash

12/16/2012

11:43 PM Revision 09b09d04: Allow multiple cp zones with different ssl certs: Cyrill B
11:03 PM pfSense Packages Bug #2721 (Rejected): IPSEC NAT-T with iPad client: NAT-T works in general with the iPad. Please post to the forum or list for help, this is a support issue, not a bug, ... Chris Buechler
10:54 PM pfSense Packages Bug #2721 (Rejected): IPSEC NAT-T with iPad client: Hi,
I can successful setup pfsense 2.01 + ipsec with iPad client. Everything was fine except when I change the NAT... Steve Wong
10:47 PM Revision 0faf09f7: Merge pull request #283 from bcyrill/patch-5: Update etc/inc/openvpn.inc Chris Buechler
10:38 PM Revision 1bc783b6: Update etc/inc/openvpn.inc: Mute error when interface does not exist, e.g. after reboot. Cyrill B
08:18 PM pfSense Packages Bug #2720: TinyDNS does not read nameserver_*: Sorry, the file name is ... Yonas Yanfa
08:14 PM pfSense Packages Bug #2720 (Resolved): TinyDNS does not read nameserver_*: Line 1137 in /usr/local/pkg/tinydns.in, line 1137, is:... Yonas Yanfa
06:59 AM Revision 5d1105e6: Merge pull request #281 from bcyrill/cp_table: Fix action and table order in pfSense_ipfw_Tableaction calls Chris Buechler
06:58 AM Revision 98e46882: Merge pull request #280 from bcyrill/cp_https: Fix cp variable Chris Buechler
06:58 AM Revision a7102e91: Merge pull request #282 from bcyrill/cp_index: Fix cp url redirect Chris Buechler

12/15/2012

04:05 PM Revision eb258d39: only trim the / if it is alone: Cyrill B
03:51 PM Revision 59775347: only trim the / at the end of the redirurl: Cyrill B
03:48 PM Revision b7ae00c0: always use the shortcut cpcfg variable: Cyrill B
03:19 PM Revision 073f0ac4: Fix action and table order in pfSense_ipfw_Tableaction calls: Cyrill B
02:17 PM Revision d61cbd50: Fix cp variable: Cyrill B
05:38 AM Revision 4068dcac: Merge pull request #279 from bcyrill/cp_logout: Add missing cpzone Chris Buechler
01:36 AM Revision 3e6d4c60: Add missing cpzone: Cyrill B
01:15 AM Revision f1e01f7c: Fix line endings: Erik Fonnesbeck

12/14/2012

06:41 PM Revision 26ee0570: Start dnsmasq before ntp because ntp can fail if it doesn't have proper/working DNS.: Jim Pingle
04:48 PM Revision e205bdb7: Support different package internal name: Phil Davis
04:41 PM Revision 75a01a7c: Support different package internal name: Allow the package external name (e.g. Ipguard-dev or squid3) to be different from the internal name (ipguard or squid... Phil Davis
08:50 AM Revision 0d20a040: Correctly retrieve the mac address: Ermal LUÇI
06:27 AM Bug #2529: Captive Portal does not function after update snap or restart system: @Fredrik
Since those problems are not related to the original bug report you should not report them here but inste... Cyrill B
02:25 AM Bug #2529: Captive Portal does not function after update snap or restart system: Hi.
Thankyou for the quick responce.
Something else now seams broken.
The user is now redericted to the login ... Fredrik Reuterswärd
02:05 AM Feature #2006: CP ipfw fwd all non-authenticated clients' TCP connections to 127.0.0.1,8000: It will follow the routing table.
If you see there are a lot of tricks with route-to/reply-to on our rulesets. Ermal Luçi
12:24 AM Bug #2159: Upgrade code breaks RRD databases on nano: I've just run into this after upgrading from 2.0 to 2.1 (WebGUI upgrade using pfSense-2.1-BETA1-1g-i386-nanobsd-upgra... Robert Keevil

12/13/2012

09:42 PM Revision 4a5feb83: Do not exit from php rather return to not have to refork again from the manager: Ermal LUÇI
09:37 PM Revision 6cbda317: Switch all the actions(pipe create/table modify/get mac address) during fast path of CP to pfSense modules ones.: Ermal LUÇI
09:15 PM Revision bdd3c3b2: Remove IPFW_FILTER flag since it gets not used anymore: Ermal LUÇI
09:08 PM Revision ec509679: Remove set 1 keywords from rules since sets are not used in CP since long time.: Ermal LUÇI
08:56 PM Revision 9a62d88f: Remove useless rule and reorder the static rule numbers: Ermal LUÇI
08:55 PM Revision d5063ffd: Correct rule number for https: Ermal LUÇI
08:51 PM Revision 06a45374: Fixes #2006 Forward to lighty only port 80 and 443 tcp rather than all tcp traffic.: Ermal LUÇI
08:43 PM Revision d0288824: Use the hex value since seems parsing of ipfw is broken for these: Ermal LUÇI
08:05 PM Revision 78fdb3b9: Remove remain from IFF_IPFW_FILTER flag not used anymore: Ermal LUÇI
06:50 PM Revision 5d8e8c9d: Exclude the VPN peer from routes so as to not break connectivity to the actual VPN peer if a route includes its IP.: Jim Pingle
05:13 PM Bug #2529: Captive Portal does not function after update snap or restart system: @Fredrik
Your problems are not directly related to this former issue. Instead there was a parsing problem in ipfw ... Cyrill B
02:47 PM Bug #2529: Captive Portal does not function after update snap or restart system: I'm sorry but I still have a problem with this one.
After upgrading to snapshot built on Wed Dec 12 10:59:14 EST 201... Fredrik Reuterswärd
03:05 PM Feature #2006: CP ipfw fwd all non-authenticated clients' TCP connections to 127.0.0.1,8000: Ermal, I can't imagine how TCP resets and UDP destination unreachable could "sometimes just exit the wrong interface... Dim Hatz
02:50 PM Feature #2006 (Feedback): CP ipfw fwd all non-authenticated clients' TCP connections to 127.0.0.1,8000: Applied in changeset commit:06a45374b159db353f24f7c39ab8ce52038b6d89. Ermal Luçi
02:35 PM Feature #2006: CP ipfw fwd all non-authenticated clients' TCP connections to 127.0.0.1,8000: I do not like sending resets or destination uncreachble since sometimes they will just exit the wrong interface.
Esp... Ermal Luçi
10:05 AM Bug #2719 (Resolved): Deleting IPsec tunnel does not remove SPDs: When you remove an IPsec tunnel, Phase 1 or Phase 2, its SPDs are left active.
Thus if you are moving from IPsec ... Jim Pingle

12/12/2012

11:36 PM Bug #2401 (Resolved): Mounting read-only after mounting read-write can be very slow on NanoBSD: Chris Buechler
10:56 PM Bug #2401: Mounting read-only after mounting read-write can be very slow on NanoBSD: Fantastic, I have upgraded 7 Alix nanobsd systems to 2.1-BETA1. They all do conf_mount_ro in under 1 second now. Well... Phillip Davis
04:03 PM pfSense Packages Bug #2718 (Resolved): bandwidthd not showing indivdual pc graphs properly.: running bandwidthd version 2.1.5 on pfsense
2.1-BETA0 (i386)
built on Sun Dec 9 04:41:14 EST 2012
FreeBSD 8.3-RE... John Beaudoin
02:14 PM Revision adde8405: Bumpitty bump bump.: Jim Pingle
02:32 AM Bug #2716 (Rejected): Don't reset the physical interface if I add an VLAN: this isn't true in general, I just did this several times yesterday on the latest 2.1, and do it several times a week... Chris Buechler
02:23 AM Bug #2716 (Rejected): Don't reset the physical interface if I add an VLAN: If I add a new VLAN interface to a physical interface, when I enable it, all the others are going down and the traffi... Dominique Fournier
02:28 AM Feature #2717 (Rejected): Disable an interface without loosing its configuration: this is not a place to ask questions, please post to the forum or mailing list. Chris Buechler
02:25 AM Feature #2717 (Rejected): Disable an interface without loosing its configuration: Is there any way to disable an interface (physical or VLAN) without loosing all its configuration and the firewall ru... Dominique Fournier
02:12 AM Feature #2715 (Resolved): Don't reactivate CARP until I manually do it: When I disable CARP manually, if I add a new interface, the driver restart the interface completely. And CARP restart... Dominique Fournier

12/11/2012

10:31 PM Revision c06240db: Add the new tunable in the GUI for custommization and its default value: Ermal LUÇI
09:56 PM Feature #2410: Support name based aliasing via CNAMEs or some other mechanism.: FWIW, the tomato project uses dnsmasq with DNS forwarder-like functionality and allows mapping multiple hostnames to ... Brendan Miller
04:30 PM Bug #2401 (Feedback): Mounting read-only after mounting read-write can be very slow on NanoBSD: Applied in changeset pfsense-tools:commit:008742971cb44d8c0f81929504ab7330442c4ba4. Ermal Luçi
01:58 PM Bug #2714 (Rejected): SNMP modules broken: It was broken on that snapshot. Current snapshots are OK. Jim Pingle
03:27 AM Bug #2714 (Rejected): SNMP modules broken: At least snmp_ucd.so is not loadable (and it prevents further modules from loading, which might or might not be broke... Peter Keel
01:47 PM Feature #2006: CP ipfw fwd all non-authenticated clients' TCP connections to 127.0.0.1,8000: Following up this old request, I wonder, is it really necessary to fwd all traffic to lighttpd listening at port 8000... Dim Hatz
01:08 AM Revision 83b9c4d2: Include bogons last update info in Diagnostics: Tables: NOYB NOYB

12/10/2012

09:52 PM Revision ee79fcda: Properly unlock before exit. Allow rarp to flow through ipfw of CP alos allow ipv6 packets so CP can work on v6: Ermal LUÇI
08:32 PM Bug #2667: IPv6 on VLANs broken: changed our affected system over to not use lagg at all, and it's still broken. Only IPv6 that works is on a physical... Chris Buechler
04:21 PM Revision 41ab0d07: Add .gitattributes file to help maintain proper newlines.: Jim Pingle
02:51 PM Bug #2401: Mounting read-only after mounting read-write can be very slow on NanoBSD: Two more points of data:
* Enabling write caching has no effect on speed.
* Switching from UFS to UFS2 has no effec... Jim Pingle
08:43 AM Revision cff55b34: Include bogons last update info in Diagnostics: Tables: NOYB NOYB

12/09/2012

09:41 AM Revision c2483e31: switch to using the fullbogons-ipv4.txt from Cymru, and standardize paths to /lists/: Chris Buechler
01:10 AM Revision 5b668994: Add extra check for DHCP(v6) static mapping edit pages to prevent an error when no DHCP config exists yet.: Erik Fonnesbeck
01:02 AM Revision 6ef2297b: Add extra checks for reading and saving certain wireless settings and fix an existing check.: Erik Fonnesbeck

12/08/2012

06:08 PM Revision 6ca4713a: Merge pull request #274 from N0YB/ARP-Table-Static-Entries: ARP Table Static Entries from Individual DHCP Static Mappings Ermal LUÇI
06:26 AM Revision 25c1ebd5: ARP Table Static Entries from Individual DHCP Static Mappings: Assign individual DHCP static mappings as ARP table static entries.
Useful / necessary for sending WoL magic packets ... NOYB NOYB

12/07/2012

08:47 PM Revision 66c73aab: Fixes #2703 correctly remove ips from v6 interfaces. Also cleanup the srd0 bits here: Ermal LUÇI
08:36 PM Revision 0b73e6f2: Don't allow transport mode to be selected for mobile clients. Fixes #2713: Jim Pingle
08:13 PM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): The ISC dhclient allows rejecting of subnets:
Quote from ISC dhclient doc:
----------------------------
reject 192... Phillip Davis
10:36 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): Seth Mos wrote:
> Would a hook into the dhclient-script not be a option for this to return on a "invalid" address
... Jim Pingle
03:17 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): Would a hook into the dhclient-script not be a option for this to return on a "invalid" address Seth Mos
03:13 PM Revision 0100d577: Merge pull request #273 from N0YB/Widget-Firewall-Logs-Filtering: Widget Firewall Logs Filtering Jim Pingle
03:07 PM Bug #2712: Openvpn and Quagga cause route collision and race condition: I didn't want to commit this to 2.0.x not knowing for sure if it fixed the issue, but here is a patch that can be app... Jim Pingle
02:50 PM Bug #2703 (Feedback): IPv6 IPs are not removed when interface is re-assigned: Applied in changeset commit:66c73aab00fc80028a1fbf2eceec18380268c55e. Ermal Luçi
02:40 PM Bug #2713 (Feedback): missing input validation for mobile IPsec P2 to prevent transport: Applied in changeset commit:0b73e6f2466194cfa6cc2b72180db84fba3f81fa. Jim Pingle
04:57 AM Bug #2713 (Resolved): missing input validation for mobile IPsec P2 to prevent transport: mobile IPsec P2 shouldn't permit setting transport mode, that leads to an invalid racoon.conf. Chris Buechler
02:33 PM Revision 2dd57bd9: Also consider 0.0.0.0/0 here since it fails both these tests but is still a valid/special config.: Jim Pingle
02:32 PM Revision 2c6de2ea: Also consider 0.0.0.0/0 here since it fails both these tests but is still a valid/special config.: Jim Pingle
10:46 AM Revision cd8155b1: Update etc/inc/filter_log.inc: Firewall Logs Widget FilteringOptions to filter on interfaces, 'pass', 'block', & 'reject' N0YB
10:43 AM Revision 1df0e80a: Merge pull request #272 from matsimon/copyright-bumps: license: Bump and fix some copyrights. Chris Buechler
10:42 AM Revision cbeed539: Update usr/local/www/javascript/filter_log.js: Firewall Logs Widget FilteringOptions to filter on interfaces, 'pass', 'block', & 'reject' N0YB
10:37 AM Revision 4cfcbd32: Update usr/local/www/widgets/widgets/log.widget.php: Firewall Logs Widget Filtering
Options to filter on interfaces, 'pass', 'block', & 'reject' N0YB
10:24 AM Revision 4c6ede42: license: Bump and fix some copyrights.: The copyright statements have been taken from source archives 1:1
Notes:
- FreeBSD is NOT an Inc. it's the FreeBSD p... Mathieu Simon

12/06/2012

07:56 PM Revision f24d8180: Merge pull request #271 from brunostein/master: Add input autocomplete array aliases Ermal LUÇI
07:06 PM Revision b89a8cbc: add input autocomplete array aliases: Bruno Ferri
04:23 PM Revision b8a73577: If the old configuration is present there use the new one for local users: Ermal LUÇI
03:55 PM Revision 24450773: Cleanup the php session data.: Ermal LUÇI
09:10 AM Bug #475: L2TP is not functional in the way users will expect: There is still no way to do this with or without the GUI. It still requires patches to the software (ipsec-tools/raco... Jim Pingle
09:06 AM Bug #475: L2TP is not functional in the way users will expect: Are there any updates on this regarding the 2.1 release? I'm running the 2.1 beta (build: Fri Nov 16 04:26:21 EST 201... Carsten Zimmermann
07:06 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: wifiste . wrote:
> Hi there. Seems the problem is back. I've just upgraded the 1947 snapshot build (Wednesday, Decem... Anonymous
06:55 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Hi there. Seems the problem is back. I've just upgraded the 1947 build snapshot (Wednesday, December 5th 2012) and go... Anonymous
05:30 AM Bug #2711: Nat reflection is reflecting complete subnet of WAN-IP's whilst it should only reflect the WAN-IP's itself: Chris Buechler wrote:
> your port forward would have to have "WAN subnet" as the destination for this to happen. Mis... frater fenantius

12/05/2012

10:15 PM Revision 91c44185: Use functions to reduce code duplication; Add function to clear route to the interface IP before starting openvpn, otherwise the process cannot start. Ticket #2712: Jim Pingle
09:52 PM Bug #2712: Openvpn and Quagga cause route collision and race condition: I believe that change will fix the issue.
We tried telling it to not distribute the tun subnet, both as a /32 and... Chris Buechler
05:35 PM Bug #2712: Openvpn and Quagga cause route collision and race condition: The two vpns were 192.168.200.0/24 and 192.168.198.0/24.
The central site is the server, the remote site is the cl... Jeremy Porter
04:14 PM Bug #2712: Openvpn and Quagga cause route collision and race condition: I just committed a change that should work when the OS (re)starts OpenVPN, but I'm not sure if this will cover the ca... Jim Pingle
11:12 AM Bug #2712: Openvpn and Quagga cause route collision and race condition: another tactic might be to have the OpenVPN code do a "route delete x.x.x.x" where x.x.x.x is the IP in the routing t... Jim Pingle
10:24 AM Bug #2712: Openvpn and Quagga cause route collision and race condition: I suspect one possible solution would be to simply set it to not distribute routes for the actual OpenVPN tunnel inte... Jim Pingle
09:49 PM pfSense Packages Bug #2695: bandwidthd package writes to RO directory in embedded: design should really follow what we do for RRD data and DHCP leases file. don't recall offhand if that's something ea... Chris Buechler
09:42 PM pfSense Packages Bug #2695: bandwidthd package writes to RO directory in embedded: bandwidthd will also need some way to save its accumulated data across reboots (yes, /tmp is recreated from scratch i... Phillip Davis
05:26 PM Revision ffe25c1f: Merge pull request #269 from N0YB/Diagnostics-Tables-Top-Status: Diagnostics Tables Top Status Jim Pingle
05:25 PM Revision 7c59bcc2: Merge pull request #262 from PiBa-NL/cleanup: code formatting, and extra newline for message and rule generation Jim Pingle
04:52 AM Bug #1112: IPsec GUI/backend missing RADIUS support: Hi Jim, I confirm that works fine. Great job.
Jonh Nash
02:52 AM Revision e6702447: Unbreak console menu: Jim Pingle

12/04/2012

08:47 PM Bug #2712 (Resolved): Openvpn and Quagga cause route collision and race condition: Configuring Quagga for route redistribution over redundant Openvpn site to site links, can cause OpenVPN to fail to b... Jeremy Porter
07:17 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: I suggest to add a field to cpdb. store the ACCT-START time when calling RADIUS_ACCOUNTING_START Chunlin Yao
07:12 PM Bug #2308: HFSC WebUI doesn't check for "Bandwidth" setting: Face same issue, i vote to solve this bug. ahshang ang
07:09 PM Revision 649f13fc: Make 11/111 console menu options both kill php, lighty, and then restart the GUI. Not perfect, but better than 11 not working for the times most people need it. Ticket #2709: Jim Pingle
06:12 PM Revision 198bb449: Add input validation to reject invalid combinations of IPv4/IPv6 openvpn protocols and interface/VIPs.: Jim Pingle
05:49 PM Bug #2711 (Rejected): Nat reflection is reflecting complete subnet of WAN-IP's whilst it should only reflect the WAN-IP's itself: your port forward would have to have "WAN subnet" as the destination for this to happen. Misconfiguration, not a bug. Chris Buechler
11:15 AM Bug #2711: Nat reflection is reflecting complete subnet of WAN-IP's whilst it should only reflect the WAN-IP's itself: http://forum.pfsense.org/index.php/topic,56283.0.html frater fenantius
11:14 AM Bug #2711 (Rejected): Nat reflection is reflecting complete subnet of WAN-IP's whilst it should only reflect the WAN-IP's itself: When I have NAT-reflection enabled, I can't reach the services anymore of others that are in the ISP's subnet.
My ... frater fenantius
05:08 PM Revision 6714bbdc: Activate choices for UDP6 and TCP6 for OpenVPN. Make sure interface IP selection chooses the proper IP and sets the proper protocol string. May need some GUI input validation to prevent someone from selecting a *6 proto with an IPv4 VIP and vice versa.: Jim Pingle
04:14 PM Revision 0a35ca7c: Fix more tests for DHCP relay being enabled.: Jim Pingle
04:07 PM Revision 063e0792: Remove this now-irrelevant comment.: Jim Pingle
04:05 PM Revision 8cd9708e: Fix test to see if DHCP Relay is enabled.: Jim Pingle
03:53 PM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: I too can confirm this works for a family member running on 2.0.1. In their case, if they never established a connect... Andrew Stuart
02:45 PM Revision 752c6ca8: Do a more strict type match here, otherwise if the result returned is 0, that is also "== false" but not actually boolean false.: Jim Pingle
01:24 PM Todo #2652 (Resolved): Add edit function for imported CRLs: Jim Pingle
01:23 PM Feature #2642 (Resolved): Change ntpd config so it doesn't silently exit if time is substantially off: Jim Pingle
01:23 PM Feature #1663 (Feedback): DHCPv6 relay: Code was added as of commit:f15849b5e4961e5c76931a8891ea7a7e2f6f3c53 but probably still needs some testing. Jim Pingle
01:21 PM Bug #2554 (Resolved): "kill client" functionality broken on OpenVPN status page: Jim Pingle
01:14 PM Bug #1112 (Feedback): IPsec GUI/backend missing RADIUS support: Support for RADIUS/LDAP was committed a couple weeks ago and appears to be working fine, though it may yet need some ... Jim Pingle
07:56 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): Unfortunately it appears that the reject statement only allows individual IP addresses, so denying all private server... Jim Pingle
07:11 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): My cable modem does this, and it's extremely annoying, so I'd be all for such an option. It would also be easy to rep... Jim Pingle
03:49 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): the ability to ignore private leases is the request. Because some cable modems start handing out private addresses wh... Chris Buechler
03:25 AM Feature #2704: dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): Do you mean that we want to be able to ignore certain offers? Or are you implying that pfSense is ingoring DHCP offers? Seth Mos
04:44 AM Revision b32329fc: Do not echo any messages here as this would otherwise end up through the XML of the XMLRPC server.: Seth Mos
04:09 AM Bug #2710 (Resolved): Captive Portal radius accounting negative session time: I use captive portal with a separate freeradius server with accounting. One type of user profile is a daily limite of... Erik Ruedin
02:12 AM Bug #2688 (Resolved): Dynamic DNS IPsec endpoints not allowed through firewall rules: Works now, erronous return instead of a continue; One entry caused all rules to be skipped Seth Mos

12/03/2012

08:02 PM Bug #2331 (Rejected): Saving default queue results in error message: duplicate of #1995 Chris Buechler
07:24 PM Bug #2708: CARP status missing the word "Backup": Jim, thanks for pointing out the misconfiguration. I agree that GUI should be more informative on the misconfiguration. ahshang ang
12:09 PM Bug #2708 (Rejected): CARP status missing the word "Backup": You have a configuration error. There is no 58.26.115.x IP on the backup unit, so it can't add a CARP VIP for that su... Jim Pingle
12:14 AM Bug #2708: CARP status missing the word "Backup": master pfsense:
em0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 150 ... ahshang ang
07:17 PM Bug #1995: Cannot edit default queue: It affected version 2.0.1 (amd64) as well.
You need to un-check default queue, click "save" button, then only can ... ahshang ang
05:39 PM Bug #2709 (Resolved): webgui cannot restart if php is hung: If php crashes or hangs it appears to leave stale unix domain sockets in /tmp. Requests to the default URL will retu... Jeremy Porter
04:08 PM Revision a0e3ee98: Use the IPv6 tunnel network for peer to peer OpenVPN modes.: Jim Pingle
02:59 PM Bug #2705 (Closed): Host IP not appearing in Traffic Graph on VPN: Chris Buechler
02:56 PM Bug #2705: Host IP not appearing in Traffic Graph on VPN: You are right! I had not checked the 2.1 beta version before writing. With the last version the Host IP list appear ... Marco Tomas
09:30 AM Bug #2697: jme driver missing from embedded image: I do not understand why the STABLE driver is needed to be merged? Ermal Luçi
12:40 AM pfSense Packages Bug #2624: Varnish3 Package + GUI seems broken: I can confirm this is happening to me too.... Yonas Yanfa

12/02/2012

11:01 PM Bug #2708 (Feedback): CARP status missing the word "Backup": Please also provide the output of "ifconfig -a" off both hosts. Jim Pingle
08:44 PM Bug #2708: CARP status missing the word "Backup": The IP addresses mentioned is just an example thus it is different than the IP addresses in attached screenshot. ahshang ang
08:39 PM Bug #2708 (Rejected): CARP status missing the word "Backup": Version: 2.0.1-RELEASE (amd64)
Bug trigger condition:
1)Assign IP 192.168.105.1 to OPT2 interface in master pfse... ahshang ang
10:07 AM Bug #2706 (Resolved): Padlock may need some adjustments for FreeBSD 10.x: From /usr/src/UPDATING:
> 20120913:
> The random(4) support for the VIA hardware random number
> generator (`PADLO... Jim Pingle
09:31 AM Bug #2705: Host IP not appearing in Traffic Graph on VPN: make sure ur on 2.1 beta latest snap Bipin Chandra
09:30 AM Bug #2705: Host IP not appearing in Traffic Graph on VPN: shows fine for me Bipin Chandra
08:50 AM Bug #2705 (Closed): Host IP not appearing in Traffic Graph on VPN: The list of Host IP, Bandwidth In, Bandwidth Out is void for OpenVPN Server interface.
The graph of the traffic work... Marco Tomas
08:50 AM Bug #2697 (Feedback): jme driver missing from embedded image: Applied in changeset pfsense-tools:commit:5617c5204620c8a6bde6e1f0c22b8afe7096896b. Anonymous
01:36 AM Bug #2697: jme driver missing from embedded image: I've created a custom build with the driver enabled and it's working fine so far. I created a pull request on github ... Kjetil L
12:45 AM Feature #2704 (Resolved): dhclient refuse certain DHCP offers (e.g. private RFC1918 leases on WAN): dhclient can use of the "reject x.y.z.w" keyword to refuse certain offers.
Check http://zhigang.org/wiki/DHCP "How... Dim Hatz

12/01/2012

02:58 AM Bug #2703 (Resolved): IPv6 IPs are not removed when interface is re-assigned: When un-assigning an interface, only the IPv4 IP is removed from it. The IPv6 IP needs to be removed as well.
Exa... Chris Buechler

11/30/2012

09:06 PM Bug #1918: update status: Please consider re-opening this, as I'm experiencing it on 2.0.1, and it prevents installing new packages via the web... Max Kalashnikov
08:02 AM Bug #1629: invalid state table entries after WAN IP change: still not working with 2.1Beta0(i386)built pfSense-memstick-2.1-BETA0-i386-20121128-1058.img
need to reset state t... pierre mayer
05:41 AM Bug #1629: invalid state table entries after WAN IP change: Confirmed to still be an issue in 2.1-BETA0 (amd64) built on Wed Nov 28 15:23:39 EST 2012
A reconnect of PPPoE WA... fos4X fos4X
04:06 AM Revision f575c162: Merge remote-tracking branch 'origin/master' into Diagnostics-Tables-Top-Status: NOYB NOYB

11/29/2012

09:56 PM Revision 17cf3d17: Be a little more verbose when starting the NTP daemon: Jim Pingle
08:30 PM Revision 671914b2: Add a couple more (small, optional) snmp modules.: Jim Pingle
03:43 PM pfSense Packages Bug #2702 (Resolved): OpenBGPD causes out of memory in GUI with Full BGP feed: Setting up a full BGP feed (450,000 routes), and selecting Services->OpenBGPD->Status crashes php with out of memory.... Jeremy Porter
11:20 AM Revision 112800ad: Added 'Copy my MAC address' to captive portal Pass-through MAC form, as seen on services_dhcp_edit.php: CarpeNoctem
10:15 AM Revision e453884c: Update usr/local/www/diag_tables.php: String correction N0YB
09:37 AM pfSense Packages Bug #1942: snort_blocked.php loads blank: I am experiencing the same issue and curious where this was fixed. Is it in the beta version? I am currently runnin... Adam Gibson

11/28/2012

10:13 PM Revision d93dc624: Diagnostics Tables Top Status: Updated: Removed variable from gettext fuction call.
Add table entries count to status line.
Place table status line ... N0YB
04:03 PM Revision 007161dc: Simplify logic: Ermal LUÇI
03:59 PM Revision ad361510: Only try to get mac if the its required: Ermal LUÇI
11:37 AM Bug #2700 (Resolved): ppp-linkdown uses /32 for $3 which already has /32: In this changeset an error was introduced:
http://redmine.pfsense.org/projects/pfsense/repository/diff/usr/local/sbi... fos4X fos4X
10:08 AM pfSense Packages Bug #2698: freeradius2 counter not working: Last thing, the CP have the option that say it has to auth users every minute, but in debug mode is send packets in... Peter Moreno
09:55 AM pfSense Packages Bug #2698: freeradius2 counter not working: Example:
"alice" Cleartext-Password := "test", Max-Daily-Session := 420
7 minutes = 420
Please I had save ... Peter Moreno
02:12 AM pfSense Packages Bug #2698 (Resolved): freeradius2 counter not working: Hi.
I have try to setup my pfsense box and handle my users from freeradius2, I want to use the "Amount of Time s... Peter Moreno
09:10 AM Revision 909e7d0d: Update usr/local/www/diag_tables.php: Add table entries count to status line.
Place table status line at top so don't have to scroll to bottom of large t... N0YB
06:07 AM pfSense Packages Bug #2699 (Rejected): Bsnmpd is not using the config /etc/snmpd.config properly: We use /var/etc/snmpd.conf, not /etc/snmpd.conf
And if you make hand edits, they will be overwritten next time it'... Jim Pingle
05:25 AM pfSense Packages Bug #2699 (Rejected): Bsnmpd is not using the config /etc/snmpd.config properly: I changed the config file /etc/snmpd.config
to get my cpu temp.
I installed snmp_ucd.
begemotSnmpdModulePath."... Claudius Badmind
06:04 AM Bug #1629 (Feedback): invalid state table entries after WAN IP change: Some fixes for this have gone into 2.1 over the past few months. Try a 2.1-BETA snapshot and see if it's repeatable t... Jim Pingle
04:21 AM Bug #1629: invalid state table entries after WAN IP change: I can confirm that this problem still exists in 2.0.1-RELEASE (amd64) built on Mon Dec 12 18:16:13 EST 2011 using PP... fos4X fos4X
01:04 AM Bug #2696: Disconnection from a PPTP dialup tunnel brings down the IPSec tunnels: Ops, busted! And yes, now it works properly...
I would suggest to change a little bit the description, like adding... Michele Di Maria

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

12/27/2012

12/26/2012

12/25/2012

12/24/2012

12/23/2012

12/21/2012

12/20/2012

12/19/2012

12/18/2012

12/17/2012

12/16/2012

12/15/2012

12/14/2012

12/13/2012

12/12/2012

12/11/2012

12/10/2012

12/09/2012

12/08/2012

12/07/2012

12/06/2012

12/05/2012

12/04/2012

12/03/2012

12/02/2012

12/01/2012

11/30/2012

11/29/2012

11/28/2012