Activity
From 03/16/2014 to 04/14/2014
04/14/2014
- 11:40 PM Revision 75106986: License Agreement
-
08:46 PM Revision 9265d991: Insert tracker ids for the default LAN rules
-
-
- 06:38 PM Revision e86ae5ae: Merge pull request #1091 from dv-user1/usort_fix2
- 06:30 PM Revision 1565d318: Merge pull request #1085 from ExolonDX/branch_master_01
-
06:05 PM Bug #3321: IPSEC failure on modem reset, automatic reconnection is broken, must manually restart racoon service
- This is broken again in 2.1.2
-
- 05:52 PM Revision 14da6d95: fixed a type in usort callback
-
03:32 PM Bug #3579 (Feedback): Limiter rules causing syntax errors
- Fixed please test new snapshots.
-
-
- 02:40 PM Revision f4462954: Unset logfilesize rather than let it be zero
- 1) When saving Status: System logs: Settings, if the Log File Size field is left blank, it gets cast to (int) and end...
-
-
- 12:47 PM Revision 115b7b81: Start using filterlog
-
-
-
-
-
- 11:37 AM Revision 32751b9f: Include static routes in automatic NAT rules display
- If I have an internal gateway to other private subnets behind LAN, and add a static route to those private subnets th...
- 11:23 AM Revision ee34e137: Do not allow upgrade_101_to_102 to exit early
- This upgrade step does both Captive Portal stuff and OpenVPN stuff. So do not return early just because there is no C...
-
10:33 AM Revision 146ee078: console, reload firewall rules after enabling SSH
- 10:28 AM Revision b4e0a62a: Merge pull request #1076 from phil-davis/patch-2
- 10:27 AM Revision c30639e4: Get real interface when dhcrelay uses default GW
- If the DHCP Relay server is not on any local subnet, and not on any subnet that has an internal static route, but is ...
-
- 10:22 AM Revision 93fb6094: Tidy up XHTML
- Update HTML Boolean operator (multiple)
Change ONCLICK to lower case
Add missing semi-colon -
-
-
- 09:54 AM Revision d87ec8f9: Merge pull request #1071 from ExolonDX/master
- 09:35 AM Revision d471a890: tls-verify requires quotes around the command to be executed. Ticket #3596
- 09:35 AM Revision 84fc1d4d: use email from CA creation also as the default for server cert
-
09:11 AM Bug #3603: Outbound NAT failure on Carp VIP after editing firewall rule.
- If it helps;
When this problem occurs and I edit the interface, I see (on the console):
wan_vip2: 2 Link states... -
- pfSense version 2.1.1-RELEASE (amd64).
Hardware: HP DL380 G5 server with on board Broadcom nics and additional HP ... - 09:10 AM Revision c58dbe2f: Fix typo
-
-
04/13/2014
-
- This has been solved on latest 2.1 cod ein github.
If you gitsync it will solve the issues.
It will be discussed ... -
02:43 PM Bug #3595: OpenVPN TAP/TUN <--> interface bridge not working after reeboot
- Issue confirmed: OpenVPN tap connection is initiated successfully, but no traffic passes through.
Affected version... -
01:56 PM Feature #2960: Add queue length adjustment capabilities to traffic shaper based on network size
- Actually, after some research and a better understanding of queuing, this is not practical.
Queue lengths need to ... -
-
-
-
10:48 AM Bug #3602 (Rejected): OpenVPN can authenticate via a broken certificate
- That is correct. OpenVPN only checks that the cert is a valid cert (not expired, not revoked) from the same CA as the...
-
07:20 AM Bug #3602: OpenVPN can authenticate via a broken certificate
- I am not sure what's the bug here? AFAICT OpenVPN only tries to match user against Common Name (not SAN!) in the clie...
-
07:37 AM Bug #3249: DHCP Server/DHCP Relay both say the other is started
- I am not across the update code but the problem definitely occurred. I have just manually edited the server's /conf/c...
04/12/2014
-
08:08 PM Bug #3470: IPSec VPN not recognizing alternative IP name
- Since OpenVPN accepts a certificate that was created with a common name that doesn't match the IP address to which Op...
-
- If you take the certificate and look at it via OpenSSL, you can clearly see the extensions are completely missing. If...
-
- #3347 claims that SANs don't work at all but, in my configuration, they do work for OpenVPN where the SAN is of type ...
-
- Duplicate of Bug #3347, SubjectAltNames are completely broken.
-
- See bug 3470 (https://redmine.pfsense.org/issues/3470).
- 04:32 PM Revision 7fd38f44: fixing typo for GIF tunnels to work over IPv6
- the call of get_interface_gatewayv6() in the creation of a GIF tunnel over IPv6 leads to a "Fatal error: Call to unde...
- 04:29 PM Revision bb8f3ce1: fixing typo for GIF tunnels to work over IPv6
- the call of get_interface_gatewayv6() in the creation of a GIF tunnel over IPv6 leads to a "Fatal error: Call to unde...
-
03:53 PM Bug #3601 (Closed): Assigning a PPP Interface failed
- Assigning a PPPs Interface via Webconfigurator fails. The Link https://pfsense.localdomain/interfaces_ppps_edit.php s...
- 02:44 PM Revision d530f8f7: Get real interface when dhcrelay uses default GW
- If the DHCP Relay server is not on any local subnet, and not on any subnet that has an internal static route, but is ...
-
-
-
-
- 11:03 AM Revision ffb76388: Tidy up package signature text
- Thought I would tidy this up while coming across it. IMHO "Package settings" reads better than "Packages settings"......
-
-
- 12:33 AM Revision db45bc68: tls-verify requires quotes around the command to be executed. Ticket #3596
- 12:31 AM Revision e8e28366: use email from CA creation also as the default for server cert
04/11/2014
-
08:30 PM Bug #3598 (Resolved): AutoConfigBackup restore not working
- this is resolved in the latest version of the package.
-
-
09:08 AM pfSense Packages Bug #3580: Stunnel mangled cert on upgrade
- I have just upgraded to 2.1.2-RELEASE (amd64) and the certificates look fine this time so possibly something else got...
-
- It's not a general issue currently, please post on the forum for assistance.
-
10:38 AM Bug #3571: Upgrade from 2.1-RELEASE to 2.1.1-RELEASE on NanoBSD/4G/amd64 results in system still being at 2.1-RELEASE
- I cannot use the auto updater via the web GUI or the CLI. I am still at 2.1 upon reboot.
-
07:57 AM
Bug #3596: OpenVPN being passed bad arguments
- I pulled this from /var/etc/openvpn/server1.conf:...
-
- Please post in the forum to discuss and confirm before opening a bug.
You can always see what updated the configurat... -
06:00 AM pfSense Packages Bug #3600 (Rejected): Snort rules update causes 'Last config change' in Status: Dashboard
- I updated one of my pfSense 2.1 systems to snort pkg v 3.0.6 last night. Logging in this morning, I saw this in Statu...
-
04:00 AM Feature #3599 (Resolved): missing kernel option / kernel module in 2.2 (mount_nullfs)
- Hi there.
I understand that pfSense doesn't come with a lot of the standard (FreeBSD-GENERIC) modules and kernel o...
04/10/2014
-
09:13 PM Bug #3598 (Resolved): AutoConfigBackup restore not working
- It always gives an error like:
The following input errors were detected:
SHA256 values do not match, cannot r... - 08:50 PM Revision d6fa5566: Add curly brackets here to improve readability
- 08:49 PM Revision 43f661f7: unset doesn't like @ to silent it, just check if it's set before unset
-
- Lost all packages on upgrade. No idea if the process was killed or what, does not exactly matter. Result:
- Instal... -
04:46 PM Bug #3592: DynDNS
- Hm no, sorry, the bug must be somewhere else.
The pull i send was just a output improovement.
i think the dyndn... -
03:55 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Chris Buechler wrote:
> fixed.
PFSense 2.1.2 fixes CVE-2014-0160. -
- fixed.
-
- Frederic MEYER wrote:
> I am on 2.1 and did not upgrade to 2.1.1 (obviously waiting for 2.1.2 now...).
> Nor did I ... -
02:10 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- I am on 2.1 and did not upgrade to 2.1.1 (obviously waiting for 2.1.2 now...).
Nor did I have to reboot to see the p... -
- Frederic MEYER wrote:
> That's my point!
> So I don't understand David's output even though he claims to have updat... -
- We're looking into a way to do that but the version numbers are controlled by the FreeBSD port versions and not direc...
-
- Don't get me wrong, but "if the version number on the PBI file itself did not change" is just something that *never* ...
-
- No, but you may have to uninstall and reinstall the package if the version number on the PBI file itself did not change.
-
- Frederic MEYER wrote:
> That's my point!
> So I don't understand David's output even though he claims to have updat... -
- Ah, well he's looking at output without considering the wrappers. He's checking the base system and not the self-cont...
-
- That's my point!
So I don't understand David's output even though he claims to have updated his system. -
- What is wrong in that output? 1.0.1g is the updated/fixed/correct version.
-
- Correct.
And, as Jeremy said,
> "Please note that haproxy-devel seems to ship its own instance own instance of o... -
- PBI packages are run using wrappers such that they see the libraries present inside of their own PBI dir. Checking wi...
-
- Frederic MEYER wrote:
> FWIW, haproxy-devel package seems to have been updated a few hours ago and bumped to 1.5-dev... -
- Agreed. Not the best place.
Will look at the development forum. -
- Not really the place for a long off-topic discussion in a bug. I'll support Lane's suggestion to sign up for pfSense ...
-
- FWIW, haproxy-devel package seems to have been updated a few hours ago and bumped to 1.5-dev22 pkg v 0.8.
I did the ... -
02:09 AM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Since others are pointing me to this ticket to keep tabs I thought it best to comment with something useful.
If yo... -
02:01 AM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- To everyone involved, is there anything we can do to assist with getting this released? Rather keen to get this patch...
-
-
- fixed
-
- FYI- 2.1.2 images are being tested now. So far, so good.
As a reminder, this bug is for Heartbleed in the base syste... -
- What arguments does it have after those parameters in the conf file?
-
08:01 AM
Bug #3596 (Resolved): OpenVPN being passed bad arguments
- Basic OpenVPN configuration (Remote Access SSL/TLS) yields the following result in system log:
openvpn[34830]: Opt... -
07:58 AM Bug #1629: invalid state table entries after WAN IP change
- Friends, Developers
i have been doing some extensive testing on this issue yesterday evening.. yes i know ...get a l... -
02:58 AM Bug #3595 (Resolved): OpenVPN TAP/TUN <--> interface bridge not working after reeboot
- After building Tap OpenVPN tunnel with bridged interfaces between 2 sites with pfsense 2.1.1
That looks like :
... - 12:58 AM Revision f4065455: List GWGs in Interface to send update from
- Back-port of this fix done in master https://github.com/pfsense/pfsense/commit/31300a95f71b14dcb98c139388205223a36e8c...
04/09/2014
-
08:53 PM Revision da1d0165: fix git path calls and CODIR
- it may need some checks/fixes on pkg-utils.inc as git downloads but not installs.
After manual pbi install of git, "... -
07:35 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Jim Thompson wrote:
> And you registered only today to tell us that?
>
> Hi Jim,
> I do not think comments like this ... -
07:29 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Jim Thompson wrote:
> Justin Foreman wrote:
> > Agreed with Sam. I've had to make the call to disable our VPN. The ... -
07:05 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- in any case, yes, this bug had to be fixed.
and while we were in there, the ECDSA bug had to be fixed (note that i... -
- Note: This bug is for Heartbleed in _packages_, and many (if not all) of those have already been updated and bumped s...
-
- Justin Foreman wrote:
> Agreed with Sam. I've had to make the call to disable our VPN. The natives are getting restl... -
06:56 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- We know its vulnerable, but for what its worth.. I have tested the POC available here: https://gist.github.com/mpdavi...
-
06:55 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- The release will be done when its done.
I release involves some 80+ variants all of which have to be built.
Build... -
- Agreed with Sam. I've had to make the call to disable our VPN. The natives are getting restless. This is a *security*...
-
- Any update with this?
It's pretty critical... -
- Guys, can someone fix the CRLs in 2.1.1 *before* releasing 2.1.2? A LOT of people will want/need to revoke certificat...
-
- When will haproxy-devel be available as a separate update? This would solve my problem.
-
04:29 AM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- I don't know more than you, but once Chris and the US wakes up, by the look of the above. ie sometime on Apr 9: US ti...
-
04:27 AM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Is there any ETA on new release? A realistic one, not 1 hour then 10+ :)
I need to patch but I'd rather wait and ... -
04:15 AM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Phil Jaenke wrote:
> Lot's of PolarSSL stuff and about how awesome it is ....
Don't think a bug report is the r... -
05:35 PM Bug #3594 (Resolved): Captive portal inconsistancy - "Allowed IP addresses" vs "Allowed Hostnames"
- When editing an entry under Services --> Captive Portal --> Allowed IP Addresses
the note on screen refers to dire... -
- pull request pushed with a fix.
https://github.com/pfsense/pfsense/pull/1072 -
- Pull request merged to 2.2 and 2.1 branch.
-
-
-
- Hi Guys,
the RFC 2136 Update Script didnt work right.
It sends again and again a mail "DynDNS updated IP Address ... -
- OK, fix works, thanks. It is indeed correct that starting with a completely new CA is best solution in this case, but...
-
- Applied in changeset commit:80f48850307dea4ceb08dc1a785dd24322b5283d.
-
- Applied in changeset commit:d22169cfd68a26c04ca6d1aa997575f1b3e4cc80.
-
- A fix is coming but ideally you'd create a whole new CA and Cert structure if you believe yours has been compromised....
-
- See https://forum.pfsense.org/index.php?topic=74935.msg408977#msg408977
Since lots of people will want/need to rev... -
- Unfortunately.
Check the https://redmine.pfsense.org/issues/3588 to watch the progress. -
- that's true only for the base system.
but several packages including lighttpd for the webfrontend use /usr/local/... -
05:25 AM Bug #3585: CVE-2014-0160 - OpenSSL Heartbleed Bug
- OK, my fault: find / -type f -name 'openssl' -exec \{\} version \;
>OpenSSL 1.0.1e 11 Feb 2013
>OpenSSL 0.9.8y 5 Fe... -
- PFsense 2.1 uses openssl 0.9.8y, which is NOT VULNERABLE.
04/08/2014
-
10:11 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Please note that haproxy-devel seems to ship its own instance own instance of openssl, so will need to be reviewed as...
-
08:53 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Chris Buechler wrote:
> "actually been audited", "has a vastly better track record"? Uh, no. OpenSSL has had a lot m... -
- oh that. 1 hour, hah! I wish. We've burned easily 20+ man hours in the last day on this.
-
- nothing says "1 hour", it takes 4-5 times that long just to build a release, much less actually test it and push it o...
-
06:16 PM pfSense Packages Bug #3588: Heartbleed bug in OpenSSL
- Revised time estimate? Says "1 hour" up top, which strikes me as overly optimistic.
Thanks,
-danny -
- "actually been audited", "has a vastly better track record"? Uh, no. OpenSSL has had a lot more eyes on it than Polar...
-
- At this point, I would vastly prefer to see OpenSSL kicked to the curb as unceremoniously as possible in favor of Pol...
-
- Not exactly. The problem in packages is distinct from the one in base. The base firmware update won't fix package and...
-
- Additionally, already reported in #3585
-
- It's known and we're already working on it.
-
- http://heartbleed.com reports a serious defect in OpenSSL 1.0.1 that has been fixed in 1.0.1g
haproxy is vulnerable. -
- fixed
-
01:52 PM pfSense Packages Bug #3590 (Resolved): Snort package missing
- When attempting to install snort from PFsense, the package is missing from the repo.
Beginning package installatio... - 05:07 PM Revision def5d042: No pre release this time
- 03:47 PM Revision 6e767d17: Restore old logic and add a @ at unset to silent when it is not set as suggested by Ermal
-
- 01:10 PM Revision e222576c: Bump to 2.1.2-PRERELEASE since 2.1.1 was released
- 12:43 PM Revision 3f08e7ab: Tidy up "guiconfig.inc" XHTML
- Add missing closing SELECT tag
- 12:12 PM Revision df0b05a3: Merge pull request #1068 from FCI/patch-1
-
11:50 AM Feature #3589 (Resolved): OpenVPN client: GUI option for "route-nopull"
- The current OpenVPN client has no GUI option corresponding to the "route-nopull" argument. This is definitely an opt...
-
- After latest commits, this requires features only available on 2.1.x, like IPv6 stuff. Ref: https://forum.pfsense.org...
-
09:07 AM Bug #3585: CVE-2014-0160 - OpenSSL Heartbleed Bug
- +1111111
-
- Marking as urgent, see http://heartbleed.com/
-
08:27 AM Bug #3586 (Rejected): Gateway monitoring issue when 2 PPPoE WANs share the same gateway
- Hi,
I have 2 DSL connections plugged into my Pfsense. I use 2 PPPoE interface in Pfsense to establish the link.
... -
05:53 AM pfSense Packages Bug #3584: arpwatch package fails to start in pfsense 2.1.1
- Thanks for the quick response which was right on the spot.
I made the proposed change to /usr/local/pkg/arpwatch.xml... -
- This recent commit introduced those quotes to the arpwatch package: https://github.com/pfsense/pfsense-packages/commi...
-
- I'm not sure if this is a bug with arpwatch or with pfsense 2.1.1, it did not happen in pfsense 2.1 though, with the ...
-
01:05 AM pfSense Packages Feature #3583 (Closed): haproxy-devel: individual backend for each acl
- To define several backends based on acl's for one frontend a backend selection iten is recommended for each acl - cur...
04/07/2014
-
-
10:16 PM Bug #3582: webConfigurator redirect rule not working
- RESOLVED
Not a pfSense issue, errors experienced only on clients running Windows 8 -
- after updating from 2.1 to 2.1.1, the port 80 redirect to a listening port of 4434 for HTTPS failed, redirects to 443...
-
07:00 PM Bug #1629: invalid state table entries after WAN IP change
- I'm still experiencing this issue with pfsense 2.1 on an ALIX platform and an Cisco SPA112 ATA.
pfsense is configure... -
- tun and tap interfaces should be available for assignment, whether tunX/tapX or ovpnsX/ovpncX.
-
-
-
-
- On packages that uses row_helper when user clicks on add or delete button, the page scrolls to top.
It seems somethin... - 02:49 PM Revision dc915669: Merge pull request #1053 from marcelloc/patch-1
- 02:43 PM Revision 539d94b3: Merge pull request #1055 from ExolonDX/branch_master_10
-
-
- GRE addresses should be configured only on the GRE itself, not its assigned interface. Sounds like this is the proper...
-
- Password protecting the console doesn't disable ctrl-alt-del to reboot.
-
- And then you also accidentally pressed Y? ...
-
08:29 AM Bug #3581 (Rejected): Create Option to either password protech just 1 option or remove it from the console.
- We have had issue with instead of rebooting they will hit option 4) Reset to factory default. That option need to be...
-
12:31 PM Bug #3314: Traffic graph shows 2X the actual traffic on VLAN interfaces.
- hi,
I have similar trouble but on almost all interface VLAN and not VLAN in 2.1.1 x64
Information for SNMP are fals... - 12:18 PM Revision 1bf572ec: Merge pull request #1056 from ExolonDX/branch_master_12
- 12:17 PM Revision ec307f4d: Merge pull request #1057 from ExolonDX/branch_master_13
- 12:17 PM Revision dc11a7dd: Merge pull request #1058 from ExolonDX/branch_master_14
- 12:17 PM Revision 0031e4da: Merge pull request #1059 from ExolonDX/branch_master_15
- 12:16 PM Revision ee5c8e0b: Merge pull request #1060 from ExolonDX/branch_master_16
- 12:16 PM Revision 8c771b19: Merge pull request #1061 from ExolonDX/branch_master_17
- 12:15 PM Revision c3288e0c: Merge pull request #1062 from ExolonDX/branch_master_18
- 11:40 AM Revision f5961e7b: Merge pull request #1063 from ExolonDX/branch_master_19
- 10:55 AM Revision 29773e5c: Merge pull request #1065 from ExolonDX/branch_master_22
-
-
09:01 AM Revision 39f3d843: Update captiveportal.inc
- Release unused pipeno when client is already authenticated.
Bug #3062 - 08:10 AM Revision bb7843fd: Indentation
- 08:09 AM Revision 2a2b603d: Indentation
- 08:09 AM Revision c2fe67eb: Dont check for 'checked' but rather if it is just set
-
07:43 AM Bug #742: apinger doesn't recover opt wan when connection returns.
- Chris Buechler wrote:
> It's not that easy to replicate, none of mine do that. What kind of WANs?
on my system th... -
- https://forum.pfsense.org/index.php?topic=60009.msg322825#msg322825
I raised the above post on the forum over a ye... -
- I had pfsense 2.1 installed with stunnel 4.43 installed and added a certificate.
I upgraded to 2.1.1-RELEASE(amd64... -
06:04 AM Bug #3572: Can't set IPv6 gateway
- Hello,
I use a Sixxs tunnel. I found my fault. The Subnet Mask of the GIF-Interface must set to 128. Then the GW w... -
- not a bug
-
- The patch was merged Dsi.
-
- When a user is already authenticated and re-send an authentication, a new pipeno is created (function radius). The al...
-
- not a replicable issue
-
- was fixed yesterday
04/06/2014
-
- I have just upgraded to
@2.1.1-RELEASE (i386)
built on Tue Apr 1 15:27:01 EDT 2014
FreeBSD 8.3-RELEASE-p14@
a... - 04:51 PM Revision d269747b: Ensure variable is available when testing smtp. Fixes #3577 (well not the rrd summary package).
-
12:55 PM
Bug #3579 (Resolved): Limiter rules causing syntax errors
- Creating and applying a limiter rule in 2.2 causes an error similar to the below:
There were error(s) loading the ... -
12:00 PM Bug #3577 (Feedback): SMTP Notifications not working when using SMTPS
- Applied in changeset commit:d269747b358f6e8f844e88d39fe36b8f33343d24.
-
06:19 AM
Bug #3577 (Resolved): SMTP Notifications not working when using SMTPS
- h3. Configuration:
* E-Mail server: example.com
* SMTP Port of E-Mail server: 2525
* Secure SMTP Connection: Ena... -
07:08 AM
Bug #3578: Upgrade from 2.1 to 2.1.1 causes Fatal trap 12 - 0x4c
- Removing the virtual CDROM from the settings allows it to boot correctly.
-
06:51 AM
Bug #3578 (Rejected): Upgrade from 2.1 to 2.1.1 causes Fatal trap 12 - 0x4c
- Host: Oracle VM Virtualbox @ Windows 7
Steps: Upgrade via web interface, seems successful and reboots automaticly.
...
04/05/2014
-
09:13 PM Bug #3314: Traffic graph shows 2X the actual traffic on VLAN interfaces.
- I am currently seeing this issue without VLANs. 2.1.1 64-bit
- 06:57 PM Revision 2a230e80: Update system_advanced_misc.php
- 06:49 PM Revision 5a9dd268: Added check line 175: Needed to fix error in GUI
- Added check to see if $config['ipsec']["ipsec_{$lkey}"] is set before executing unnecessary unset, was causing issues...
-
02:22 PM Bug #3576 (Resolved): Console upgrade automatically skips hash check if no hash file found
- When performing an upgrade via the console, if no hash file for the downloaded image is found at the expected locatio...
-
- FWIW, doing a command line upgrade (with ".img.gz" removed from the default URL) seems to have worked fine. It did ju...
-
- Certainly *NOT* fixed.
-
- The file names of the images at http://updates.pfsense.org/_updaters/amd64 still seem to be messed up (missing the .i...
-
- "The image file is corrupt. Update cannot continue"
-
- I'm going through and testing now to fully confirm, but should be ok. If you can also confirm that'd be appreciated.
-
12:12 PM Bug #3575: OPT interfaces on GRE tunnels do not accept IPv6 or IPv4 addresses to be set.
- This applies to 2.1.1, it worked on 2.1.
-
- I have set up a GRE tunnel over an IPSec tunnel. I can ping the IPv4 end-points with no problem.
I have added an ... -
- Are you creating a tunnel? See #3484 - you should just leave the GW as dynamic instead of creating one manually.
-
- I'm on pfsense 2.1.1
-
- Hello,
when i set a „IPv6 Upstream Gateway“ with the link „or add a new one“ on the Interface GUI. It works fine! ... -
07:43 AM Bug #3573 (Closed): tun/tap interfaces not available for assignment in 2.2
- Version 2.2 Alpha options not create virtual interface.
Pfsense Version 2.1.1 is possible create virtual interface u...
04/04/2014
-
- no apparent bug here, please post to the forum or list for assistance.
-
- In pfsense 2.1.1 setup creates an interface OPT1 only ipv4 ipv6 route is created automatically.
Attached Images -
- that's my bad, fixing it right now.
-
- Comparing to the listing in http://updates.pfsense.org/_updaters/ (without amd64), I noticed another oddity: The amd6...
-
- Also, for some reason, there appear to be two sets of identically named copies of the hash files for the NanoBSD imag...
-
- Looking at http://updates.pfsense.org/_updaters/amd64/ in a browser, I noticed that all the NanoBSD images have a tim...
-
- I've gone through the update wizard in the web interface twice now on my NanoBSD/4G/amd64 system, and I keep ending u...
- 05:09 PM Revision e68b4e91: Tidy up "services_unbound_advanced.php" XHTML
- Add "closehead" variable and manually close HEAD
Add CDATA sections to scripts
Add SUMMARY to tables
Update HTML Bool... - 05:02 PM Revision f6543a41: Tidy up "services_unbound_acls.php" XHTML
- Add "cloeahead" variable and manually close HEAD
Add CDATA sections to scripts
Close INPUT
Add SUMMARY to tables
Upda... - 04:58 PM Revision 931f47ea: Tidy up "services_unbound" XHTML
- Add "cloeahead" variable and manually close HEAD
Add CDATA sections to scripts
Add SUMMARY to tables
Update HTML Bool... - 04:47 PM Revision 7bd5b320: Tidy up "services_dnsmasq" XHTML
- Add "closehead" variable and manually close HEAD
Add CDATA sections to scripts
Add SUMMARY to tables
Update HTML Bool... - 04:39 PM Revision d29303c5: Tidy up "services_router_advertisements" XHTML
- Add CDATA sections to script
Add SUMMARY to table
Update HTML Boolean operators
Add dummy table row, but don't displa... - 04:35 PM Revision ee9530e1: Tidy up "services_dhcpv6" XHTML
- Update alert message
Add "closehead" variable and manually close HEAD
Add CDATA sections to script
Add SUMMARY to tab... - 04:30 PM Revision 3565970f: Tidy up "services_dhcpv6_realy.php" XHTML
- Add "closehead" variable and manually close HEAD
Add CDATA sections to scripts
Add summary to tables
Add missing clos... - 04:25 PM Revision 180db186: Tidy up "services_dhcp" XHTML
- Update alert message
Add "closehead" variable and manually close HEAD
Add CDATA sections to scripts
Add summart to ta... - 04:15 PM Revision d2b3e9dc: Tidy up "services_dhcp_relay.php" XHTML
- Add "closehead" variable and close HEAD manually
Add CDATA sections to scripts
Add summary to TABLES
Add missing clos... - 04:08 PM Revision 5a2b90cd: Tidy up "functions.inc"
- Escape single quotes for TABLE and HREF
Updated closing TR tag -
- On packages that uses row_helper when user clicks on add or delete button, the page scrolls to top.
It seems somethin... - 11:44 AM Revision 1458017a: Fix variable name, it's not necessary to check since it is always set at ipsec.inc
-
- On packages that uses row_helper when user clicks on add or delete button, the page scrolls to top.
It seems somet... -
- We don't have FreeBSD drivers for the APU LEDs generally available yet. There isn't anything the package can do about...
-
01:09 AM pfSense Packages Bug #3565 (Rejected): package blinkLED not working on the APU1C board from PC Engines
- Install is done correctly.
blinkLED process cannot start.
Apr 4 08:09:42 php: /pkg_edit.php: The command '/usr/lo... -
- We don't have FreeBSD drivers for the APU LEDs generally available yet. There isn't anything the package can do about...
-
- Install is done correctly.
gwled process cannot start.
Apr 4 08:02:33 php: /pkg_edit.php: New alert found: An err... -
06:45 AM
Bug #3568 (Resolved): DynDNS: Hostname '@' not accepted for Namecheap
- When you try to create a dynamic DNS entry for '@' as per Namecheap's DNS configuration, pfSense gives an error "The ...
-
03:14 AM Feature #3567 (Resolved): Option to disable NTP
- At the moment the only way I can find to stop ntpd is working is put some invalid value in the ntp server field.
I... -
- Sorry, it's working now !
Still a newbie with pfSense.... -
- set monitor IP to something that will respond to pings. Doesn't look like a bug
-
- I am using an APU1C board from PC Engines running pfSense (was 2.1 and 2.1.1 since this morning with the same result)...
04/03/2014
-
-
- 04:19 PM Revision ebc311e8: Merge pull request #1052 from ExolonDX/branch_master_09
- Branch master 09
- 04:19 PM Revision b0a2d7ed: Merge pull request #1051 from ExolonDX/branch_master_08
- Tidy up "services_captiveportal_filemanager" XHTM
- 04:18 PM Revision 22ac2187: Merge pull request #1050 from ExolonDX/branch_master_07
- Tidy up "services_captiveportal_vouchers" XHTML
- 04:18 PM Revision ab191755: Merge pull request #1049 from ExolonDX/branch_master_05
- Tidy up "services_captiveportal_ip.php" XHTML
- 04:17 PM Revision 0ba331d3: Merge pull request #1048 from ExolonDX/branch_master_04
- Tidy up "services_captiveportal_mac.php" XHTML
- 04:16 PM Revision 5aed0886: Merge pull request #1047 from ExolonDX/branch_master_03
- Tidy up "services_captiveportal.php" XHTML
- 04:15 PM Revision 99b59654: Merge pull request #1046 from ExolonDX/branch_master_02
- Tidy up "services_captiveportal_zones.php" XHTML
- 04:14 PM Revision 4ca38523: Merge pull request #1045 from ExolonDX/branch_master_01
- Tidy up "system_advanced_misc.php" XHTML
- 03:15 PM Revision 708079ba: Tidy up "services_captiveportal_hostname" XHTML
- Swap BODY with php statement
Add SUMMARY to tables
Close IMG and add ALT
Deprecate ampersand
Update HTML Boolean oper... - 03:06 PM Revision ad7af00b: Tidy up "services_captiveportal_filemanager" XHTM
- Swap BODY and ph statement
Add SUMMARY to tables
Deprecate ampersand
Close IMG and add ALT
Move NOWRAP to class
Close... - 03:01 PM Revision e25742f0: Tidy up "services_captiveportal_vouchers" XHTML
- Add closehead varaiable, move script into HEAD and close HEAD manually
Add BODY
Remove unordered list tag
Update HTML... - 02:47 PM Revision 48abdd0e: Tidy up "services_captiveportal_hostname" XHTML
- Swap BODY with php statement
Add SUMMARY to tables
Close IMG and add ALT
Deprecate ampersand
Update HTML Boolean oper... - 02:38 PM Revision 91290030: Tidy up "services_captiveportal_ip.php" XHTML
- Swap BODY with php statement
Add SUMMARY to tables
Close IMG and add ALT
Deprecate ampersand
Move NOWARP to class
Clo... - 02:26 PM Revision 0a1ad48c: Tidy up "services_captiveportal_mac.php" XHTML
- Swapp BODY and php statement
Close INPUT
Close IMG and add ALT
Deprecated ampersand
Add SUMMARY to tables
Move NOWRAP... - 02:18 PM Revision 73672832: Tidy up "services_captiveportal.php" XHTML
- Add "closehead" variable, move script into HEAD and close head manually
Add CDATA sections to SCRIPT
Add SUMMARY to t... - 02:09 PM Revision 8abd1782: Tidy up "services_captiveportal_zones.php" XHTML
- Add SUMMARY to tables
Close IMG and add ALT
Close INPUT
Move NOWRAP to class
Deprecate ampersand
Swap BODY with php s... - 01:46 PM Revision f0c522d3: Tidy up "system_advanced_misc.php" XHTML
- Tidy up HTML Boolean operator
Remove redundant closing slash and chevron
04/02/2014
- 01:58 PM Revision 01f4a81d: Make rc.php_ini_setup ready for php 5.5
-
07:53 AM pfSense Packages Bug #2581: Snort unexpectedly terminates / signal 11 error
- Hi All. I found that snort builded for pfsense have one nasty future. All your rulse must have classtype specified. A...
04/01/2014
-
- should be what Phil noted there, already fixed in 2.1.1.
-
- This sort of thing was fixed here https://github.com/pfsense/pfsense/commit/0d8fc8ec415ace48f7963b83224fc8ee186c9a48 ...
-
11:21 AM Bug #3563 (Resolved): Wireless reconfig generates unnecessary error
- While debugging some WPA2 Enterprise issues I kept getting an error:
php: /interfaces.php The command '/sbin/ifcon... -
- Are you testing with 2.1.1 snapshots? It looks like this is fixed by https://github.com/pfsense/pfsense/commit/26ea40...
-
- Been trying to get WPA2-Enterprise with freeradius auth setup with an onboard wireless interface. The settings were ...
- 05:26 PM Revision d374f0c4: Merge pull request #1044 from ExolonDX/master
- Tidy up "system_information.widget.php" XHTML
- 03:59 PM Revision a4b1bf88: Tidy up "functions.inc"
- Remove unnecessary semi-colon.
- 03:55 PM Revision bd42727d: Tidy up "system_information.widget.php" XHTML
- Add CDATA secttions to script
Remove link to CSS file and place it in HEAD.INC and add "type" -
01:15 PM Bug #3557 (Feedback): module runfw.ko is missing in 2.2 alpha
- I enabled it again, should be fine on next snapshots
-
01:39 AM Bug #3561 (Resolved): PPTP VPN broken without RADIUS - always requires RADIUS server configuration.
- Upgrading from 1.2.3 to 2.1 and importing config, that includes PPTP VPN, I had problems with bringing it up, because...
03/31/2014
- 08:57 PM Revision ef322f45: Merge pull request #1042 from bmeeks8/master
- Update Help links to Doc Wiki for Snort package.
- 07:39 PM Revision 2def89a2: Fix #3555, on chrome it is not initializing correct minutes when adding a new time, just drop unused php variables and set it on js
- 07:38 PM Revision 5c757d82: Fix #3555, on chrome it is not initializing correct minutes when adding a new time, just drop unused php variables and set it on js
-
- ifconfig list caps shouldn't be used any longer. Case in point, also doesn't work for em(4) on 10.0-RELEASE. Should c...
-
- Concur on leaving it as monitoring for now, since it's self-corrected. The calcru issues have been around since first...
-
- Thanks
-
- Fixed in Chrome and IE as well here. Thanks!
-
- Applied in changeset commit:2def89a2ddff8d7183a03c385fba8394c5bbf08e.
-
- Applied in changeset commit:5c757d82d84c5363cd5c3d1b3df7d8bf1c641388.
-
- On Chrome I was able to replicate, will work on a fix
-
- Well, that one is broken at least in Chrome 33+ and IE11. Does not happen in FF (27/28).
-
- I couldn't replicate this one, what browser/version are you using?
-
- OK, after gitsync, all fixed except for the issue described in the last comment.
-
- Applied in changeset commit:02b29d72f91d5fe4e9d9a2d4a4f7be3b4db119a1.
-
-
-
- After doing testing, I deleted my static route. But there was no subsystem-dirty prompt to apply the change. The pf r...
-
- I didn't bother putting a target version on this, IMHO I wouldn't hold up any release for this! The simple workaround...
-
- Add a gateway to an internal router behind LAN. Add a static route to some private IPv4 subnet behind that gateway. A...
- 12:56 PM Revision 02b29d72: Revert "XHTML Compliance"
- This commit broke schedules edit, it should fix #3555.
This reverts commit e1002cd2724869eabdfe1f9258d4522d572722e4. -
09:28 AM Bug #1681: OpenVPN tun IPs fail HTTP REFERER checks
- This should fix it: https://github.com/pfsense/pfsense/pull/1043
-
- I'm going to see if I can't just make a fix for this myself.
-
-
- This bug has not been correctly resolved, as tested with pfSense 2.1-RELEASE.
The changeset listed earlier does re... -
03:26 AM Bug #3518: Sometimes DHCP hostname registration does not work for a newly registered host
- Unfortunately, i don't have other deployment or replication method. I am suspecting that maybe one of the hostnames t...
- 02:14 AM Revision efecff7f: Merge pull request #1041 from PiBa-NL/carp_maintenance_2.2
- carp, provide a way to 'permanently' set carp to 'maintenance mode' (advskew 254) persisting a reboot
-
01:55 AM Revision a5c0aaa1: Update Help links to Doc Wiki for Snort package.
-
01:09 AM Bug #3558: Schedule States in System - Advanced - Misc not working
- Best thing would be to add a checkbox to the firewall rules "reset state(s) when activated".
This would also resolve...
03/30/2014
-
- should be fixed in 2.1.1 but will leave for feedback for now.
-
- The subject isn't true in all cases at least. Needs testing to see if it's replicable and find the actual specific ca...
-
- needs testing to see if it's replicable, and find the actual specific issue if so.
-
- Generally speaking, it works. Do you have a specific scenario where it's replicable?
-
- A timing issue causing a variety of other issues is definitely a more likely cause if you were getting calcru runtime...
-
09:23 PM Feature #3559 (Resolved): add option for backup ddns ( dynamic dns ) in restore area
- add option for backup ddns ( dynamic dns ) in restore area
ty
hugs -
- Simply does not work, the states of existing connections are *NOT* cleared on expiration time
https://forum.pfsen... -
- As Jimp propose i open a ticket about this little problem.
https://forum.pfsense.org/index.php?topic=74293.msg406140
03/29/2014
-
- Option to set CARP interfaces to 'maintenance mode', persisting through a reboot so the primary machines stays as bac...
- 01:06 PM Revision f66e049a: Add privileges
- 12:59 PM Revision 5bb1c495: Reflect the service name when starting it
- 12:52 PM Revision 4e8e8cc8: Add localhost as always allowed and ensure to include the access lists
- 12:47 PM Revision 58d00e65: Write out the access list correctly
- 12:47 PM Revision e9162677: Dont unnecessarily unset
- 12:34 PM Revision 188609c6: Fix tab indents and make sure interfaces are saved correctly
- 10:58 AM Revision 16a3108f: Configure acls for local networks and ensure listening interfaces are correctly set
- 10:23 AM Revision 44cf1382: Make sure interface selection works
- 09:29 AM Revision 3b7df5f1: Reference unbound subsystem as dirty
- 09:29 AM Revision 54b16877: Mark unbound as the subsystem
- 09:28 AM Revision 05fec96b: Reference correct dirty subsystem
- 09:23 AM Revision 0ae676cd: Add missing new line
- 09:23 AM Revision 957bb61e: Add domain override page
-
08:23 AM Bug #3556: WAN interface status missing data for pppoe ipv6 connection
- Forgot to mention that the interface widget on the dashboard is also missing IPv6 information for the interface. I ...
-
- When looking at status -> interfaces data is missing for WAN connection with native IPv6 over pppoe.
Web interfa... - 06:16 AM Revision ece2988f: Correct reference
- 06:16 AM Revision 80120fff: Email add update
- 06:12 AM Revision fe9ec529: Correct priv match
- 06:09 AM Revision 1b6e3c30: Ensure TXT support on host descriptions actually works
-
- And yet another one. When you select Start Time ending with 00 Min, click Add Time, the Min dropdown gets empty, then...
-
- Additionally, upon deleting the buggy schedule (example two above), the selected days stays selected, however when yo...
-
- Forum thread: https://forum.pfsense.org/index.php?topic=74101.0
Even after some previous fixes
- clicking edit on... - 05:46 AM Revision 80948260: Reference correct unbound hosts edit file
- 05:46 AM Revision 567e5f65: Reference correct module name
-
- Yep, on both hosts - related (and very relevant) VMware KB is 2072654 and 2072652: http://kb.vmware.com/selfservice/m...
-
- Is it strictly ESX 5.1 with update 201402001?
03/28/2014
-
-
-
-
-
-
-
-
-
-
-
-
-
- I have two physical boxes reproducing this, so yes, it is legit. I agree there doesn't seem to be any change that wou...
-
- not seeing anything along those lines, nor is anyone else it appears. The supposed introduction dates have no even re...
-
-
-
-
11:21 AM Bug #3554: apinger and OpenVPN: Gateway down after OpenVPN client service restart
- Hi,
it seems to happen, if the openvpn interface comes up but encounters an error: in my configuration, a route ad... -
- Hi,
when i restart the OpenVPN client service, which has an interface assigned, the correspondig gateway is going ... - 07:24 AM Revision c40d6c7a: time for 2.1.1-RELEASE
-
06:56 AM Feature #3553 (Rejected): Multi Wan FTP Server
- I've read the forums and on some sites that the pfsense (specifically ftp-proxy) can not handle external connections ...
-
04:03 AM Feature #3552 (New): Allow configuring link keep-alive value in PPP
- Please give us one more option to edit the PPPoE Connection for the WAN Interface
set link keep-alive 10 60
i... -
- if you need more than one config area, you should just backup the entire config. You can always split things out manu...
03/27/2014
-
- maybe a control for select + them 1
sorry bad english
thanks -
- Overand: has absolutely nothing to do with this ticket, please post to the forum or list with more specifics.
-
04:13 PM Bug #3550 (Resolved): [IPv6] wizard not pointing to the right IPv6 address after first setup.
- *pfSense-LiveCD-2.2-ALPHA-i386-20140327-0415*
* fresh installed as a guest OS into a linux-based machine using virtu... -
- I can't find the commit that did it, but I've confirmed it on two hosts with four installs of 2.1.1-PRE using snapsho...
-
-
-
-
- Fixed, thanks.
-
- Applied in changeset commit:544a89c5d12228374b873fda0096f2b4f01f3503.
-
- Applied in changeset commit:013b4695d00a8bced4dff8693b1487bfa9013573.
-
- Regression: Diagnostics - Backup/Restore - Reinstall Packages used to reinstall everything with one click. While the ...
-
10:00 AM pfSense Packages Bug #3527: NRPEv2 package distributing empty xml and missing files
- Using 'fetch -4' results in similar behavior, but a different error:
@/root(4): fetch -4 https://packages.pfsense....
03/26/2014
-
11:35 PM Bug #3547 (Closed): When using LDAP Groups, user is authenticated and granted xauth ipsec irrespective of group permissions
- When using LDAP Groups for IPSec auth, user is authenticated and granted x-auth IPSec access when the user is in no g...
-
-
-
-
-
-
-
01:52 PM Bug #715: RRD Graph on Throughput Contains No Info
- Just going to note here, I do *not* find this to be resolved in this corner case:
pfSense 2.0 on 32 bit (hardware)... - 08:40 AM Revision f3109fac: send crash reports via HTTPS
- 08:40 AM Revision ffe35f4c: send crash reports via HTTPS
-
01:59 AM Feature #3546 (Resolved): AWS EC2 User data option to permit RFC1918 addresses on WAN interface
- Using the current pfSense AWS AMI (ami-6fdf4055), it is not currently possible to connect to a pfsense firewall that ...
- 12:24 AM Revision 9defa446: Merge pull request #1038 from ayvis/master-br-patch
- javascript normalization
03/25/2014
- 11:25 PM Revision 354ecfbc: javascript normalization
- 10:44 PM Revision d5c62447: Merge pull request #1037 from ayvis/master-br-patch
- removed duplicate type=text/javascript
- 10:32 PM Revision 07130afe: removed duplicate type=text/javascript
- added type for <script>
-
07:20 PM Bug #3176: Hosts file corrupted when using "Register DHCP leases in DNS forwarder"
- I am unfamiliar with this forum so I apologize for my messed up formatting.
-
- Sorry, I don't have much to add as far as content, but I would like to say that my pfSense box has had the same behav...
- 07:06 PM Revision 0a6dc462: Fix days and weeks selection on schedules, reported at https://forum.pfsense.org/index.php?topic=74101.0
- 07:06 PM Revision 51b2f811: Fix days and weeks selection on schedules, reported at https://forum.pfsense.org/index.php?topic=74101.0
- 05:44 PM Revision 000a8d1d: Change default charset on pages to utf-8
- 05:35 PM Revision 6fba8620: Merge pull request #1031 from ayvis/master-br-patch
- replaced uppercase html tags with lowercase
- 03:29 PM Revision b121ffad: Only consider javascript files that ends with .js
- 03:28 PM Revision 26661ec9: Only consider javascript files that ends with .js
-
10:08 AM Bug #3545 (Rejected): OpenVPN Clients don't reconnect after dynamic WAN IPv4 changes
- Some times, when the ISP changes the WAN IP address and pfSense reconnects to Internet, the OpenVPN client connection...
-
-
-
- 08:54 AM Revision 8702dcea: Merge pull request #1035 from packetwerk/rc_permissions
- fix permissions on two rc scripts
- 08:46 AM Revision ced541bb: fix permissions on two rc scripts
03/24/2014
-
- Well that was messed up - sorry here's the better one...
-
- As requested:
[2.1.1-PRERELEASE][root@pfsense.criggie.org.nz]/root(1): ndp -na
Neighbor ... -
- Can you show the ouput of the command ...
-
- Short version - I have a PPPoE link from my ISP, which is delivered tagged as VLAN 10 by the local telco.
Outbound... -
-
-
-
-
-
-
-
-
-
- 07:26 PM Revision dae77fe3: Fix deletion of ipfw rules and pipes for passthru mac, it fixes #3538
- 07:25 PM Revision c4fb986b: Fix deletion of ipfw rules and pipes for passthru mac, it fixes #3538
-
-
- This needs to be confirmed again when the 2.2 snapshots are active.
-
- This should be fixed already by me since long now.
-
- Now you can identify the related logs with the connection name.
So this should be a less of an issue.
The page of... -
- This has been completed for the addresses part.
-
- A different implementation has been performed to not depend on this anymore.
-
- Corrected thanks.
-
- Regarding latest two commits:...
-
02:59 PM pfSense Packages Feature #3303: Allow quagga ospf stub, not so stub and totally stub areas
- Peter Allgeyer wrote:
> I've implemented it, patch attached.
Thanks for that. Will this fix be available in the n... -
- Please send it as using github pull request on https://github.com/pfsense/pfsense-packages repo
-
10:56 AM pfSense Packages Feature #3303: Allow quagga ospf stub, not so stub and totally stub areas
- I've implemented it, patch attached.
-
- Applied in changeset commit:dae77fe374ebaf1f97d2835ef0f52daff3b26be9.
-
- Applied in changeset commit:c4fb986b27a6b6e81d7605ae48eda169a7d680cf.
-
- This works fine now. I can run through the wizard and also change WAN from DHCP6 to none, apply, change it back to DH...
-
- Fixing description and pushing to 2.2.
-
07:17 AM Revision 2a08b814: Return full issuer for DN with multiple attribute values
- e.g. CN=Some Root CA,OU=Certificates Department,OU=(c) Copyright SomeCorp,O=SomeCorp,C=US
-
- Pull request 1034:
https://github.com/pfsense/pfsense/pull/1034 -
- cert_get_issuer() doesn't work properly when a certificate's issuer has several attributes of the same type.
e.g.
...
03/23/2014
-
08:13 PM Feature #3508: DNS Lookup - Additional links
The following *+additional+* lookups would be beneficial for *Mail Server* users.
SenderScore
Spamhaus Blocklis...
03/22/2014
-
07:00 AM Bug #3200: IPv6 bugs
- Mar 22 13:03:30 wan php: rc.newwanipv6: rc.newwanipv6: Failed to update wan IPv6, restarting...
Mar 22 13:03:32 wa... -
- Maybe this is usefull.....
-
- ...
-
- It is still valid...
-
-
04:20 AM Revision bd7ce993: Adding the Appropriate RA Flags for "Stateless DHCP"
-
03/21/2014
-
- Please delete this request. I have figured out how to use Github pull request and submitted a pull request to have my...
-
- Hi,
I just wanted to add Stateless DHCP as an option to the drop down list of Router Advertisement modes. Its a fa... - 08:38 PM Revision de22e9ca: syntax error
- 06:24 PM Revision 6b5c8143: Add TXT Support
- 06:07 PM Revision ae5bbb64: Fix file name for domain overrides and ensure trust anchor is referencing the correct file.
- 06:02 PM Revision 19b1ea6c: Use the correct xml tag to check against
- 06:02 PM Revision 7e95984f: Ensure options are still checked after post
- 12:31 PM Revision 9ebe5b7c: Detect Zones and Cores for thermal sensors using regex, it fixes #3337
- 12:25 PM Revision a6bb4e06: Detect Zones and Cores for thermal sensors using regex, it fixes #3337
-
- On 2.2 the default DNS Resolver will be Unbound, so you may want to test using that package and if the behavior is st...
-
10:27 AM Bug #3539: dnsmasq responds to domain 'local', breaks avahi
- Jim, Chris and Doktor Notor,
Thanks for all your focus here. It has led to a discovery and a suggested change to ... -
- All pointing to pfSense for DNS (hostnames replaced with OS):
Pointing to my edge router (127.0.0.1 localhos... -
- Afraid we'd have to go back to "fix your domain to NOT use .local", or fix your Debian/Ubuntu boxes. Since:...
-
- Doktor Notor, if it was just my little box I would be pleased to do as you suggest.
However in situations where pe... -
- Well, now, let's see, what the braindead script does:...
-
- To Chris's point:
root@server1:~# host -t SOA local. 8.8.8.8
Using domain server:
Name: 8.8.8.8
Address: 8.8.... -
- Is the response:
root@server1:~# host -t SOA local.
local has SOA record local. nobody.localhost. 42 86400 43200 ... -
- Gentlemen:
1. Every single ubuntu, debian, gnome, xfce and other linux distro that packages the "Network Manager" ... -
- Oh, and BTW, the proper thing to do would be to check for NXDOMAIN, not doing utter nonsense such as...
-
- BTW, there are multiple bug reports against this BS script check, like
- https://bugs.debian.org/cgi-bin/bugreport... -
- The entire description here isn't true. I suspect as Doktor noted you're using .local as your domain. Otherwise you h...
-
- I suspect it's trying to get there via v6 for some reason, given the "no route to host" when you clearly have a v4 ro...
-
07:31 AM pfSense Packages Bug #3533: bind package restores outdated config.xml
- I've never seen a config.xml.bad.
Besides, the erroneously restored config is way older than the last known good, ma... -
- You can also check if a /conf/config.xml.bad file is present when it happens, this file would be the broken XML that ...
-
- All I can see from the config history is that after my last sane change "(system): save result config file for zone o...
-
- That's what would happen if the package corrupted the XML, it would restore from the last good backup. Is it logging ...
-
- Applied in changeset commit:9ebe5b7c271939a4e48e9cd3f0fdb8f3ebeee432.
-
- Applied in changeset commit:a6bb4e06551224137312b60dfc7db5c06581d35f.
-
- that's the expected and correct behavior where you don't have IP alias (or CARP, though don't use that in this scenar...
-
- Feature since it works as it should. Probably a good idea to add as a checkbox so people realize it exists without di...
-
- The service gets restarted when the NIC comes back up. That definitely works in general. The failure to start in your...
-
- It hasn't been rejected because it's not needed (though Ermal said that initially, I know that's not the case from ex...
-
- That seems to be the appropriate behavior unless I'm missing something. What do you think it should do? You can alway...
-
- This isn't necessary, every time an IP changes, it checks whether it's changed and updates if needed. Maybe something...
-
- Please submit the pull request on the master branch, the RELENG_2_1 branch is for bug fixes only.
-
- Please submit proposed patches using github pull request tool. It's much easier to developers to review and apply cha...
- 05:07 AM Revision 141566ff: remove unused supportedbybsdperimeter tag
- 05:06 AM Revision 6dc2a349: remove unused supportedbybsdperimeter tag
- 05:02 AM Revision ebfb0929: s/BSDP/ESF/
- 04:59 AM Revision 837c9f6d: s/BSDP/ESF/
-
04:26 AM Bug #3540 (Resolved): 100% CPU-Issue when IPv6 DHCP with stateless addresses is active
- The process check_reload_status takes 100% CPU-Load
if the following conditions are given:
Pfsense Relase:
2.1-...
03/20/2014
-
- Of course the bug in this case applies no matter what the pfsense domain name is. The first line in EVERY pfsense /e...
-
- Here's a better idea - do NOT use .local domain if you want to use avahi? Sheesh, it's even written as a hint in the ...
-
- server=/local/8.8.8.8
works faster. It's a temporary useful hack, not an answer.
-
- Ubuntu / debian and related network manager issues this command at startup
host -t soa local.
in /usr/lib/avahi... -
- It will be much easier to quickly review your change if you edit on GitHub and submit a pull request: https://github....
-
06:29 PM Bug #3538: CaptivePortal passthrumac delete captiveportal_get_ipfw_passthru_ruleno and captiveportal_get_dn_passthru_ruleno functions
- Finally fully working code is below...
-
- cut -d \" \" -f 20 not true still searching
-
- In captive portal i successfully added passthrumac. But when i want to delete mac it can't delete ipfw pipe and rule....
- 07:59 PM Revision 75e6d1b2: Only display config title if option is enabled
- 07:57 PM Revision be5aa310: Rather put forwarding for DNS servers into the configuration file
- 07:57 PM Revision 0786eb3a: Make sure post variables are available for form re-population
- 07:39 PM Revision 16da09a2: Fix display of port
- 07:34 PM Revision d12889b0: Ensure if port is configured it is then used
- 07:34 PM Revision fff4a9d1: Various cleanups and shuffle of fields
- 07:34 PM Revision d5ee0208: Add privileges for accessing DNS Resolver
-
-
-
-
-
-
- Just a note that this is still an issue under the newest 2.1.1-PRERELEASE builds.
I had forgotten about this since... -
-
-
-
-
-
-
-
- When using PRIQ, the bandwidth values for items such as VoIP prioritization are not used but they are still forced/re...
-
- Since the base problem is the same as #3535, this can be closed in favor of the other ticket.
-
- This apparently can happen if you select "LAN" as the "WAN" using this wizard since "LAN" is assumed to be LAN, so it...
-
- Using the primary traffic shaper wizard (traffic_shaper_wizard.xml) I am unable to create a valid ruleset with any co...
-
- The main problem with this was actually the wrong interface selected in the wizard.
If you select "LAN" as the "W... -
- Using the traffic shaper wizard with PRIQ, if you choose to give a protocol lower priority on the "Raise or Lower Oth...
-
- Currently, the zone primary is taken from the client zone configuration (fields DNS servers for primary and secondary...
-
- Apparently under some circumstances the bind package re-creates config.xml from old values which made me drop using i...
03/19/2014
- 10:44 PM Revision 691a0346: syntax errors
- 10:38 PM Revision 91f026b0: replaced uppercase html tags with lowercase
- js files saved as UTF-8 / LF
language="JavaScript" deprecated, replaced with type="text/javascript" - 09:28 PM Revision 7a433db2: Merge pull request #1030 from ayvis/master-br-patch
- replaced BR with br in js
-
- update*
-
- hi ,
some peoples have a bad isp , for example my ip change 3-4 times for day ,
and pfsense have a long time fo... - 09:12 PM Revision ec879e3d: replaced BR with br
- replaced uppercase html tags with lowaercase
-
- openvpn, allow for entering client user credentials in the WebGUI
- 03:15 PM Revision c3e4ef74: Merge pull request #953 from N0YB/Gateway_Quality_RRD
- Fix gateway quality RRD to have the correct granularity and be consistent with the pfSense graphs set.
-
01:13 PM Bug #3531 (Rejected): WAN to VIP on WAN traffic routing.
- 2.1.1-PRERELEASE (i386)
built on Wed Mar 12 06:06:11 EDT 2014
FreeBSD 8.3-RELEASE-p14
I have a static IP and a... -
11:04 AM pfSense Packages Bug #3530 (Needs Patch): TinyDNS creates incorrect NS records
- pfsense: 2.1-RELEASE (i386)
dns-server: 1.0.6.18
When enabling the "Automatic PTR entry" for an A record, an expl... -
- You have DNS Rebinding protection enabled (System > Advanced, Admin tab). The A record for ffazva-es001-01.internal.f...
-
08:22 AM Bug #3529 (Rejected): Cannot resolve certain addresses using DNS Forwarder; public DNS it forwards to is fine
- The following address is an example of an A record that I cannot resolve using the pfSense DNS forwarder:
ffazva-e...
03/18/2014
- 07:09 PM Revision 1d7ba683: replaced <br>, <br/> with <br /> in ANSI encoded files. Converted these files to UTF-8
- 06:09 PM Revision e538fc18: Automatic outbound NAT rules skip openvpn interfaces, lets skip them when creating the first set of manual rules too. It fixes #3528
-
- I'm closing the issue since it seems to be a network issue and not a pfSense issue. The best place to look for help w...
-
- When I try and 'fetch' the file from the pfsense install I'm having issues with, after about 30 seconds I get this:
... -
-
- Maybe the box you ran wget doesn't know the CA, but inside pfSense you do not have this error:...
-
- This is indeed an issue with the certificate. I was able to upload the nrpe2.xml file manually to the pfsense server...
-
- I think I may have found why the xml hasn't been downloading correctly. I tried downloading from source on a differe...
-
- Version: 2.1-RELEASE (amd64)
When installing NRPEv2 from package manager GUI, the package install completes succe... -
- Applied in changeset commit:e538fc18448bc2444ea3dce995aa90b717459043.
-
- Ref forum: https://forum.pfsense.org/index.php?topic=73727.0
The 2.1.1 code in /etc/inc/filter.inc filter_nat_rules_... -
- Richard Gate wrote:
> Sorry I misunderstood when you said "it was already fixed". I thought you meant before 3447, n... -
09:53 AM Bug #3447: pfSense 2.1 Captive Portal RADIUS Accouting records not sent to RADIUS Server
- Sorry I misunderstood when you said "it was already fixed". I thought you meant before 3447, not its been fixed since...
-
- It was already fixed as you can see on commit:846bedf994079102c29cd140b41b2d1deb466a13 It's better if you gitsync or ...
-
- I'm using 2.1 with the patch for Bug #3447 applied. The patch itself has the error in it;
$insertquery .= "{$sessi... -
- It was already fixed, are you using the latest 2.1.1 snapshots to test?
-
- Looks like its at line 1922 in /etc/inc/captiveportal.inc
-
- Hi, tested this on a new 2.1 install. There is a small error in construction of the query used to update the database...
-
-
- Oh, one last thing, definitely "change it for all fields that accepts non-alphanumeric chars" is something that defin...
-
- ISO-8859-1? In 2014? Oh well... forget this bug report.
-
- It happens because the char is not part of ISO-8859-1, and all pages on pfSense use this encoding. If you insert the ...
03/17/2014
-
-
-
- That was for _pfSense_ 2.1 in its beta stages. Not FreeBSD directly.
-
03:19 PM Bug #3526: miniupnpd[25277]: DIOCGETSTATUS: Operation not supported by device
- why then created a issue
https://redmine.pfsense.org/issues/2527 -
- If you need help running this on FreeBSD, please post on a FreeBSD forum. This is for pfSense, not FreeBSD and we do ...
-
- Dude, this ain't FreeBSD bug tracker, move on. *facepalm*
-
- uname -a
FreeBSD ghost.ittown 10.0-RELEASE FreeBSD 10.0-RELEASE #0 r260789: Fri Jan 17 01:46:25 UTC 2014
Mar 1... -
- There aren't any official images for FreeBSD 10.x yet. This ticket was for 2.1 only (and is very old).
-
- miniupnpd[2507]: DIOCGETSTATUS: Operation not supported by device
after upgrade freebsd to 10.0 release #0 and por... - 02:17 PM Revision 7f7626ba: Merge branch 'master-br' of https://github.com/ayvis/pfsense into ayvis-master-br
-
12:55 PM Feature #3523: Webgui login - no beeps anymore.
- Ok, thank you, this is the best answer :)
Shame on me! :) -
- It makes sense. When a user authenticate on web interface, syslog sends a log message to all logged in consoles, and ...
-
- Ok I found that this BEEP is disabled by enabling option "Password protect the console menu", so this is not messed u...
-
- On 2.1 installed, my PC speaker on pfsense box beeps every time I log onto pfsense webgui, with latest 2.1.1 builds i...
-
- I checked and this didn't change, I could also reproduce the bell here. Maybe it's something that has changed on your...
-
- Thanks for clarification Doktor, I'll take a look
-
- Renato, I think you misunderstood the description. Hazard to say he's talking about this: http://kb.site5.com/shell-a...
-
- The Dansguardian author/maintainer will need to add code to that page in the package to disable CSRF for that specifi...
-
12:13 PM pfSense Packages Bug #3525 (Closed): Dansguardian Writing Script Garbage (CsrfMagic.end)
- On a clean install of pfSense 2.1, I have installed the following:
* squid 2.7.9 pkg v.4.3.3
* Sarge 2.3.6_2 pkg ... -
- As mentioned almost 3 years ago at https://forum.pfsense.org/index.php?topic=38641.0
The logs get flooded with zil... -
- Christ, this Redmine thing sucks......
-
- @Warren: Ah... Well, looks pretty clear now. Obvious crap there....
-
- Doktor Notor wrote:
> I don't know what to post here, since obviously the offending lines are gone and restored to p... -
- I tried again on another box. Still, the same issue. ...
-
- Well, this line is the closing tag:...
-
- Doktor Notor wrote:
> The only relevant thing logged is this:
>
> [...]
Could you share content of this line? ... -
03/16/2014
-
- pfSense only beep when it boots and when it shutdown. There is an option to disable it on System->Advanced->Notificat...
-
- Installed letest build and found that pfsense does not beep anymore when I login to webgui. I know that not everyone ...
Also available in: Atom