Project

General

Profile

Activity

From 01/01/2013 to 01/30/2013

01/30/2013

08:13 PM Revision a9488104: Bring in the RCFILEPREFIX as constant fixes from HEAD, since otherwise rc.stop_packages was globbing in the wrong dir and executing the wrong scripts. Also seems to have fixed the "bad fd" error.
Jim Pingle
07:08 PM Revision 0a0b17d9: Avoid mpd based services to set localip to an already used IP on the system. It should fix #1723
Renato Botelho
07:08 PM Revision a1613b62: is_ipaddr_configured() now returns VIPS
Renato Botelho
07:08 PM Revision 2bbc5429: Fix indent
Renato Botelho
07:08 PM Revision 5fa78adc: Fix whitespaces and indent
Renato Botelho
07:06 PM Revision c11d666b: Merge pull request #362 from bcyrill/patch-4
Adapt regex pattern for new stp interface naming Ermal Luçi
06:43 PM Revision 9cd6b950: Do more strict checks. Also silence some more log_error under debug. Also do some sanity checks on rc.newwanipv6 before doing any operation
Ermal LUÇI
05:30 PM Revision 1e8a05a2: Update etc/inc/interfaces.inc
With the new support for multiple stf interfaces their names have changed. Adapt the regex pattern. Cyrill B
05:07 PM Revision e2a282a0: Put more checks here
Ermal LUÇI
05:07 PM Revision 7e86b57e: Oops correct interface name
Ermal LUÇI
03:22 PM Revision 23e3b2ad: Whitespace fixes
Jim Pingle
03:22 PM Revision 0acd271b: Change output style to follow halt.php and reboot.php so the shutdown output appears in the correct location on the page.
Jim Pingle
03:22 PM Revision 3942066c: Whitespace fixes
Jim Pingle
03:22 PM Revision 256a2a51: Change output style to follow halt.php and reboot.php so the shutdown output appears in the correct location on the page.
Conflicts:
usr/local/www/diag_defaults.php Jim Pingle
02:23 PM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN
I tried with the latest build:
2.1-BETA1 (amd64)
built on Wed Jan 30 04:52:20 EST 2013
The bug is still present... Anonymous
04:21 AM Bug #2650 (Feedback): FTP helper breaks TCP sequence numbers on 2nd WAN
Can you try with later snapshots.
This should be fixed. Ermal Luçi
01:47 PM Revision 5ee79d32: Correct fetching ipv4 gateway by passing correct parameter
Ermal LUÇI
01:10 PM Todo #1723 (Feedback): PPTPd and all mpd based services need more checks
Applied in changeset commit:0a0b17d90dd59ae1a743408bd0a67baa1f8f2ec9. Renato Botelho
12:54 PM Bug #2414: IPv6 DHCP WAN, issue routing firewall-generated traffic
At some point this was fixed or some other change fixed it, as it still shows /128 prefix but it works fully now. A r... Jim Pingle
12:47 PM Bug #2414 (Feedback): IPv6 DHCP WAN, issue routing firewall-generated traffic
Ermal Luçi
11:59 AM Revision b9688d64: Silence error. Maybe the command should be removed completely!
Ermal LUÇI
10:57 AM Revision c87f4b70: Fixes #1928. Disallow sync loop only for certain types of calls but not for exec_[php|shell]. Also fix CARP loop detection to use correct variable
Ermal LUÇI
10:43 AM Revision 311959fe: Ticket #2412. Also allow ipv6 traffic to flow on the stf interface
Ermal LUÇI
10:37 AM Revision 8dd9f19a: Ticket #2412 6to4 can come from any source. Also tighten rule that reply comes only to the dedicated interface for this rather than any other interface
Ermal LUÇI
10:31 AM Revision a6bc492f: Fixes #2674. Use the interface mtu rather than hardcoded 1280. Needs to be seen if issues with fragmentation can come from this on 6rd/6to4 tunnels
Ermal LUÇI
10:26 AM Revision 9eb49a51: pfctl -b is gone just use std tools of pfctl
Ermal LUÇI
09:05 AM Revision 31b958d5: Make this regular expression a little more specific so it does not kill the wrong wpa_supplicant if there are double-digit interface numbers.
Erik Fonnesbeck
08:41 AM Revision 6796d0d1: Merge pull request #361 from phil-davis/master
Corrected cmd line for hostapd Chris Buechler
08:20 AM Revision 97f3ce0f: Corrected cmd line for hostapd
Phil Davis
08:03 AM Feature #2413 (Feedback): Allow IPv6 interface configuration from the menu
Renato Botelho
08:02 AM Revision a526f6a9: More unsets :)
Ermal LUÇI
07:59 AM Revision a606981e: Make smal fix
Ermal LUÇI
07:56 AM Revision 28f476fd: Merge pull request #360 from mdima/master
Feature #2781: Hierarchical view of "Status-Queues" page Ermal Luçi
07:48 AM Revision 6d33b044: Revert "Use pid even for hostapd rather then trying to guess with regex"
This reverts commit b73a96b68d1d4e919a268d2e8e3a6ec902709e6d. Ermal LUÇI
07:44 AM Bug #2574 (Feedback): Failure of secondary radius server causes PPTP authentication to hang even if primary is working!
Is this issue still happening on recent snapshots? I couldn't reproduce it here, it worked fine when both radius serv... Renato Botelho
07:28 AM Bug #2756: SNMPD problems when binding pppoe interface
Still the same ... maybe i should reinstall it ... Claudius Badmind
05:00 AM Bug #1928 (Feedback): Can't sync voucher database when carp peer is also active
Applied in changeset commit:c87f4b709261187cb5e76accde933404d81868f2. Ermal Luçi
04:42 AM Bug #2412 (Feedback): inbound 6to4 traffic does not work in pf
Can you test with latest snapshots and see if it behaves better? Ermal Luçi
04:31 AM Bug #2325 (Feedback): Limiters don't work on OPT WAN rules w/rdr
This should be fixed by commit requiring that on floating rules you specify the gateway.
At least for 2.1 Ermal Luçi
04:30 AM Bug #2674 (Feedback): MTU setting hardcoded 1280 for gif interfaces and in RADVD config
Applied in changeset commit:a6bc492fecd64a3a9f3b4cc4a003d6761494a694. Ermal Luçi
04:23 AM Bug #1629 (Feedback): invalid state table entries after WAN IP change
Ok i went and did another implementation fix for this.
Can you please try with later 2.1 snapshots and see if it beh... Ermal Luçi

01/29/2013

09:36 PM Revision 73eeee93: Feature #2781: Hierarchical view of "Status-Queues" page
Second version of the new "Status-Queue" page.
Requires the pfsense-tools/pfPorts/qstats/files/stats.c file to be
rec... Michele Di Maria
09:33 PM Revision a3eab908: Feature #2781: Hierarchical view of "Status-Queues" page
First version of the new "Status-Queue" page.
Requires the pfsense-tools/pfPorts/qstats/files/stats.c file to be
reco... Michele Di Maria
08:47 PM Revision 3fe15891: Use correct key. Be more strict while checking by suing v4 version for ipv4. Fixes: http://forum.pfsense.org/index.php/topic,58122.msg312024.html#msg312024
Ermal LUÇI
08:39 PM Revision fe5f2a3b: Merge pull request #358 from miken32/hp_bandwidth
support HP RADIUS attributes for bandwidth limits and redirection URLs Ermal Luçi
08:37 PM Revision 21b94a54: Feature #2781: Hierarchical view of "Status-Queues" page
First version of the new "Status-Queue" page.
Requires the pfsense-tools/pfPorts/qstats/files/stats.c file to be
reco... Michele Di Maria
08:11 PM Revision fa2cd558: support HP RADIUS attributes for bandwidth, url, data quotas
Michael Newton
07:42 PM Revision 97e0cb61: Use unset to free resources now that php does not use exit on CP
Ermal LUÇI
07:38 PM Revision 7d1f2eac: Use pfSense function where possible and rename stf0 to interface_stf to allow multiple instances of iot
Ermal LUÇI
07:38 PM Revision db6e6b1a: I am not sure why this is needed but for sure its not needed during bootup
Ermal LUÇI
07:23 PM Revision 366aaa50: Merge pull request #357 from miken32/empty_password
Allow empty CP password to be sent to RADIUS server rbgarga
06:59 PM Revision 16a0308d: allow empty CP password to be sent to RADIUS server
Michael Newton
06:06 PM Revision cc6052f0: Initialize $a_pools to fix warnings when saving dhcp settings whith no extra pools
Renato Botelho
05:30 PM Revision 49b76122: Permit openvpn to use same port on different interfaces. It should fix #814
Renato Botelho
02:47 PM Bug #2786 (Resolved): Setting MTU on VLAN does not set MTU on parent interface in 2.2
When altering the MTU on a VLAN, the physical interface needs to follow. Currently it does not, and you have to assig... Jim Pingle
02:38 PM Feature #2785 (Closed): Support HP RADIUS attributes
No need to submit both. Ermal Luçi
02:21 PM Feature #2785 (Closed): Support HP RADIUS attributes
HP MSM series access controllers have vendor-specific attributes to control bandwidth and redirection URLs. Pull requ... Michael Newton
01:25 PM Bug #2377: Captive portal fails on empty RADIUS password
Pull request 357 was merged. Renato Botelho
01:12 PM Bug #2377: Captive portal fails on empty RADIUS password
That pull request was not for this issue. Please see https://github.com/bsdperimeter/pfsense/pull/357 for the patch a... Michael Newton
01:19 PM Revision d12ae241: Fix wrong unset calls
Renato Botelho
11:30 AM Feature #814 (Feedback): GUI should allow to bind openvpn on different ip same port
Applied in changeset commit:49b76122af0846474f65eaf73e0e879e24fb554c. Renato Botelho
09:41 AM Feature #814: GUI should allow to bind openvpn on different ip same port
This should be possible now but there is a new issue holding it back. Now that we can assign a gateway group as the "... Jim Pingle
10:30 AM Bug #1575: Limiters are bypassed by local applications injecting rules
tried it still same, clients upload speed exceeds limiter values Bipin Chandra
10:19 AM Bug #1575: Limiters are bypassed by local applications injecting rules
yes its ticked, trying without that now but if we untick then i guess in the past there was a problem of traffic for ... Bipin Chandra
09:46 AM Bug #1575: Limiters are bypassed by local applications injecting rules
Can you try by removing the quick option on the match rules, if you have selected it? Ermal Luçi
03:52 AM Bug #1575: Limiters are bypassed by local applications injecting rules
plz remove post after u have read it Bipin Chandra
03:35 AM Bug #1575: Limiters are bypassed by local applications injecting rules
In that forum post i do not see any limiters configured on the ruleset posted.
So please provide the information if ... Ermal Luçi
08:29 AM Bug #2784 (Closed): Bug with the interface LAN, with the last upgrade from 2.1
Already fixed in the repo. Jim Pingle
08:23 AM Bug #2784 (Closed): Bug with the interface LAN, with the last upgrade from 2.1
This is the message :
Fatal error : call it undefined function unet () in /etc /inc/interfaces.inc on line 3321 Moula BADJI
08:22 AM Revision b8550718: Merge pull request #356 from phil-davis/master
Document OpenVPN local and remote network list options Ermal Luçi
08:14 AM Revision cd54b9bc: Do not do double checks for this
Ermal LUÇI
08:10 AM Revision a823022d: Do not do so much work during boot since all interfaces will be called for configuration no need to go and find those. Also delay tracking interfaces during config to give a chance their parents to come up
Ermal LUÇI
07:56 AM Revision 3835613a: Document remote network lists in OpenVPN GUI
Also, now the advanced route command is not needed. So change the example to the "remote" command, which can be usefu... Phil Davis
07:47 AM Revision 332f5781: Document local remote network lists in OpenVPN GUI
The local and remote network fields can now have lists of CIDRs, so document this in the GUI. Phil Davis
07:39 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
2.1-BETA1 (amd64)
built on Mon Jan 21 16:42:50 EST 2013
FreeBSD 8.3-RELEASE-p5
After unplugging then replugging ... David Burgess
04:54 AM Bug #2783 (Closed): Cannot access vouchers tab
Renato Botelho
04:43 AM Bug #2783: Cannot access vouchers tab
I installed a newer build and really the problem disappeared;
Thanks Wendell Borges
03:14 AM Bug #2783 (Feedback): Cannot access vouchers tab
Check later snapshots Ermal Luçi

01/28/2013

11:19 PM Bug #1575: Limiters are bypassed by local applications injecting rules
this was discussed here
http://forum.pfsense.org/index.php/topic,56092.0.html
the easy way to test this is, enabl... Bipin Chandra
09:14 AM Bug #1575: Limiters are bypassed by local applications injecting rules
Can you provide any analysis of how you do your checking?
Also provide a ... Ermal Luçi
04:54 AM Bug #1575: Limiters are bypassed by local applications injecting rules
does seem to work still, upnp devices bypass limiter Bipin Chandra
10:21 PM Revision b73a96b6: Use pid even for hostapd rather then trying to guess with regex
Ermal LUÇI
10:09 PM Revision e017a46a: If the interface is not enabled do not try to configure it
Ermal LUÇI
09:10 PM Revision b0059636: Make check more strong and readble. Also make dhcp6c use its pid file to make things easy
Ermal LUÇI
04:54 PM Bug #2783 (Closed): Cannot access vouchers tab
After creating a new zone on LAN interface and set Auth to "Local Users", I click on "Vouchers" tab and it back to zo... Wendell Borges
04:51 PM Revision 54285411: is_subnet() will fail here if using comma-separated lists of networks. Use openvpn_validate_cidr() instead.
Jim Pingle
04:49 PM Revision 8793cb1f: is_subnet() will fail here if using comma-separated lists of networks. Use openvpn_validate_cidr() instead.
Jim Pingle
03:02 PM Revision ee6bd11d: Add header to DHCP static mappings table
Jim Pingle
02:59 PM Revision f2ea45ef: Add header to DHCP and DHCPv6 static mappings tables
Jim Pingle
02:01 PM Revision af982472: Move the definition of negate_networks/vpn_networks to its place and re-include ipsec vpns in this tables since scrub for mss clamping need this.
Ermal LUÇI
01:30 PM Revision 84683e42: Fix rrd databases upgrade. Helps ticket #2651
- Replace find that was being called with wrong parameters at
upgrade_054_to_055() and upgrade_080_to_081() by return... Renato Botelho
01:28 PM Revision a2219caf: Add option filter to return_dir_as_array()
- Add a 2nd parameter, default empty, that allows to pass a regex to
filter files it'll return
- While I'm here, si... Renato Botelho
01:24 PM Bug #2780: CP: passthough has no effect
I have the same problem using build Jan 28 08:16:34 EST 2013
Both net.link.ether.ipfw and net.inet.ip.fw.one_pass ... Fredrik Reuterswärd
09:57 AM Bug #2780: CP: passthough has no effect
Can you check the following sysctl values
net.link.ether.ipfw net.inet.ip.fw.one_pass
they should be 1 on both.
Als... Ermal Luçi
08:20 AM Bug #2780: CP: passthough has no effect
I've just tested snapshot Jan 27. MAC passthrough seems to be working fine, but Allowed IP addresses are not. Here's ... Daniel Berteaud
10:21 AM Bug #1399: rrdtool respawning too fast
Its internal to apinger and a 'protection'.
I will double check again to see if it can be fixed. Ermal Luçi
09:10 AM Bug #2782: RIP needs to be multiwan capable
when i enable RIP i get errors in system log when i have 2 WANs from same isp so the gateway is same which causes thi... Bipin Chandra
08:59 AM Bug #2782 (Rejected): RIP needs to be multiwan capable
routing protocols like RIP aren't multi-WAN relevant, especially not as a bug. Chris Buechler
04:59 AM Bug #2782 (Rejected): RIP needs to be multiwan capable
RIP actually has the feature to be multiwan aware but pfsense needs some gui patches as well as some minor code chang... Bipin Chandra
08:39 AM Bug #2651 (Feedback): traffic RRDs broken after upgrade to 2.1
There was a bug on functions that convert rrd databases to new format during upgrade. It was fixed and this fix shoul... Renato Botelho
08:08 AM Feature #2781: Hierarchical view of "Status-Queues" page
Of course! I wanted to receive some feedback on this idea before just doing/publishing it...
To make it work, I a... Michele Di Maria
07:53 AM Feature #2781 (Feedback): Hierarchical view of "Status-Queues" page
Hello Michele,
This is a good idea. Could you please do it and send a pull request on pfsense project at github [1... Renato Botelho
04:41 AM Feature #2781 (Resolved): Hierarchical view of "Status-Queues" page
Hello,
I'd like to change a little bit the "Status-Queues" page, adding a "hierarchical" view in order to show ... Michele Di Maria
03:54 AM Bug #2769 (Closed): IPsec needs IPv4/IPv6 input validation
Renato Botelho
03:53 AM Bug #2773 (Closed): DHCP pools need validated against other pools when saving
Renato Botelho

01/27/2013

10:39 PM Revision c848008b: Merge pull request #355 from bcyrill/cp_patch5
Change order of cpzone check Ermal Luçi
09:57 PM Revision 6c18a810: Change order of cpzone check
Cyrill B
07:55 PM Revision 349bf358: Display a list of ciphers accelerated by a specific engine. Also, skip engines that are listed but unavailable for direct use.
Jim Pingle
07:23 PM Revision be82765a: Merge pull request #353 from bcyrill/cp_patch3
Add missing context parameter Jim Pingle
07:00 PM Revision a9215a24: Add missing context parameter
Cyrill B
06:04 PM Revision 9ab4af90: Merge pull request #352 from bcyrill/cp_deleteip
Do not include prefix in IP address Ermal Luçi
05:53 PM Revision 7e3d78f2: Do not include prefix in IP address
Cyrill B
05:20 PM Revision dae707f5: Fixup paths when executing OpenSSL.
Jim Pingle
04:42 PM Revision 0674bc42: Configure pipe directly in php until ipfw binary is fixed to correctly configure pipes even that context is specified
Ermal LUÇI
04:28 PM Revision 657d2c66: Configure pipe directly in php until ipfw binary is fixed to correctly configure pipes even that context is specified
Ermal LUÇI
04:13 PM Revision bbdb59de: Correct displaying of ipsec status for natted networks.
Ermal LUÇI
03:52 PM Revision ab873ccd: Catch up with code change. Pointy-hat: myself
Ermal LUÇI
03:46 PM Revision 029b377a: Remove missed line and also improve code for bridge cases
Ermal LUÇI
03:35 PM Revision 8d1f1034: Merge pull request #350 from bcyrill/cp_allowedip
Fix ipfw config generation for allowed IPs Ermal Luçi
03:34 PM Revision 965ce4c6: Restore accidentally removed code. Spoted-by: bcyrill@github
Ermal LUÇI
02:46 PM Revision 1f8c8819: Fix ipfw config generation for allowed IPs
Cyrill B
12:36 PM Revision 9d33c857: Merge pull request #349 from bcyrill/bridge_patch2
Use unescaped variable in if condition Ermal Luçi
12:34 PM Revision 2626cbd1: Correct real interface assignment
Ermal LUÇI
12:24 PM Revision 792bdf7f: Use unescaped variable in if condition
Cyrill B
10:51 AM Bug #2780 (Feedback): CP: passthough has no effect
FIx has been included and should behave better in the later coming snapshots. Ermal Luçi
09:10 AM Bug #2780: CP: passthough has no effect
The direction support has been removed in commit [1] but the "Allowed Hostnames" configuration still shows the form f... Cyrill B
09:06 AM Bug #2780: CP: passthough has no effect
@Ermal:
It seems that when configuring pipes the context argument is not correctly handled.
ipfw -x guest pip... Cyrill B
07:44 AM Bug #2780: CP: passthough has no effect
Here's the result (wifi is the name of my CP zone)
[2.1-BETA1][root@pfsense.domain.local]/root(1): ipfw -x wifi sh... Daniel Berteaud
06:41 AM Bug #2780: CP: passthough has no effect
Can you show ... Ermal Luçi
10:27 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
Also snapshots dated today or later contain ipsec-tools version 0.8.1, so it's worth trying again on a new snapshot. ... Jim Pingle
10:19 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
You used teh suggestions from Jim especially disabling prefer old ipsec sa? Ermal Luçi
08:34 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
I am running into this issue on 2.1 BETA. I have tried all
Connecting the first time after restart of racoon wor... David Duchscher
02:21 AM Revision 0b635fd6: Merge pull request #347 from bcyrill/bridge_edit
Remove return value of interface_bridge_configure Chris Buechler
02:20 AM Revision 7709c5a5: Merge pull request #348 from bcyrill/gif_patch1
Re-add lost parenthesis Chris Buechler
01:38 AM Revision 5b3bd46c: Re-add lost parenthesis
Cyrill B

01/26/2013

10:58 PM Revision 0e0002c2: Remove return value of interface_bridge_configure
Cyrill B
10:19 PM Revision 6d53bbb5: Correct another parameter passed to pfsense functions
Ermal LUÇI
09:54 PM Revision 690c4913: Merge pull request #345 from bcyrill/bridge_holdcnt
Fix holdcount/holdcnt parameter confusion Chris Buechler
09:37 PM Revision afd825a7: Fix holdcount/holdcnt parameter confusion
Cyrill B
08:07 PM Revision c706080d: Link openssl config here to make the ports version of openssl happy when making certs.
Jim Pingle
08:04 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Here is my raw config.xml & /tmp/rules.debug
http://m37offroading.ca/PFSENSE/config.xml
http://m37offroading.c... Anonymous
08:01 AM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Robert Stefanovic wrote:
> Ok , So you know what. That's fine. You guy's dont think it's a bug.. It's pathetic PFSen... Jim Pingle
03:58 AM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Ok , So you know what. That's fine. You guy's dont think it's a bug.. It's pathetic PFSense is the most powerful open... Anonymous
06:10 PM pfSense Packages Bug #2698: freeradius2 counter not working
http://redmine.pfsense.org/issues/2164
Can you check this ticket, read the last post of that ticket and the coresp... Alexander Wilke
06:05 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled
Hi,
users in the following two pfsense forum threads applied the patch from Ermal Luçi with success.
Adding the p... Alexander Wilke
05:31 PM Bug #2780 (Resolved): CP: passthough has no effect
I've just updated to Jan 25 snapshot (amd64) and passthrough (MAC or IP address) doesn't work anymore. It seems to ha... Daniel Berteaud
04:37 PM Revision eaf87cb0: No need for escaping here since this is php internal functions
Ermal LUÇI
04:36 PM Revision 19defb88: No need for escaping here since this is php internal functions
Ermal LUÇI
03:55 PM Revision a216db0f: Add a note about rdr pass not supporting Multi-WAN.
Jim Pingle
03:55 PM Revision 88996fbe: Add a note about rdr pass not supporting Multi-WAN.
Jim Pingle
02:59 PM pfSense Packages Bug #2779 (Rejected): Snort unexpectedly terminates / signal 11 error
PRobably because you are missing a gid.
please move this to forum. Ermal Luçi
02:32 PM pfSense Packages Bug #2779 (Rejected): Snort unexpectedly terminates / signal 11 error
Hello, It's not a hardware issue, I tested on several pc-s Intel and AMD processors, It seems to be a rule issue, Whe... Cimpean Andrei
12:05 PM Revision 0fbf7315: Do not use array_keys uselessly
Ermal LUÇI
11:59 AM Revision abdd01f5: Correctly generate dhcpleases file to avoid issues with dhcpleases. Also while here correct code and make some optiomizations and corrections
Ermal LUÇI
08:19 AM Revision 7bb09580: Maintain the previous order of creating wireless interfaces at boot so additional virtual APs get the same generated MAC as before.
Erik Fonnesbeck

01/25/2013

09:41 PM Revision fb6079db: Try a little harder to find the protocol rather than giving up. Fixes #2751
Jim Pingle
09:07 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Please discuss it on the forum until a developer confirms a bug exists.
You still could have a configuration issue... Jim Pingle
09:01 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
I have had the exact same issue. So we already know it's multiple affected users.
The issue is in the default ro... Anonymous
08:44 PM Revision f3bddb47: Actually even earlier since lagg can have wireless ifaces as member or vlan can reside on top of them
Ermal LUÇI
08:44 PM Revision 348ce507: To avoid issues reported during bootup with wireless create clones early on bootup. Wireless can only have base interfaces and not clonable one so this should had been done since beggining.
Ermal LUÇI
08:34 PM Revision 4ce92461: Merge pull request #320 from bcyrill/patch2
Allow empty RADIUS secrets Ermal Luçi
08:26 PM Revision 7ee0f3a8: Put outgoing policy routes even for the vips to correct sourced traffic from them. Fixes #1823
Ermal LUÇI
07:59 PM Revision 75201355: Return the full list of vips to help with #1823
Ermal LUÇI
07:41 PM Revision 23604cee: Merge pull request #343 from bcyrill/cp_conc
Fix concurrent username logins Ermal Luçi
07:28 PM Revision 4586abb7: Fix concurrent username logins
Cyrill B
05:16 PM Revision c251f8cc: Make synamic firewall logs and widget add new rows:
The Dynamic Firewall Log page doesn't add rows, it only updates the php
generated rows which means that if it's loade... Renato Botelho
04:30 PM Bug #2555 (Feedback): check_reload_status consumes 100% CPU usage
This seems occasional since not many have reported it. Ermal Luçi
04:30 PM Bug #2540: Table entries added by filterdns can clobber overlapping hardcoded entries during DNS changes
Applied in changeset pfsense-tools:commit:6f436e9ddf46e64e9b6d87d587a63242b4063d0d. Ermal Luçi
04:29 PM Bug #2540 (Feedback): Table entries added by filterdns can clobber overlapping hardcoded entries during DNS changes
Ermal Luçi
04:10 PM Bug #2751 (Feedback): IPv6 log for ICMP Router Solicitation identified as ICMP packets
Applied in changeset commit:fb6079dbaf63aa994d8039788d60dac48eb99986. Jim Pingle
03:07 PM Bug #2751: IPv6 log for ICMP Router Solicitation identified as ICMP packets
If you could get the raw filter.log entries for these, that would be helpful in adjusting the parser to compensate. Jim Pingle
02:46 PM Bug #2440 (Feedback): Wireless client nic set for DHCP does not start dhclient
Ermal Luçi
02:45 PM Bug #2440: Wireless client nic set for DHCP does not start dhclient
For bootup issues i pushed a fix to create the clone early.
For reconfigure it should not be an issue since interfac... Ermal Luçi
02:46 PM Bug #2506 (Resolved): filterdns needs help for IPv6
This is no issue nowdays. Ermal Luçi
02:33 PM Bug #2409 (Feedback): ipfw - entryzerostats
This should behave even better with latest snapshots. Ermal Luçi
02:32 PM Bug #2377 (Feedback): Captive portal fails on empty RADIUS password
Merged the pull request. Ermal Luçi
02:30 PM Feature #2128 (Bogus): Large DNS requests on dnsmaq
Looking at this http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666517
Seems to not be a dnsmasq issue per se! Ermal Luçi
02:30 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs
Applied in changeset commit:7ee0f3a8869274874540024f97bd43880ee42082. Ermal Luçi
02:24 PM Bug #1823 (Feedback): policy routing for firewall-initiated traffic only works for interface IPs
Ermal Luçi
02:26 PM Feature #1843 (Feedback): Diag > Limiter Info does not show queues under pipes
Ermal Luçi
01:56 PM Bug #1621 (Feedback): Switching WAN from type PPP to other leaves former port assigned
Can you please try new snapshots.
This hsould not be happening anymore. Ermal Luçi
01:55 PM Feature #2117: 6RD support for ISPs like Swisscom
Variable prefix for ipv4 has been committed.
GUI fixes are needed to be done now to allow this to be configured. Ermal Luçi
01:35 PM Revision 8fcb7cf4: Use class tabcont for table
Renato Botelho
12:00 PM Bug #2763: Dynamic Firewall logs doesn't add new rows
Applied in changeset commit:c251f8ccc84a7595bb14ccdd9754321c54762eaf. Renato Botelho
06:40 AM Bug #2763: Dynamic Firewall logs doesn't add new rows
I'd agree with that, the reason I hadn't noticed was that in [my version] of Chrome, I don't see the alignment proble... John Bayly
06:01 AM Bug #2763: Dynamic Firewall logs doesn't add new rows
Column widths looks good with new values, but rows height doesn't. Take a look at new attachments, seems the Act icon... Renato Botelho
04:45 AM Bug #2763: Dynamic Firewall logs doesn't add new rows
I'm guessing that you mean the column headers? I just copied across the span width values onto the column headers, bu... John Bayly
10:13 AM Bug #2625 (New): Inconsistent behavior with Alias info popup
For now we can just document this behavior and revisit the question for 2.2. I think it's OK how it is for 2.1 so lon... Jim Pingle
07:42 AM Bug #2778 (Rejected): syslog - VPN IPSec - routing
Not a bug.
[[http://doc.pfsense.org/index.php/Why_can%27t_I_query_SNMP,_use_syslog,_NTP,_or_other_services_initiated... Jim Pingle
07:30 AM Bug #2778 (Rejected): syslog - VPN IPSec - routing
topology:
Site A 192.168.252.0/24 <----IpSec----> Site B 172.16.0.0/16
the serveur syslog-ng is 172.16.0.109 on... Olivier CASPARI
06:54 AM Bug #2656 (Closed): The "/" char in Virtual Server name disable the server
Renato Botelho
12:36 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
I tested with the following build and the issue is not present for me any more:
2.1-BETA1 (amd64)
built on Thu Ja... Anonymous
12:24 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
i did post at the freebsd forum and also somewhere on mpd long time back but hardly any1 replied, few suggestions wer... Bipin Chandra

01/24/2013

08:58 PM Bug #1629 (New): invalid state table entries after WAN IP change
we at least need the option to wipe the entire state table upon IP change. Chris Buechler
05:52 AM Bug #1629: invalid state table entries after WAN IP change
The only real solution to this is to switch to if-bound states for many reasons.
That is a bit more involved changed... Ermal Luçi
07:55 PM Bug #2746: IPv6 IPSEC shows down but is actually not...
Thanks for getting back to me...
You are right, it was a configuration issue but a mean one :-)
If you selec... Andre Keller
07:33 PM Revision e4ffca08: Make IPv4/IPv6 validation on IPSec
It should fix #2769 Renato Botelho
07:32 PM Revision ab2ccd9f: Fix indent and blanks at EOL
Renato Botelho
07:16 PM Bug #2763 (Feedback): Dynamic Firewall logs doesn't add new rows
Widget is working fine, but there is something wrong with fonts and sizes as you can see on attached screenshot. Renato Botelho
07:13 PM Revision 1aafb710: Don't forget the wizard...
Jim Pingle
06:54 PM Revision a28d40cb: Allow specifying multiple local/remote networks for OpenVPN separated by commas. While I'm here, fix up the IPv6 tunnel/remote/local network input validation. Simplify some code using functions.
Jim Pingle
04:17 PM Bug #2633: Captive Portal timeouts cause users to be stuck in limbo
Hi Ermal,
The fixes broke the captive portal entirely.
For one, DNS requests to the forwarder are completely bloc... Carlos Pereira
02:50 PM Bug #2777 (Rejected): NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Port Forwarding (inbound) has nothing to do with Gateway Groups (outbound).
Please post in the forum for a more th... Jim Pingle
02:44 PM Bug #2777 (Rejected): NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.
Nat(Port-forwarding) dont work with Multi-Wan, when the First WAN1-Interface has an higher Priotiy(Tier) or no Gatewa... Marvin Klose
02:49 PM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
Bipin, if you've identified that Unisphere BRAS is used by all the ISPs you've tried and had problems with, then perh... Dim Hatz
02:39 PM Revision f657f5e1: Ensure DHCP main range, pools ranges and static IP addresses don't overlap each other. It should fix #2773
Renato Botelho
02:30 PM Revision 41b4867e: Move is_inrange() to util.inc and rename it to is_inrange_v6()
Renato Botelho
02:29 PM Revision a78bf0c8: Fix logic of v6 version of is_inrange()
Renato Botelho
02:28 PM Revision 54404519: Move is_inrange() to util.inc and rename it to is_inrange_v4()
Renato Botelho
02:25 PM Revision 736698bd: Fix logic of is_inrange()
Renato Botelho
01:54 PM Revision 507628d5: Remove call-time pass-by-reference
Renato Botelho
01:40 PM Bug #2769 (Feedback): IPsec needs IPv4/IPv6 input validation
Applied in changeset commit:e4ffca08822057400f6a8c2af91622e0c32f6140. Renato Botelho
11:47 AM Revision 338c0941: Merge #237 manually whitout the GUI option for specifying interim interval. It will read now this attribute if present in a reply and use it. Fixes #1492
Ermal LUÇI
11:31 AM Revision a689bab6: Read Acct-Interim-Interval from an access-accept reply
Ermal LUÇI
11:19 AM Revision 9c115b40: Fixes #804. Correct deletion of ipv6 routes.
Ermal LUÇI
10:49 AM Revision c37e2460: Mostly for testing name relation in github. No functional change
Ermal Luçi
10:44 AM Revision a5085d59: Mostly for testing name relation in github. No functional change
Ermal LUÇI
10:37 AM Revision 18f338da: Correctly bring down an interface older configuration. Fixes #2758
Ermal Luçi
10:30 AM Revision 80fae0e2: Put for now the code here in preparation of properly cleaning a recofnigured interface
Ermal Luçi
10:24 AM Revision 9343d750: Teach interface_bring_down to read a cofniguration passed in. Will be useful for Ticket #2758
Ermal LUÇI
10:18 AM Revision 203e4bb6: Do not be so verbose by default this is just needed by a developer at best
Ermal LUÇI
10:09 AM Revision 61223023: Validate before taking the input and do anything with it
Ermal LUÇI
09:57 AM Revision 0e22dda5: Put some more sanity checking for various interface configurations
Ermal LUÇI
09:56 AM Bug #2758: Old configuration remains when changing interface type
After some tests here, i noted the issue persists. When I changed interface from static to pppoe, the static IP remai... Renato Botelho
04:40 AM Bug #2758 (Feedback): Old configuration remains when changing interface type
Applied in changeset commit:18f338da58e4f98478bd4710b3f4907759cd9540. Ermal Luçi
09:18 AM Feature #2776: Unknown Radius-Attributes
If racoon gives you an IP from the pool, that is fine.
Assigning a specific IP to a specific user is what doesn't ... Jim Pingle
09:09 AM Feature #2776: Unknown Radius-Attributes
Are you speaking of the radius-attributes like framed-ip-address of cisco?
the ip assignment on racoon is possible a... Jonh Nash
06:36 AM Feature #2776: Unknown Radius-Attributes
The lack of IP assignment is a deficiency in racoon. There may not be anything we can do for that. Jim Pingle
05:47 AM Feature #2776 (Resolved): Unknown Radius-Attributes
In VPN ipsec mobile there is the possibility to use the server radius for authentication and accounting
The authent... Jonh Nash
08:51 AM Bug #2756: SNMPD problems when binding pppoe interface
Okay i will remove it and see what will happens Claudius Badmind
08:29 AM Bug #2756: SNMPD problems when binding pppoe interface
Can you try removing the trap host/port and see if it stays up longer? Jim Pingle
08:26 AM Bug #2756: SNMPD problems when binding pppoe interface
@root 68740 0.0 1.4 8368 6760 ?? Ss 3:27PM 0:00.05 /usr/sbin/bsnmpd -c /var/etc/snmpd.conf -p /var/run/s... Claudius Badmind
08:40 AM Bug #2773 (Feedback): DHCP pools need validated against other pools when saving
Applied in changeset commit:f657f5e1e407a4687983b6e9907f0dc489945157. Renato Botelho
05:50 AM Feature #1492: Captive Portal Interim Updates
Applied in changeset commit:338c0941ef9a90d33b02627a320fb642d192b172. Ermal Luçi
05:46 AM Feature #1492 (Feedback): Captive Portal Interim Updates
Ermal Luçi
05:46 AM Feature #1492: Captive Portal Interim Updates
Merged manually without the GUI option. Ermal Luçi
05:20 AM Feature #804: Ability to enable/disable static routes
Applied in changeset commit:9c115b409d0b21132dae9ad2c62f842a7e438f8f. Ermal Luçi
05:18 AM Feature #804 (Feedback): Ability to enable/disable static routes
Ermal Luçi
04:52 AM Bug #2737 (Resolved): excessive filterdns processes in some circumstance(s)
This is solved now days since filterdns just reloads config and does not need to be restarted on change. Ermal Luçi
04:40 AM Bug #1112 (Resolved): IPsec GUI/backend missing RADIUS support
Please open a new ticket about that. Ermal Luçi

01/23/2013

11:22 PM Revision 7309ff39: Allow set DHCP options per reservation
Renato Botelho
08:32 PM Revision 5370146c: Make sure this is in global scope
Ermal LUÇI
08:02 PM Revision 5918f9b7: Resolves #2482. Remove an ipv6 alias from a vip eevn though the pfsense module does not have support for that
Ermal LUÇI
07:38 PM Revision f2bd8842: Correct reference to OpenVPN connect so it doesn't only refer to iOS.
Jim Pingle
07:10 PM Bug #2775 (Closed): OpenVPN Server binds on CARP IP on slave instead on master
Jim Pingle
07:10 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master
Tested this on a cluster I had handy and servers bound to a CARP VIP run on both. I'm not seeing a problem.
We use... Jim Pingle
07:08 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master
OpenVPN Servers are not bound by the same CARP restrictions as OpenVPN clients. It's normal for OpenVPN servers to be... Jim Pingle
06:08 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master
forgotten... the firewall slave binds on the right CARP IP:
wan_vip201: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu... Reiner Keller
05:51 PM Bug #2775 (Closed): OpenVPN Server binds on CARP IP on slave instead on master
Hello,
I am running
2.1-BETA1 (amd64)
built on Mon Jan 14 11:26:04 EST 2013
FreeBSD 8.3-RELE... Reiner Keller
05:34 PM Bug #1995 (Closed): Cannot edit default queue
Renato Botelho
05:22 PM Bug #2761 (Closed): Widget detection function can cause duplicate widgets in the Web GUI
Renato Botelho
04:24 PM Revision 287f7e26: Convert all captiveportal code to not use ipfw_set_context since its not needed anymore. Also add code to validate cpzone on webgui pages before being used
Ermal LUÇI
02:42 PM Bug #2483 (Feedback): IPv6 Interface Aliases not functioning
For now let it be without support from pfSense module to have that working. Ermal Luçi
02:10 PM Bug #2482 (Feedback): error trying to delete limiter
Applied in changeset commit:5918f9b71295521fb06eac8aec8fabcf876e1831. Ermal Luçi
01:25 PM Bug #2633 (Feedback): Captive Portal timeouts cause users to be stuck in limbo
Test later snapshots. Ermal Luçi
01:24 PM Bug #1112: IPsec GUI/backend missing RADIUS support
Oh that part is not yet functional.
It is on my TODO which can be pushed if someone has the need.
But probably from... Ermal Luçi
09:41 AM Bug #1112: IPsec GUI/backend missing RADIUS support
Hi Ermal, I can authenticate the client on radius, but I cannot allocate the ip address and I cannot see the accounti... Jonh Nash
04:37 AM Bug #1112: IPsec GUI/backend missing RADIUS support
Can you please be more verbose about what is not working? Ermal Luçi
01:23 PM Bug #2759 (Resolved): Lightsquid not working since mod_cgi was removed
Ermal Luçi
09:45 AM Bug #2759: Lightsquid not working since mod_cgi was removed
Jim P wrote:
> This should be fixed on current snapshots dated 1/21 or later.
Yes, thank you. It works now. Ian Pitcher
01:04 PM Revision fa7b825f: Fix some DHCP per pool options that will never be considered because of a wrong check
Renato Botelho
11:38 AM Revision b75d7fd5: Fix indent and whitespaces issues
Renato Botelho
07:26 AM Feature #2774 (New): Extend DHCP Pools code to allow using different subnets
The current DHCP pools code allows creating multiple ranges within the same large subnet. The ISC DHCP Daemon also su... Jim Pingle
07:12 AM Bug #2773 (Closed): DHCP pools need validated against other pools when saving
The new DHCP pools code checks the range given to make sure it is OK for itself (end is after start, etc) but it does... Jim Pingle
04:11 AM Bug #2772: Kernel panic on WAN wifi + pppoe
Please go through the forum first for this.
But the crashdump should be a helpful bit of information. Ermal Luçi

01/22/2013

11:31 PM Revision b3af5453: Escape some variables used in mwexec() calls
Renato Botelho
09:47 PM Revision 2fb343ed: Merge pull request #342 from bcyrill/patch-3
Update etc/inc/vpn.inc Ermal LUÇI
07:36 PM Revision 96a6f4cb: Update etc/inc/vpn.inc
There's no need to create a spd.conf.reload file if it's empty.
Phase 1 entries for mobile clients are not handled by... Cyrill B
06:43 PM Revision f5e81794: Fix indent and whitespace issues
Renato Botelho
06:28 PM Revision ee55ce7d: Add GUI option to use "topology subnet" for OpenVPN, since the OpenVPN Connect iOS client requires it for IPv6
Jim Pingle
06:09 PM Bug #2772 (Closed): Kernel panic on WAN wifi + pppoe
I have an alix (alix3d2, 2xminiPCI, 1xLAN, 2xUSB, bios 0.99h) board
with 2 miniPCI WiFi cards on it (WLM54GP23, Athe... r_t_f_m .
05:53 PM Revision 30b3f068: Validate bridge interface before delete it
Renato Botelho
05:23 PM Revision c6f8c400: Fix indent and remove extra whitespaces between tabs and at EOL
Renato Botelho
05:08 PM Revision e9b6e032: Validate vlan interface before delete it
Renato Botelho
05:00 PM Revision eea7eb99: Validate QinQ vlan interface to be sure it exists
Renato Botelho
05:00 PM Revision 782e33f8: Validate QinQ interface to be sure it's valid
Renato Botelho
04:03 PM Revision 62f8244b: Fix indent and blank at EOL
Renato Botelho
03:24 PM Revision 908e5985: When QinQ members are changed, make sure interfaces are created/destroyed (attempt 2)
Renato Botelho
02:44 PM Feature #2771 (New): Add packet tracing simulator
Functionally similar to the Cisco ASA command line:
packet-tracer input <interface> <protocol> <src-ip> <src-port> <... Jeremy Porter
02:02 PM Revision b554b869: Revert "When QinQ members are changed, make sure interfaces are created/destroyed"
This reverts commit a2bf1347c95bbb988bbd79d2cb091c28d9f075ed. Renato Botelho
01:49 PM Revision a2bf1347: When QinQ members are changed, make sure interfaces are created/destroyed
Renato Botelho
12:39 PM Feature #2770 (Rejected): add "device mptable" to amd64 builds to make pfsense boot on soekris6501
In http://www.mail-archive.com/soekris-tech@lists.soekris.com/msg06840.html a feature request ticket has been asked f... Alex H
10:54 AM Revision 1c3ddd9e: Fix indent
Renato Botelho
10:35 AM Bug #2746 (Feedback): IPv6 IPSEC shows down but is actually not...
I just created a pure IPv6 tunnel between two VMs running today's snapshot and it comes up and works and the status s... Jim Pingle
08:12 AM Bug #2746: IPv6 IPSEC shows down but is actually not...
When your tunnels are up, can you attach the output of:
setkey -D
and
setkey -DP
That should help us with... Jim Pingle
10:20 AM Bug #2769 (Closed): IPsec needs IPv4/IPv6 input validation
IPsec GUI input validation needs some work for IPv6.
If you choose IPv4 or IPv6 on the Phase 1 settings, addresses... Jim Pingle
09:53 AM Feature #2766: status_openvpn.php needs IPv6 support
After poking some more there just isn't a way to get the info from the management interface that I can see. If you co... Jim Pingle
12:57 AM Feature #2766: status_openvpn.php needs IPv6 support
if this is just something that isn't available in OpenVPN 2.3.0, then let's just move the target to 2.2. Chris Buechler
09:35 AM Bug #1351 (Feedback): Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes
This should be OK these days, just make sure:
Phase 1 Settings:
Policy Generation: Unique
Proposal Checking: Str... Jim Pingle
08:05 AM Bug #2759 (Feedback): Lightsquid not working since mod_cgi was removed
This should be fixed on current snapshots dated 1/21 or later. Jim Pingle
01:14 AM Feature #2768 (Resolved): Don't allow adding IP Alias or CARP VIP on network or broadcast addresses
It's currently possible to configure an IP alias or CARP IP on the network or broadcast address of a subnet. For inst... Chris Buechler
12:55 AM Feature #2587 (Closed): Add IPv6 Privacy settings.
yeah this really shouldn't have been left here, though it can be applicable in appliance usage scenarios. In general ... Chris Buechler

01/21/2013

09:17 PM Revision 4fb2e5ed: If entering an action take the redir and exit even though the action was not successful to avoid any issue
Ermal LUÇI
09:08 PM Revision 09294e84: Validate the cpzone parameter passed that it actually is a valid zone
Ermal LUÇI
09:07 PM Revision ed97b2cb: Validate the cpzone parameter passed that it actually is a valid zone
Ermal LUÇI
08:58 PM Revision 3760b867: Use symlink rather than forked commands. Also simplify a bit code
Ermal LUÇI
08:54 PM Revision 82e89ce3: Use more secure file name for the operations to avoid issues
Ermal LUÇI
08:52 PM Revision 3335f5d1: Use more secure file name for the operations to avoid issues
Ermal LUÇI
08:47 PM Revision 4734474e: Revert "There should be always a zone given from lighty to us so try to get that first"
This reverts commit 497d0b192f8e065ec3b4d1d94764b51c924a89b8. Ermal LUÇI
08:46 PM Revision 497d0b19: There should be always a zone given from lighty to us so try to get that first
Ermal LUÇI
07:57 PM Revision 48006baf: Correct error/alert displaying. Also remove redundant log_errror since file_notice does that by its own
Ermal LUÇI
07:46 PM Revision e01570e1: Just the first line is interesting here
Ermal LUÇI
07:38 PM Revision 31a5f13c: Unset some vars to free space and also gather the error from pfctl since the first run of the command no need to run again. Also merge 3 exec() into one to avoid forking to much
Ermal LUÇI
07:38 PM Revision f32eae2d: Unser some vars to free space
Ermal LUÇI
07:33 PM Revision 8152f145: Default to using sha256 digest for GUI cert.
Jim Pingle
07:33 PM Revision ca621902: Allow selecting the digest algorithm when creating a CA or Cert. Implements #2765
Jim Pingle
07:21 PM Revision bc2b0144: Remove remenant of file based days
Ermal LUÇI
06:46 PM Bug #2767 (Rejected): NATting problem in virtualization environment
this doesn't meet requirements for a legit bug report. http://doc.pfsense.org/index.php/Bug_reporting
There's a high... Chris Buechler
01:41 PM Bug #2767 (Rejected): NATting problem in virtualization environment
I'm sorry I couldn't give better subject, but I experience weird networking problems using pfSense 2.1 beta in a KVM ... Lorenzo Milesi
03:47 PM Revision 586098db: Make sure default config complies with latest version
Renato Botelho
03:47 PM Revision 2d563280: Fix indent and remove trailing tabs and whitespaces
Renato Botelho
03:02 PM Revision 35b443af: No reason for the ppp log to use this display method, use dump_clog() instead.
Jim Pingle
03:02 PM Revision f0469c5c: No reason for the ppp log to use this display method, use dump_clog() instead.
Jim Pingle
02:59 PM Revision 39f245c8: A couple fixes for openvpn routing table display. Feature #2766
Jim Pingle
02:36 PM Revision f8bb2aac: Enable cgi for the webgui since some ports like lightsquid need it
Ermal LUÇI
02:35 PM Revision b35fdb17: Enable cgi for the webgui since some ports like lightsquid need it
Ermal LUÇI
02:34 PM Revision 25dc1bb0: Run IPsec logs through htmlspecialchars before display.
Jim Pingle
02:33 PM Revision 7ee7ed46: Run IPsec logs through htmlspecialchars before display.
Jim Pingle
02:25 PM Revision ec970b50: Add routing table display for each OpenVPN ssl/tls server instance, collapsed by default. Part of feature #2766
Jim Pingle
02:15 PM Revision 3dc76aa5: Update the default config.xml to 9.2 so it does not trigger config.xml upgrade during install of a new system
Renato Botelho
02:14 PM Revision 20a3b436: Add IPv6 privacy settings tunables. Keep the default FreeBSD value for them, that is disabled. This implements feature request #2587
Renato Botelho
01:40 PM Feature #2765 (Feedback): Allow generation an x509 certificates with an SHA256 signature hash
Applied in changeset commit:ca6219025cabd3edbe53e522b345a167381a0171. Jim Pingle
11:48 AM Revision 633c02c1: Previous attempt to fix #1995 allow to set more than one default queues, prevent it with this change. It should fix #1995
Renato Botelho
11:45 AM Revision f8dca5a3: Previous attempt to fix #1995 allow to set more than one default queues, prevent it with this change. It should fix #1995
Renato Botelho
10:49 AM Revision cb2bd7ff: Merge pull request #340 from bcyrill/voucher_sync
Voucher sync Ermal LUÇI
10:12 AM Feature #2587: Add IPv6 Privacy settings.
There was a very short discussion about the IPv6 privacy extensions in the forum [1], with the key-point being that i... Cyrill B
09:02 AM Feature #2587 (Feedback): Add IPv6 Privacy settings.
Applied in changeset commit:20a3b4368660c876c72ef9eefe684269fa356561 Renato Botelho
07:26 AM Feature #2766: status_openvpn.php needs IPv6 support
Doesn't look like the OpenVPN management interface reports this back in the status line as it does for others, at lea... Jim Pingle
04:46 AM Feature #2766 (Resolved): status_openvpn.php needs IPv6 support
status_openvpn.php needs IPv6 support, for instance to show the IPv6 assigned virtual address instead of just the v4 ... Chris Buechler
07:10 AM Bug #2756: SNMPD problems when binding pppoe interface
Could you please collect snmpd process information when it starts?
# ps auxwww | grep -i snmp
And send the output. Renato Botelho
05:50 AM Bug #1995: Cannot edit default queue
Applied in changeset commit:633c02c1ac86dcd10e52e87e68e5ca757990b6e8. Renato Botelho
05:50 AM Bug #1995: Cannot edit default queue
Applied in changeset commit:633c02c1ac86dcd10e52e87e68e5ca757990b6e8. Renato Botelho
05:50 AM Bug #1995: Cannot edit default queue
Applied in changeset commit:f8dca5a36e63e095f6e0e22e71ec1a1444097814. Renato Botelho
05:50 AM Bug #1995 (Feedback): Cannot edit default queue
Applied in changeset commit:f8dca5a36e63e095f6e0e22e71ec1a1444097814. Renato Botelho
04:49 AM Bug #1995 (New): Cannot edit default queue
Not fixed yet. Renato Botelho
04:25 AM Bug #1995 (Resolved): Cannot edit default queue
Renato Botelho
05:13 AM Bug #2405 (Rejected): Lack of traffic shaping queue parent can take firewall down (pass no traffic)
You cannot select parent queue, it's done automatically and queue will not be created without parent. Renato Botelho

01/19/2013

09:22 PM Feature #2765: Allow generation an x509 certificates with an SHA256 signature hash
Based on some searching I did earlier, it seems that the only ones suitable are:
sha1 (with the above mentioned re... Dim Hatz
08:45 PM Feature #2765: Allow generation an x509 certificates with an SHA256 signature hash
I'd hate to hardcode a list, but openssl doesn't appear to have a good way to list the available message digest algor... Jim Pingle
08:03 PM Feature #2765: Allow generation an x509 certificates with an SHA256 signature hash
Just quick update:
1) The relevant keyword in openssl.cnf is default_md = sha256 # (md5/sha512/etc)
2) For openss... Dim Hatz
07:09 PM Feature #2765 (Resolved): Allow generation an x509 certificates with an SHA256 signature hash
Apparently pfsense's Cert Manager has hard-coded the use of SHA-1 for all PKI operations ("digest_alg" => "sha1" in /... Dim Hatz
04:24 AM Revision bbe29bb1: Update /etc/inc/voucher.inc
Cyrill B
04:16 AM Revision a18eeb51: Update /etc/inc/voucher.inc
Cyrill B

01/18/2013

05:13 PM Bug #2764 (Resolved): Captive Portal Voucher Sync issue
I have found an issue with voucher sync. If you create a new voucher roll on the master pfSense and this new voucher ... Fabian Lorenz
04:04 PM Revision 1489e8c8: Fix indent
Renato Botelho
10:29 AM Revision f8cb8685: Correct stoping of the db and sending radius stops
Ermal LUÇI
08:26 AM Revision 33127391: Merge pull request #338 from bcyrill/pkg_mgr
Add version check to package install Ermal LUÇI
08:24 AM Revision 1d9b9b73: Merge pull request #339 from bcyrill/patch-2
Update etc/inc/interfaces.inc Ermal LUÇI
07:22 AM Bug #2709 (Feedback): webgui cannot restart if php is hung
This should be fixed/irrelevant now on 2.0.3 and 2.1. Many related changes in lighttpd and php config were made to fi... Jim Pingle
07:20 AM Bug #2709: webgui cannot restart if php is hung
The same is happening with me (2.0.2)... Danilo Baio
06:03 AM Bug #2763 (Closed): Dynamic Firewall logs doesn't add new rows
The Dynamic Firewall Log page doesn't add rows, it only updates the php generated rows which means that if it's loade... John Bayly
04:47 AM Bug #2756: SNMPD problems when binding pppoe interface
okay it sill stops working so here is my /var/etc/snmpd.conf... Claudius Badmind
03:25 AM Bug #2762 (Resolved): PF drops IPv6 packets with fragment header followed by a last fragment only
PF has the same problem as is described here for ipfw.
http://lists.freebsd.org/pipermail/freebsd-net/2011-February... Chris Buechler
02:37 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
the issue is some driver related and Unisphere BRAS which more and more isp r using which uses some flood protection ... Bipin Chandra
01:01 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
this is a very old issue, a big long thread on this since ages http://forum.pfsense.org/index.php/topic,41061.0.html Bipin Chandra
12:26 AM Revision 15d15c7f: Update etc/inc/interfaces.inc
As noted in http://forum.pfsense.org/index.php/topic,57849.0.html Cyrill B

01/17/2013

09:03 PM Bug #1856: Removing a Phase 2 does not remove the SPD policy
This bug is related to #2719 and has most likely also been resolved. Cyrill B
07:00 PM Revision 473129bb: Allow to edit default queue. Should fix #1995
Renato Botelho
06:57 PM Revision dbf2dde4: Remove call-time pass-by-reference
Renato Botelho
06:56 PM Revision 20f5fce5: Allow to edit default queue. Should fix #1995
Renato Botelho
06:36 PM Revision 633d51b7: Add version check to package install
Cyrill B
04:17 PM Revision c1ce0c51: Preserve "Idle timeout" parameter on interfaces gui. It fixes a problem pointed out on ticket #2641
Renato Botelho
04:15 PM Revision 5f921566: Revert part of 0ff214f27d that was committed accidentally
Renato Botelho
01:23 PM Bug #2756 (Feedback): SNMPD problems when binding pppoe interface
Renato Botelho
05:18 AM Bug #2756: SNMPD problems when binding pppoe interface
If it doesn't help, please attach the content of /var/etc/snmpd.conf. Renato Botelho
02:16 AM Bug #2756: SNMPD problems when binding pppoe interface
i use the latest snapshot.
and yes i know the config is in /var/etc thats why i dont get why i see in system.log "/e... Claudius Badmind
01:00 PM Bug #1995: Cannot edit default queue
Applied in changeset commit:473129bbc3ddcb6011f2dd9a736addabe1db8acc. Renato Botelho
01:00 PM Bug #1995 (Feedback): Cannot edit default queue
Applied in changeset commit:20f5fce5e45a7356e53e9f206c88b7a7cd69da81. Renato Botelho
11:53 AM Revision 2dde9989: Fix build list of widgets
Only consider files ending in ".php" to restrict widgets and avoid load
wrong files. It should fix #2761 Renato Botelho
11:31 AM Revision 0ff214f2: Preserve "Idle timeout" parameter on interfaces gui. It fixes a problem pointed out on ticket #2641
Renato Botelho
11:09 AM Bug #2547 (Closed): Pbi manager does not remove old packages after update
When the version is different it should work in the same way since it runs an uninstall for old before install the ne... Renato Botelho
07:30 AM Bug #2547: Pbi manager does not remove old packages after update
I believe that this was all sorted out some time ago. I just tested with the small package "blinkled"" on nanobsd:
i... Phillip Davis
07:00 AM Bug #2547 (Feedback): Pbi manager does not remove old packages after update
Renato Botelho
06:59 AM Bug #2547: Pbi manager does not remove old packages after update
The process of package update consists on uninstall the old version and install the new one. If PBI was left, it was ... Renato Botelho
11:05 AM Bug #1943 (Feedback): PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
Renato Botelho
07:59 AM Bug #2067 (Feedback): pppoe-binding deleted
It probably was already fixed on the changes made during all these months. I checked here and couldn't reproduce.
... Renato Botelho
06:00 AM Bug #2761 (Feedback): Widget detection function can cause duplicate widgets in the Web GUI
Applied in changeset commit:2dde998935cd0bfb4c72ca0512366cf248088ba1. Renato Botelho
05:31 AM Bug #2761 (Closed): Widget detection function can cause duplicate widgets in the Web GUI
The widget detection function in index.php doesn't filter out invalid files. This means that if you patch a widget fi... John Bayly
02:32 AM Bug #2641 (Resolved): mac spoof on wan (pppoe) doesnt spoof
Chris Buechler
02:29 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
if thats the case then it works fine, u can close this bug.
one more thing i noticed not related to this issue but j... Bipin Chandra
01:56 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
there's no way to revert a spoofed MAC short of rebooting (with PPP or anything else), the original MAC is gone once ... Chris Buechler
01:48 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
tried, it works well but some issues. after i enter a spoofed mac id, it gets implemented and pppoe reconnects and us... Bipin Chandra
01:14 AM Revision 87537cf3: Validate passed parameters to smart commands, and the target device. Also escape when used in shell commands even after validation.
Discovered-By: Bernhard Thaler Jim Pingle
01:13 AM Revision 24879bc6: Validate passed parameters to smart commands, and the target device. Also escape when used in shell commands even after validation.
Discovered-By: Bernhard Thaler Jim Pingle

01/16/2013

08:02 PM Revision a8626608: Merge pull request #335 from ExolonDX/a0c0e8aefbac3e3979bac5fbfdecfedfe49cc2d3
Tidy up HTML Colour Names Jim Pingle
07:34 PM Revision a0c0e8ae: Tidy up HTML Colour Names
With XHTML 1.0, the extended colour names are invalid, to make pfSense
as W3C compliant as possible, need to go back ... Colin Fleming
06:53 PM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only
Is it still happening on recent snapshots? I couldn't reproduce it, every time I re-plugged the wan cabble, pppoe rec... Renato Botelho
05:19 PM Revision 136f3e48: Merge pull request #334 from ExolonDX/master
Tidy up malformed URI warnings Jim Pingle
05:14 PM Revision 2151894c: Tidy up malformed URI warnings
"/usr/local/etc/status.php" has lots of "malformed URI" warnings, this
update tidies these up, adds a missing end tab... Colin Fleming
04:19 PM Bug #2752: Captive Portal Last Activity isn't update anymore --> idle timeout just after login
Next status update:
I reinstalled version 2.0.2 from scratch because I supposed that the update from 2.0.1 to 2.0.2 ... Erik Ruedin
02:55 PM Revision 281cf46f: Forgotten -n option
Ermal LUÇI
02:54 PM Revision cf6dacfd: Merge pull request #333 from bcyrill/missing_return
Missing return statement Ermal LUÇI
02:47 PM Revision d5ac388b: Missing return statement
Cyrill B
02:06 PM Revision 84086442: Set flag setautosrc to replicate parent's mac address automatically when it changes, it's a better solution then dettach it. This should fix #2641
Renato Botelho
01:34 PM Revision 70ae8b9c: Revert "When a interface type is changed, old configuration remains. When moving from static ip to ppp, it kepts the static ip configured on interface, when moving from ppp to static ip, it doesn't kill mpd. Implement interface_clean() to make sure only current configuration is in place"
This reverts commit 9111e5fd88f284bd6f66a24a270af9d9fea1b6c7. Renato Botelho
01:29 PM Revision 76a7d8e4: Merge git pull request 313 from bcyrill with some modifications
Ermal LUÇI
01:25 PM Revision 170a8550: Allow editing an imported CRL, and refresh OpenVPN CRLs when saving. Implements #2652
Jim Pingle
01:21 PM Revision 5cd73772: Use sysctl for this since its better rather than going thorugh dmesg
Ermal LUÇI
01:15 PM Revision 2d6a5d6a: Merge pull request #332 from bcyrill/patch-2
Update etc/rc.update_bogons.sh Ermal LUÇI
01:09 PM Revision 254ebf8b: Fix mac spoof when PPPoE is being used
When PPPoE is set and you change interface's mac address, the netgraph
node kept using the old parent interface mac a... Renato Botelho
12:53 PM Revision c98951ce: Update etc/rc.update_bogons.sh
The used version of sh does not support the fallthrough operator and function keyword. Cyrill B
12:30 PM Bug #2745 (Resolved): vpn_pppoe_edit.php loses settings on input errors
Renato Botelho
11:31 AM Revision 99e991fd: Add option to disable resolution, and drop down to select the gateway that your traceroute should use
Warren Baker
11:22 AM Bug #2759 (Resolved): Lightsquid not working since mod_cgi was removed
Since "this commit":https://github.com/bsdperimeter/pfsense/commit/f7bddb24d5cb98328fae3f83e1719085e099ea6e, the Ligh... Ian Pitcher
09:45 AM Bug #2758 (Resolved): Old configuration remains when changing interface type
When interface type is changed, new type is configured correctly but the old type configuration is not cleaned up.
... Renato Botelho
08:11 AM Revision f28cb1c9: Merge pull request #328 from bcyrill/patch-7
Update usr/local/captiveportal/index.php Ermal LUÇI
08:10 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
Applied in changeset commit:84086442a2fa40b0fba12cf00a935144de3c5e71. Renato Botelho
07:20 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
Applied in changeset commit:254ebf8b0fb9a8042d154ab2206d7c4f3f16b487. Renato Botelho
07:36 AM Feature #2757 (Resolved): CDP/ISDP/LLDP support.
Hello,
i think that will be good to add support for CDP/ISDP/LLDP discovery protocol into pfsense.
FreeBSD alrea... Zeev Zalessky
05:47 AM Bug #2756: SNMPD problems when binding pppoe interface
Are you seeing this on recent snapshots?
snmpd.conf is located on /var/etc and not on /etc, do you have any custom... Renato Botelho
01:17 AM Feature #2603 (Resolved): Provide support for Package external name, internal name and service name to be different
thanks! Chris Buechler
12:05 AM Revision fad944a9: Update to master
Cyrill B

01/15/2013

11:58 PM Revision 422e9d00: Merge pull request #329 from bcyrill/patch-8
Update etc/inc/captiveportal.inc Ermal LUÇI
11:57 PM Revision ea742716: Merge pull request #330 from bcyrill/patch-9
Add portal_hostname_from_client_ip function Ermal LUÇI
11:18 PM Feature #2603: Provide support for Package external name, internal name and service name to be different
This is completed and working.
The final implementation was to just have the option to specify <internal_name> in ad... Phillip Davis
10:26 PM Revision de132ae3: Add portal_hostname_from_client_ip function
Cyrill B
09:28 PM Revision 87e7fdea: Update etc/inc/captiveportal.inc
Cyrill B
09:12 PM Revision 3b832418: Update usr/local/captiveportal/index.php
Cyrill B
08:02 PM Revision 9111e5fd: When a interface type is changed, old configuration remains. When moving from static ip to ppp, it kepts the static ip configured on interface, when moving from ppp to static ip, it doesn't kill mpd. Implement interface_clean() to make sure only current configuration is in place
Renato Botelho
05:08 PM Revision f26c1f79: Use functions to reduce code duplication; Add function to clear route to the interface IP before starting openvpn, otherwise the process cannot start. Ticket #2712
Jim Pingle
04:30 PM Revision 46830150: Better test if we're running at the cli or in lighty. Also suppress output for the session start if it fails.
Jim Pingle
04:28 PM Revision a74260cb: Better test if we're running at the cli or in lighty. Also suppress output for the session start if it fails.
Jim Pingle
03:13 PM Revision b3435de1: Fixup home/end/ins/del in shell.
Jim Pingle
02:50 PM Bug #2726 (Resolved): deletion of DHCPv6 leases from status_dhcpv6_leases.php does not work
Chris Buechler
02:46 PM Bug #2726: deletion of DHCPv6 leases from status_dhcpv6_leases.php does not work
Yep, that appears to have fixed it. Graeme Bragg
02:22 PM Revision 8a16c550: Revert part of 8e9d126550 since it breaks wifi interfaces at boot time
Renato Botelho
01:51 PM Bug #2756 (Closed): SNMPD problems when binding pppoe interface
snmd stop working after a while
i restart the service and its working fine
All modules loaded
Modules
SNMP ... Claudius Badmind
08:19 AM Revision 05c6f644: Merge pull request #326 from fsSnowboard/master
Modern games added to Traffic Shaper Wizard Ermal LUÇI
01:54 AM Revision 71461d38: fixed spelling
Tyler Turner
01:45 AM Revision a2696314: Merge pull request #325 from bcyrill/patch-5
Remove redundant code fragment Chris Buechler
01:06 AM Revision a3e97754: Remove redundant code fragment
Cyrill B
12:13 AM Revision c15a87f7: Avoid duplicating /32 suffix on 3rd ppp-linkdown parameter (local-ip). It should fix #2700
Renato Botelho

01/14/2013

09:28 PM Revision b2a0a8e9: Something in the LDAP libraries has changed and it no longer likes spaces in the CA filename. Use the refid for the CA filename since it will always be unqiue, and it will never contain any spaces, unlike authname or the CA's descr.
Jim Pingle
09:27 PM Revision 6f165ffc: Something in the LDAP libraries has changed and it no longer likes spaces in the CA filename. Use the refid for the CA filename since it will always be unqiue, and it will never contain any spaces, unlike authname or the CA's descr.
Jim Pingle
08:21 PM Revision 02f3e0bb: Bold and note manifest entries that match the current architecture, and add a note cautioning against a cross-architecture upgrade.
Jim Pingle
08:16 PM Revision e550b82c: Bold and note manifest entries that match the current architecture, and add a note cautioning against a cross-architecture upgrade.
Jim Pingle
06:20 PM Bug #2700 (Feedback): ppp-linkdown uses /32 for $3 which already has /32
Applied in changeset commit:c15a87f7a16ced0c73cc709480cbcab651c78603. Renato Botelho
05:30 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
Colin Sinclair wrote:
Also, I tried setting the gateway in my LAN firewall rules to a standalone gateway (i.e. not t... Colin Sinclair
04:16 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
I should have added, all I did was disconnect the OpenVPN client behind the ALIENVPS gateway and then waited for the ... Colin Sinclair
04:13 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
Here are the relevant parts that changed in each one, thanks!... Colin Sinclair
03:23 PM Revision 9deea99c: Merge pull request #324 from ExolonDX/master
Update PHP shorthand tag Ermal LUÇI
03:20 PM Revision c67eaa25: Merge pull request #323 from lcapriotti/master
Allow manual voucher expiration Ermal LUÇI
03:00 PM Bug #2377: Captive portal fails on empty RADIUS password
Do you still have a copy of your patch? The attached file produces a 404 here.
I recently submitted a pull request... Cyrill B
02:26 PM Bug #2377: Captive portal fails on empty RADIUS password
No updates on this? There seems to be little interest in any changes to RADIUS handling, I keep seeing "why do you ne... Michael Newton
02:50 PM Revision 7061ba0f: fix indent on convert_real_interface_to_friendly_interface_name()
Renato Botelho
02:19 PM Revision be45aa79: Remove some trailing spaces and tabs from EOL
Renato Botelho
01:43 PM Revision 1fe0d1a1: Spelling mistake
Colin Fleming
01:41 PM Revision cde76eba: Spelling mistake
Colin Fleming
01:38 PM Revision 3dacbd7c: Remove a couple of call-time pass-by-reference for interface_ipalias_configure()
Renato Botelho
01:32 PM Revision 8e9d1265: Check if interface really exists on interface_ppps_configure() and interface_configure()
Renato Botelho
01:27 PM Revision a3381369: Update PHP shorthand tag
Standardise all PHP start tags from "<?" to "<?PHP" Colin Fleming
10:24 AM Revision 477c58ce: Add page to allow manual vouchers expiration
Luigi Capriotti
05:50 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
yes it worked but as i mentioned in the forum, 2 things need to be done, when u apply the new mac id, the itnerface f... Bipin Chandra
05:06 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
You will be able to spoof mac. Please let me know the results of your tests, it worked fine for me. Renato Botelho

01/13/2013

12:11 PM Revision 11d1d64e: Set adaptive.start/adaptive.end to disabled. Also allow them to be customized through system->advanced->firewall. This allows the firewall to be reachable if the state limit is hit but default.
Ermal LUÇI
07:42 AM Bug #2755: PFSense fail to upgrade if using VMXNet cards under Vmware
The way the update system works, I'm not sure there is a lot we can do for this. We can't pre-load the tools package,... Jim Pingle
02:24 AM Bug #2755: PFSense fail to upgrade if using VMXNet cards under Vmware
System Configuration:
ESXi 4.1, ESXi 5.0, VMXNET 2 cards with 2.0.1/2.0.2/2.1 tested. moshe l
02:18 AM Bug #2755 (Closed): PFSense fail to upgrade if using VMXNet cards under Vmware
Hi!
I am trying to upgrade two router VMs.
start upgrade from website, restarted, after restart I need to re-atta... moshe l
03:42 AM Revision 9bf5a970: more games for traffic shaper
Tyler Turner

01/12/2013

09:55 PM Revision 906e513a: fixed spelling mistake
Tyler Turner
08:43 PM Revision 435e715f: added traffic shaper game rules
unknown
09:44 AM Bug #2754 (Duplicate): PPP and 3G: Setting PIN in advanced options not working, stick works after removing SIM PIN
Recently tried to install a 3G Surfstick on pfSense 2.0.2 x64 stable. Didn't work until I removed the PIN from the SI... dont care
12:03 AM Revision 46215352: Merge pull request #321 from jmkizer/patch-1
Update usr/local/www/status_services.php Jim Pingle
12:01 AM Revision a517a108: Update usr/local/www/status_services.php
Missing include which defines functions such as get_shortcut_by_service_name() jmkizer

01/11/2013

06:00 PM Revision d8b8937d: Fix some typos
Jim Pingle
05:45 AM Bug #2753 (Closed): RRD Graphs failes after pfSense upgrade (2.0.1 -> 2.0.2)
After upgrading from 2.0.1-RELEASE to 2.0.2-RELEASE RRD Graph stopped working with the following error message in the... Lasse Gurra
05:11 AM Bug #2752 (Resolved): Captive Portal Last Activity isn't update anymore --> idle timeout just after login
Since version 2.0.2 some of our captive portal users are logged out suddenly after login. In radius accounting i saw ... Erik Ruedin
04:48 AM Bug #2751 (Resolved): IPv6 log for ICMP Router Solicitation identified as ICMP packets
On log page, blocked Router Solicitation are not recognized as ICMPv6 packets.
Protocol is defined as "none". greg Bernard
03:06 AM pfSense Packages Bug #2581: Snort unexpectedly terminates / signal 11 error
Hello, It's not a hardware issue, I tested on several pc-s Intel and AMD processors, It seems to be a rule issue, Whe... Cimpean Andrei

01/10/2013

07:02 PM Revision e6b741a5: Put syslogd into secure mode so no remote log messages are accepted. Sending to a remote syslog server still works with this option.
Jim Pingle
07:01 PM Revision 526102c1: Put syslogd into secure mode so no remote log messages are accepted. Sending to a remote syslog server still works with this option.
Jim Pingle
06:51 PM Revision 43ba3952: Show the hostname if it doesn't match
Jim Pingle
06:51 PM Revision fbc723b1: Show the hostname if it doesn't match
Jim Pingle
05:57 PM Revision c73fec1f: Add a page to perform tcp connection tests to check if a host is responding on a given port.
Jim Pingle
05:27 PM Revision dbce0c2c: Allow empty RADIUS keys
Cyrill B
04:09 PM Revision 78efa294: Merge pull request #319 from bcyrill/patch-4
Update etc/inc/voucher.inc Jim Pingle
04:06 PM Revision 9cdb8eee: Update etc/inc/voucher.inc
Apply to branch 2.0 as well.
Fix array initialization as noted by 'elratt0r' in http://forum.pfsense.org/index.php/to... Cyrill B
04:04 PM Revision 84f394c6: Merge pull request #318 from bcyrill/patch-3
Update etc/inc/voucher.inc Jim Pingle
04:03 PM Revision 5a6359ae: Update etc/inc/voucher.inc
Fix array initialization as noted by 'elratt0r' in http://forum.pfsense.org/index.php/topic,49799.0.html Cyrill B
03:39 PM Bug #2710: Captive Portal radius accounting negative session time
Hello,
Has anybody an idea what could the reason be? I installed the version 2.0.2 and it's worse. This error provok... Erik Ruedin
01:27 PM Revision 051869b7: Do not prefer anymore oldsa and recommend it as a better choice
Ermal LUÇI
12:28 PM Revision 016d1520: Stack the queue graphs. Fixes #2692
Warren Baker
12:20 PM Revision 401feeb3: Stack the queue graphs. Fixes #2692
Warren Baker
09:28 AM Revision ba17b457: Remove some debugging
Warren Baker
09:17 AM Revision ea031bde: Dont pass -o option to view types that dont support it, it causes a segfault. Also make sure that when viewing all states that the correct switch is passed
Warren Baker
09:06 AM Revision 38de3c9d: Rework layout a bit and add number of states to view as an option
Warren Baker
08:54 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
with this patch will i be able to spoof mac or is it removed only? Bipin Chandra
06:30 AM Bug #2692: RRD queue graph doe's not stack
Applied in changeset commit:016d152054e982dc18001b79ce7f0fb52b060193. Warren Baker
06:20 AM Bug #2692 (Feedback): RRD queue graph doe's not stack
Applied in changeset commit:401feeb3b2577cbbbeb596d63dbea81f353d0032. Warren Baker
02:11 AM Revision fc8c7084: Merge pull request #316 from rafaelabdo/master
Delete SPDs when an IPSec tunnel is deleted. Fix #2719. Jim Pingle
02:11 AM Revision a2d5b85e: Update zoneinfo to 2012.j
Jim Pingle
02:10 AM Revision f424778c: Update zoneinfo to 2012.j
Jim Pingle

01/09/2013

11:08 PM Revision 3ef033d4: Merge pull request #317 from bcyrill/patch-2
Update usr/local/www/diag_system_pftop.php Jim Pingle
10:54 PM Revision 19f7146a: Update usr/local/www/diag_system_pftop.php
Get rid of localization where it is not desired. Cyrill B
09:00 PM Revision e817ad19: Make values look a little prettier and prevent a potential problem
Warren Baker
08:24 PM Revision c668eaed: Rework the pfTOP page to provide the ability to select the view. Also provide better dropdown labels and remove the annoying onClick submit - its not needed since ajax will handle the post of the new value in the background
Warren Baker
08:10 PM Bug #2719: Deleting IPsec tunnel does not remove SPDs
Applied in changeset commit:fc8c7084e9ae69dce7f000dbf9c459397ea2b04c. Anonymous
08:10 PM Bug #2719 (Feedback): Deleting IPsec tunnel does not remove SPDs
Applied in changeset commit:6fd8526b6b051529642500a38e272d4711bc6a33. Anonymous
06:51 PM Revision f0fb3d44: In the case that no bandwidth limits are configured for queues but PRIQ is been used then rather set a default otherwise a value of 0 is used in the CDEFs for RRD
Warren Baker
05:53 PM Revision 6fd8526b: Delete SPDs when an IPSec tunnel is deleted.
- Add new function to delete SPDs (see 'remove_tunnel_spd_policy($phase1,$phase2)' on vpn.inc)
- Change vpn_ipsec.php... Rafael Abdo
05:34 PM Revision b13a841b: In the case that no bandwidth limits are configured for queues but PRIQ is been used then rather set a default otherwise a value of 0 is used in the CDEFs for RRD
Warren Baker
04:59 PM Revision a6f1f6d1: Fix convert_real_interface_to_friendly_interface_name() when parameter is already a friendly name and interface is using PPPoE. It should fix #2641
Renato Botelho
01:51 PM Revision 5019ff8f: Use get_parent_interface() instead of doing it manually
Renato Botelho
01:39 PM Revision 02b8bfae: Fix get_parent_interface() for ppp interfaces, it was using an unset variable $ppp_if
Renato Botelho
12:39 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
I can't do that now (not at home) but will post /tmp/rules.debug tonight, thanks! Colin Sinclair
12:36 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
"Allow default gateway switching" was/is UNchecked. Colin Sinclair
12:35 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
It would also help to get a copy of /tmp/rules.debug from when it's running normally, and again when the VPN is down ... Jim Pingle
12:29 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
Hi Jim, thanks for your response, I'll go and check that setting now...
The reason I'm using a gateway group is th... Colin Sinclair
12:24 PM Bug #2749: gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
There may be a bug here but the way you're using gateway groups is unnecessary.
Just choose the actual gateway in ... Jim Pingle
12:18 PM Bug #2749 (Not a Bug): gateway groups - when tier 1 gateway fails, routes traffic via gateway set to "never"
pfSense 2.0.2 running as a VM inside ESXi 5.0
Summary: it seems that a gateway group is not respecting the "never"... Colin Sinclair
12:09 PM Revision 83bab77b: Add physical interface alias for pptp interfaces. It should fix #2663
Renato Botelho
11:00 AM Bug #2641 (Feedback): mac spoof on wan (pppoe) doesnt spoof
Applied in changeset commit:a6f1f6d1ecf48cea4c7865a56682c58c40bf4cde. Renato Botelho
09:14 AM Bug #2641: mac spoof on wan (pppoe) doesnt spoof
this was discussed some time back on this link http://forum.pfsense.org/index.php/topic,53940.0.html Bipin Chandra
06:10 AM Bug #2663 (Feedback): PPTP on WAN Gets blocked via default deny rule.
Applied in changeset commit:83bab77be786e86a72acecc9fb84adb3986b59a5. Renato Botelho
05:06 AM Revision 610f3ff6: use Sunday rather than Monday for weekly bogon update
Chris Buechler
03:57 AM Bug #2748 (Closed): Route53 DynDNS Updater does not work
Hi,
i use the current nighlies, and the AWS Route54 DynDNS Service does not update the IP on AWS.
I have several Do... Tim Buchwaldt

01/08/2013

09:53 PM Revision 7a5e4eaa: Merge pull request #315 from bcyrill/patch-2
Update etc/rc.newwanipv6 Jim Pingle
09:40 PM Revision d36fd7c0: Update etc/rc.newwanipv6
Cyrill B
05:34 PM Revision 7807664d: List VLAN interfaces on Interfaces -> (assign) -> PPPs edit. It should fix #1767
Renato Botelho
11:40 AM Bug #1767 (Feedback): Unable to modify pppoe interface which is linked to a vlan via WebGUI
Applied in changeset commit:7807664def0a95554b4a5207638c6b447fc71b4a. Renato Botelho
10:14 AM Revision d9ce908f: Merge pull request #314 from phil-davis/master
Display gateways with matching IP protocol in Gateways list Chris Buechler
09:58 AM Revision 3042761a: Merge pull request #310 from bcyrill/bogons_patch1
Allow changing of bogons update frequency Chris Buechler
09:47 AM Revision 889cbaef: Display gateways with matching IP protocol in Gateways list
Some gateways do not have traditional addresses hard-coded into them - e.g. for OpenVPN dynamic gateways are created ... Phil Davis
06:00 AM Todo #2485 (Feedback): Add Status > Services entry for radvd if RA is enabled
Renato Botelho

01/07/2013

10:48 PM Bug #2614: Scheduler bug - fires off on date not matched correctly
This should have been fixed by https://github.com/bsdperimeter/pfsense/commit/50b3fc5a0e1fb99747c325f6f5746f47d01e4f0... Phillip Davis
12:45 PM Bug #2614 (Feedback): Scheduler bug - fires off on date not matched correctly
Could you please confirm the issue persists on recent snapshots? Renato Botelho
08:42 PM Revision 3cde94cf: Avoid 'Cannot allocate memory' errors
Cyrill B
08:09 PM Revision 202699ad: Interface assignment wrongly changing:
When WAN is set to PPPoE and user set other interfaces IP address using
console, it wrongly change the interface assi... Renato Botelho
07:44 PM Revision 1b0074d5: Interface assignment wrongly changing:
When WAN is set to PPPoE and user set other interfaces IP address using
console, it wrongly change the interface assi... Renato Botelho
06:10 PM Revision f9a109a3: Make option 11 kill php and lighty like it does on HEAD
Jim Pingle
05:18 PM pfSense Packages Bug #2747 (Resolved): Snort ignores memcap settings
Snort is giving off many of these notifications in the system log:
*@snort[3825]: S5: Pruned 1 sessions from cache... Angel Torres
04:27 PM Revision 7c05f800: Add support for compressed bogon files
Cyrill B
03:55 PM Revision 5c94aa12: While I'm here, allow selecting "Localhost" as an OpenVPN interface.
Jim Pingle
03:47 PM Revision 489f484c: Unbreak selecting "any" for OpenVPN client/server interface.
Jim Pingle
02:53 PM Revision 92276df6: Add back end support for custom bogon urls
Cyrill B
02:10 PM Bug #2074: Changing interface IP changes interface assignment as well
Applied in changeset commit:202699ad0153ab3e57c3792c3d1493e4a7276e03. Renato Botelho
01:50 PM Bug #2074 (Feedback): Changing interface IP changes interface assignment as well
Applied in changeset commit:1b0074d5d139e71e1540230c3d2e36d71ccaf550. Renato Botelho
01:17 PM Bug #2074 (New): Changing interface IP changes interface assignment as well
Renato Botelho
01:05 PM Revision b94dd7d3: Retain user configured values for all fields when a validation error occours. It should fix #2745
Renato Botelho
12:15 PM Revision 5f993c44: Fix typo
Renato Botelho
08:04 AM Bug #2746 (Resolved): IPv6 IPSEC shows down but is actually not...
Hi
I just setup some IPv6 site-to-site ipsec vpns.
Good news: They work
Not so good news: In the IPSEC statu... Andre Keller
07:10 AM Bug #2745 (Feedback): vpn_pppoe_edit.php loses settings on input errors
Applied in changeset commit:b94dd7d3427f5ffbd11cf2f270ea3964ac9b7da9. Renato Botelho
03:18 AM Revision 96e9db4c: Merge pull request #311 from bcyrill/ipv6_newwanip
Partly revert commit 4c45712f Chris Buechler

01/06/2013

11:53 PM Revision 04aac151: Partly revert commit 4c45712f
Cyrill B
10:59 PM Revision 6b4480dc: Add bogons update frequency selection
Cyrill B
10:58 PM Revision 149ed85e: Fix spelling
Cyrill B
05:42 PM Bug #2063 (Resolved): PHP Memory Usage too high for 128MB RAM Systems (like ALIX)
this is much improved after a number of 2.1 changes. Chris Buechler
04:17 PM Revision 6aab5abe: Merge pull request #309 from phil-davis/master
Prevent "no such file" message when pid file does not exist Jim Pingle
03:22 PM Revision c4594e36: Prevent no such file message when pid file does not exist
Phil Davis
09:24 AM Revision 16d9ad13: Update the GUI page for the DHCP6 server, add a if statement that prevents throwing range errors on interface that have no static IPv6 address.
It is entirely valid to operate a DHCP6 server just for prefix delegation, but ISC doesn't appear to allow it yet. Seth Mos
09:20 AM Revision e9ab2ddb: Add some backend support for writing out a config so that the dhcp6 server can listen on the required MPD pppoe server interfaces.
Also nuke the failover entries, these don't exist for IPv6, this is handled by 2 servers and differing priorities Seth Mos

01/05/2013

06:36 PM Revision 5dbd619f: Add the PPPoE Server IP addresses to the locally configured addresses, this prevents the HTTP_REFERER check from triggering.
Seth Mos
05:03 PM Revision 96568521: Removing gettext from strins that should not be translated
Vinícius Coque
05:02 PM Revision df0207ce: Since php_sapi_name() is useless in pfSense test if argc has been registered or not to avoid warnings on bootup
Ermal LUÇI
04:59 PM Revision 9d584d5d: Put protection for session functions even here
Ermal LUÇI
04:58 PM Revision e294aded: Make the logic a bit more robust and readble
Ermal LUÇI
04:55 PM Revision 184847b5: While here try to hint the user from _ENV['USER'] if no session info
Ermal LUÇI
04:53 PM Revision cf0dae69: Since php_sapi_name() is useless in pfSense test if argc has been registered or not to avoid warnings on bootup
Ermal LUÇI
04:40 PM Revision 7ba99a6c: Make a bit more sense and consistent with when apc is enabled
Ermal LUÇI
04:38 PM Revision 9f1e3d64: Sync rc.php_init_setup with master
Ermal LUÇI
04:16 PM Revision 2b6f7508: Move up the syslog daemon so that we get a larger part of the bootup sequence.
Seth Mos
04:02 PM Revision 8f833c7c: Make sure the dhcp6c client always launches with the correct real interface argument.
Make sure we do a filter_configure_sync() here as otherwise the existing firewall rules (during boot) would block the... Seth Mos
03:59 PM Revision dcb41555: Do not skip displaying outbound NAT rules with no interface or an invalid interface; it interferes with editing/deleting the skipped rule itself or rules after it.
Erik Fonnesbeck
03:47 PM Revision d5d6c0ad: Revert "Use get_Cofnigured_interface_with_descr() here since that's the purpose"
This reverts commit 0c8e9f0c26b29f57faa2ccef9a559774103fee79. Erik Fonnesbeck
03:12 PM Revision 4c45712f: Update the rc.newwanipv6 with patches from the forum at
http://forum.pfsense.org/index.php/topic,56880.msg305769.html#msg305769
Still need to verify why this does not always... Seth Mos
03:02 PM Revision d53a9a51: The ISC client was far worse then the WIDE client was, back to plan A
Revert "Merge changes required for using the ISC dhclient in pfSense with prefix delegation. This should hopefully be... Seth Mos
02:51 PM Revision 0c8e9f0c: Use get_Cofnigured_interface_with_descr() here since that's the purpose
Ermal LUÇI
02:13 PM Revision e99ba2d6: Fix outbound NAT rules when interface is deleted:
- When delete interface, do not touch outbound NAT rules
- Skip outbound NAT rules when interface doesn't exist
- Bum... Renato Botelho
01:42 PM Revision aca65de5: Cleanup unused pages that was supposed for upload_progress bars
Ermal LUÇI
01:39 PM Revision b8090487: Add to obsolete files as well
Ermal LUÇI
01:35 PM Revision f2d7436a: Add to obsolete files as well
Ermal LUÇI
01:34 PM Revision 65ce97d2: Remove diag_backup.js progress.php upload_progress.php since they are not used since long time
Ermal LUÇI
01:22 PM Revision df53d679: Remove upload_progress_meter references not used
Ermal LUÇI
08:20 AM Bug #2338 (Feedback): outbound NAT rules rewrite themselves if active interface is deleted
Applied in changeset commit:e99ba2d66e915904626fd90ecc87711169189bdc. Renato Botelho
04:34 AM Bug #2745 (Resolved): vpn_pppoe_edit.php loses settings on input errors
When you save the page on vpn_pppoe_edit.php with an input validation error, upon reloading the page it loses all the... Chris Buechler

01/04/2013

10:15 PM Revision 9ec91e36: Merge: Just check the file_exists let pkill decide if its a vaild file or not.
Ermal LUÇI
10:14 PM Revision d9cdb363: Merge improvements to filterdns daemon
Ermal LUÇI
05:38 PM Revision 5034a7f5: Add this fix here too for upnp, set the bits when specifying the listening IP.
Jim Pingle
05:37 PM Revision a2b1d1e8: This seems to break upnp for IPv4 in other ways, and we have since disabled IPv6 in the daemon while compiling anyhow. Revert "In order for miniupnpd to latch onto IPv6, we just need to give the interface name here, not the subnet. The daemon is smart enough to latch onto the right subnet(s) here anyhow."
This reverts commit bc8a1938f5c1797213bf849f2bdb88bca72d5089. Jim Pingle
04:26 PM Revision 5b66196d: Remove cmd_chain.inc leftover
Ermal LUÇI
01:34 PM Revision d733ee9f: This is needed since preload is now gone
Warren Baker
01:32 PM Revision d0fc4479: This is needed since preload is now gone
Warren Baker
11:33 AM Bug #729: if_bridge unpredictable filter interface selection
Continuing discussion of https://redmine.pfsense.org/issues/2744
Odd that it's just appeared now on an established... Phil Lavin
11:24 AM Bug #2744: ARP related problem since upgrading
Not sure, but it's a known issue. Continue discussion on the other bug report for best results. Jim Pingle
11:21 AM Bug #2744: ARP related problem since upgrading
Actually, having reviewed that, it's quite old. Why would this issue just come to light now when the setup has worked... Phil Lavin
11:16 AM Bug #2744: ARP related problem since upgrading
That's annoying :P
Let me know if there's any debug you need from my side. I'll watch the original. Phil Lavin
11:11 AM Bug #2744 (Rejected): ARP related problem since upgrading
Most likely a duplicate of #729 Jim Pingle
11:02 AM Bug #2744 (Rejected): ARP related problem since upgrading
I upgraded, by request of another issue, to the latest snapshot yesterday. We've had a strange issue arise.
The se... Phil Lavin
10:55 AM Revision e384f16e: If less than 78 RAM just do not let php spawn another process
Ermal LUÇI
10:26 AM Revision f89afb47: Get back to trim() and strip / from left/right but when redirecting properly create the redirurl var
Ermal LUÇI
10:24 AM Revision 237c6ef2: Get back to trim() and strip / from left/right but when redirecting properly create the redirurl var
Ermal LUÇI
10:00 AM Revision 70e454e1: Slight code re-organization
Ermal LUÇI
09:57 AM Revision 7bd926d5: Another fix for issues reported on 2.0.2 with php processes dying. Do not use same path for system webGUI and CP webGUI of the php unix socket. This will cause the later started one, usually CP to exit when it attempts to bind/listen on the same path as previous process! Strange this has not been an issue beforegit diff!
Ermal LUÇI
09:52 AM Revision e3217701: Use proper var here for calculation
Ermal LUÇI
09:51 AM Revision a96f2d3d: Remove to parameters from system_generate_lighty_config that are unused and do a better job at tuning started php processes to not use less/more than needed. This also avoids DoS the system with php processes
Ermal LUÇI
09:19 AM Revision c21b10d4: Remove to parameters from system_generate_lighty_config that are unused and do a better job at tuning started php processes to not use less/more than needed. This also avoids DoS the system with php processes
Ermal LUÇI
09:04 AM Revision 56ef4d26: Always use fastcgi since the requirement is the same anyhow
Ermal LUÇI
08:53 AM Revision 197e128e: Obsolete /etc/inc/cmd_chain.inc
Ermal LUÇI
08:51 AM Revision 0b85e97d: Obsolete /etc/inc/cmd_chain.inc
Ermal LUÇI
08:51 AM Revision 5d128840: GC cmd_chain.inc it never found uses since pfSense module got used more. Also fix the problem with pfsync on bootup waiting 30 seconds since cmd chain was executed after and pfsync was never brought up to compleete the sync.
Ermal LUÇI
08:45 AM Revision 01abfd21: Add exec_raw.php to obsolete files.
Ermal LUÇI
08:45 AM Revision f16a2be7: Remove preload.php even here now that is possible to avoid issues during startup of lighty
Ermal LUÇI
08:43 AM Revision 59d76570: Always commit the session fast to allow other consumers to proceed to their requests. This unbreaks now the lock up the GUI had allowing only one action from same source per time. Now even if you run a command that blocks indefinitely for example the GUI want lock anymore but allow you to proceed to other actions. Manual cherry-pick of 4111fcf5307829b19b95fbb499addddff46264af
Ermal LUÇI
08:34 AM Revision 91117d33: Remove unused function
Ermal LUÇI
04:23 AM Revision 23090547: Welcoming in 2013
Chris Buechler
04:23 AM Revision fed246df: Welcoming in 2013
Chris Buechler

01/03/2013

10:50 PM Revision 4111fcf5: Always commit the session fast to allow other consumers to proceed to their requests. This unbreaks now the lock up the GUI had allowing only one action from same source per time. Now even if you run a command that blocks indefinitely for example the GUI want lock anymore but allow you to proceed to other actions
Ermal LUÇI
07:38 PM Revision 24b78825: Merge pull request #307 from kernelpaniclite/dns.he.net
dynamic dns update url for dns.he.net fixed Jim Pingle
07:29 PM Revision 16fea0ce: dynamic dns update url for dns.he.net fixed
Added curl option to use IPv4
Updated url schema Cedric Ohle
05:14 PM Revision 18749fa5: Merge pull request #306 from phil-davis/RELENG_2_0
Fix out packet count reporting Jim Pingle
04:08 PM Revision 1d6c4cbf: Fix out packet count reporting
This is a little tiny fix, for the similar issue that was fixed in 2.1 a month ago (the 2.1 fix had a mix of v4 and v... Phil Davis
03:22 PM Revision d79e9c71: Remove obsoleted file as well
Ermal LUÇI
02:57 PM Revision a4fc6ec7: Ticket #2063 Do not enable apc on less than 135MB ram
Ermal LUÇI
02:29 PM Revision 8a0f6ca1: Be a little smarter about the default kernel in rare cases where we cannot determine what was in use.
Jim Pingle
02:29 PM Revision 82bce0a1: Be a little smarter about the default kernel in rare cases where we cannot determine what was in use.
Jim Pingle
02:25 PM Revision 748c7b85: Always make sure php has its own process manager to make lighty happy
Ermal LUÇI
02:24 PM Revision eef77bfe: Always make sure php has its own process manager to make lighty happy
Ermal LUÇI
02:11 PM Feature #290: Add Multi-WAN awareness to UPnP
There is a MULTIPLE_EXTERNAL_IP option in miniupnpd that allows you to specify multiple external IP addresses, and th... Jim Pingle
02:04 PM Feature #2743 (Resolved): Add external interface selector to UPnP Settings
Somewhat related to #290 but different enough to warrant a separate ticket since this doesn't necessarily depend on U... Jim Pingle
01:44 PM Revision e83eaf36: Pass -S to tcpdump to avoid an increase in memory consumption over time.
Jim Pingle
01:40 PM Revision ab350c0f: Pass -S to tcpdump to avoid an increase in memory consumption over time.
Jim Pingle
01:35 PM Revision 4a1a432b: Merge pull request #305 from phil-davis/RELENG_2_0
Minimise rewriting of /etc/gettytab Jim Pingle
01:20 PM Revision 8bc93c1a: Bump this, since it seems inevitable at this point.
Jim Pingle
01:16 PM Bug #2495 (Closed): pfsense doesn't seem to know what its WAN IP is
Submitter reported problem is not happening on recent snapshots. Closing it. Renato Botelho
01:09 PM Bug #2495: pfsense doesn't seem to know what its WAN IP is
All is well with a /26 subnet now. Definitely rebooted it a bunch of times since reporting this bug both for upgrades... Phil Lavin
12:38 PM Bug #2495: pfsense doesn't seem to know what its WAN IP is
ok, check the ifconfig output again after the upgrade.
Somehow the IPs are ending up on the interface in the wrong... Jim Pingle
12:11 PM Bug #2495: pfsense doesn't seem to know what its WAN IP is
Note the above is with a subnet of /25. Seems most people have pissed off home - I'll run the update now and let you ... Phil Lavin
12:10 PM Bug #2495: pfsense doesn't seem to know what its WAN IP is
[2.1-BETA0][root@prop-router-rugby.local]/root(1): ifconfig -a
msk0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> metric ... Phil Lavin
11:58 AM Bug #2495: pfsense doesn't seem to know what its WAN IP is
In the meantime, please show the output of:... Jim Pingle
11:51 AM Bug #2495: pfsense doesn't seem to know what its WAN IP is
It's a production router - I'll try to update when most of the populous have gone home and I'll let you know.
Phil Phil Lavin
10:54 AM Bug #2495 (Feedback): pfsense doesn't seem to know what its WAN IP is
I couldn't reproduce it on recent 2.1-BETA1 snapshot. Could you please confirm if it's still happening? Renato Botelho
01:08 PM Revision 2ba3ea05: Avoid duplicate log entries for facilities higher or equal daemon.info. It should fix #2626
Renato Botelho
12:55 PM Revision d99f9393: Minimise rewriting of /etc/gettytab
See forum http://forum.pfsense.org/index.php/topic,57325.0.html
Avoid possible problems with having a partial /etc/ge... Phil Davis
10:27 AM Revision 860978f2: Make mod_fastcgi last to have url.rewrite work properly
Ermal LUÇI
10:25 AM Revision 17098641: Make is_pid_running function return more conisten results by using isvalidpid
Ermal LUÇI
10:24 AM Revision e3c4516b: Use rtrim to avoid issues
Ermal LUÇI
10:22 AM Revision f7bddb24: Simplify lighty config and tune mod_evasive as needed. Mostly a cherry-pick from RELENG_2_0 changes
Ermal LUÇI
08:26 AM Revision 081320a4: Move to varrun_path for consistency
Ermal LUÇI
08:26 AM Revision 186be7fe: Move to varrun_path for consistency
Ermal LUÇI
07:33 AM Revision f86dafa9: Merge pull request #303 from phil-davis/master
Minimise rewriting of /etc/gettytab Warren Baker
07:10 AM Bug #2626 (Feedback): Patch included: syslog.conf allows duplicate logging of daemon.info messages (e.g. from snort or dnsmasq)
Applied in changeset commit:2ba3ea05709b63127bc2f7856635292f7bc10623. Renato Botelho
07:02 AM Revision adc0f2fe: Minimise rewriting of /etc/gettytab
See forum http://forum.pfsense.org/index.php/topic,57325.0.html
Avoid possible problems with having a partial /etc/ge... Phil Davis
05:03 AM Bug #2732: Captiveportal Can't Show User Status
Thank you, with the assistance of the management team, the problem has been resolved
Happy New Year!
ver. 2013/1/2 X.Z. Lin

01/02/2013

10:59 PM pfSense Packages Feature #2646: openvpn-client-export UAC prompt solution
Someone has already added code to the export package for OpenVPNManager as an option, which does the same thing that ... Jim Pingle
05:42 PM pfSense Packages Feature #2646: openvpn-client-export UAC prompt solution
Stumbled upon this one:
http://openvpn-mi-gui.inside-security.de/
> Description
> OpenVPN MI GUI is a Windows ... Dim Hatz
06:43 PM Revision 5d6495a7: Tell filterdns to reload the config rather than restart if its running
Ermal LUÇI
05:21 PM Revision d3647381: Make is_pid_running function return more conisten results by using isvalidpid
Ermal LUÇI
05:14 PM Revision 192d8931: Enable mod_evasive if needed for CP
Ermal LUÇI
05:03 PM Revision 6f0d237e: Simpligy lighty config and send all lighty logs to syslog rather to a file not readble by anything
Ermal LUÇI
04:28 PM Bug #2732 (Resolved): Captiveportal Can't Show User Status
Chris Buechler
09:25 AM Bug #2732: Captiveportal Can't Show User Status
Fixed in commit:1974c2d6bfc053efc6e13f1c39e40faef2b2d9b5 Cyrill B
04:28 PM pfSense Packages Bug #2742 (Rejected): freeradius2 let u add users with username/passwd fields empty
Chris Buechler
12:51 PM pfSense Packages Bug #2742: freeradius2 let u add users with username/passwd fields empty
It's not a bug - it's a feature ;-)
I disabled the check that username/password fields are neccessary to create a ... Alexander Wilke
02:09 AM pfSense Packages Bug #2742 (Rejected): freeradius2 let u add users with username/passwd fields empty
Hi.
I'm working with FreeRadius2/CP and I had seen than the GUI let me add users with username/passwd fields e... Peter Moreno
03:38 PM Revision aa32c88d: USe rtrim here as that it the meaning. This should unbreak the issues on 2.0.2 with CP
Ermal LUÇI
12:12 PM Bug #2063 (Feedback): PHP Memory Usage too high for 128MB RAM Systems (like ALIX)
Could you please confirm it fixed the issue? Renato Botelho
08:25 AM Bug #2722 (Resolved): Revision 4c6ede42 broke licenses.php
Jim Pingle
08:22 AM Bug #2722: Revision 4c6ede42 broke licenses.php
Error is gone after update, THNX. Rob J. Epping

01/01/2013

08:07 PM Bug #2739 (Resolved): LiveCD - "ataidle: error opening /dev/ad?"
Chris Buechler
11:08 AM Bug #2739: LiveCD - "ataidle: error opening /dev/ad?"
Works fine. Thanks! Daniel Berlin
11:32 AM Bug #2738: /usr/local/bin/beep: not found
There have been no fresh builds of that branch to test from our builders. The binary will be there when we make one. ... Jim Pingle
11:06 AM Bug #2738: /usr/local/bin/beep: not found
Nope, sorry, it's not fixed.
I tried a fresh rebuild of RELENG_2_0, but still beep ist missing! Daniel Berlin
 

Also available in: Atom