Activity

30 days up to

User

Subprojects

Activity

From 01/23/2013 to 02/21/2013

02/21/2013

07:35 PM Bug #2555: check_reload_status consumes 100% CPU usage: Tracked down the issue to dhcp6c calling rc.newwanipv6 which called "filter reload" on check_reload_status.
The de... Ben Harris
04:11 PM Bug #2756: SNMPD problems when binding pppoe interface: hmm after update still the same .... any idea Claudius Badmind
03:21 PM Feature #2241: DHCP - prevent dhcpd from handing out leases to certain MAC addresses: Unrelated to this ticket. Open a new feature request ticket for each of those separately. Jim Pingle
03:19 PM Feature #2241: DHCP - prevent dhcpd from handing out leases to certain MAC addresses: Thank you for this patch, however I would still like to see 2 checkboxes added to the GUI to control the following fl... → luckman212
01:30 PM Bug #1118: Adding NAT rule based on a NAT rule moves it to bottom of list: Applied in changeset commit:5d764d64b999cd2f1c9b00c62771a18e05b52025. Renato Botelho
01:20 PM Bug #1118 (Feedback): Adding NAT rule based on a NAT rule moves it to bottom of list: Applied in changeset commit:3202763c8bdd2cd6821be7bc21829085548cc504. Renato Botelho
01:17 PM Bug #1118: Adding NAT rule based on a NAT rule moves it to bottom of list: Slightly related: using the + at the top of the NAT rules list adds the rule to the bottom, not the top. (could make ... Jim Pingle
12:20 PM Bug #1153 (Feedback): Re-assignment of bridge interfaces should be restricted: Applied in changeset commit:95540233e3b9d8c4be5616065edcc6e1f2e2f972. Renato Botelho
09:44 AM Bug #2833 (Resolved): Add a knob to prefer IPv4 over IPv6 for rare situations that require it: We should have a knob somewhere to let users prefer IPv4 over IPv6 in case they have broken IPv6 routing and need to ... Jim Pingle
09:30 AM Bug #2406 (Feedback): No IP alias within the subnet of a CARP IP can be deleted: Applied in changeset commit:b030e03510656584d1d29f3a1d355e4a6d947f04. Renato Botelho
08:21 AM Bug #1988 (Feedback): Static ARP entries attempted to be applied on disabled interfaces: Renato Botelho
08:21 AM Bug #1988 (New): Static ARP entries attempted to be applied on disabled interfaces: Renato Botelho
08:20 AM Bug #1988 (Feedback): Static ARP entries attempted to be applied on disabled interfaces: Applied in changeset commit:873e49ec1cf3a291c9267a5efca70d74481a126b. Renato Botelho
08:10 AM Bug #2039 (Feedback): Adding a local interface conflicting with a static route in the routing table fails to add the link route: Applied in changeset commit:42fa2c01422e57fddea07352029530ace34363c4. Renato Botelho
08:04 AM Bug #2010 (Feedback): VLAN parent interface / altq interface wrong assumptions about int_family name format: Renato Botelho
04:56 AM Bug #2010 (New): VLAN parent interface / altq interface wrong assumptions about int_family name format: Renato Botelho
04:50 AM Bug #2010 (Feedback): VLAN parent interface / altq interface wrong assumptions about int_family name format: Applied in changeset commit:2ccac12588f59039c88d06126762f41be2f65ce2. Renato Botelho
06:24 AM Bug #2832 (Closed): Gateway status fails when 2 WANs have the same gateway.: I have 2 VDSL WANs using PPPoE connections but they have the same gateway and because of that pfsense gateway monitor... Mathieu Déom

02/20/2013

10:51 PM Bug #2831 (Rejected): Issue while connecting the openvpn: not a bug, post to the forum or mailing list Chris Buechler
10:48 PM Bug #2831 (Rejected): Issue while connecting the openvpn: Hi Team
I have set the Openvpn server in Pfsense.I have successfully connected through it from another network.Bu... zam kp
10:15 PM Bug #2819: Unconstrained memory growth of tcpdump: can attach it here if it's under 5 MB gzipped/bzipped which it might be at that. otherwise can email it to me and I c... Chris Buechler
04:10 PM Bug #2819: Unconstrained memory growth of tcpdump: Jim, I was able to reproduce the situation. 3 days after reboot, tcpdump process grew to 25 MB from 2.5 MB. I ... Irving Popovetsky
10:12 PM Bug #2830 (Rejected): a Bug for 100Mb interface?: configuration problem, post to the forum or mailing list Chris Buechler
09:50 PM Bug #2830: a Bug for 100Mb interface?: --[adsl router] ------192.168.2.152 (100Mb)[win7]
|
|
---192.168.... scott gao
09:47 PM Bug #2830 (Rejected): a Bug for 100Mb interface?: test env:win7+vmware7+pfsense2.0.2+winxp
--[adsl router] ------192.168.2.152 (100Mb)[win7]
... scott gao
03:54 PM Bug #2828: CARP does not work on dual-homed VMware ESXi hosts without a workaround on the ESX host: Oops, I was dead wrong, other machines see the same behaviour as soon as Promiscous Mode is enabled on the VMware por... Bernhard Schmidt
07:54 AM Bug #2828: CARP does not work on dual-homed VMware ESXi hosts without a workaround on the ESX host: Weird thing is, it only seems to affect pfSense boxes. We have tons of Linux and Windows machines, even in the same p... Bernhard Schmidt
07:28 AM Bug #2828: CARP does not work on dual-homed VMware ESXi hosts without a workaround on the ESX host: The workaround for altering the ESX host is correct and works for most people, since it's a problem with ESX.
If w... Jim Pingle
06:00 AM Bug #2828 (Closed): CARP does not work on dual-homed VMware ESXi hosts without a workaround on the ESX host: Certain active/active VMware ESXi configurations loop back CARP multicast frames sent by the machine. This breaks CAR... Bernhard Schmidt
12:13 PM Bug #1877 (Resolved): (cosmetic) aliases-edit markup to wide for background: It was already fixed in 2.1. Renato Botelho
09:20 AM Bug #2829 (Feedback): CARP settings overwrite prefixlen of IPv6 address with prefixlen of IPv4 address on edit: Applied in changeset commit:ebbfc4b771a16b1aed5e97c2aaa2bee3db6b2e4d. Renato Botelho
07:18 AM Bug #2829 (Resolved): CARP settings overwrite prefixlen of IPv6 address with prefixlen of IPv4 address on edit: * Add IPv4 CARP address to WAN, i.e. 10.10.10.1, prefixlen /29
* Add IPv6 CARP address to WAN, i.e. 2001:db8:0:e901:... Bernhard Schmidt
07:54 AM Bug #2826 (Resolved): Status > Traffic Graphs gives javascript alert when changing interfaces.: Renato Botelho
06:40 AM Bug #2827 (Feedback): changing "IPv6 Configuration Type" dropdown results in error if you have an old config.xml with unmigrated <dhcpd6> block: Applied in changeset commit:1f56ce58668708485f9d95c9b01e72519dde87b4. Renato Botelho
04:25 AM Feature #2781: Hierarchical view of "Status-Queues" page: Well, the new status queues page still doesn't show Borrows, Suspends or Drops:... Petri Oksanen
01:34 AM Feature #2781: Hierarchical view of "Status-Queues" page: Well, I think we can close this, or if you have any suggestions/problems please write me! Michele Di Maria

02/19/2013

03:55 PM Bug #2827 (Resolved): changing "IPv6 Configuration Type" dropdown results in error if you have an old config.xml with unmigrated <dhcpd6> block: I have upgraded my 2.1 from snapshot to snapshot for quite a long time and I now have accumulated 2 IPv6 dhcpd blocks... Dwayne Voelker
12:38 PM Bug #2786 (New): Setting MTU on VLAN does not set MTU on parent interface in 2.2: Renato Botelho
12:35 PM Bug #2758: Old configuration remains when changing interface type: This new version of the patch is working fine for all tests I've made here. Renato Botelho
12:14 PM Bug #2826 (Feedback): Status > Traffic Graphs gives javascript alert when changing interfaces.: Ermal Luçi
12:14 PM Bug #2826: Status > Traffic Graphs gives javascript alert when changing interfaces.: Should be fixed by latest commits.
Missed the ticket creation. Ermal Luçi
11:18 AM Bug #2826 (Resolved): Status > Traffic Graphs gives javascript alert when changing interfaces.: Status > Traffic Graphs gives javascript alert when changing interfaces. Just says "Error 0 -- error".
See http://... Jim Pingle
06:21 AM Bug #2822: Direction wrong in traffic graph (lan): After investigation, i figured out the root cause of this issue. For LAN interface:
- pfSense_get_interface_stats(... Renato Botelho
05:21 AM pfSense Packages Feature #2825 (Resolved): OpenBGPd: Add options prepend-neighbor and prepend-self: To be able to more properly control traffic flow, adding "prepend-neighbor" and "prepend-self" to the list of options... Andreas Bjorshammar

02/18/2013

10:39 PM Bug #2820: Unable to generate CSR in 2.1BETA1: The change in comment #2 appears to get rid of "Please select a valid Digest Algorithm", but the error "Please select... Bruce Mah
07:50 AM Bug #2820 (Feedback): Unable to generate CSR in 2.1BETA1: Applied in changeset commit:24c0145c2cdb7eb8006020579c7c8b82f0108412. Jim Pingle
05:20 PM Bug #2824 (Feedback): IP alias VIP stacked on CARP VIP interface has a blank "Interface" column on VIP list: Applied in changeset commit:79ea2726b5c1c2a723e915a2d4d9cc983d216062. Renato Botelho
03:18 PM Bug #2824 (Resolved): IP alias VIP stacked on CARP VIP interface has a blank "Interface" column on VIP list: When you create an IP alias VIP and select a CARP VIP as its interface, it shows up properly on the VIP edit page, bu... Jim Pingle
03:19 PM Bug #2823 (Resolved): Unable to save changes on a CARP VIP: Works now, thanks! Jim Pingle
03:10 PM Bug #2823 (Feedback): Unable to save changes on a CARP VIP: Applied in changeset commit:4021ec36a9ce460b1501f42da8237d51bbedc611. Renato Botelho
11:47 AM Bug #2821: mobile ipsec problem since upgrade from pfsense 2.0.1 to 2.0.2: Same problem, on 2.0.2 no IPSec tunnel route added!
Oscar Oscar Francia
06:46 AM Bug #2806: General setup: Error when changing system DNS Server: Just for the record - a typo in the function name was fixed by https://github.com/bsdperimeter/pfsense/commit/df40755... Phillip Davis

02/17/2013

11:27 PM Bug #2823 (Resolved): Unable to save changes on a CARP VIP: If I try to edit and save a CARP VIP, changing nothing, the GUI rejects the change.... Jim Pingle
11:25 AM Bug #2065: PHP Warning on Interface Creation (master/IPv6 branch): I have found at least a workaround for my issue, patch is included.
In /usr/local/www/interfaces.php the code that... Dwayne Voelker
09:41 AM Bug #2555: check_reload_status consumes 100% CPU usage: Amy Alvarez wrote:
> FYI this is still happening to me on 2.0.2 release.
I do have captive portal enabled, but I ... Amy Alvarez
09:38 AM Bug #2555: check_reload_status consumes 100% CPU usage: FYI this is still happening to me on 2.0.2 release. Amy Alvarez
07:59 AM Bug #2451 (Resolved): IPv6 rule: 'add network' becomes 'add single host': Renato Botelho
12:19 AM Bug #2451: IPv6 rule: 'add network' becomes 'add single host': The latest change fixed my problem, thank you! Anonymous
07:58 AM Bug #2818 (Resolved): IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Renato Botelho
07:58 AM Bug #2806 (Closed): General setup: Error when changing system DNS Server: There is no call to is_validip() on entire system.inc Renato Botelho
07:52 AM Bug #2791 (Resolved): Validation glitch with gateways added from Interfaces > [Name]: Renato Botelho
07:52 AM Bug #2780 (New): CP: passthough has no effect: Renato Botelho
07:50 AM Bug #2719 (Resolved): Deleting IPsec tunnel does not remove SPDs: Renato Botelho
07:38 AM Bug #1823 (Resolved): policy routing for firewall-initiated traffic only works for interface IPs: Renato Botelho
07:37 AM Bug #1629 (New): invalid state table entries after WAN IP change: Renato Botelho
07:33 AM Feature #1010 (Closed): Privilege setting for allowing login access through captive portal: Renato Botelho
06:30 AM Bug #2822 (Resolved): Direction wrong in traffic graph (lan): On my LAN graph I see outgoing traffic (downloads) +graphed+ ok (out), but +listed+ under Bandwidth +IN+
2.0.2-REL... Danny Bogaards

02/16/2013

02:00 PM Bug #2451 (Feedback): IPv6 rule: 'add network' becomes 'add single host': Applied in changeset commit:507aa90af48b14ffaab6664c708a3b03d723164c. Renato Botelho
12:45 AM Bug #2451 (New): IPv6 rule: 'add network' becomes 'add single host': Jim Pingle
12:19 AM Bug #2451: IPv6 rule: 'add network' becomes 'add single host': Maybe this change broke something, because I have created exactly the same rule on earlier snapshots without any prob... Anonymous
11:08 AM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Thanks for that Renato. :-)
//Dan Dan Lundqvist
10:00 AM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Applied in changeset commit:923e440b75eda660a5cdbd102912fe53d61d1237. Renato Botelho
11:03 AM Bug #2821: mobile ipsec problem since upgrade from pfsense 2.0.1 to 2.0.2: Jim P wrote:
> Discuss/troubleshoot on the forum. It comes up often and is always a settings issue.
Hi Jim.
I ... Dennis Neuhaeuser
11:00 AM Bug #2821 (Rejected): mobile ipsec problem since upgrade from pfsense 2.0.1 to 2.0.2: Discuss/troubleshoot on the forum. It comes up often and is always a settings issue. Jim Pingle
10:58 AM Bug #2821 (Rejected): mobile ipsec problem since upgrade from pfsense 2.0.1 to 2.0.2: since upgrade from 2.0.1 to 2.0.2 there is a problem with mobile ipsec connections:
the first client always connec... Dennis Neuhaeuser
12:45 AM Bug #2627 (New): Old delegated prefixes are not removed from the LAN interface: Jim Pingle

02/15/2013

11:58 PM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: here is the thread at mpd forum, doesnt seem like a mpd issue but some network drivers
http://sourceforge.net/proj... Bipin Chandra
01:25 PM Bug #1943 (New): PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: Renato Botelho
05:12 PM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: I think I found the problem.
It needed to be even one more step out of the loop at the end of the foreach phase1 l... Dan Lundqvist
05:00 PM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Or there is something wrong so it doesn't create an array even if it suppose to do it (the $ipsecpinghosts*[]* )
Or... Dan Lundqvist
04:30 PM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: *The correction does not work.*
The problem is that the $ipsecpinghosts is NOT treated as a table but rather as a si... Dan Lundqvist
04:20 AM Bug #2818 (Feedback): IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Applied in changeset commit:fa77faffbf284ce5e89b9bd36963a747adbf1fed. Renato Botelho
01:06 AM Bug #2818: IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Updated to "2.1-BETA1 (i386) built on Thu Feb 14 16:27:05 EST 2013" and
tried to tried to clear / apply / reconfigu... Dan Lundqvist
03:48 PM Bug #2065: PHP Warning on Interface Creation (master/IPv6 branch): I have run into something very much like this (see http://forum.pfsense.org/index.php/topic,58966.0.html )
Trying ... Dwayne Voelker
03:37 PM Bug #2820 (Resolved): Unable to generate CSR in 2.1BETA1: Please see this thread for info.
http://forum.pfsense.org/index.php?topic=58971 Brandon Jenkins
01:37 PM Bug #1629: invalid state table entries after WAN IP change: To followup my previous post, I have verified that the WAN (em0) states are indeed flushed, however their correspondi... Dim Hatz
12:53 PM Bug #2756 (Feedback): SNMPD problems when binding pppoe interface: Renato Botelho
11:43 AM Bug #2756 (New): SNMPD problems when binding pppoe interface: This last change should fix the issue, please gitsync it or update to the next released snapshot, back snmp Bind Inte... Renato Botelho
11:40 AM Bug #2756 (Feedback): SNMPD problems when binding pppoe interface: Applied in changeset commit:7790196644a3cc38cc2ec7d0df01f164479b43be. Renato Botelho
11:33 AM Bug #2756 (New): SNMPD problems when binding pppoe interface: The problem is when snmpd starts the interface doesn't have the IP address set yet. And when it reconnect it crashes ... Renato Botelho
11:26 AM Bug #2756: SNMPD problems when binding pppoe interface: very nice! i tested it right now
after a reconnect the snmp stoped working
then i bind it to all interfaces an... Claudius Badmind
11:11 AM Bug #2756: SNMPD problems when binding pppoe interface: Could you please change "Bind Interface" to All to see if the error persists? Renato Botelho
12:40 PM Bug #2819: Unconstrained memory growth of tcpdump: Hi Jim, I agree there must be something else happening. I'm happy to Guinea pig my home pfSense router, which exh... Irving Popovetsky
12:10 PM Bug #2819: Unconstrained memory growth of tcpdump: I thought there was already an open ticket for this here on redmine but I don't see it now.
That is for the filter... Jim Pingle
12:06 PM Bug #2819 (Resolved): Unconstrained memory growth of tcpdump: The following process seems to grow in an unconstrained fashion:... Irving Popovetsky
11:12 AM Bug #2655 (Resolved): RRD Graphs for Captive Portal not working: Confirmed on forum it's now working. Renato Botelho
10:38 AM Todo #2817 (New): Back Unbound changes out of 2.1, revert to a package for now.: Looks like the code needs adjusted to account for PBI changes on 2.1.
http://forum.pfsense.org/index.php?topic=588... Jim Pingle
01:20 AM Todo #2817: Back Unbound changes out of 2.1, revert to a package for now.: The unbound package installs fine, but no binaries are installed:... Anonymous
07:54 AM Bug #2794 (Resolved): PHP Error on NTP: Jim Pingle
07:49 AM Bug #2794: PHP Error on NTP: This is resolved - tested in last night's snapshot. Phil Lavin
07:45 AM Bug #2349 (Resolved): vlan(4) needs altq adaption on FreeBSD 8.3++: Renato Botelho
07:21 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Upgraded last night - the wizard completed correctly without errors. Nice work :) Phil Lavin
07:43 AM Bug #2786 (Feedback): Setting MTU on VLAN does not set MTU on parent interface in 2.2: I did an attempt to implement a fix, please review and let me know if it's ok. Renato Botelho
04:50 AM Bug #2816 (Feedback): "none" is not a valid local P2 setting: Applied in changeset commit:508799c3794a9febb9e4abf7167171aa195e77d0. Renato Botelho
04:20 AM Bug #1681 (Feedback): OpenVPN tun IPs fail HTTP REFERER checks: Applied in changeset commit:71034b51ff8831b43cf70c6f26955e6e6bdee5ca. Renato Botelho
12:30 AM pfSense Packages Bug #2698: freeradius2 counter not working: Guys, sorry, yes the patch fix the issue, thanks!!!
http://forum.pfsense.org/index.php/topic,57303.0/all.html Peter Moreno

02/14/2013

06:20 PM Bug #2818 (Resolved): IPSec phase2 "Automatically ping host" function broken. Bug confirmed.: Tested on: 2.1-BETA1 (i386) built on Sun Feb 10 22:04:57 EST 2013
plus small manual correction from gitsync regard... Dan Lundqvist
03:49 PM Bug #355: syslog should not bind on *: Mh, I was googling for the wrong keywords (focusing on binding syslogd to a specific interface/address)...
Thanks f... Michele Di Maria
02:19 PM Bug #355: syslog should not bind on *: That has been documented for quite some time on the doc wiki:
http://doc.pfsense.org/index.php/Why_can%27t_I_query_S... Jim Pingle
02:15 PM Bug #355: syslog should not bind on *: Wow, yes. I just created a fake gateway using the local interface IP address (which is a bridge interface), and a sta... Michele Di Maria
01:59 PM Bug #355: syslog should not bind on *: It depends on the type of VPN. With OpenVPN it works fine, it just sources the syslog traffic from the tunnel interfa... Jim Pingle
01:56 PM Bug #355: syslog should not bind on *: Another issue related to this task is logging to a remote syslog server, where remote I mean to the other side of a P... Michele Di Maria
03:07 PM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Its for all vlans not specific to any driver. Ermal Luçi
07:50 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Can anyone speculate on if this will fix the same error with sk1_vlan1 or if the fix was only applicable to em* inter... Phil Lavin
11:50 AM Todo #2817 (Feedback): Back Unbound changes out of 2.1, revert to a package for now.: Applied in changeset commit:950c9a182eaacfbb6c48a6371affe7852ffb13ba. Warren Baker
11:41 AM Todo #2817 (Resolved): Back Unbound changes out of 2.1, revert to a package for now.: Unbound needs to be backed out of 2.1 and changed back into a package for now.
We can try integration again for 2.2. Jim Pingle
10:56 AM Bug #2627: Old delegated prefixes are not removed from the LAN interface: I am using the build below:... Anonymous
08:41 AM Bug #2812: Adding a one way phase 2 IPSec tunnel causes a config error: Ok, from my understanding of IPSec, I thought that was the case... but then I finally had a scenario where I thought ... William Hilsum
08:37 AM Bug #2812 (Rejected): Adding a one way phase 2 IPSec tunnel causes a config error: there is no such thing as a "one way" P2, the fact that "none" exists there is the actual problem. Your config isn't ... Chris Buechler
07:05 AM Bug #2812: Adding a one way phase 2 IPSec tunnel causes a config error: Please find it attached - first section is working phase 1, second is working phase 2, third is the faulty one way ph... William Hilsum
08:36 AM Bug #2816 (Resolved): "none" is not a valid local P2 setting: "none" recently started showing up in the "local network" field for IPsec P2s, which is invalid and needs to be remov... Chris Buechler
04:15 AM Bug #2362: Deleting last/only port forward doesn't remove from secondary: I don't believe option should be removed since it is still valid for rules from Master you don't want to sync.
- R... Renato Botelho
02:02 AM Bug #2362: Deleting last/only port forward doesn't remove from secondary: If those seciton need to be synched no matter what than its better to remove the options completely from the filter s... Ermal Luçi
02:00 AM Feature #1979: Allow user-defined rules to utilize built-in system aliases: IIrc you already can use the names of a port in /etc/services wherever a port is asked.
So instead of typing 80 you... Ermal Luçi

02/13/2013

10:54 PM Feature #1668 (Closed): OpenVPN Client Export support Tunnelblick: Just tested this and the current beta (didn't test the release) imported an "Other" type Inline config without any fu... Jim Pingle
05:50 PM Bug #2451 (Feedback): IPv6 rule: 'add network' becomes 'add single host': Applied in changeset commit:965c3e23a60f25d263389bf02b685bb7f20f3915. Renato Botelho
05:31 PM Bug #2451: IPv6 rule: 'add network' becomes 'add single host': OK it works correctly in the source box, but not the destination box. Jim Pingle
05:00 PM Bug #2451: IPv6 rule: 'add network' becomes 'add single host': I couldn't reproduce it here. When I back to edit rule it's set as network and bitmask 32. Renato Botelho
03:31 PM Bug #2451 (New): IPv6 rule: 'add network' becomes 'add single host': It's partially fixed but not 100%
If I enter 2a00:1450:: in a firewall rule as a network with a mask of /32 (which... Jim Pingle
07:10 AM Bug #2451 (Feedback): IPv6 rule: 'add network' becomes 'add single host': Applied in changeset commit:cb2b59b89b4d7fb6449c0f45d142302dd2029373. Renato Botelho
05:32 PM Bug #1629: invalid state table entries after WAN IP change: Ermal, testing this feature on a pfsense box with a WAN interface that gets via DHCP an IP in a /24 subnet (i.e. it's... Dim Hatz
09:58 AM Bug #1629: invalid state table entries after WAN IP change: Thanks, it works with my VoIP device now. The states get killed correctly. Anonymous
03:26 PM pfSense Packages Feature #2736 (Resolved): Additional configuration options for SMTP, POP3 and IMAP Pre-Processors in snort.conf: Jim Pingle
03:19 PM pfSense Packages Feature #2736: Additional configuration options for SMTP, POP3 and IMAP Pre-Processors in snort.conf: This can be closed. These were incorporated in the other changes included in subsequent Pull Requests via Github. Bill Meeks
03:26 PM pfSense Packages Feature #2735 (Resolved): Improvement to Snort Rules Update Process: ok, thanks again! Jim Pingle
03:20 PM pfSense Packages Feature #2735: Improvement to Snort Rules Update Process: Yep. These, too, were part of the larger set of PulL Requests done in late Janaury and early February. This reqest ... Bill Meeks
02:49 PM Bug #2627: Old delegated prefixes are not removed from the LAN interface: I will wait for the updated snapshot. In the meantime I went on to disable the DHCPv6 client on the WAN interface (IP... Anonymous
02:19 PM Bug #2627: Old delegated prefixes are not removed from the LAN interface: Can you gitsync and try again, or wait for the next new snap? It may be that the last snap doesn't have the changes i... Jim Pingle
02:17 PM Bug #2627: Old delegated prefixes are not removed from the LAN interface: Running this build:
2.1-BETA1 (amd64)
built on Tue Feb 12 10:20:45 EST 2013
FreeBSD 8.3-RELEASE-p5
Whenever the WAN ... Anonymous
01:20 PM Bug #2362 (Feedback): Deleting last/only port forward doesn't remove from secondary: Applied in changeset commit:a1fb7d61c4be90e6b6fcbc44fd644677cb0761e4. Renato Botelho
09:43 AM Bug #2362: Deleting last/only port forward doesn't remove from secondary: Same happens for last/only filter rule. I'm working on a solution. Renato Botelho
08:36 AM Feature #1979: Allow user-defined rules to utilize built-in system aliases: Not sure we'd need much in the way of port aliases. We already have a ton of ports in the drop-down list on firewall ... Jim Pingle
08:26 AM Feature #1979: Allow user-defined rules to utilize built-in system aliases: as with anything else - when someone's willing to pay for it, or someone does it and submits a merge request. Chris Buechler
08:21 AM Feature #1979: Allow user-defined rules to utilize built-in system aliases: I'd like to push things a bit since this would really help a lot.
Jim P wrote:
> Some ideas:
> * Local Networks
... JD -
08:23 AM Bug #2756: SNMPD problems when binding pppoe interface: I figured out that every time my ISP reconnect me snmpd stop working that's why it wont start from the beginning also... Claudius Badmind
06:34 AM Feature #2815: Anonymizing the config during export on the backup page: We already do that for the copy included on /status.php, though the function needs updated since it needs to also cle... Jim Pingle
01:48 AM Feature #2815 (Resolved): Anonymizing the config during export on the backup page: It would be nice to be able to scramble sensitive data of the config of a box to easy the process for reporting issue... Ermal Luçi
03:27 AM Feature #1883: Diag > Limiter Info presentation enhancement: probably not Chris Buechler
01:32 AM Bug #2675 (Feedback): /tmp/.rc.prunecaptiveportal.running can be present on boot: Patch has been pushed that corrects this by ignoring alock if it has been created for more than 2 minutes(2 runs of p... Ermal Luçi

02/12/2013

11:47 PM Bug #2636: state mismatch issue on enc0 with amd64: on the one system of ours that was having this issue, it's better than it used to be (it used to be impossible to com... Chris Buechler
10:38 AM Bug #2636: state mismatch issue on enc0 with amd64: By any chance you have net.inet.ipsec.filtertunnel set to something grater than 0? Ermal Luçi
07:15 PM Bug #2362: Deleting last/only port forward doesn't remove from secondary: Yeah it does as of Friday's snapshot at least. Chris Buechler
02:57 PM Bug #2362: Deleting last/only port forward doesn't remove from secondary: Does this still happen on 2.1? I thought I fixed all of these not too long ago. Jim Pingle
06:27 PM Todo #2814 (Closed): OpenVPN push route hint on configuration page is misleading: we can't document everything in the web interface, that's just an example of one of hundreds of potential options the... Chris Buechler
06:14 PM Todo #2814 (Closed): OpenVPN push route hint on configuration page is misleading: On the OpenVPN server configuration page it says:... Nei Ka
05:18 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: I already know the answer after thinking about it. Only if the hidden rule used match would the route-to stack onto ... Adam Gibson
03:31 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: As an update. The out rule in floating that I listed does disable the hidden route to.route-to.
I found the mista... Adam Gibson
03:26 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: Strange. I am seeing inconsistency with this or I am going crazy and making a bunch of mistakes testing this (I am s... Adam Gibson
03:22 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: !!!! Hold up... !!!!
The above rule did cancel the route-to it seems. Sorry about that, I messed up the test. ... Adam Gibson
03:14 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: I didn't think it was possible to override it. I just tested it and could not override it.
You can not create an ... Adam Gibson
04:00 PM Bug #2813: Diagnostics: S.M.A.R.T. Monitor Tools: Applied in changeset commit:1d2add88f4222b04708a1a1af38567ab197a460a. Jim Pingle
03:46 PM Bug #2813 (Feedback): Diagnostics: S.M.A.R.T. Monitor Tools: Fixed by commit:d6d775a6b51fedc4044497ca9af526a31df6d687 Jim Pingle
02:49 PM Bug #2813 (Resolved): Diagnostics: S.M.A.R.T. Monitor Tools: diag_smart.php
Perform Self Tests
Click abort
directs to smartmon.php
which is 404 - Not Found W FM
03:45 PM Feature #2640: Add a way to find where an alias is used: That commit ID was for another ticket (sorry) Jim Pingle
03:30 PM Feature #2640: Add a way to find where an alias is used: I agree there is a workaround, but it would be very nice to have it in the GUI. This saves a lot of time when I'm on... Ugo Bellavance
03:30 PM Feature #2640 (Feedback): Add a way to find where an alias is used: Applied in changeset commit:d6d775a6b51fedc4044497ca9af526a31df6d687. Jim Pingle
03:18 PM Feature #2640: Add a way to find where an alias is used: Easier way: download a config backup and grep/search it.
Not sure how feasible this would be in the GUI, given the... Jim Pingle
03:44 PM Bug #2752 (Feedback): Captive Portal Last Activity isn't update anymore --> idle timeout just after login: Please try a 2.0.3 image, this appears to be one of the bugs addressed there:
http://forum.pfsense.org/index.php/top... Jim Pingle
03:43 PM Feature #2757 (New): CDP/ISDP/LLDP support.: Whoops, added that note to the wrong ticket. Jim Pingle
03:37 PM Feature #2757 (Closed): CDP/ISDP/LLDP support.: Please try a 2.0.3 image, this appears to be one of the bugs addressed there:
http://forum.pfsense.org/index.php/top... Jim Pingle
03:42 PM Bug #2812: Adding a one way phase 2 IPSec tunnel causes a config error: Attach your /var/etc/racoon.conf (or /var/etc/ipsec/racoon.conf on 2.1 ) and the ipsec section of your config.xml wit... Jim Pingle
09:14 AM Bug #2812 (Rejected): Adding a one way phase 2 IPSec tunnel causes a config error: Hi
I have a current IPSec tunnel that is working great.
I tried to add a second and third that is one way (loca... William Hilsum
03:40 PM Feature #2801 (Rejected): Display (all) PHP logs in the Web UI: On 2.1 (where development is typically done) these do show on the dashboard as a crash report, so they can be viewed ... Jim Pingle
03:36 PM Bug #2754: PPP and 3G: Setting PIN in advanced options not working, stick works after removing SIM PIN: Might be the same issue as #781 Jim Pingle
03:35 PM Bug #2748 (Feedback): Route53 DynDNS Updater does not work: Will need a lot more detail. Any log messages from the system log for starters.
The route53 code was contributed, ... Jim Pingle
03:33 PM pfSense Packages Feature #2736 (Feedback): Additional configuration options for SMTP, POP3 and IMAP Pre-Processors in snort.conf: Have these changes already been merged in by pull requests? Jim Pingle
03:33 PM pfSense Packages Feature #2735 (Feedback): Improvement to Snort Rules Update Process: Have these changes already been merged in by pull requests? They look familiar. Jim Pingle
03:27 PM pfSense Packages Bug #2698 (Feedback): freeradius2 counter not working: Jim Pingle
03:26 PM pfSense Packages Bug #2681 (Closed): Squid 3 in pfsense 2.1 Beta: Jim Pingle
03:24 PM Bug #2680 (Rejected): PHP Fatal error in /tmp/PHP_errors.log: Without more detail and no other reports, this is not likely legitimate. Jim Pingle
03:16 PM Bug #2627 (Feedback): Old delegated prefixes are not removed from the LAN interface: Can you try this again on a recent 2.1 snapshot? Several changes to prefix delegation have happened recently. Jim Pingle
03:14 PM Feature #2609: Support for ActiveDNS: Can you submit those changes as a github pull request please?
https://help.github.com/articles/using-pull-requests
... Jim Pingle
03:09 PM Bug #2578: Upgrade 1.2.3 to 2.0 CARP: Do you happen to have a copy of your config from before and after this upgrade to compare? You can e-mail it in if yo... Jim Pingle
03:07 PM Bug #2570 (Closed): Status: Interfaces - Fatal error: Call to undefined function filter_configure(): Jim Pingle
03:07 PM Bug #2550 (Rejected): Cannot delete limiters...: Duplicate of 2482 Jim Pingle
03:06 PM Feature #2523: Prompt for confirmation before upgrading to different architecture: Not that it's specifically addressing the need for a prompt, but I recently made the manifest drop-down bold the choi... Jim Pingle
03:05 PM Bug #2451: IPv6 rule: 'add network' becomes 'add single host': This is probably due to an old check for the CIDR being /32 meaning single IP, but that test should not be applied on... Jim Pingle
03:03 PM Bug #2432 (Closed): OpenVPN Client Specific Override ifconfig-push: Jim Pingle
02:56 PM Bug #2374 (Feedback): When entering values in firewall rules leading and trailing spaces are not deleted: Fixed by commit on this ticket but not marked as fixed. Jim Pingle
02:53 PM Bug #2307 (Closed): OpenNTP fails to update time at bootup: We have switched to the ntp.org daemon now, this is no longer relevant. Jim Pingle
02:52 PM Bug #2297 (Closed): Inbound NAT on secondary WAN Interface when Primary Interface has no carrier: Probably this is due to the lack of a default gateway. Enable gateway switching under System > Advanced on the Misc t... Jim Pingle
02:45 PM Bug #2288 (Closed): Traffic Graph slows network processing: That's just a side effect of using the GUI. The more things that are open and checking in the GUI, the more resources... Jim Pingle
02:43 PM Feature #1933: Support for interface groups in NAT screens: You would have to split the user rule(s) with respective reply-to. Ermal Luçi
02:05 PM Feature #1933: Support for interface groups in NAT screens: Outbound NAT might be feasible but for port forwards this could be problematic as the group rules wouldn't get reply-... Jim Pingle
02:43 PM pfSense Packages Bug #2256 (Feedback): FreeRadius not starting: Many changes to the package since then, is this still a problem? Jim Pingle
02:36 PM Bug #2166 (Feedback): Dynamic DNS not updating: Can this still be reproduced on 2.1? Jim Pingle
02:34 PM Feature #2083 (Closed): Auth : LDAP users and group object.: Should be fixed by the "Extended Query" box in 2.1 Jim Pingle
02:31 PM Bug #2056 (Feedback): Display error in captive portal admin screen: Does this still happen on 2.1? I see a few possibly related commits that may have fixed this. Jim Pingle
02:30 PM Bug #1987 (Feedback): GRE tunnel - Route search type: Applied in changeset pfsense:commit:f8edf05d872f8887b891f15b48aa694a94ed2f9e. Jim Pingle
02:27 PM Feature #2003 (Closed): Allow Aliases in routing: Added a while ago. In at least 2.1. Jim Pingle
02:26 PM pfSense Packages Bug #2002 (Closed): snort: Jim Pingle
02:20 PM Bug #1284 (Feedback): Syslog does not work with CLOG disabled: Applied in changeset commit:100f3e7191a0c720857316c4ba0cac0890fe8177. Ermal Luçi
02:17 PM Bug #1981 (Closed): lighttpd errorlog using text rather than clog format: Lighty logs to syslog now, so this isn't relevant any longer. Jim Pingle
02:15 PM Bug #1969 (Feedback): IPsec refuses connection after first Cisco Client connection: Worth trying again on a recent 2.1, and keep the recent edits to the recommending settings for mobile IPsec in mind f... Jim Pingle
02:13 PM Bug #1959 (Feedback): openssl does not accept ECC-certificates: On 2.1 we use OpenSSL 1.0.1e (or later) so it's worth trying again there. Jim Pingle
02:05 PM Bug #1915: LDAP "authentication containers" select button is inoperative.: This works, at least on 2.1 and recent 2.0.x's. It displays for me, and I've used it with customers recently as well. Jim Pingle
02:03 PM Bug #1909 (Feedback): dhcp dies after reboot: There was some work to solve a similar issue with ordering and aliases on 2.1 recently, worth trying there, it's like... Jim Pingle
02:02 PM pfSense Packages Bug #1908 (Closed): Vnstat: Jim Pingle
02:01 PM pfSense Packages Bug #1907 (Closed): snort: Jim Pingle
01:58 PM Feature #1878 (Closed): Option to add permanent ARP entries for WOL: There is a per-mapping static ARP option for DHCP entries now, which should fill this need. Jim Pingle
01:57 PM Bug #1861 (Closed): false log filterdns: host_dns: failed looking up "88.192.1250.131": This has been cleaned up a bit since then but some is expected behavior. Anything that's supposed to be an IP but isn... Jim Pingle
01:54 PM Feature #1855 (Feedback): NAT before IPsec VPN: This has been done on 2.1 for a couple months now and confirmed to be working there. Jim Pingle
01:53 PM pfSense Packages Bug #1852 (Closed): Snort and IP-Block Installation/Deintsallation issue: As Chris said, it will be OK on 2.1. No easy fix until then. Jim Pingle
01:51 PM pfSense Packages Bug #1822 (Closed): Snort won't start: Jim Pingle
01:49 PM Bug #1739 (Closed): Interface problem: Fixed at some point, the key length is retained now even when input validation gives errors. Jim Pingle
01:47 PM Bug #1722 (Closed): Associated filter rule retains original Interface option after copying a NAT rule: This was fixed a while back, I've done this recently and it works. Jim Pingle
01:45 PM Bug #1691 (Closed): Virtio driver not working: virtio was fixed up a while ago, check the forum/wiki for info. Jim Pingle
01:43 PM Bug #1686 (Closed): guiconfig.inc GetText logical bug: Appears to have been fixed. Jim Pingle
01:43 PM Bug #1681: OpenVPN tun IPs fail HTTP REFERER checks: This gets annoying when trying to help customers fix up broken OpenVPN routing, we should fix this sooner rather than... Jim Pingle
01:40 PM pfSense Packages Bug #1651 (Closed): Removing Squidgard removes squid: Should be better on 2.1 Jim Pingle
01:36 PM Bug #1375 (Closed): Captive portal logs: mixed with logs from other sources (squid, php): Logs changed a lot since then, it's likely been fixed. Can reopen if a new report on 2.1 surfaces. Jim Pingle
01:36 PM Bug #1414 (Closed): dhclient fail on wifi: Replaced by #2440 (better info there) Jim Pingle
01:33 PM pfSense Packages Todo #1551: OLSR Version update: Moving back to packages since this is no longer built in. Jim Pingle
01:29 PM Bug #1332 (Closed): Autoupdate erases line in /etc/sysctl.conf which was created by LiveCD: Important tunables like that are in the GUI now, not sysctl.conf Jim Pingle
01:25 PM pfSense Packages Bug #1315 (Closed): ERROR 404 on packages area upper-left logo of psense.: Fixed long ago Jim Pingle
01:24 PM pfSense Packages Bug #1301 (Closed): Squid package become unusable through time if we use large disk cache: Package was changed long ago to not do chown on the cache any longer. Jim Pingle
01:23 PM Bug #1290 (Closed): IPsec roadwarrior use case: Traffic from LAN does not hit established tunnel: Sounds like one of the other IPsec mobile bugs that was fixed long ago (check other tickets). Jim Pingle
01:22 PM Feature #1286 (Closed): Captive Portal sends WAN IP instead of Mac or custom string in "called-station-id" RADIUS attribute: Captive Portal gained this feature some time ago. Jim Pingle
01:17 PM pfSense Packages Bug #1272 (Closed): AXFR Zone transfers not working in v2 Beta5: Jim Pingle
01:16 PM pfSense Packages Bug #1245 (Closed): barnyard2 won't start: Jim Pingle
01:16 PM Bug #1226 (Closed): Possible DOS in CARP synchronization: This has, in all likelihood, been fixed since then. The behavior would at least have changed on 2.1 after the recent ... Jim Pingle
01:13 PM pfSense Packages Bug #1200 (Closed): Navigational link in Shellcmd package broken: Fixed long ago Jim Pingle
01:13 PM pfSense Packages Bug #1199 (Closed): Navigational link in Backup package broken: Fixed long ago. Jim Pingle
01:09 PM pfSense Packages Bug #1163 (Rejected): Squid not restart in widget: Jim Pingle
01:02 PM Feature #983: Improve/Enhance IP Alias VIP handling in GUI: They are included in automatic outbound NAT now, but not the interface macro. Jim Pingle
01:00 PM Bug #808 (Feedback): PHP Shell - $config doesn't work but $GLOBALS["config"] does.: Applied in changeset commit:bde982dd5aad41254273300676d1d5c2ecf367c3. Jim Pingle
12:53 PM pfSense Packages Bug #679 (Closed): HAVP error message shows up behind top menu.: Jim Pingle
12:49 PM Bug #415 (Closed): DNS forwarder domain override add doesn't restart dnsmasq: Fixed long ago on 2.x Jim Pingle
12:47 PM pfSense Packages Bug #310 (Closed): Nut needs changes for latest version: This was fixed up a while ago. Jim Pingle
12:46 PM Feature #264 (Closed): More flexible DHCP - Static ARP: On 2.1, DHCP static mappings now have a checkbox to setup a static arp entry for that IP. Should be close enough to t... Jim Pingle
12:45 PM Feature #2319: include SSD TRIM option in installer: This can now be set manually after the install on 2.1.
touch /root/TRIM_set; /etc/rc.reboot
to remove
touch ... Jim Pingle
12:44 PM Bug #23 (Closed): Links broken on sub-folders due to relative paths: We have been prefixing the paths with / for a while now on 2.1 (and earlier?) Jim Pingle
12:43 PM Feature #197 (Closed): [PATCH] dns service: alias option for DNS forwarder: An alias feature was implemented a while back on 2.1 Jim Pingle
12:36 PM Feature #1883: Diag > Limiter Info presentation enhancement: Should we give this a target for 2.1? Jim Pingle
12:11 PM Bug #2756: SNMPD problems when binding pppoe interface: hmm its hard to test it on another machine i will do a complete new install of the system next week and i try to inst... Claudius Badmind
12:04 PM Bug #2756: SNMPD problems when binding pppoe interface: It seems to be a local issue instead of a bug on pfSense since there are no other users reporting the same issue and ... Renato Botelho
12:06 PM Bug #2790 (Resolved): Gateways widget broken for IPv6: Renato Botelho
11:47 AM Todo #648 (Closed): Move "base" packages such as RIP, OLSR, etc, back into packages: Renato Botelho
06:53 AM Todo #648 (Feedback): Move "base" packages such as RIP, OLSR, etc, back into packages: Renato Botelho
11:47 AM Bug #2810 (Resolved): Move RIP back to a package: Renato Botelho
06:50 AM Bug #2810 (Feedback): Move RIP back to a package: Applied in changeset pfsense-packages:commit:849ae9e3bd2877bfb784b88b10d41dc772127f2a. Renato Botelho
06:45 AM Bug #2810 (Resolved): Move RIP back to a package: RIP needs to be moved back to a package Renato Botelho
09:20 AM pfSense Packages Bug #2807 (Closed): filter_rules_needed tag (in package xml) not used when generating rules: That is a remenant of another implementation for packages.
The only way for now is to use the directly callable func... Ermal Luçi
07:55 AM pfSense Packages Bug #2811 (Closed): squidGuard-1.4_4 starting large number of child processes: You will have better luck opening a forum thread on the packages board to diagnose this. certainly needs a lot more d... Jim Pingle
07:51 AM pfSense Packages Bug #2811 (Closed): squidGuard-1.4_4 starting large number of child processes: when i installed squidguard from the pkg, this time it reinstalled squid. i enabled the squid guard, in few minutes i... Koti SK
05:26 AM Bug #1629: invalid state table entries after WAN IP change: I just pushed another change to reset states with certain gateways set.
It should behave even better than previously,... Ermal Luçi
05:10 AM Bug #2764 (Feedback): Captive Portal Voucher Sync issue: Applied in changeset commit:8184a8ddbb5c92cf3b01806c7a4f6172c95c7ed3. Renato Botelho
02:57 AM Feature #1482: Captive Portal support for a configurable RADIUS NAS ID: Merged thank you for the pull request. Ermal Luçi

02/11/2013

05:51 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: it's always been optional, users can override with floating rules. It's an appropriate default for the vast majority. Chris Buechler
11:27 AM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: Can this be an option? I actually consider it a feature. I don't want policy routing at all. I change routing on t... Adam Gibson
04:38 PM Feature #1482: Captive Portal support for a configurable RADIUS NAS ID: Submitted: https://github.com/bsdperimeter/pfsense/pull/406 Michael Newton
05:32 AM Feature #1482: Captive Portal support for a configurable RADIUS NAS ID: Please send a pull request on github as everyone else since its easier to merge/review/... Ermal Luçi
02:40 PM Todo #1723 (Feedback): PPTPd and all mpd based services need more checks: Applied in changeset commit:e6c60013283ea203853e0bc34158e185016f4df6. Renato Botelho
09:20 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: I can confirm that this patch did not break vlan support as it did 8 months ago.
I had to completely rebuild my p... Chris Ogden
09:18 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: So can you confirm it works correctly now? Ermal Luçi
09:15 AM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Please ignore my reported troubles, see http://forum.pfsense.org/index.php/topic,58717.0.html for an explanation.
... Chris Ogden
05:21 AM pfSense Packages Bug #2809 (Closed): Reverse Proxy for ActiveSync / Real-Time Monitor: Real-Time Monitor and the access.log for the Reverse Proxy package do not show the full request URI (it is cut off af... Matthias S
03:11 AM Bug #1629: invalid state table entries after WAN IP change: Today the problem occurred again. So it was not fixed yet. Matthias Dilbert
01:53 AM Feature #2757: CDP/ISDP/LLDP support.: Any chance to see this feature implemented in 2.1? Zeev Zalessky

02/10/2013

05:35 PM Bug #2806 (Feedback): General setup: Error when changing system DNS Server: This should already be fixed in the repo and on the snap dated today. Jim Pingle
05:13 AM Bug #2806 (Closed): General setup: Error when changing system DNS Server: Crash report begins. Anonymous machine information:
i386
8.3-RELEASE-p5
FreeBSD 8.3-RELEASE-p5 #0: Sun Feb 10 0... lorenzo russo
11:38 AM Bug #2808 (Rejected): OpenVPN client config with pkcs12 gets duplicated IP of client with ca,cert,key: Please start a forum thread and gather more information before opening a ticket.
I've never observed this happenin... Jim Pingle
11:31 AM Bug #2808 (Rejected): OpenVPN client config with pkcs12 gets duplicated IP of client with ca,cert,key: Hi.
I'm installing pfSense in 6 servers and connecting them with OpenVPN SSL/TLS. I ended up with a problem discus... Filipe Vieira
09:34 AM Feature #1482: Captive Portal support for a configurable RADIUS NAS ID: I'd like to see the 2.1 patch get in there. Richard. Richard Gate
09:05 AM pfSense Packages Bug #2807 (Closed): filter_rules_needed tag (in package xml) not used when generating rules: The XML tag 'filter_rules_needed' is stored in the $config['installedpackages']['package'][$pkgid]['filter_rule_funct... Sander Peterse
08:44 AM Bug #1629: invalid state table entries after WAN IP change: This problem also affects me. I’ve upgraded to Snapshot "built on Sat Feb 9 23:46:16 EST 2013". I will look for the p... Matthias Dilbert
08:28 AM Bug #2647: rc.newwanip discovers wrong WAN IP when using DHCP: long time no see.
updated to 2.1-BETA1 (i386) - built on Sun Jan 27 20:33:23 EST 2013
we have still got the same ... Christoph Filnkößl

02/09/2013

12:41 PM Bug #2728: PPP WAN types do not obtain DNS servers properly in 2.0.2-RELEASE: mount root filesystem rw (on embedded systems) using ... Hartmut W
10:30 AM Bug #2805 (Feedback): Firewall Rules Interface select causes javascript error: Applied in changeset commit:8c59ce016bb2035d42568a1ada096e7835dea2e4. Jim Pingle

02/08/2013

10:22 PM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Chris Ogden wrote:
> I am not getting the driver does not support altq error but I can't ping across my vlans anymor... Chris Ogden
09:52 PM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: I am not getting the driver does not support altq error but I can't ping across my vlans anymore. Devices on each vla... Chris Ogden
09:37 PM Bug #2805 (Resolved): Firewall Rules Interface select causes javascript error: On the latest snapshot (built on Fri Feb 8 17:16:16 EST 2013) when I go to my firewall rules, I can't select a differ... Chris Ogden
04:56 PM Feature #385: Allow the use of Captive Portal to restrict services on the firewall itself.: Has there been any more activity on this feature request? I would love to use pfSense with the described functionalit... P S
03:06 PM Bug #2798: Captive Portal does not capture anyone: The clients listed in there were from before I saved the rules. Any new people connecting through the CP don't get ... Robert Staph
03:03 PM Bug #2798: Captive Portal does not capture anyone: ... Robert Staph
08:41 AM Bug #2756: SNMPD problems when binding pppoe interface: yes i use the snapshot from today
after boot the service wont start
but the worst problem is after a while it j... Claudius Badmind
08:38 AM Bug #2756: SNMPD problems when binding pppoe interface: I couldn't find anything wrong on your config and couldn't reproduce it locally. Let me just ask you some questions t... Renato Botelho
07:18 AM Bug #2756: SNMPD problems when binding pppoe interface: send u an email Claudius Badmind
05:01 AM Bug #2756: SNMPD problems when binding pppoe interface: Can you post your config.xml here or send it direct to me (garga@pfsense.org)? Renato Botelho
04:26 AM Bug #2756: SNMPD problems when binding pppoe interface: after restart the service doesn't start Claudius Badmind
06:28 AM Todo #1723 (New): PPTPd and all mpd based services need more checks: It's not done yet, need to check the other way. If you try to set the same IP used on localip for mpd based as a stat... Renato Botelho
06:23 AM Bug #2306 (Resolved): USB ports show up as network interfaces: Renato Botelho
05:12 AM Bug #2789: Bug with DHCPD, with the last upgrade from 2.1: Are you using a recent snapshot?
Does this problem happen only when you configure it or during the boot too?
Is dhc... Renato Botelho
02:07 AM Bug #2803: igmp version reset: Additional info: this morning I rebooted pfSense and after several hours tried to open the stream. igmp v3 appeared a... Alex Kolesnik

02/07/2013

11:18 PM Bug #2789: Bug with DHCPD, with the last upgrade from 2.1: Hello,
Ihave the same problème .
Do you want to enable the DHCP server on LAN? [y|n] y
Enter the start address... Moula BADJI
10:01 PM Bug #2803: igmp version reset: Here is an excerpt from the system.log for that small period:... Alex Kolesnik
04:54 PM Bug #2803: igmp version reset: More information is needed here rather than this.
Some packet traces and system logs would be useful.
Debugging log... Ermal Luçi
12:48 PM Bug #2803: igmp version reset: There is additional package installed - udpxy, which translates http requests into udp multicast (www.udpxy.com):
# ... Alex Kolesnik
12:45 PM Bug #2803 (Resolved): igmp version reset: Version 2.0.2-RELEASE (i386)
built on Fri Dec 7 16:30:38 EST 2012
FreeBSD 8.1-RELEASE-p13
"net.inet.igmp.defaul... Alex Kolesnik
05:05 PM Bug #2441 (Closed): Setting up a new PPP interface (3g) hangs the webUI: Duplicate of #2433 Ermal Luçi
05:02 PM Bug #2798: Captive Portal does not capture anyone: IS this an issue or not?
If yes, provide input when you reproduce this with ipfw -x $zone show, ipfw -x $zone table ... Ermal Luçi
04:43 PM Bug #2475 (Feedback): Connection rate limiting does not work for Captive Portal: This should work better on 2.0.3 and later. Ermal Luçi
03:40 PM Bug #2349: vlan(4) needs altq adaption on FreeBSD 8.3++: Applied in changeset pfsense-tools:commit:b983c67530b9d8beaf6d37d9a1d842b68ff24bba. Ermal Luçi
03:38 PM Bug #2349 (Feedback): vlan(4) needs altq adaption on FreeBSD 8.3++: Patch has been committed and will be present on newer snapshots. Ermal Luçi
01:34 PM Bug #2804: firewall_rules.php: thank you Claudius Badmind
01:33 PM Bug #2804 (Feedback): firewall_rules.php: Already fixed in the repo, wait for new snapshots and test. Jim Pingle
01:29 PM Bug #2804: firewall_rules.php: RULES are not working anymore also Claudius Badmind
01:27 PM Bug #2804 (Resolved): firewall_rules.php: After adding an EasyRule BlockHostsLAN
all Alias fields look like this
see attachment
Claudius Badmind
01:07 PM Bug #2756: SNMPD problems when binding pppoe interface: ok i did it
php test_snmpd.php without error
so i will let u know after 24h
thanks Claudius Badmind
11:08 AM Bug #2756: SNMPD problems when binding pppoe interface: The commit commit:1b7ec6ba16 should address this. Could you make this change to services.inc and test it again? Renato Botelho
11:01 AM Bug #2756: SNMPD problems when binding pppoe interface: that is the output :
Fatal error: Call to undefined function sigkillbypid() in /etc/inc/services.inc on line 1633
... Claudius Badmind
10:45 AM Bug #2756: SNMPD problems when binding pppoe interface: Could you please create a file called test_snmpd.php with the following content:... Renato Botelho
10:28 AM Bug #2756: SNMPD problems when binding pppoe interface: still the same problem after reboot it wont start, i have to start it manual
2.1-BETA1 (i386)
built on Wed Fe... Claudius Badmind
10:15 AM Bug #2756: SNMPD problems when binding pppoe interface: You still have same problems or it's a different one? Renato Botelho
09:35 AM Bug #2756: SNMPD problems when binding pppoe interface: snmp doesnt even work right data for pppoe and some vlan interfaces are not available ! even after re install with o... Claudius Badmind
07:20 AM Feature #1010 (Feedback): Privilege setting for allowing login access through captive portal: Applied in changeset commit:a8cb003844c8feda083925415d9cfc96d5f3827f. Renato Botelho
06:39 AM Bug #2746: IPv6 IPSEC shows down but is actually not...: I also committed a couple fixes yesterday that made it work for more situations. It was working if you entered the su... Jim Pingle
03:52 AM Bug #2746: IPv6 IPSEC shows down but is actually not...: I pushed some fixes for exactly the issue you mentioned Andre. Ermal Luçi
06:03 AM Feature #2802: Add Test button/feature to LDAP Authentication Servers settings: (Actually, the page I found was /system_usermanager_settings_test.php?authserver=UCS which even shows me the PHP Warn... Malte Stretz
05:58 AM Feature #2802: Add Test button/feature to LDAP Authentication Servers settings: I just found this page myself by grepping through the PHP code. I would never have looked there based on the setting... Malte Stretz
05:54 AM Feature #2802 (Closed): Add Test button/feature to LDAP Authentication Servers settings: Diag>Auth is there that does just this. Chris Buechler
05:45 AM Feature #2802 (Closed): Add Test button/feature to LDAP Authentication Servers settings: I'm currently debugging LDAP authentication for OpenVPN and doing so is quite convoluted; currently I went down to th... Malte Stretz
05:38 AM Feature #2801 (Rejected): Display (all) PHP logs in the Web UI: I am currently debugging PHP authentication for OpenVPN and when running the script from the shell I got a PHP Warnin... Malte Stretz
05:16 AM Bug #2800 (Resolved): OpenVPN doesn't work properly with intermediate/chained CAs: There are two places where working with chained certificates is broken or at least weird. Background: OpenVPN alway... Malte Stretz
04:37 AM Bug #319 (Feedback): system_usermanager privilege not working as expected: The original problem described in this ticket is fixed in 2.1. About the other change you are requesting, please open... Renato Botelho
03:18 AM Bug #2613 (Resolved): Incoming traffic on a vlan is not seen: Thank you for the reply. Ermal Luçi
03:10 AM Bug #2613: Incoming traffic on a vlan is not seen: Yes,
It's working as expected. Andre Vink
02:50 AM Bug #2613: Incoming traffic on a vlan is not seen: Can this be confirmed as solved? Ermal Luçi

02/06/2013

01:43 PM Feature #1388: 3G outbound failover connection with auto dial-up and hang-up: Its wery need future. I live in Ukraine, main conection is ADSL. Sometimes conection down. I wood like to use reserve... Anonymous
01:20 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: I have a different opinion:
Acct-Status-Type indicates when a user is stating a service (start) or is ending a servi... Alexander Wilke
12:56 PM Bug #2789: Bug with DHCPD, with the last upgrade from 2.1: That is something really strange since dhcpd is the responsible to sabe pid there.
Could you please try to kill an... Renato Botelho
12:45 PM Bug #2796 (Closed): PHP error on status_upnp.php: Renato Botelho
12:45 PM Bug #2795 (Closed): PHP Error on pkg_edit.php: Renato Botelho
12:00 PM Bug #2655 (Feedback): RRD Graphs for Captive Portal not working: Applied in changeset commit:cba9d7d9a5edd4d2b49768a536740b288da99300. Renato Botelho
11:04 AM Bug #2798: Captive Portal does not capture anyone: I just removed and readded my v6 gateway and LAN then did a reboot and its working. Robert Staph
10:26 AM Bug #2798: Captive Portal does not capture anyone: I also looked through the other CP bugs and fixes and noticed that I didn't have net.link.ether.ipfw and net.inet.ip.... Robert Staph
09:54 AM Bug #2798: Captive Portal does not capture anyone: Can you attach a copy of your config.xml with the broken configuration?
You can remove passwords, keys, etc. Mostly ... Jim Pingle
09:52 AM Bug #2798 (Closed): Captive Portal does not capture anyone: While testing the snapshot of Feb 5th, 2013, I noticed that the captive portal is not capturing anyone after removing... Robert Staph
08:50 AM Bug #2677 (Feedback): Dyndns debug file written with ascii string \n instead of line-feed: Applied in changeset commit:bb9ccd636ee9331064319d202f80409280a22934. Cyrill B
08:40 AM Bug #2669 (Resolved): Captive portal: missing / in redirect URL: Jim Pingle
08:38 AM Bug #2669: Captive portal: missing / in redirect URL: This has been fixed some time ago and does not occur anymore. Cyrill B
07:54 AM Bug #2797 (Feedback): IPsec "connect" button does not work for IPv6: Looks like it should be fixed by this:
https://github.com/bsdperimeter/pfsense/compare/0715ad5093...8614752831 Jim Pingle
07:10 AM Bug #1629: invalid state table entries after WAN IP change: Does not work, sorry. Only the "Out" states are flushed. The "In" states persist and seem to remember their gateway. ... Anonymous

02/05/2013

08:30 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: I would suggest any RADIUS server that can't work with interim update packets is not one worth using. They have been ... Michael Newton
01:59 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: The rlm_counter module is just counting on accounting stop packets. This module is used for time based accounting. It... Alexander Wilke
05:33 PM Bug #2797 (Resolved): IPsec "connect" button does not work for IPv6: The connect button on the IPsec status page tries to determine a source IP on the firewall from which to send a ping ... Jim Pingle
05:29 PM Bug #2793 (Resolved): Snapshot built from today's (Feb 4th) code is unstable, goes into panic loop.: Jim Pingle
08:31 AM Bug #2793 (Feedback): Snapshot built from today's (Feb 4th) code is unstable, goes into panic loop.: Patch has been corrected behaviour should be better. Ermal Luçi
01:51 PM Bug #2762: PF drops IPv6 packets with fragment header followed by a last fragment only: This is scrub in action.
Will see how to make this behave normally. Ermal Luçi
01:39 PM Bug #2636 (Feedback): state mismatch issue on enc0 with amd64: A fix to require correct mask was submitted on master. Ermal Luçi
01:10 PM Feature #1482: Captive Portal support for a configurable RADIUS NAS ID: Seems the patch I submitted has disappeared; if there is still interest I will submit a pull request at github.com to... Michael Newton
12:40 PM Bug #2598: reply-to on IPv4+6 rules breaks v6: Applied in changeset commit:f73e35319a7f36c761cadac132c2f3484103b88f. Ermal Luçi
12:36 PM Bug #2598 (Feedback): reply-to on IPv4+6 rules breaks v6: Patch committed. Ermal Luçi
10:40 AM Bug #2792 (Feedback): pfSctl / check_reload_status can ignore linkup/linkdown events if they fire too fast.: A patch has been committed which should improve the situation Ermal Luçi
08:43 AM Bug #2795 (Feedback): PHP Error on pkg_edit.php: Pull request 378 merged Renato Botelho
08:11 AM Bug #2795: PHP Error on pkg_edit.php: Will do :) Phil Lavin
08:08 AM Bug #2795: PHP Error on pkg_edit.php: Can you submit these as pull requests on github since you have suggested (and presumably tested) the fixes? Less room... Jim Pingle
07:56 AM Bug #2795 (Closed): PHP Error on pkg_edit.php: Fatal error: Cannot use string offset as an array in /usr/local/www/pkg_edit.php on line 109
Error also exists on ... Phil Lavin
08:43 AM Bug #2796 (Feedback): PHP error on status_upnp.php: Pull request 378 merged Renato Botelho
08:07 AM Bug #2796 (Closed): PHP error on status_upnp.php: Fatal error: Cannot use string offset as an array in /usr/local/www/status_upnp.php on line 66
Fix is to change li... Phil Lavin
07:30 AM Bug #2794: PHP Error on NTP: Applied in changeset commit:506c6bee8994ed17f16c56a5c7e2ed4085f76846. Jim Pingle
07:30 AM Bug #2794 (Feedback): PHP Error on NTP: Applied in changeset commit:d2b2872afa2e7d36c6cb7c30b8885cff8147985e. Jim Pingle
02:25 AM Bug #2794 (Resolved): PHP Error on NTP: Fatal error: Cannot use string offset as an array in /usr/local/www/services_ntpd.php on line 43
Caused by $config... Phil Lavin
06:20 AM Bug #2790 (Feedback): Gateways widget broken for IPv6: Applied in changeset commit:ee132ba1db9cfa49b60a5f32e49ced29d366bf35. Renato Botelho
12:15 AM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN: I have sent you the requested information. Anonymous

02/04/2013

11:15 PM Bug #2793 (Resolved): Snapshot built from today's (Feb 4th) code is unstable, goes into panic loop.: I can't get the VM to stay up long enough to capture or submit a full dump, but here is what I was able to get:
Ma... Jim Pingle
05:50 PM Bug #2412: inbound 6to4 traffic does not work in pf: I'm still seeing this issue with today's (Feb 4) snapshot. Using a comcast 6to4 tunnel.
Example test ping6 from ... Irving Popovetsky
12:12 PM Bug #2792: pfSctl / check_reload_status can ignore linkup/linkdown events if they fire too fast.: This happens on RELENG_2_0 as well so we'll need to pull back the fix there as well if any pfSense code changes are r... Jim Pingle
12:11 PM Bug #2792 (Resolved): pfSctl / check_reload_status can ignore linkup/linkdown events if they fire too fast.: If an ethernet interface's link goes down and up too rapidly, the 'up' event sent by pfSctl ("linkup start") can be i... Jim Pingle
11:00 AM Bug #2791 (Feedback): Validation glitch with gateways added from Interfaces > [Name]: Applied in changeset commit:56756d31a2aebba3e15255129a339464f2699f3e. Renato Botelho
09:13 AM Bug #2791 (Resolved): Validation glitch with gateways added from Interfaces > [Name]: If you attempt to add a gateway from Interfaces > WAN and the gateway name already exists, an alert pops up telling t... Jim Pingle
08:45 AM Bug #1629: invalid state table entries after WAN IP change: Check with later coming snapshot there was a problem with the patch that has been corrected. Ermal Luçi
08:25 AM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN: Can you show me what kind of rules you ahve configured on your OPT WAN?
Also the contents of /tmp/rules.debug and pf... Ermal Luçi
07:10 AM Bug #2789: Bug with DHCPD, with the last upgrade from 2.1: vi /var/dhcpd/var/run/dhcpd.pid :
ov-uu4
thank's Moula BADJI
03:20 AM Bug #2789 (Feedback): Bug with DHCPD, with the last upgrade from 2.1: Renato Botelho
03:20 AM Bug #2789: Bug with DHCPD, with the last upgrade from 2.1: Could you please post here the content of /var/dhcpd/var/run/dhcpd.pid? Renato Botelho
05:01 AM Bug #2790 (Resolved): Gateways widget broken for IPv6: When a big IPv6 address is used, gateway column doesn't respect widget size, see attached picture. Renato Botelho
03:49 AM Feature #1009 (Feedback): Active Directory group membership checking: Could you please send it in diff format or submit a Pull Request at github? It's hard to track exactly what changes y... Renato Botelho
03:39 AM Bug #2614 (Closed): Scheduler bug - fires off on date not matched correctly: Renato Botelho

02/03/2013

06:40 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: I'm curious what the use case is for "start/stop accounting" at all?
Transparently restricting every session to 60... Michael Newton
01:13 PM Feature #2143: Captive Portal - RADIUS - attribute: Acct-Terminate-Cause: Pull request is still up to date, if there is any interest in checking it in. Michael Newton
08:15 AM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN: Unfortunately there's no change with today's snapshot.
2.1-BETA1 (amd64)
built on Sat Feb 2 21:38:38 EST 2013
Fr... Anonymous
05:15 AM Bug #1629: invalid state table entries after WAN IP change: Does not work for me.
Correct me if I'm mistaken here, but can
@pfctl -i@
work without binding states to interface... Anonymous

02/01/2013

11:25 PM Bug #2789 (Closed): Bug with DHCPD, with the last upgrade from 2.1: DHCPD don't start. It try to start it but it not possible. tank's
Message : Disabling DHCPD...pgrep: Invalid pid i... Moula BADJI
05:40 PM Bug #2788: After a reboot the lan route have the false interface: many thanks for your fast reply!
I do this
greatings from germany Andreas Huser
05:13 PM Bug #2788 (Rejected): After a reboot the lan route have the false interface: this is very unlikely to be a bug, and is lacking required details to be a legit bug report. Please post to the forum... Chris Buechler
03:22 PM Bug #2788 (Rejected): After a reboot the lan route have the false interface: After Upgrading to the latest Beta1 Version the routing after reboot are a little bit confused.
My Environment (sh... Andreas Huser
10:10 AM Bug #2306: USB ports show up as network interfaces: Applied in changeset pfsense-tools:commit:4606f313f2c0a6e447dbf025821f24235669f883. Renato Botelho
10:00 AM Bug #2306 (Feedback): USB ports show up as network interfaces: Applied in changeset commit:25c088de57be43155d7f7df202f800016d5f515d. Renato Botelho
05:45 AM Bug #2626 (Resolved): Patch included: syslog.conf allows duplicate logging of daemon.info messages (e.g. from snort or dnsmasq): Renato Botelho
05:45 AM Bug #2763 (Closed): Dynamic Firewall logs doesn't add new rows: Renato Botelho
02:03 AM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN: You have to try a today snapshot or 31st one because that one does not have the patches applied. Ermal Luçi

01/31/2013

01:53 PM Bug #2758 (New): Old configuration remains when changing interface type: I spent some time debugging it and noted what is happening.
1. When interface_bring_down() is called and $ifcfgo i... Renato Botelho
10:47 AM Bug #2495 (Resolved): pfsense doesn't seem to know what its WAN IP is: Alias address are being set before main address when IPv6 is set to Track, it is fixed now. Renato Botelho
06:14 AM Bug #2495 (New): pfsense doesn't seem to know what its WAN IP is: Reopen it since I could reproduce locally Renato Botelho
02:12 AM Bug #2780: CP: passthough has no effect: Sorry for the delay, here's the result:
[2.1-BETA1][root@pfsense.domain.local]/root(1): sysctl -a | grep net.link.... Daniel Berteaud

01/30/2013

02:23 PM Bug #2650: FTP helper breaks TCP sequence numbers on 2nd WAN: I tried with the latest build:
2.1-BETA1 (amd64)
built on Wed Jan 30 04:52:20 EST 2013
The bug is still present... Anonymous
04:21 AM Bug #2650 (Feedback): FTP helper breaks TCP sequence numbers on 2nd WAN: Can you try with later snapshots.
This should be fixed. Ermal Luçi
01:10 PM Todo #1723 (Feedback): PPTPd and all mpd based services need more checks: Applied in changeset commit:0a0b17d90dd59ae1a743408bd0a67baa1f8f2ec9. Renato Botelho
12:54 PM Bug #2414: IPv6 DHCP WAN, issue routing firewall-generated traffic: At some point this was fixed or some other change fixed it, as it still shows /128 prefix but it works fully now. A r... Jim Pingle
12:47 PM Bug #2414 (Feedback): IPv6 DHCP WAN, issue routing firewall-generated traffic: Ermal Luçi
08:03 AM Feature #2413 (Feedback): Allow IPv6 interface configuration from the menu: Renato Botelho
07:44 AM Bug #2574 (Feedback): Failure of secondary radius server causes PPTP authentication to hang even if primary is working!: Is this issue still happening on recent snapshots? I couldn't reproduce it here, it worked fine when both radius serv... Renato Botelho
07:28 AM Bug #2756: SNMPD problems when binding pppoe interface: Still the same ... maybe i should reinstall it ... Claudius Badmind
05:00 AM Bug #1928 (Feedback): Can't sync voucher database when carp peer is also active: Applied in changeset commit:c87f4b709261187cb5e76accde933404d81868f2. Ermal Luçi
04:42 AM Bug #2412 (Feedback): inbound 6to4 traffic does not work in pf: Can you test with latest snapshots and see if it behaves better? Ermal Luçi
04:31 AM Bug #2325 (Feedback): Limiters don't work on OPT WAN rules w/rdr: This should be fixed by commit requiring that on floating rules you specify the gateway.
At least for 2.1 Ermal Luçi
04:30 AM Bug #2674 (Feedback): MTU setting hardcoded 1280 for gif interfaces and in RADVD config: Applied in changeset commit:a6bc492fecd64a3a9f3b4cc4a003d6761494a694. Ermal Luçi
04:23 AM Bug #1629 (Feedback): invalid state table entries after WAN IP change: Ok i went and did another implementation fix for this.
Can you please try with later 2.1 snapshots and see if it beh... Ermal Luçi

01/29/2013

02:47 PM Bug #2786 (Resolved): Setting MTU on VLAN does not set MTU on parent interface in 2.2: When altering the MTU on a VLAN, the physical interface needs to follow. Currently it does not, and you have to assig... Jim Pingle
02:38 PM Feature #2785 (Closed): Support HP RADIUS attributes: No need to submit both. Ermal Luçi
02:21 PM Feature #2785 (Closed): Support HP RADIUS attributes: HP MSM series access controllers have vendor-specific attributes to control bandwidth and redirection URLs. Pull requ... Michael Newton
01:25 PM Bug #2377: Captive portal fails on empty RADIUS password: Pull request 357 was merged. Renato Botelho
01:12 PM Bug #2377: Captive portal fails on empty RADIUS password: That pull request was not for this issue. Please see https://github.com/bsdperimeter/pfsense/pull/357 for the patch a... Michael Newton
11:30 AM Feature #814 (Feedback): GUI should allow to bind openvpn on different ip same port: Applied in changeset commit:49b76122af0846474f65eaf73e0e879e24fb554c. Renato Botelho
09:41 AM Feature #814: GUI should allow to bind openvpn on different ip same port: This should be possible now but there is a new issue holding it back. Now that we can assign a gateway group as the "... Jim Pingle
10:30 AM Bug #1575: Limiters are bypassed by local applications injecting rules: tried it still same, clients upload speed exceeds limiter values Bipin Chandra
10:19 AM Bug #1575: Limiters are bypassed by local applications injecting rules: yes its ticked, trying without that now but if we untick then i guess in the past there was a problem of traffic for ... Bipin Chandra
09:46 AM Bug #1575: Limiters are bypassed by local applications injecting rules: Can you try by removing the quick option on the match rules, if you have selected it? Ermal Luçi
03:52 AM Bug #1575: Limiters are bypassed by local applications injecting rules: plz remove post after u have read it Bipin Chandra
03:35 AM Bug #1575: Limiters are bypassed by local applications injecting rules: In that forum post i do not see any limiters configured on the ruleset posted.
So please provide the information if ... Ermal Luçi
08:29 AM Bug #2784 (Closed): Bug with the interface LAN, with the last upgrade from 2.1: Already fixed in the repo. Jim Pingle
08:23 AM Bug #2784 (Closed): Bug with the interface LAN, with the last upgrade from 2.1: This is the message :
Fatal error : call it undefined function unet () in /etc /inc/interfaces.inc on line 3321 Moula BADJI
07:39 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: 2.1-BETA1 (amd64)
built on Mon Jan 21 16:42:50 EST 2013
FreeBSD 8.3-RELEASE-p5
After unplugging then replugging ... David Burgess
04:54 AM Bug #2783 (Closed): Cannot access vouchers tab: Renato Botelho
04:43 AM Bug #2783: Cannot access vouchers tab: I installed a newer build and really the problem disappeared;
Thanks Wendell Borges
03:14 AM Bug #2783 (Feedback): Cannot access vouchers tab: Check later snapshots Ermal Luçi

01/28/2013

11:19 PM Bug #1575: Limiters are bypassed by local applications injecting rules: this was discussed here
http://forum.pfsense.org/index.php/topic,56092.0.html
the easy way to test this is, enabl... Bipin Chandra
09:14 AM Bug #1575: Limiters are bypassed by local applications injecting rules: Can you provide any analysis of how you do your checking?
Also provide a ... Ermal Luçi
04:54 AM Bug #1575: Limiters are bypassed by local applications injecting rules: does seem to work still, upnp devices bypass limiter Bipin Chandra
04:54 PM Bug #2783 (Closed): Cannot access vouchers tab: After creating a new zone on LAN interface and set Auth to "Local Users", I click on "Vouchers" tab and it back to zo... Wendell Borges
01:24 PM Bug #2780: CP: passthough has no effect: I have the same problem using build Jan 28 08:16:34 EST 2013
Both net.link.ether.ipfw and net.inet.ip.fw.one_pass ... Fredrik Reuterswärd
09:57 AM Bug #2780: CP: passthough has no effect: Can you check the following sysctl values
net.link.ether.ipfw net.inet.ip.fw.one_pass
they should be 1 on both.
Als... Ermal Luçi
08:20 AM Bug #2780: CP: passthough has no effect: I've just tested snapshot Jan 27. MAC passthrough seems to be working fine, but Allowed IP addresses are not. Here's ... Daniel Berteaud
10:21 AM Bug #1399: rrdtool respawning too fast: Its internal to apinger and a 'protection'.
I will double check again to see if it can be fixed. Ermal Luçi
09:10 AM Bug #2782: RIP needs to be multiwan capable: when i enable RIP i get errors in system log when i have 2 WANs from same isp so the gateway is same which causes thi... Bipin Chandra
08:59 AM Bug #2782 (Rejected): RIP needs to be multiwan capable: routing protocols like RIP aren't multi-WAN relevant, especially not as a bug. Chris Buechler
04:59 AM Bug #2782 (Rejected): RIP needs to be multiwan capable: RIP actually has the feature to be multiwan aware but pfsense needs some gui patches as well as some minor code chang... Bipin Chandra
08:39 AM Bug #2651 (Feedback): traffic RRDs broken after upgrade to 2.1: There was a bug on functions that convert rrd databases to new format during upgrade. It was fixed and this fix shoul... Renato Botelho
08:08 AM Feature #2781: Hierarchical view of "Status-Queues" page: Of course! I wanted to receive some feedback on this idea before just doing/publishing it...
To make it work, I a... Michele Di Maria
07:53 AM Feature #2781 (Feedback): Hierarchical view of "Status-Queues" page: Hello Michele,
This is a good idea. Could you please do it and send a pull request on pfsense project at github [1... Renato Botelho
04:41 AM Feature #2781 (Resolved): Hierarchical view of "Status-Queues" page: Hello,
I'd like to change a little bit the "Status-Queues" page, adding a "hierarchical" view in order to show ... Michele Di Maria
03:54 AM Bug #2769 (Closed): IPsec needs IPv4/IPv6 input validation: Renato Botelho
03:53 AM Bug #2773 (Closed): DHCP pools need validated against other pools when saving: Renato Botelho

01/27/2013

10:51 AM Bug #2780 (Feedback): CP: passthough has no effect: FIx has been included and should behave better in the later coming snapshots. Ermal Luçi
09:10 AM Bug #2780: CP: passthough has no effect: The direction support has been removed in commit [1] but the "Allowed Hostnames" configuration still shows the form f... Cyrill B
09:06 AM Bug #2780: CP: passthough has no effect: @Ermal:
It seems that when configuring pipes the context argument is not correctly handled.
ipfw -x guest pip... Cyrill B
07:44 AM Bug #2780: CP: passthough has no effect: Here's the result (wifi is the name of my CP zone)
[2.1-BETA1][root@pfsense.domain.local]/root(1): ipfw -x wifi sh... Daniel Berteaud
06:41 AM Bug #2780: CP: passthough has no effect: Can you show ... Ermal Luçi
10:27 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes: Also snapshots dated today or later contain ipsec-tools version 0.8.1, so it's worth trying again on a new snapshot. ... Jim Pingle
10:19 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes: You used teh suggestions from Jim especially disabling prefer old ipsec sa? Ermal Luçi
08:34 AM Bug #1351: Mobile IPsec no traffic pass trough after 2nd connect after 5 minutes: I am running into this issue on 2.1 BETA. I have tried all
Connecting the first time after restart of racoon wor... David Duchscher

01/26/2013

08:04 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Here is my raw config.xml & /tmp/rules.debug
http://m37offroading.ca/PFSENSE/config.xml
http://m37offroading.c... Anonymous
08:01 AM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Robert Stefanovic wrote:
> Ok , So you know what. That's fine. You guy's dont think it's a bug.. It's pathetic PFSen... Jim Pingle
03:58 AM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Ok , So you know what. That's fine. You guy's dont think it's a bug.. It's pathetic PFSense is the most powerful open... Anonymous
06:10 PM pfSense Packages Bug #2698: freeradius2 counter not working: http://redmine.pfsense.org/issues/2164
Can you check this ticket, read the last post of that ticket and the coresp... Alexander Wilke
06:05 PM Bug #2164: Captive Portal - RADIUS - Acct-Session-Time does not reset when "stop/start accounting" is enabled: Hi,
users in the following two pfsense forum threads applied the patch from Ermal Luçi with success.
Adding the p... Alexander Wilke
05:31 PM Bug #2780 (Resolved): CP: passthough has no effect: I've just updated to Jan 25 snapshot (amd64) and passthrough (MAC or IP address) doesn't work anymore. It seems to ha... Daniel Berteaud
02:59 PM pfSense Packages Bug #2779 (Rejected): Snort unexpectedly terminates / signal 11 error: PRobably because you are missing a gid.
please move this to forum. Ermal Luçi
02:32 PM pfSense Packages Bug #2779 (Rejected): Snort unexpectedly terminates / signal 11 error: Hello, It's not a hardware issue, I tested on several pc-s Intel and AMD processors, It seems to be a rule issue, Whe... Cimpean Andrei

01/25/2013

09:07 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Please discuss it on the forum until a developer confirms a bug exists.
You still could have a configuration issue... Jim Pingle
09:01 PM Bug #2777: NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: I have had the exact same issue. So we already know it's multiple affected users.
The issue is in the default ro... Anonymous
04:30 PM Bug #2555 (Feedback): check_reload_status consumes 100% CPU usage: This seems occasional since not many have reported it. Ermal Luçi
04:30 PM Bug #2540: Table entries added by filterdns can clobber overlapping hardcoded entries during DNS changes: Applied in changeset pfsense-tools:commit:6f436e9ddf46e64e9b6d87d587a63242b4063d0d. Ermal Luçi
04:29 PM Bug #2540 (Feedback): Table entries added by filterdns can clobber overlapping hardcoded entries during DNS changes: Ermal Luçi
04:10 PM Bug #2751 (Feedback): IPv6 log for ICMP Router Solicitation identified as ICMP packets: Applied in changeset commit:fb6079dbaf63aa994d8039788d60dac48eb99986. Jim Pingle
03:07 PM Bug #2751: IPv6 log for ICMP Router Solicitation identified as ICMP packets: If you could get the raw filter.log entries for these, that would be helpful in adjusting the parser to compensate. Jim Pingle
02:46 PM Bug #2440 (Feedback): Wireless client nic set for DHCP does not start dhclient: Ermal Luçi
02:45 PM Bug #2440: Wireless client nic set for DHCP does not start dhclient: For bootup issues i pushed a fix to create the clone early.
For reconfigure it should not be an issue since interfac... Ermal Luçi
02:46 PM Bug #2506 (Resolved): filterdns needs help for IPv6: This is no issue nowdays. Ermal Luçi
02:33 PM Bug #2409 (Feedback): ipfw - entryzerostats: This should behave even better with latest snapshots. Ermal Luçi
02:32 PM Bug #2377 (Feedback): Captive portal fails on empty RADIUS password: Merged the pull request. Ermal Luçi
02:30 PM Feature #2128 (Bogus): Large DNS requests on dnsmaq: Looking at this http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666517
Seems to not be a dnsmasq issue per se! Ermal Luçi
02:30 PM Bug #1823: policy routing for firewall-initiated traffic only works for interface IPs: Applied in changeset commit:7ee0f3a8869274874540024f97bd43880ee42082. Ermal Luçi
02:24 PM Bug #1823 (Feedback): policy routing for firewall-initiated traffic only works for interface IPs: Ermal Luçi
02:26 PM Feature #1843 (Feedback): Diag > Limiter Info does not show queues under pipes: Ermal Luçi
01:56 PM Bug #1621 (Feedback): Switching WAN from type PPP to other leaves former port assigned: Can you please try new snapshots.
This hsould not be happening anymore. Ermal Luçi
01:55 PM Feature #2117: 6RD support for ISPs like Swisscom: Variable prefix for ipv4 has been committed.
GUI fixes are needed to be done now to allow this to be configured. Ermal Luçi
12:00 PM Bug #2763: Dynamic Firewall logs doesn't add new rows: Applied in changeset commit:c251f8ccc84a7595bb14ccdd9754321c54762eaf. Renato Botelho
06:40 AM Bug #2763: Dynamic Firewall logs doesn't add new rows: I'd agree with that, the reason I hadn't noticed was that in [my version] of Chrome, I don't see the alignment proble... John Bayly
06:01 AM Bug #2763: Dynamic Firewall logs doesn't add new rows: Column widths looks good with new values, but rows height doesn't. Take a look at new attachments, seems the Act icon... Renato Botelho
04:45 AM Bug #2763: Dynamic Firewall logs doesn't add new rows: I'm guessing that you mean the column headers? I just copied across the span width values onto the column headers, bu... John Bayly
10:13 AM Bug #2625 (New): Inconsistent behavior with Alias info popup: For now we can just document this behavior and revisit the question for 2.2. I think it's OK how it is for 2.1 so lon... Jim Pingle
07:42 AM Bug #2778 (Rejected): syslog - VPN IPSec - routing: Not a bug.
[[http://doc.pfsense.org/index.php/Why_can%27t_I_query_SNMP,_use_syslog,_NTP,_or_other_services_initiated... Jim Pingle
07:30 AM Bug #2778 (Rejected): syslog - VPN IPSec - routing: topology:
Site A 192.168.252.0/24 <----IpSec----> Site B 172.16.0.0/16
the serveur syslog-ng is 172.16.0.109 on... Olivier CASPARI
06:54 AM Bug #2656 (Closed): The "/" char in Virtual Server name disable the server: Renato Botelho
12:36 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: I tested with the following build and the issue is not present for me any more:
2.1-BETA1 (amd64)
built on Thu Ja... Anonymous
12:24 AM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: i did post at the freebsd forum and also somewhere on mpd long time back but hardly any1 replied, few suggestions wer... Bipin Chandra

01/24/2013

08:58 PM Bug #1629 (New): invalid state table entries after WAN IP change: we at least need the option to wipe the entire state table upon IP change. Chris Buechler
05:52 AM Bug #1629: invalid state table entries after WAN IP change: The only real solution to this is to switch to if-bound states for many reasons.
That is a bit more involved changed... Ermal Luçi
07:55 PM Bug #2746: IPv6 IPSEC shows down but is actually not...: Thanks for getting back to me...
You are right, it was a configuration issue but a mean one :-)
If you selec... Andre Keller
07:16 PM Bug #2763 (Feedback): Dynamic Firewall logs doesn't add new rows: Widget is working fine, but there is something wrong with fonts and sizes as you can see on attached screenshot. Renato Botelho
04:17 PM Bug #2633: Captive Portal timeouts cause users to be stuck in limbo: Hi Ermal,
The fixes broke the captive portal entirely.
For one, DNS requests to the forwarder are completely bloc... Carlos Pereira
02:50 PM Bug #2777 (Rejected): NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Port Forwarding (inbound) has nothing to do with Gateway Groups (outbound).
Please post in the forum for a more th... Jim Pingle
02:44 PM Bug #2777 (Rejected): NAT-Port forwarding dont work in Multi-WAN configuration, if the first WAN Interface have an higher Tier.: Nat(Port-forwarding) dont work with Multi-Wan, when the First WAN1-Interface has an higher Priotiy(Tier) or no Gatewa... Marvin Klose
02:49 PM Bug #1943: PPPoE won't reconnect after link loss when using vr(4) NICs on certain ISPs only: Bipin, if you've identified that Unisphere BRAS is used by all the ISPs you've tried and had problems with, then perh... Dim Hatz
01:40 PM Bug #2769 (Feedback): IPsec needs IPv4/IPv6 input validation: Applied in changeset commit:e4ffca08822057400f6a8c2af91622e0c32f6140. Renato Botelho
09:56 AM Bug #2758: Old configuration remains when changing interface type: After some tests here, i noted the issue persists. When I changed interface from static to pppoe, the static IP remai... Renato Botelho
04:40 AM Bug #2758 (Feedback): Old configuration remains when changing interface type: Applied in changeset commit:18f338da58e4f98478bd4710b3f4907759cd9540. Ermal Luçi
09:18 AM Feature #2776: Unknown Radius-Attributes: If racoon gives you an IP from the pool, that is fine.
Assigning a specific IP to a specific user is what doesn't ... Jim Pingle
09:09 AM Feature #2776: Unknown Radius-Attributes: Are you speaking of the radius-attributes like framed-ip-address of cisco?
the ip assignment on racoon is possible a... Jonh Nash
06:36 AM Feature #2776: Unknown Radius-Attributes: The lack of IP assignment is a deficiency in racoon. There may not be anything we can do for that. Jim Pingle
05:47 AM Feature #2776 (Resolved): Unknown Radius-Attributes: In VPN ipsec mobile there is the possibility to use the server radius for authentication and accounting
The authent... Jonh Nash
08:51 AM Bug #2756: SNMPD problems when binding pppoe interface: Okay i will remove it and see what will happens Claudius Badmind
08:29 AM Bug #2756: SNMPD problems when binding pppoe interface: Can you try removing the trap host/port and see if it stays up longer? Jim Pingle
08:26 AM Bug #2756: SNMPD problems when binding pppoe interface: @root 68740 0.0 1.4 8368 6760 ?? Ss 3:27PM 0:00.05 /usr/sbin/bsnmpd -c /var/etc/snmpd.conf -p /var/run/s... Claudius Badmind
08:40 AM Bug #2773 (Feedback): DHCP pools need validated against other pools when saving: Applied in changeset commit:f657f5e1e407a4687983b6e9907f0dc489945157. Renato Botelho
05:50 AM Feature #1492: Captive Portal Interim Updates: Applied in changeset commit:338c0941ef9a90d33b02627a320fb642d192b172. Ermal Luçi
05:46 AM Feature #1492 (Feedback): Captive Portal Interim Updates: Ermal Luçi
05:46 AM Feature #1492: Captive Portal Interim Updates: Merged manually without the GUI option. Ermal Luçi
05:20 AM Feature #804: Ability to enable/disable static routes: Applied in changeset commit:9c115b409d0b21132dae9ad2c62f842a7e438f8f. Ermal Luçi
05:18 AM Feature #804 (Feedback): Ability to enable/disable static routes: Ermal Luçi
04:52 AM Bug #2737 (Resolved): excessive filterdns processes in some circumstance(s): This is solved now days since filterdns just reloads config and does not need to be restarted on change. Ermal Luçi
04:40 AM Bug #1112 (Resolved): IPsec GUI/backend missing RADIUS support: Please open a new ticket about that. Ermal Luçi

01/23/2013

07:10 PM Bug #2775 (Closed): OpenVPN Server binds on CARP IP on slave instead on master: Jim Pingle
07:10 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master: Tested this on a cluster I had handy and servers bound to a CARP VIP run on both. I'm not seeing a problem.
We use... Jim Pingle
07:08 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master: OpenVPN Servers are not bound by the same CARP restrictions as OpenVPN clients. It's normal for OpenVPN servers to be... Jim Pingle
06:08 PM Bug #2775: OpenVPN Server binds on CARP IP on slave instead on master: forgotten... the firewall slave binds on the right CARP IP:
wan_vip201: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu... Reiner Keller
05:51 PM Bug #2775 (Closed): OpenVPN Server binds on CARP IP on slave instead on master: Hello,
I am running
2.1-BETA1 (amd64)
built on Mon Jan 14 11:26:04 EST 2013
FreeBSD 8.3-RELE... Reiner Keller
05:34 PM Bug #1995 (Closed): Cannot edit default queue: Renato Botelho
05:22 PM Bug #2761 (Closed): Widget detection function can cause duplicate widgets in the Web GUI: Renato Botelho
02:42 PM Bug #2483 (Feedback): IPv6 Interface Aliases not functioning: For now let it be without support from pfSense module to have that working. Ermal Luçi
02:10 PM Bug #2482 (Feedback): error trying to delete limiter: Applied in changeset commit:5918f9b71295521fb06eac8aec8fabcf876e1831. Ermal Luçi
01:25 PM Bug #2633 (Feedback): Captive Portal timeouts cause users to be stuck in limbo: Test later snapshots. Ermal Luçi
01:24 PM Bug #1112: IPsec GUI/backend missing RADIUS support: Oh that part is not yet functional.
It is on my TODO which can be pushed if someone has the need.
But probably from... Ermal Luçi
09:41 AM Bug #1112: IPsec GUI/backend missing RADIUS support: Hi Ermal, I can authenticate the client on radius, but I cannot allocate the ip address and I cannot see the accounti... Jonh Nash
04:37 AM Bug #1112: IPsec GUI/backend missing RADIUS support: Can you please be more verbose about what is not working? Ermal Luçi
01:23 PM Bug #2759 (Resolved): Lightsquid not working since mod_cgi was removed: Ermal Luçi
09:45 AM Bug #2759: Lightsquid not working since mod_cgi was removed: Jim P wrote:
> This should be fixed on current snapshots dated 1/21 or later.
Yes, thank you. It works now. Ian Pitcher
07:26 AM Feature #2774 (New): Extend DHCP Pools code to allow using different subnets: The current DHCP pools code allows creating multiple ranges within the same large subnet. The ISC DHCP Daemon also su... Jim Pingle
07:12 AM Bug #2773 (Closed): DHCP pools need validated against other pools when saving: The new DHCP pools code checks the range given to make sure it is OK for itself (end is after start, etc) but it does... Jim Pingle
04:11 AM Bug #2772: Kernel panic on WAN wifi + pppoe: Please go through the forum first for this.
But the crashdump should be a helpful bit of information. Ermal Luçi

Also available in: Atom

Project

General

Profile

pfSense

Activity

Activity

02/21/2013

02/20/2013

02/19/2013

02/18/2013

02/17/2013

02/16/2013

02/15/2013

02/14/2013

02/13/2013

02/12/2013

02/11/2013

02/10/2013

02/09/2013

02/08/2013

02/07/2013

02/06/2013

02/05/2013

02/04/2013

02/03/2013

02/01/2013

01/31/2013

01/30/2013

01/29/2013

01/28/2013

01/27/2013

01/26/2013

01/25/2013

01/24/2013

01/23/2013